SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000002c0)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x100}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYBLOB="95ff23011ffc2e2c161b3d"], 0xe8}}, 0x0) clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000380)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0, 0x29}, {&(0x7f0000001880)=""/102388, 0xfff7}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) wait4(0x0, 0x0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = gettid() rt_sigqueueinfo(r1, 0xa, &(0x7f00000002c0)) 10:56:59 executing program 0: r0 = syz_io_uring_setup(0x4a5a, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "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", "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"}) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x108, &(0x7f0000000040)=0x8, 0x0, 0x4) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) io_uring_enter(r0, 0x2ff, 0x0, 0x0, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) [ 1129.335968][ T2682] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1129.343933][ T2682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1129.351898][ T2682] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:57:00 executing program 5: get_mempolicy(0x0, &(0x7f0000000040), 0x1, &(0x7f0000ffb000/0x2000)=nil, 0x4) 10:57:00 executing program 4: syz_io_uring_setup(0x47b9, &(0x7f0000000000), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) syz_io_uring_setup(0x116f, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000280), &(0x7f00000002c0)) [ 1129.493375][ T2712] ptrace attach of "/root/syz-executor.4 exec"[2710] was attempted by "/root/syz-executor.4 exec"[2712] [ 1129.638595][ T2699] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:57:00 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:57:00 executing program 3: r0 = syz_open_dev$ndb(&(0x7f0000002680), 0x0, 0x0) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000080)={0x3, 0x0, 0x11, &(0x7f0000000000)="c975ee54f585fc899534be11d8c6312244"}) 10:57:00 executing program 5: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000080), 0x2) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000000)={0x0, 0x1, [{r1, 0x0, 0x0, 0x1000000}]}) 10:57:00 executing program 4: r0 = fork() move_pages(r0, 0x2, &(0x7f0000000000)=[&(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil], 0x0, &(0x7f0000000040), 0x0) [ 1129.859480][ T2702] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1129.897784][ T2702] sysfs: cannot create duplicate filename '/class/ieee80211/ !Ê5‚Á7>7' [ 1129.954481][ T2702] CPU: 0 PID: 2702 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1129.963371][ T2702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1129.973431][ T2702] Call Trace: [ 1129.976714][ T2702] dump_stack_lvl+0xcd/0x134 [ 1129.981319][ T2702] sysfs_warn_dup.cold+0x1c/0x29 [ 1129.986263][ T2702] sysfs_do_create_link_sd+0x11e/0x140 [ 1129.991737][ T2702] sysfs_create_link+0x5f/0xc0 [ 1129.996513][ T2702] device_add+0x78f/0x21b0 [ 1130.000944][ T2702] ? wait_for_completion_io+0x280/0x280 [ 1130.006493][ T2702] ? lock_downgrade+0x6e0/0x6e0 [ 1130.011349][ T2702] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1130.017679][ T2702] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1130.023925][ T2702] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1130.030172][ T2702] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1130.036170][ T2702] wiphy_register+0x1e8a/0x29b0 [ 1130.041032][ T2702] ? wiphy_unregister+0xbe0/0xbe0 [ 1130.046046][ T2702] ? minstrel_ht_alloc+0x531/0xa00 [ 1130.051166][ T2702] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1130.057237][ T2702] ieee80211_register_hw+0x1f18/0x3ed0 [ 1130.062699][ T2702] ? ieee80211_restart_hw+0x290/0x290 [ 1130.068065][ T2702] ? debug_object_destroy+0x210/0x210 [ 1130.073433][ T2702] ? memset+0x20/0x40 [ 1130.077406][ T2702] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1130.083638][ T2702] ? __hrtimer_init+0x136/0x280 [ 1130.088476][ T2702] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1130.094208][ T2702] ? hwsim_virtio_rx_work+0x350/0x350 [ 1130.099566][ T2702] ? __kmalloc_track_caller+0x193/0x310 [ 1130.105106][ T2702] ? memcpy+0x39/0x60 [ 1130.109080][ T2702] hwsim_new_radio_nl+0x9bc/0x1080 [ 1130.114185][ T2702] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1130.120090][ T2702] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1130.126321][ T2702] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1130.133682][ T2702] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1130.140958][ T2702] genl_family_rcv_msg_doit+0x228/0x320 [ 1130.146497][ T2702] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1130.153855][ T2702] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1130.160091][ T2702] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1130.166323][ T2702] ? ns_capable+0xd9/0x100 [ 1130.170730][ T2702] genl_rcv_msg+0x328/0x580 [ 1130.175224][ T2702] ? genl_get_cmd+0x480/0x480 [ 1130.179889][ T2702] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1130.185774][ T2702] ? lock_release+0x720/0x720 [ 1130.190443][ T2702] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1130.195726][ T2702] netlink_rcv_skb+0x153/0x420 [ 1130.200486][ T2702] ? genl_get_cmd+0x480/0x480 [ 1130.205160][ T2702] ? netlink_ack+0xa60/0xa60 [ 1130.209754][ T2702] ? netlink_deliver_tap+0x1b1/0xc30 [ 1130.215036][ T2702] genl_rcv+0x24/0x40 [ 1130.219013][ T2702] netlink_unicast+0x533/0x7d0 [ 1130.223775][ T2702] ? netlink_attachskb+0x890/0x890 [ 1130.228883][ T2702] ? __virt_addr_valid+0x5d/0x2d0 [ 1130.233906][ T2702] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1130.240149][ T2702] ? __phys_addr_symbol+0x2c/0x70 [ 1130.245172][ T2702] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1130.250892][ T2702] ? __check_object_size+0x16e/0x3f0 [ 1130.256178][ T2702] netlink_sendmsg+0x86d/0xdb0 [ 1130.260947][ T2702] ? netlink_unicast+0x7d0/0x7d0 [ 1130.265900][ T2702] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1130.272138][ T2702] ? netlink_unicast+0x7d0/0x7d0 [ 1130.277069][ T2702] sock_sendmsg+0xcf/0x120 [ 1130.281481][ T2702] ____sys_sendmsg+0x6e8/0x810 [ 1130.286240][ T2702] ? kernel_sendmsg+0x50/0x50 [ 1130.290905][ T2702] ? do_recvmmsg+0x6d0/0x6d0 [ 1130.295491][ T2702] ? lock_chain_count+0x20/0x20 [ 1130.300336][ T2702] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1130.306315][ T2702] ___sys_sendmsg+0xf3/0x170 [ 1130.310904][ T2702] ? sendmsg_copy_msghdr+0x160/0x160 [ 1130.316192][ T2702] ? __fget_files+0x21b/0x3e0 [ 1130.320861][ T2702] ? lock_downgrade+0x6e0/0x6e0 [ 1130.325717][ T2702] ? __fget_files+0x23d/0x3e0 [ 1130.330388][ T2702] ? __fget_light+0xea/0x280 [ 1130.334969][ T2702] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1130.341216][ T2702] __sys_sendmsg+0xe5/0x1b0 [ 1130.345719][ T2702] ? __sys_sendmsg_sock+0x30/0x30 [ 1130.350751][ T2702] ? syscall_enter_from_user_mode+0x21/0x70 [ 1130.356643][ T2702] do_syscall_64+0x35/0xb0 [ 1130.361058][ T2702] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1130.366948][ T2702] RIP: 0033:0x7f3e684f88d9 [ 1130.371357][ T2702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1130.390965][ T2702] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1130.399380][ T2702] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1130.407346][ T2702] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1130.415307][ T2702] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1130.423271][ T2702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1130.431235][ T2702] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1131.014514][ T2747] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1131.058113][ T2747] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1131.103026][ T2747] CPU: 1 PID: 2747 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1131.111816][ T2747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1131.121868][ T2747] Call Trace: [ 1131.125138][ T2747] dump_stack_lvl+0xcd/0x134 [ 1131.129731][ T2747] sysfs_warn_dup.cold+0x1c/0x29 [ 1131.134680][ T2747] sysfs_do_create_link_sd+0x11e/0x140 [ 1131.140151][ T2747] sysfs_create_link+0x5f/0xc0 [ 1131.144927][ T2747] device_add+0x78f/0x21b0 [ 1131.149362][ T2747] ? wait_for_completion_io+0x280/0x280 [ 1131.154931][ T2747] ? dev_driver_string+0x6a/0x150 [ 1131.159970][ T2747] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1131.166228][ T2747] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1131.172493][ T2747] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1131.178757][ T2747] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1131.184767][ T2747] wiphy_register+0x1e8a/0x29b0 [ 1131.189642][ T2747] ? wiphy_unregister+0xbe0/0xbe0 [ 1131.194682][ T2747] ? minstrel_ht_alloc+0x531/0xa00 [ 1131.199826][ T2747] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1131.205928][ T2747] ieee80211_register_hw+0x1f18/0x3ed0 [ 1131.211420][ T2747] ? ieee80211_restart_hw+0x290/0x290 [ 1131.216823][ T2747] ? debug_object_destroy+0x210/0x210 [ 1131.222219][ T2747] ? memset+0x20/0x40 [ 1131.226215][ T2747] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1131.232475][ T2747] ? __hrtimer_init+0x136/0x280 [ 1131.237351][ T2747] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1131.243103][ T2747] ? hwsim_virtio_rx_work+0x350/0x350 [ 1131.248487][ T2747] ? __kmalloc_track_caller+0x193/0x310 [ 1131.254050][ T2747] ? memcpy+0x39/0x60 [ 1131.258052][ T2747] hwsim_new_radio_nl+0x9bc/0x1080 [ 1131.263180][ T2747] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1131.269093][ T2747] ? lockdep_hardirqs_on+0x79/0x100 [ 1131.274310][ T2747] ? genl_family_rcv_msg_doit+0xec/0x320 [ 1131.279971][ T2747] ? genl_family_rcv_msg_doit+0xfe/0x320 [ 1131.285622][ T2747] genl_family_rcv_msg_doit+0x228/0x320 [ 1131.291191][ T2747] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1131.298591][ T2747] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1131.304871][ T2747] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1131.311136][ T2747] ? ns_capable+0xd9/0x100 [ 1131.315580][ T2747] genl_rcv_msg+0x328/0x580 [ 1131.320103][ T2747] ? genl_get_cmd+0x480/0x480 [ 1131.324794][ T2747] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1131.330708][ T2747] ? lock_release+0x720/0x720 [ 1131.335402][ T2747] netlink_rcv_skb+0x153/0x420 [ 1131.340178][ T2747] ? genl_get_cmd+0x480/0x480 [ 1131.344870][ T2747] ? netlink_ack+0xa60/0xa60 [ 1131.349478][ T2747] ? netlink_deliver_tap+0x1b1/0xc30 [ 1131.354778][ T2747] ? netlink_skb_set_owner_r+0x148/0x1f0 [ 1131.360439][ T2747] genl_rcv+0x24/0x40 [ 1131.364439][ T2747] netlink_unicast+0x533/0x7d0 [ 1131.369224][ T2747] ? netlink_attachskb+0x890/0x890 [ 1131.374349][ T2747] ? __virt_addr_valid+0x5d/0x2d0 [ 1131.379392][ T2747] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1131.385653][ T2747] ? __phys_addr_symbol+0x2c/0x70 [ 1131.390708][ T2747] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1131.396447][ T2747] ? __check_object_size+0x16e/0x3f0 [ 1131.401758][ T2747] netlink_sendmsg+0x86d/0xdb0 [ 1131.406548][ T2747] ? netlink_unicast+0x7d0/0x7d0 [ 1131.411521][ T2747] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1131.417793][ T2747] ? netlink_unicast+0x7d0/0x7d0 [ 1131.422753][ T2747] sock_sendmsg+0xcf/0x120 [ 1131.427198][ T2747] ____sys_sendmsg+0x6e8/0x810 [ 1131.431989][ T2747] ? kernel_sendmsg+0x50/0x50 [ 1131.436677][ T2747] ? do_recvmmsg+0x6d0/0x6d0 [ 1131.441297][ T2747] ? irqentry_enter+0x28/0x50 [ 1131.445997][ T2747] ___sys_sendmsg+0xf3/0x170 [ 1131.450612][ T2747] ? sendmsg_copy_msghdr+0x160/0x160 [ 1131.455928][ T2747] ? __fget_files+0x21b/0x3e0 [ 1131.460623][ T2747] ? lock_downgrade+0x6e0/0x6e0 [ 1131.465501][ T2747] ? __fget_files+0x23d/0x3e0 [ 1131.470198][ T2747] ? __fget_light+0xea/0x280 [ 1131.474806][ T2747] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1131.481068][ T2747] __sys_sendmsg+0xe5/0x1b0 [ 1131.485591][ T2747] ? __sys_sendmsg_sock+0x30/0x30 [ 1131.490632][ T2747] ? lockdep_hardirqs_on+0x79/0x100 [ 1131.495853][ T2747] ? trace_hardirqs_on+0x39/0x1c0 [ 1131.500898][ T2747] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1131.506819][ T2747] do_syscall_64+0x35/0xb0 [ 1131.511250][ T2747] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1131.517160][ T2747] RIP: 0033:0x7f4637cff8d9 [ 1131.521585][ T2747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1131.541206][ T2747] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:57:01 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f000e013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:01 executing program 4: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x200002, 0x0) 10:57:01 executing program 3: syz_open_dev$ndb(&(0x7f00000001c0), 0x0, 0x80) 10:57:01 executing program 5: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, 0x0, 0x0) [ 1131.549633][ T2747] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1131.557610][ T2747] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1131.565586][ T2747] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1131.573567][ T2747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1131.581549][ T2747] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1131.623892][ T2774] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1131.667085][ T2774] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1131.743133][ T2774] CPU: 0 PID: 2774 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1131.751946][ T2774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1131.762014][ T2774] Call Trace: [ 1131.765296][ T2774] dump_stack_lvl+0xcd/0x134 [ 1131.769895][ T2774] sysfs_warn_dup.cold+0x1c/0x29 [ 1131.774836][ T2774] sysfs_do_create_link_sd+0x11e/0x140 [ 1131.780308][ T2774] sysfs_create_link+0x5f/0xc0 [ 1131.785086][ T2774] device_add+0x78f/0x21b0 [ 1131.789800][ T2774] ? wait_for_completion_io+0x280/0x280 [ 1131.795358][ T2774] ? lock_downgrade+0x6e0/0x6e0 [ 1131.800213][ T2774] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1131.806457][ T2774] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1131.812712][ T2774] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1131.818962][ T2774] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1131.824951][ T2774] wiphy_register+0x1e8a/0x29b0 [ 1131.829806][ T2774] ? wiphy_unregister+0xbe0/0xbe0 [ 1131.834827][ T2774] ? minstrel_ht_alloc+0x531/0xa00 [ 1131.839946][ T2774] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1131.846017][ T2774] ieee80211_register_hw+0x1f18/0x3ed0 [ 1131.851487][ T2774] ? ieee80211_restart_hw+0x290/0x290 [ 1131.856868][ T2774] ? debug_object_destroy+0x210/0x210 [ 1131.862263][ T2774] ? memset+0x20/0x40 [ 1131.866259][ T2774] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1131.872502][ T2774] ? __hrtimer_init+0x136/0x280 [ 1131.877356][ T2774] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1131.883097][ T2774] ? hwsim_virtio_rx_work+0x350/0x350 [ 1131.888469][ T2774] ? __kmalloc_track_caller+0x193/0x310 [ 1131.894023][ T2774] ? memcpy+0x39/0x60 [ 1131.898186][ T2774] hwsim_new_radio_nl+0x9bc/0x1080 [ 1131.903312][ T2774] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1131.909222][ T2774] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1131.915469][ T2774] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1131.922849][ T2774] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1131.930154][ T2774] genl_family_rcv_msg_doit+0x228/0x320 [ 1131.935709][ T2774] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1131.943091][ T2774] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1131.949348][ T2774] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1131.955595][ T2774] ? ns_capable+0xd9/0x100 [ 1131.960010][ T2774] genl_rcv_msg+0x328/0x580 [ 1131.964514][ T2774] ? genl_get_cmd+0x480/0x480 [ 1131.969189][ T2774] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1131.975092][ T2774] ? lock_release+0x720/0x720 [ 1131.979769][ T2774] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1131.985063][ T2774] netlink_rcv_skb+0x153/0x420 [ 1131.989834][ T2774] ? genl_get_cmd+0x480/0x480 [ 1131.994521][ T2774] ? netlink_ack+0xa60/0xa60 [ 1131.999122][ T2774] ? netlink_deliver_tap+0x1b1/0xc30 [ 1132.004409][ T2774] genl_rcv+0x24/0x40 [ 1132.008389][ T2774] netlink_unicast+0x533/0x7d0 [ 1132.013161][ T2774] ? netlink_attachskb+0x890/0x890 [ 1132.018278][ T2774] ? __virt_addr_valid+0x5d/0x2d0 [ 1132.023310][ T2774] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1132.029555][ T2774] ? __phys_addr_symbol+0x2c/0x70 [ 1132.034578][ T2774] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1132.040299][ T2774] ? __check_object_size+0x16e/0x3f0 [ 1132.045593][ T2774] netlink_sendmsg+0x86d/0xdb0 [ 1132.050366][ T2774] ? netlink_unicast+0x7d0/0x7d0 [ 1132.055309][ T2774] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1132.061547][ T2774] ? netlink_unicast+0x7d0/0x7d0 [ 1132.066478][ T2774] sock_sendmsg+0xcf/0x120 [ 1132.070901][ T2774] ____sys_sendmsg+0x6e8/0x810 [ 1132.075753][ T2774] ? kernel_sendmsg+0x50/0x50 [ 1132.080428][ T2774] ? do_recvmmsg+0x6d0/0x6d0 [ 1132.085021][ T2774] ? lock_chain_count+0x20/0x20 [ 1132.089872][ T2774] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1132.095862][ T2774] ___sys_sendmsg+0xf3/0x170 [ 1132.100464][ T2774] ? sendmsg_copy_msghdr+0x160/0x160 [ 1132.105756][ T2774] ? __fget_files+0x21b/0x3e0 [ 1132.110426][ T2774] ? lock_downgrade+0x6e0/0x6e0 [ 1132.115284][ T2774] ? __fget_files+0x23d/0x3e0 [ 1132.119960][ T2774] ? __fget_light+0xea/0x280 [ 1132.124546][ T2774] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1132.130791][ T2774] __sys_sendmsg+0xe5/0x1b0 [ 1132.135304][ T2774] ? __sys_sendmsg_sock+0x30/0x30 [ 1132.140337][ T2774] ? syscall_enter_from_user_mode+0x21/0x70 [ 1132.146234][ T2774] do_syscall_64+0x35/0xb0 [ 1132.150651][ T2774] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1132.156547][ T2774] RIP: 0033:0x7f3e684f88d9 [ 1132.160962][ T2774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1132.180753][ T2774] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:57:02 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1132.189196][ T2774] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1132.197185][ T2774] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1132.205172][ T2774] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1132.213166][ T2774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1132.221154][ T2774] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:57:02 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r0, 0x89f6, &(0x7f0000000300)={'sit0\x00', 0x0}) 10:57:02 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) r1 = open_tree(r0, 0x0, 0x0) r2 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'sit0\x00', 0x0}) setsockopt$packet_int(r2, 0x107, 0x14, &(0x7f0000000100)=0x6, 0x4) r4 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r4, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r4, 0x0, 0x0, 0x0) bind$packet(r2, &(0x7f0000000200)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @link_local}, 0x14) sendmmsg(r2, &(0x7f0000000d00), 0x400004e, 0x0) sendmsg$nl_route(r1, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=@ipv6_getnetconf={0x1c, 0x52, 0x2, 0x70bd25, 0x25dfdbfd, {}, [@NETCONFA_FORWARDING={0x8, 0x2, 0x25}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4c004) mount(&(0x7f0000000240)=@md0, &(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000300)='gfs2\x00', 0x8010, &(0x7f0000000540)='!\x00') 10:57:02 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount(0x0, 0x0, 0x0, 0x0, 0x0) open_tree(r0, 0x0, 0x0) r1 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'sit0\x00', 0x0}) setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000100)=0x6, 0x4) bind$packet(r1, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14) sendmmsg(r1, &(0x7f0000000d00), 0x400004e, 0x0) mount(&(0x7f0000000240)=@md0, &(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000300)='gfs2\x00', 0x8010, &(0x7f0000000540)='!\x00') [ 1132.275416][ T2773] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1132.309583][ T2773] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1132.357487][ T2773] CPU: 1 PID: 2773 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1132.366300][ T2773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1132.376369][ T2773] Call Trace: [ 1132.379749][ T2773] dump_stack_lvl+0xcd/0x134 [ 1132.384361][ T2773] sysfs_warn_dup.cold+0x1c/0x29 [ 1132.389316][ T2773] sysfs_do_create_link_sd+0x11e/0x140 [ 1132.394809][ T2773] sysfs_create_link+0x5f/0xc0 [ 1132.399591][ T2773] device_add+0x78f/0x21b0 [ 1132.404032][ T2773] ? wait_for_completion_io+0x280/0x280 [ 1132.409593][ T2773] ? lock_downgrade+0x6e0/0x6e0 [ 1132.414469][ T2773] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1132.420735][ T2773] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1132.426997][ T2773] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1132.433263][ T2773] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1132.439276][ T2773] wiphy_register+0x1e8a/0x29b0 [ 1132.444157][ T2773] ? wiphy_unregister+0xbe0/0xbe0 [ 1132.449197][ T2773] ? minstrel_ht_alloc+0x531/0xa00 [ 1132.454345][ T2773] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1132.460449][ T2773] ieee80211_register_hw+0x1f18/0x3ed0 [ 1132.465948][ T2773] ? ieee80211_restart_hw+0x290/0x290 [ 1132.471354][ T2773] ? debug_object_destroy+0x210/0x210 [ 1132.476761][ T2773] ? memset+0x20/0x40 [ 1132.480767][ T2773] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1132.487029][ T2773] ? __hrtimer_init+0x136/0x280 [ 1132.491902][ T2773] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1132.497656][ T2773] ? hwsim_virtio_rx_work+0x350/0x350 [ 1132.503054][ T2773] ? __kmalloc_track_caller+0x193/0x310 [ 1132.508629][ T2773] ? memcpy+0x39/0x60 [ 1132.512649][ T2773] hwsim_new_radio_nl+0x9bc/0x1080 [ 1132.517795][ T2773] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1132.523729][ T2773] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1132.529999][ T2773] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1132.537399][ T2773] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1132.544726][ T2773] genl_family_rcv_msg_doit+0x228/0x320 [ 1132.550297][ T2773] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1132.557700][ T2773] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1132.563979][ T2773] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1132.570249][ T2773] ? ns_capable+0xd9/0x100 [ 1132.574697][ T2773] genl_rcv_msg+0x328/0x580 [ 1132.579227][ T2773] ? genl_get_cmd+0x480/0x480 [ 1132.583921][ T2773] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1132.589845][ T2773] ? lock_release+0x720/0x720 [ 1132.594797][ T2773] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1132.600095][ T2773] netlink_rcv_skb+0x153/0x420 [ 1132.604868][ T2773] ? genl_get_cmd+0x480/0x480 [ 1132.609552][ T2773] ? netlink_ack+0xa60/0xa60 [ 1132.614154][ T2773] ? netlink_deliver_tap+0x1b1/0xc30 [ 1132.619453][ T2773] genl_rcv+0x24/0x40 [ 1132.623442][ T2773] netlink_unicast+0x533/0x7d0 [ 1132.628226][ T2773] ? netlink_attachskb+0x890/0x890 [ 1132.633343][ T2773] ? __virt_addr_valid+0x5d/0x2d0 [ 1132.638379][ T2773] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1132.644632][ T2773] ? __phys_addr_symbol+0x2c/0x70 [ 1132.649659][ T2773] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1132.655384][ T2773] ? __check_object_size+0x16e/0x3f0 [ 1132.660686][ T2773] netlink_sendmsg+0x86d/0xdb0 [ 1132.665460][ T2773] ? netlink_unicast+0x7d0/0x7d0 [ 1132.670413][ T2773] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1132.676666][ T2773] ? netlink_unicast+0x7d0/0x7d0 [ 1132.681611][ T2773] sock_sendmsg+0xcf/0x120 [ 1132.686035][ T2773] ____sys_sendmsg+0x6e8/0x810 [ 1132.690809][ T2773] ? kernel_sendmsg+0x50/0x50 [ 1132.695492][ T2773] ? do_recvmmsg+0x6d0/0x6d0 [ 1132.700093][ T2773] ? lock_chain_count+0x20/0x20 [ 1132.704950][ T2773] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1132.710943][ T2773] ___sys_sendmsg+0xf3/0x170 [ 1132.715546][ T2773] ? sendmsg_copy_msghdr+0x160/0x160 [ 1132.720838][ T2773] ? __fget_files+0x21b/0x3e0 [ 1132.725513][ T2773] ? lock_downgrade+0x6e0/0x6e0 [ 1132.730377][ T2773] ? __fget_files+0x23d/0x3e0 [ 1132.735060][ T2773] ? __fget_light+0xea/0x280 [ 1132.739654][ T2773] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1132.745904][ T2773] __sys_sendmsg+0xe5/0x1b0 [ 1132.750425][ T2773] ? __sys_sendmsg_sock+0x30/0x30 [ 1132.755788][ T2773] ? syscall_enter_from_user_mode+0x21/0x70 [ 1132.761716][ T2773] do_syscall_64+0x35/0xb0 [ 1132.766159][ T2773] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1132.772085][ T2773] RIP: 0033:0x7f3e684f88d9 [ 1132.776515][ T2773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1132.796141][ T2773] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1132.804574][ T2773] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1132.812560][ T2773] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1132.820544][ T2773] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1132.828532][ T2773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1132.836518][ T2773] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:03 executing program 4: bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001ac0)={0xffffffffffffffff, 0x0, 0x0}, 0x10) 10:57:03 executing program 5: capget(&(0x7f0000000080), &(0x7f00000000c0)) 10:57:03 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r0, 0x89f6, &(0x7f00000006c0)={'syztnl0\x00', 0x0}) 10:57:03 executing program 5: syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000400)={{0x12, 0x1, 0x50, 0x0, 0x0, 0x0, 0x40, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x9, 0xd0, 0x0, [{{0x9, 0x4, 0x0, 0x3, 0x1, 0x7, 0x1, 0x1, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x0, 0x7, 0xff, 0x4}}}}}]}}]}}, &(0x7f00000003c0)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x310, 0x1f, 0x9a, 0x23, 0x40, 0x2}, 0x5e, &(0x7f0000000500)={0x5, 0xf, 0x5e, 0x6, [@ssp_cap={0x20, 0x10, 0xa, 0x20, 0x5, 0x9, 0xf, 0x333f, [0x30, 0x30, 0xc0, 0x0, 0x0]}, @ss_container_id={0x14, 0x10, 0x4, 0x7, "c7ca00000000000000df00"}, @ptm_cap={0x3}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x8, 0x91, 0x3, 0x1f, 0x6fe0, 0x81}, @ss_container_id={0x14, 0x10, 0x4, 0x2, "ef2223e112611ed729c4ec6f1b056d4c"}]}, 0x2, [{0x43, &(0x7f0000000300)=ANY=[@ANYBLOB="43037b46ae3e8240f4398621b250285f1cdaf72662f2945d56c7e6fe0a00000000c80a8bd514c084b49c480fa14a4f26ffff60c5efce34ff010000d16960d124ad74a1"]}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x457}}]}) [ 1133.668554][T27615] usb 6-1: new high-speed USB device number 17 using dummy_hcd 10:57:04 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f001f013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:04 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, 0x0, 0x0, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:57:04 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="120100004152bd106d0401d004e7010203010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f00000003c0)={0x2c, &(0x7f0000000200)={0x0, 0x0, 0x1, 'w'}, 0x0, 0x0, 0x0, 0x0}) 10:57:04 executing program 4: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) 10:57:04 executing program 4: inotify_add_watch(0xffffffffffffffff, 0x0, 0x200) [ 1133.888373][ T2851] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1133.928874][ T2851] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1133.969225][ T2851] CPU: 0 PID: 2851 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1133.978040][ T2851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1133.988110][ T2851] Call Trace: [ 1133.991393][ T2851] dump_stack_lvl+0xcd/0x134 [ 1133.996001][ T2851] sysfs_warn_dup.cold+0x1c/0x29 [ 1134.000955][ T2851] sysfs_do_create_link_sd+0x11e/0x140 [ 1134.006442][ T2851] sysfs_create_link+0x5f/0xc0 [ 1134.011231][ T2851] device_add+0x78f/0x21b0 [ 1134.015663][ T2851] ? wait_for_completion_io+0x280/0x280 [ 1134.021225][ T2851] ? lock_downgrade+0x6e0/0x6e0 [ 1134.026096][ T2851] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1134.032354][ T2851] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1134.038617][ T2851] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1134.044880][ T2851] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1134.049527][T27615] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1134.050880][ T2851] wiphy_register+0x1e8a/0x29b0 [ 1134.050917][ T2851] ? wiphy_unregister+0xbe0/0xbe0 [ 1134.070541][ T2851] ? minstrel_ht_alloc+0x531/0xa00 [ 1134.075663][ T2851] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1134.081738][ T2851] ieee80211_register_hw+0x1f18/0x3ed0 [ 1134.087210][ T2851] ? ieee80211_restart_hw+0x290/0x290 [ 1134.092581][ T2851] ? debug_object_destroy+0x210/0x210 [ 1134.097954][ T2851] ? memset+0x20/0x40 [ 1134.101930][ T2851] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1134.108161][ T2851] ? __hrtimer_init+0x136/0x280 [ 1134.113010][ T2851] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1134.118739][ T2851] ? hwsim_virtio_rx_work+0x350/0x350 [ 1134.124102][ T2851] ? __kmalloc_track_caller+0x193/0x310 [ 1134.129647][ T2851] ? memcpy+0x39/0x60 [ 1134.133627][ T2851] hwsim_new_radio_nl+0x9bc/0x1080 [ 1134.138737][ T2851] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1134.144635][ T2851] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1134.150964][ T2851] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1134.158339][ T2851] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1134.165628][ T2851] genl_family_rcv_msg_doit+0x228/0x320 [ 1134.171170][ T2851] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1134.178542][ T2851] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1134.184787][ T2851] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1134.191025][ T2851] ? ns_capable+0xd9/0x100 [ 1134.195441][ T2851] genl_rcv_msg+0x328/0x580 [ 1134.199940][ T2851] ? genl_get_cmd+0x480/0x480 [ 1134.204606][ T2851] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1134.210587][ T2851] ? lock_release+0x720/0x720 [ 1134.215258][ T2851] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1134.220541][ T2851] netlink_rcv_skb+0x153/0x420 [ 1134.225298][ T2851] ? genl_get_cmd+0x480/0x480 [ 1134.229965][ T2851] ? netlink_ack+0xa60/0xa60 [ 1134.234552][ T2851] ? netlink_deliver_tap+0x1b1/0xc30 [ 1134.239832][ T2851] genl_rcv+0x24/0x40 [ 1134.243808][ T2851] netlink_unicast+0x533/0x7d0 [ 1134.248566][ T2851] ? netlink_attachskb+0x890/0x890 [ 1134.253668][ T2851] ? __virt_addr_valid+0x5d/0x2d0 [ 1134.258685][ T2851] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1134.264920][ T2851] ? __phys_addr_symbol+0x2c/0x70 [ 1134.269936][ T2851] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1134.275647][ T2851] ? __check_object_size+0x16e/0x3f0 [ 1134.280932][ T2851] netlink_sendmsg+0x86d/0xdb0 [ 1134.285691][ T2851] ? netlink_unicast+0x7d0/0x7d0 [ 1134.290625][ T2851] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1134.296860][ T2851] ? netlink_unicast+0x7d0/0x7d0 [ 1134.301810][ T2851] sock_sendmsg+0xcf/0x120 [ 1134.306222][ T2851] ____sys_sendmsg+0x6e8/0x810 [ 1134.310980][ T2851] ? kernel_sendmsg+0x50/0x50 [ 1134.315645][ T2851] ? do_recvmmsg+0x6d0/0x6d0 [ 1134.320233][ T2851] ? lock_chain_count+0x20/0x20 [ 1134.325080][ T2851] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1134.331064][ T2851] ___sys_sendmsg+0xf3/0x170 [ 1134.335655][ T2851] ? sendmsg_copy_msghdr+0x160/0x160 [ 1134.340941][ T2851] ? __fget_files+0x21b/0x3e0 [ 1134.345609][ T2851] ? lock_downgrade+0x6e0/0x6e0 [ 1134.350460][ T2851] ? __fget_files+0x23d/0x3e0 [ 1134.355132][ T2851] ? __fget_light+0xea/0x280 [ 1134.359717][ T2851] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1134.365962][ T2851] __sys_sendmsg+0xe5/0x1b0 [ 1134.370465][ T2851] ? __sys_sendmsg_sock+0x30/0x30 [ 1134.375492][ T2851] ? syscall_enter_from_user_mode+0x21/0x70 [ 1134.381385][ T2851] do_syscall_64+0x35/0xb0 [ 1134.385803][ T2851] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1134.391695][ T2851] RIP: 0033:0x7f3e684f88d9 [ 1134.396105][ T2851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 10:57:04 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x0, @tipc, @rc, @qipcrtr}) [ 1134.415709][ T2851] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1134.424120][ T2851] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1134.432087][ T2851] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1134.440053][ T2851] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1134.448023][ T2851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1134.455987][ T2851] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1134.495653][T27615] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0x1 has invalid maxpacket 0 [ 1134.555309][ T1050] usb 4-1: new high-speed USB device number 30 using dummy_hcd [ 1134.563722][T27615] usb 6-1: config 1 interface 0 has no altsetting 0 [ 1134.749215][T27615] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1134.768897][T27615] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1134.794924][T27615] usb 6-1: Product: syz [ 1134.810097][T27615] usb 6-1: Manufacturer: Ñ— [ 1134.816799][ T1050] usb 4-1: Using ep0 maxpacket: 16 [ 1134.823640][T27615] usb 6-1: SerialNumber: syz [ 1135.165907][ T1050] usb 4-1: New USB device found, idVendor=046d, idProduct=d001, bcdDevice=e7.04 [ 1135.175101][ T1050] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1135.186514][T27615] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 17 if 0 alt 3 proto 1 vid 0x0525 pid 0xA4A8 [ 1135.210323][ T1050] usb 4-1: Product: syz [ 1135.219162][ T1050] usb 4-1: Manufacturer: syz [ 1135.229603][ T1050] usb 4-1: SerialNumber: syz [ 1135.240428][T27615] usb 6-1: USB disconnect, device number 17 [ 1135.242493][ T1050] usb 4-1: config 0 descriptor?? [ 1135.290548][T27615] usblp0: removed [ 1135.300513][ T1050] gspca_main: nw80x-2.14.0 probing 046d:d001 10:57:06 executing program 0: r0 = syz_io_uring_setup(0x4a5a, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0) syz_io_uring_setup(0x2bfa, &(0x7f0000000040)={0x0, 0x78d8, 0x1, 0x3, 0x310}, &(0x7f0000ff7000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000180)) r5 = mmap$IORING_OFF_SQES(&(0x7f0000ff7000/0x1000)=nil, 0x1000, 0x1000002, 0x8010, 0xffffffffffffffff, 0x10000000) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index=0x2, 0x0, 0x0, 0x0, {}, 0x1, {0x0, r6}}, 0x7) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "174660b85e4fa0bea0c420ef601ba551eeb69d8b76d0b8e766aa35b15993df63021ba7e761b6e5af72b20825ec41ecc54a52b457dc67095c4521609b243c687053f57eb6763fccbf660796cd49ed9ce7b2631a8c550b509f262b109acc2cfd47269a655e8ebfccd1265eadaa69f9436ca3b580b5eda2260500b3111979a6bfce3e1dd4747addf70790a299fdbd56b428ff021216ec0d4243ccdef0fdf9fbcbcbf7cfc8710847ed7b5d392eddd46e6c88429938df929767570b3816a84058329608cebbb7640575df481dc1b91b2b475297eacc8ac9a59745dbf0ed8e33e52801bb8a811a88f73aed3a979df0fba612452e0586120ddc2a502c4dcfa88730f326", "21fb8ae51e9c8da6dfae6897e9e83cc4fe344ff6627b9132da3b0380b8c56c385fa5644b73a9f32f8387c53e5f638e0023a1db524d5025c724f59e20b5776b39bc4e833b0feb767b3a33de717808e4a38ec02ec4ce07cbe1bf238ab6b613f04c6b411dafb549d89239669a4544862b24426c0911d519491cd0cacc09c518756610fba9a2f7884e1e5c66aa4792bdf00d4a20c5e991c32e6499bc499c7c41adba3246209db7fd6ec59d16c9ba81881315a229bccb472f24d76de7a80d6287808474cca776690c1138c798f2e8df0ae6af4b127aec3d9f145cd1136f00600505f6f4f2f27c2fcfb548ff9e02ba9f13ca0e31a2242b1069622799e3442959c12821af9fb0283c217c41e228dc2bc1c5dcd8007678e9cb1a9d14937de4b4eab9226377ffdade29af598bdd59599a45a46590a2adc164f1ca7336a8f70e12932e4a18c3ca12923c4d6e183befc6b77ce0264a1e54959c8bfbbabc3b488f6e89bf699c01dd60ed649328bb42dbc9dca56cb17bc23cf904155f7f8aebcd46fd485f2e1386f852b88488216f0811b6925418cdcc42780406e719e8e94399ce1b9b883ba68389ed844f9959fcad8659304fe05c3a103d96c0c3e30d0991c91310e11ced71a461f68df1a6dccf41662b15b11807367116f3ad771c1e2bb26d57c127fdde5a292909817ddf38111927c7970062181be3013436490ec0b241fa69ceb26edc3c167990a0884a9740fc074fcc6bf2fa07b446060734743725813b5a72338f81943d06ec5831e9db572fbfc4374bd585ac2c1c9720b9199de7bec3815a55cf267f1999e7ae9e896763314f09544098b55c26a0f563bf891d169f6be2ed5a104b4845a839b33918a29a6aa4df7957c58367d151d3c369f5c502f6455b81a111a5112126886cae098f0311b10ba561d66051b4614aa009aa504565a7326c09bf52891bc6b414f25e94231d210b47237f2cca66b24ebb8c1b7a191f383d10443f2cc87b2dec4b099c7547702b0f57970c412fdead73cca63bc2ac990d6ff12e267e18311bb8ea35c53b7b915cb5ea7e170b297bee129b44ab44d1ce62c444d9ae1c4a62039fec33b7d35ec80bb5eb56c5847e65d344d7cfad210427a515b253eb766ed35bbd701346acfebd74233a7d193ecca6b7f229f74645ad6b9fc0253c51cb7a9f1f99c6f06f629c86c17e216d20dd57223ec4f81800b101467678631669ba64fbd6c832843bcb003e7c96a3b237e94cbfbe9105ced62d36174f58ca327929fa66ab2ffd72c281a35c50e0a02507a248bee38b7936214037fa20c49fd4abef241cc7f487ee77c28b352c5eae4c2f0a70deb0624010ad1ad06cad9094068c1c2da7c6a0b34fb4d7bdf4e814e27df5bbee04743202ab88276114b62958b7c51fc7283166f754c8abcabe509fc309fbf3c1913622a0041eaf7e1460785073babd8fb3687362359ea8f1572793132435e82c88f9c363d041c16528dc1b9608443728e05c61367eab7c626a53bac6ca5a22e885c708348c32725f6c14364a385c7468f6b0396f0930585fd53237c187546dae7bd455e2d4b021a497f090308f4a5cf4d1b3de4c42af40ad089643e45510706eab02ddfda6bc604d3b99eeca3233cb2752ac16c3eeaa2e5df5dc87a49fb7255617fdcce9170faa3f66deaa35704b86bbe1a59229039e85728704740538890715c4112ab3100c8d62f71819b9bf9878501818649b59b34785744b26e75989f3ed7f7b8909a814b6cd024f69b6f42207dd148ce0e10b3b8b3813205c8a2f1717d42873d16fa1a40e1072f0bca9835b850e87454b14fe9941cda01fa89cd09f8423410124ff7db0b7c8299538d75350fd635a7545cd00468831913734b3a2497415d65328077240581670da44e8ed497353043eb23efac8ad03bb22ffb5614385ef57084c7d1b4d0127c29a77116fa49fcfb21bc1899aa80feaaf4cdce7f514c8c2c8168aaef963b368521e4996cfcb7f44ca6873f14353ba1ec15fd46ce3710072de45d60d0a335899fdb601c3f56b32c575b0c4bc5879ab3101e4ff18564da3a9faa69daa2ab49fcce8ff678b6ef2ee03eb8c43afeedb0cccde8dbbcbf1a9e4370eaa1d337286e95ed5cd16586183845a99af79fccc2ab7131de3f08fbd966bc5c09f0617024c728558d7bf30361e3c339b1cfac0e6642f433dd19e09d88ecb63beea865bc11969ad7a30b3ae29eccd2ceae1b473b4546dabb13e77b5cd0e3f02d78d77f05527a79de8ba90eb78c2119c463c4b7cd01d0b16660f9e4ee3e00a048a26deb65caa46c1643473726f1fd23858ca6a811cc43f594f55ad9c4757d127c8757e91ca5b0d37c7cbe2e42b2c3ca81e294c095a76c61ebc0de413f1f2b4040cd39d0023b5b22733f8aa0cc858d9f62218b5df3d62932dcc34778918631aad99cb92986d7a1e432191148f62b342745cd9f3df596b62a8622be3bc9cdf619906c88aea6b4f284866cd58eefebdd037e3246d0bdda1e3df3b5c72b61087d99b576598900c76691df1c81960da44524c6a53c909b587befa89cddcf7ba3d340045c5cf0bcc74c6265b568a5da251dee47b2386df0f089edef9a0180d381dda4ca873eb5d886b2270fb1bf46bd8d4ec548fb86e832be160babd4445bf038f96390f18aced21df2e7d0623b922a968ee924ad53add4f9e77e7e10cd04311f34214397dcae831d38c69ee872d01ed44ba2c9c0d427fd7538d9f6ffb7e852e9f4213fc4631bf49b28c36f900f5d15d6445b843be1198c8d0b96e4932ad0c4f4d4830fe6e95d12d3f8a55c74345e62db832ccc95a542c417c65cd8ffd780aa32b750a8ae787ed420dd4b4c6acc2b3881b232b0179b9cd3e266deaa73a393c5fff2fae7db932783f363ae0953c206821424c4e4b1b22f10ab8a76b02f1e06fae7eee4cf207fdf4be5453a7f9f1584be9a8411f8d8974bee6d941a5b417227c068688ed8e9856f965f86774ab10f97990bd7773fb2170b7873f7e4053ecaab1024399acf396d071cf9e67b9927d757bdd40c331560ad8925151236b4ea52d92b075cbac7cd031fcf6b84cf11895bbf930de202cf5eef17e3d9f7f3ea7663cfa102c4792b914fe98a67ff07559ffe6f6483f3c895047c301dc54c9f346984ed9b16769d0de21746e420f921ea3bda41c2b2285a1fb69f0b2956c99d9aa75e08c3effdffb4148eb1f884fb42c9872e2a336e0d49334d7f0e263082c90c2abc0b4a63c202ffe9f79dd83f14da0e25147019439f551c7329970dbd36406150dc639cb3bf0e519deb4906c28fbc9fc16804222f1f34a25e5e7575f20fcb6d3ddadf42a4b4147e81774df0d0f21a7730c062139d7be6c12fca4349a48d8a3d11ec609006958ced994b27c2df15d6f096c4c85f6549004ffbda086f98d98f1866f742fb9124009f62515a50718787fc2d903cfe38f5a47d003af40049597469230a3f4160a2bc8a0e04b79ea600f7a599cd115cffc80d74b27972a790739aeba9fbeea86de794ca1fc34e5e10bd2cf17ffbaf841a0f9b3a518fec40cb9f6742b7300b6106e36bf1ec552218522d68760d876cdd1f92b7c0984c7c37215ee232717f8104378f3d0da65963a95f03f2691b77c1d19ecf563ee103741ad3d6097d3905d964fdc69f3c05c04c6af65282b4a5bf4f4f1fe08b9406e0af60cd1f68ac67421236e98fc7e32add2296533d5c362959136104e7643c0a2e5b3067bfac8e2ac48652068863b254574e46bd5296edff186e84b4db8a4eafb86bc34d55c5f60e9dcfb04e4a0820bfdb15eda4d3592e2dfba5ed8fa31ce936be3fb7e48bd2d96e5550a566b7de8e027fc14386c0943568baa33b18d7d26ea1098d2b968a16366044ed45869a8746d1b9967c9e0c0cc2b2f1b9c2a4a10cf567a8f86360477217444916b6e0d4d7683d615f57d58ab0e09e76c3195319a2bad0f4490c104607ded9dd386fa198be591071d6e42638a48230e0d4050800143189e67738e5ee385bedf912e8482bcd385637e7a50405c035478ad89b8d57e645db00e9a32483ed3a12be832f3d1f949012c8d9245c1fe8efca8185704422b3056238f363292c4976e234a3773307e75e33a7f69a4531cdd1a29aedd9e15ba4d6ebeb54fb7cfdc3e7ba62a51243c33d2829e8bf2e52f9e5876e12cffedf72fc668f255117ed703087090d4e5a91a421ae5074bf10b9ff030399c078fe114d78fe5845b975d110fda611d94aa9d0a5c57ba9c8cc5c416d8aacfb38a4428e86da8310da292f561d1473ba05fd4ae6b5406f56b20969eae833afa781474fac8551d7933171a8a149e3d3facdb833bc0fa3a0cf9892ef1d07fba1abfb2a2837af0d70d283296757c1144e7e1f9941ec9cca3404d83487e612efb8478d8d3cf7e3562ec83278b3447b58776552fbdf7ef949c2ab0d294bd08d09eab18f9ba2b1f4e02cec8efffa834e425a5f4b95cd0f8130696ec5d252672b8554feb40632368936c851b7b2da705ebef6d78c0fdba08097aaa728465b4dffa2699709a1c4f2cf573408d9598c4dbba65cd97059a97e97561733b1cba44539a669e02c6e434205d03bccbba516d0568d3dd820227f7674ffdd45a69c66c867fefcce705e0f756af47524059c09b20763994acaf8e28c96b79a6e36b7ddf2af4b426f6ff37cfe039e772d8679edf5bdb191f50826ae077b13544754750869457f5c8e9e08d10b9e7e44ba5cc42969233e6be68940b0c2bef5df2a690fb7735483d74027e24df2e99221ecfd3ba4cf582a34015e447e11cf4b9380178a5e3df55be6ee387c4ef911b42ac6e4093991e86be3b7e9ff3d3b705df0aeb373262337c0734b33509dcd23c2ca5fd60ec830af77635e01ac4e5e03c19cf0495cc6e030840681a0179d2386c672bb80db7aef3b39c5281a38eee4876f79fce20db5ac26ab60ee6ef09ddc31acb8403724f4c09eb0989e83a3a14b296413d3c355fa589e283fc8b60a13db2b4bebb8aaa219648c4fb95f738291d2a2831e6de333ef03a79ec1ac0ab9c85588fd46cfbf4ea54e3326544fadca95111fb1feebdca733ed08c15b626e0637fb80796baa00ca561966eb8125d937e976d11a181d76b90596f3d039a48acbcf47ad4216b9438855d497c84ddd3d72d8f33358e8e3e667169cf307c1b548ade0f36396dec501b03b9821c946b4a66c385e9cc283b369c316318d8a07eee21226ec48e12083c82acae747864e92e4853d3a8767c792945df4db1057cef0db3e9421b42289cf78fc913238b7f9697d8f86867d59617fd4dcac07e915eb54b3bcfad3c4b44c08fcec90f3ee80fabc742bf01f1c9b0b8e22998c1055e3af4ca4b5ea3a81f1c5cb969dc64907950fbbc891aa9472d5e3140ef5e01916f5e6b30138856129e69bf7b77f71aaa9f47841f5b4286fbb903"}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) io_uring_enter(r0, 0x2ff, 0x0, 0x0, 0x0, 0x0) r9 = socket$alg(0x26, 0x5, 0x0) r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$dupfd(r10, 0x0, 0xffffffffffffffff) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r10, 0x81f8943c, &(0x7f000004db80)={0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r10, 0xc0709411, &(0x7f00000004c0)=ANY=[@ANYRES64=r11, @ANYBLOB="0000008000000000660000000000000000000000000000000300000000000000b20b0000000000000000000080f8ffff0500000000000000ff0100000000000003000000000000000c0a000000000000180000000000000000000000000000000000000000000000000000000000000038acc528544d2c8a31d36d4cd709adebd766246f0d863da47dee43c20a6bb01bc38fe6d5cee587d9902197e8a1e289ce16e5c7c3aa50654e764f4d121802ef5f8d27e1e3c36d41c3815330ad1c27ae7295469da0c5dffc56b02ce373a8bdef505a20b2a2325789cbe1b0f3b8d7b6e4278f753ea9"]) r12 = perf_event_open(&(0x7f00000005c0)={0x1, 0x80, 0x3, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$dupfd(r12, 0x0, 0xffffffffffffffff) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r12, 0x81f8943c, &(0x7f00000002c0)={0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r12, 0xc0709411, &(0x7f0000000100)={{r13, 0x80000000, 0x66, 0x0, 0x3, 0xbb2, 0x100000000, 0x1, 0x8, 0x7, 0x80, 0x6, 0x1ff, 0x3, 0xa0c}, 0x18, [0x0, 0x0, 0x0]}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r9, 0xd000943d, &(0x7f000004cd80)={0x157, [{r8}, {r8}, {r8}, {}, {}, {r8, r7}, {0x0, r7}, {0x0, r7}, {}, {r8}, {r8}, {r8, r7}, {r8, r7}, {0x0, r7}, {r8}, {r8, r7}, {0x0, r7}, {0x0, r7}, {}, {0x0, r7}, {}, {0x0, r7}, {}, {r8, r7}, {0x0, r7}, {r8}, {}, {r8, r7}, {r8}, {}, {0x0, r7}, {r8, r7}, {}, {r8}, {r8}, {}, {}, {}, {}, {0x0, r7}, {r8, r7}, {0x0, r7}, {0x0, r7}, {}, {r8}, {0x0, r7}, {}, {0x0, r7}, {r8, r7}, {}, {0x0, r7}, {r8}, {0x0, r7}, {0x0, r7}, {r8, r7}, {}, {}, {r8}, {r8, r7}, {0x0, r7}, {r8, r7}, {}, {r8, r7}, {r8, r7}, {0x0, r7}, {r8, r7}, {0x0, r7}, {r8, r7}, {0x0, r7}, {r8, r7}, {r8}, {r8, r7}, {r8}, {r8, r7}, {r8}, {0x0, r7}, {r8}, {}, {r8}, {r8, r7}, {r8, r7}, {r8, r7}, {0x0, r7}, {r8}, {r8, r7}, {}, {r8, r7}, {r8, r7}, {}, {r8}, {r8}, {r8, r7}, {r8, r7}, {}, {r8}, {}, {0x0, r7}, {r8}, {}, {0x0, r7}, {0x0, r7}, {}, {r8, r7}, {0x0, r7}, {0x0, r7}, {}, {0x0, r7}, {r8, r7}, {0x0, r7}, {r8, r7}, {0x0, r7}, {r8}, {0x0, r7}, {r8, r7}, {0x0, r7}, {0x0, r7}, {r8, r7}, {}, {}, {}, {0x0, r7}, {r8}, {}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r8}, {r8}, {}, {r8}, {r8}, {0x0, r7}, {0x0, r7}, {r8, r7}, {}, {}, {r8, r7}, {r8}, {0x0, r7}, {}, {r8, r7}, {r8}, {r8}, {}, {r8}, {r8}, {r8, r7}, {r8}, {r8}, {0x0, r7}, {}, {r8}, {}, {0x0, r7}, {0x0, r7}, {}, {}, {}, {0x0, r7}, {0x0, r7}, {r8}, {0x0, r7}, {r8}, {0x0, r7}, {r8, r7}, {}, {}, {r8, r7}, {}, {}, {0x0, r7}, {r8, r7}, {r8}, {}, {r8, r7}, {r8, r7}, {0x0, r7}, {r8, r7}, {0x0, r7}, {r8}, {0x0, r7}, {0x0, r7}, {r8, r7}, {0x0, r7}, {}, {0x0, r7}, {r8}, {r8, r7}, {r8}, {r8, r7}, {0x0, r7}, {r8, r7}, {}, {r8}, {}, {}, {}, {0x0, r7}, {}, {r8}, {r8}, {r8, r7}, {0x0, r7}, {r8}, {0x0, r7}, {}, {0x0, r7}, {}, {}, {}, {}, {0x0, r7}, {0x0, r7}, {r8}, {}, {r8}, {0x0, r7}, {r8}, {0x0, r7}, {0x0, r7}, {r8}, {r8, r7}, {}, {r8}, {r8, r7}, {0x0, r7}, {}, {r8, r7}, {}, {}, {r8, r7}, {}, {r8}, {}, {r8, r7}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {r8}, {}, {0x0, r7}, {0x0, r7}, {r8, r7}, {}, {r8}, {r8}, {r11, r7}, {r13, r7}, {r8, r7}], 0x1, "5ce9f197f8dcba"}) 10:57:06 executing program 4: r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x31e) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) r1 = syz_open_dev$sndmidi(0x0, 0x0, 0x0) dup(r1) clone(0x0, &(0x7f00000006c0), 0x0, &(0x7f0000000600), &(0x7f0000000780)) [ 1135.535742][ T2853] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1135.589017][ T2853] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1135.618184][ T2853] CPU: 0 PID: 2853 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1135.627095][ T2853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1135.637169][ T2853] Call Trace: [ 1135.640463][ T2853] dump_stack_lvl+0xcd/0x134 [ 1135.645072][ T2853] sysfs_warn_dup.cold+0x1c/0x29 [ 1135.650026][ T2853] sysfs_do_create_link_sd+0x11e/0x140 [ 1135.655519][ T2853] sysfs_create_link+0x5f/0xc0 [ 1135.660306][ T2853] device_add+0x78f/0x21b0 [ 1135.664748][ T2853] ? check_kcov_mode+0x2c/0x40 [ 1135.669535][ T2853] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1135.675799][ T2853] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1135.682071][ T2853] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1135.688334][ T2853] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1135.694346][ T2853] wiphy_register+0x1e8a/0x29b0 [ 1135.699230][ T2853] ? wiphy_unregister+0xbe0/0xbe0 [ 1135.704268][ T2853] ? minstrel_ht_alloc+0x531/0xa00 [ 1135.709406][ T2853] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1135.715500][ T2853] ieee80211_register_hw+0x1f18/0x3ed0 [ 1135.720993][ T2853] ? ieee80211_restart_hw+0x290/0x290 [ 1135.726393][ T2853] ? debug_object_destroy+0x210/0x210 [ 1135.731790][ T2853] ? memset+0x20/0x40 [ 1135.735794][ T2853] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1135.742054][ T2853] ? __hrtimer_init+0x136/0x280 [ 1135.746927][ T2853] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1135.752685][ T2853] ? hwsim_virtio_rx_work+0x350/0x350 [ 1135.758278][ T2853] ? __kmalloc_track_caller+0x193/0x310 [ 1135.763853][ T2853] ? memcpy+0x39/0x60 [ 1135.767856][ T2853] hwsim_new_radio_nl+0x9bc/0x1080 [ 1135.772988][ T2853] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1135.778912][ T2853] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1135.786227][ T2853] genl_family_rcv_msg_doit+0x228/0x320 [ 1135.791801][ T2853] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1135.799199][ T2853] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1135.805471][ T2853] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1135.811730][ T2853] ? ns_capable+0xd9/0x100 [ 1135.816169][ T2853] genl_rcv_msg+0x328/0x580 [ 1135.820701][ T2853] ? genl_get_cmd+0x480/0x480 [ 1135.825398][ T2853] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1135.831317][ T2853] ? lock_release+0x720/0x720 [ 1135.836019][ T2853] netlink_rcv_skb+0x153/0x420 [ 1135.840982][ T2853] ? genl_get_cmd+0x480/0x480 [ 1135.845678][ T2853] ? netlink_ack+0xa60/0xa60 [ 1135.850291][ T2853] ? netlink_deliver_tap+0x1b1/0xc30 [ 1135.855600][ T2853] genl_rcv+0x24/0x40 [ 1135.859602][ T2853] netlink_unicast+0x533/0x7d0 [ 1135.864390][ T2853] ? netlink_attachskb+0x890/0x890 [ 1135.869517][ T2853] ? __virt_addr_valid+0x5d/0x2d0 [ 1135.874564][ T2853] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1135.880827][ T2853] ? __phys_addr_symbol+0x2c/0x70 [ 1135.885309][ T8198] usb 6-1: new high-speed USB device number 18 using dummy_hcd [ 1135.885874][ T2853] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1135.899112][ T2853] ? __check_object_size+0x16e/0x3f0 [ 1135.904419][ T2853] netlink_sendmsg+0x86d/0xdb0 [ 1135.909199][ T2853] ? netlink_unicast+0x7d0/0x7d0 [ 1135.914149][ T2853] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1135.920408][ T2853] ? netlink_unicast+0x7d0/0x7d0 [ 1135.925353][ T2853] sock_sendmsg+0xcf/0x120 [ 1135.929778][ T2853] ____sys_sendmsg+0x6e8/0x810 [ 1135.934557][ T2853] ? kernel_sendmsg+0x50/0x50 [ 1135.939247][ T2853] ? do_recvmmsg+0x6d0/0x6d0 [ 1135.943847][ T2853] ? irqentry_enter+0x28/0x50 [ 1135.948533][ T2853] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1135.954696][ T2853] ? lockdep_hardirqs_on+0x79/0x100 [ 1135.959902][ T2853] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1135.966071][ T2853] ___sys_sendmsg+0xf3/0x170 [ 1135.970671][ T2853] ? sendmsg_copy_msghdr+0x160/0x160 [ 1135.975967][ T2853] ? __fget_files+0x21b/0x3e0 [ 1135.980648][ T2853] ? lock_downgrade+0x6e0/0x6e0 [ 1135.985510][ T2853] ? lockdep_hardirqs_off+0x90/0xd0 [ 1135.990730][ T2853] ? __fget_files+0x23d/0x3e0 [ 1135.995418][ T2853] ? __fget_light+0xea/0x280 [ 1136.000012][ T2853] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1136.006265][ T2853] __sys_sendmsg+0xe5/0x1b0 [ 1136.010780][ T2853] ? __sys_sendmsg_sock+0x30/0x30 [ 1136.015826][ T2853] ? syscall_enter_from_user_mode+0x21/0x70 [ 1136.021734][ T2853] do_syscall_64+0x35/0xb0 [ 1136.026335][ T2853] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1136.032237][ T2853] RIP: 0033:0x7f4637cff8d9 [ 1136.036652][ T2853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1136.056261][ T2853] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1136.064678][ T2853] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1136.072646][ T2853] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1136.080616][ T2853] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1136.088586][ T2853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1136.096555][ T2853] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1136.127591][ T1050] gspca_nw80x: reg_r err -110 [ 1136.132501][ T1050] nw80x: probe of 4-1:0.0 failed with error -110 10:57:06 executing program 0: r0 = syz_io_uring_setup(0x4a5a, &(0x7f0000000340)={0x0, 0x2079, 0x0, 0xfffffffc}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f0000000300)=0x0, &(0x7f0000000140)=0x0) r3 = syz_io_uring_setup(0x5ad3, &(0x7f0000000180)={0x0, 0x320e, 0x20, 0x0, 0x1e5, 0x0, r0}, &(0x7f0000003000/0x2000)=nil, &(0x7f0000002000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000200)) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x2, 0x4007, @fd=r0, 0x3, 0x0, 0x0, 0x4, 0x1, {0x2, r5}}, 0x40b) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r2, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x2, 0x0, @fd_index=0x5, 0x0, 0x0, 0x2, 0x1, 0x1, {0x0, r6}}, 0x80000001) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd=r7, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x6) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r7, 0x0}, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "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", "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"}) connect$bt_l2cap(r7, &(0x7f0000000040)={0x1f, 0x8, @any, 0x8, 0x2}, 0xe) syz_io_uring_setup(0x743c, &(0x7f0000000400)={0x0, 0x7879, 0x20, 0x2, 0x47}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000003000/0x1000)=nil, &(0x7f0000000480), &(0x7f00000004c0)=0x0) r9 = socket$alg(0x26, 0x5, 0x0) accept$alg(r9, 0x0, 0x0) r10 = socket$inet_smc(0x2b, 0x1, 0x0) fcntl$F_SET_RW_HINT(r10, 0x40c, &(0x7f00000002c0)=0x5) syz_io_uring_submit(r4, r8, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x5, 0x0, r7, 0x80, &(0x7f0000000500)=@pppol2tpv3in6={0x18, 0x1, {0x0, r9, 0x2, 0x3, 0x2, 0x3, {0xa, 0x4e23, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, 0x0, 0x0, 0x0, {0x0, r6}}, 0x4) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) socket$alg(0x26, 0x5, 0x0) [ 1136.192260][ T2858] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1136.241430][ T2858] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1136.256281][ T8198] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1136.286975][ T8198] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0x1 has invalid maxpacket 0 [ 1136.303975][ T2858] CPU: 0 PID: 2858 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1136.312755][ T2858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1136.322809][ T2858] Call Trace: [ 1136.326084][ T2858] dump_stack_lvl+0xcd/0x134 [ 1136.330683][ T2858] sysfs_warn_dup.cold+0x1c/0x29 [ 1136.333231][ T8198] usb 6-1: config 1 interface 0 has no altsetting 0 [ 1136.335623][ T2858] sysfs_do_create_link_sd+0x11e/0x140 [ 1136.335658][ T2858] sysfs_create_link+0x5f/0xc0 [ 1136.335686][ T2858] device_add+0x78f/0x21b0 [ 1136.335709][ T2858] ? wait_for_completion_io+0x280/0x280 [ 1136.335732][ T2858] ? lock_downgrade+0x6e0/0x6e0 [ 1136.335754][ T2858] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1136.373478][ T2858] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1136.379738][ T2858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1136.385987][ T2858] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1136.391983][ T2858] wiphy_register+0x1e8a/0x29b0 [ 1136.396852][ T2858] ? wiphy_unregister+0xbe0/0xbe0 [ 1136.401879][ T2858] ? minstrel_ht_alloc+0x531/0xa00 [ 1136.407008][ T2858] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1136.413092][ T2858] ieee80211_register_hw+0x1f18/0x3ed0 [ 1136.418577][ T2858] ? ieee80211_restart_hw+0x290/0x290 [ 1136.423965][ T2858] ? debug_object_destroy+0x210/0x210 [ 1136.429352][ T2858] ? memset+0x20/0x40 [ 1136.433342][ T2858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1136.439593][ T2858] ? __hrtimer_init+0x136/0x280 [ 1136.444454][ T2858] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1136.450204][ T2858] ? hwsim_virtio_rx_work+0x350/0x350 [ 1136.455584][ T2858] ? __kmalloc_track_caller+0x193/0x310 [ 1136.461142][ T2858] ? memcpy+0x39/0x60 [ 1136.465137][ T2858] hwsim_new_radio_nl+0x9bc/0x1080 [ 1136.470264][ T2858] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1136.476176][ T2858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 10:57:07 executing program 0: r0 = syz_io_uring_setup(0x4a5a, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "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", "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"}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) io_uring_enter(r0, 0x2ff, 0x0, 0x0, 0x0, 0x0) r4 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, 0x6, &(0x7f00000006c0)=[{&(0x7f0000010000)="20000000000100000c000000bf0000000f00000001000000000000000000000000200000002000002000000029c4645f29c4645f0100ffff53ef01000100000029c4645f000000000000000001000000000000000b0000000004", 0x5a, 0x400}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010d00)="ed4100000004000029c4645f29c4645f29c4645f000000000000040002000000000000000500000025", 0x29, 0x1800}, {&(0x7f0000011100)="ed4100000004000029c4645f29c4645f29c4645f0000000000000200020000000000000003000000", 0x28, 0x4000}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c6530", 0x39, 0x9400}, {0x0, 0x0, 0x3fbfd}], 0x0, &(0x7f0000000180)=ANY=[]) unlinkat(r4, &(0x7f0000000100)='./file0\x00', 0x200) r5 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, 0x6, &(0x7f00000006c0)=[{&(0x7f0000010000)="20000000000100000c000000bf0000000f00000001000000000000000000000000200000002000002000000029c4645f29c4645f0100ffff53ef01000100000029c4645f000000000000000001000000000000000b0000000004", 0x5a, 0x400}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010d00)="ed4100000004000029c4645f29c4645f29c4645f000000000000040002000000000000000500000025", 0x29, 0x1800}, {&(0x7f0000011100)="ed4100000004000029c4645f29c4645f29c4645f0000000000000200020000000000000003000000", 0x28, 0x4000}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c6530", 0x39, 0x9400}, {0x0, 0x0, 0x3fbfd}], 0x0, &(0x7f0000000180)=ANY=[]) unlinkat(r5, &(0x7f0000000100)='./file0\x00', 0x200) dup3(r4, r5, 0x0) socket$alg(0x26, 0x5, 0x0) [ 1136.482433][ T2858] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1136.489816][ T2858] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1136.497124][ T2858] genl_family_rcv_msg_doit+0x228/0x320 [ 1136.502686][ T2858] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1136.505805][ T8198] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1136.510064][ T2858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1136.510106][ T2858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1136.510131][ T2858] ? ns_capable+0xd9/0x100 [ 1136.535959][ T2858] genl_rcv_msg+0x328/0x580 [ 1136.540474][ T2858] ? genl_get_cmd+0x480/0x480 [ 1136.545158][ T2858] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1136.546195][ T8198] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1136.551070][ T2858] ? lock_release+0x720/0x720 [ 1136.551099][ T2858] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1136.551130][ T2858] netlink_rcv_skb+0x153/0x420 [ 1136.573843][ T2858] ? genl_get_cmd+0x480/0x480 [ 1136.578531][ T2858] ? netlink_ack+0xa60/0xa60 [ 1136.583132][ T2858] ? netlink_deliver_tap+0x1b1/0xc30 [ 1136.588428][ T2858] genl_rcv+0x24/0x40 [ 1136.592412][ T2858] netlink_unicast+0x533/0x7d0 [ 1136.597187][ T2858] ? netlink_attachskb+0x890/0x890 [ 1136.602307][ T2858] ? __virt_addr_valid+0x5d/0x2d0 [ 1136.607341][ T2858] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1136.613591][ T2858] ? __phys_addr_symbol+0x2c/0x70 [ 1136.615145][ T8198] usb 6-1: Product: syz [ 1136.618616][ T2858] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1136.618642][ T2858] ? __check_object_size+0x16e/0x3f0 [ 1136.618672][ T2858] netlink_sendmsg+0x86d/0xdb0 [ 1136.618700][ T2858] ? netlink_unicast+0x7d0/0x7d0 [ 1136.618729][ T2858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1136.649699][ T2858] ? netlink_unicast+0x7d0/0x7d0 [ 1136.654648][ T2858] sock_sendmsg+0xcf/0x120 [ 1136.659073][ T2858] ____sys_sendmsg+0x6e8/0x810 [ 1136.663851][ T2858] ? kernel_sendmsg+0x50/0x50 [ 1136.668535][ T2858] ? do_recvmmsg+0x6d0/0x6d0 [ 1136.673137][ T2858] ? lock_chain_count+0x20/0x20 [ 1136.674109][ T8198] usb 6-1: Manufacturer: Ñ— [ 1136.677996][ T2858] ? lockdep_hardirqs_on_prepare+0x400/0x400 10:57:07 executing program 5: socketpair(0x2c, 0x3, 0x0, &(0x7f00000000c0)) [ 1136.678032][ T2858] ___sys_sendmsg+0xf3/0x170 [ 1136.678060][ T2858] ? sendmsg_copy_msghdr+0x160/0x160 [ 1136.678089][ T2858] ? __fget_files+0x21b/0x3e0 [ 1136.678110][ T2858] ? lock_downgrade+0x6e0/0x6e0 [ 1136.678143][ T2858] ? __fget_files+0x23d/0x3e0 [ 1136.699353][ T2947] loop0: detected capacity change from 0 to 1019 [ 1136.703053][ T2858] ? __fget_light+0xea/0x280 [ 1136.703081][ T2858] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1136.703112][ T2858] __sys_sendmsg+0xe5/0x1b0 [ 1136.703135][ T2858] ? __sys_sendmsg_sock+0x30/0x30 [ 1136.703165][ T2858] ? syscall_enter_from_user_mode+0x21/0x70 [ 1136.703203][ T2858] do_syscall_64+0x35/0xb0 [ 1136.703230][ T2858] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1136.703256][ T2858] RIP: 0033:0x7f3e684f88d9 [ 1136.703276][ T2858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1136.703299][ T2858] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1136.703323][ T2858] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1136.703339][ T2858] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1136.703353][ T2858] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1136.703367][ T2858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1136.703382][ T2858] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1136.735162][ T8198] usb 6-1: SerialNumber: syz 10:57:07 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, 0x0, 0x0, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1136.989782][ T2947] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1137.037279][ T8198] usb 6-1: can't set config #1, error -71 [ 1137.048199][ T8198] usb 6-1: USB disconnect, device number 18 10:57:07 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0035013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:07 executing program 4: openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) 10:57:07 executing program 5: r0 = socket$can_raw(0x1d, 0x3, 0x1) getsockopt$CAN_RAW_LOOPBACK(r0, 0x65, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4) 10:57:07 executing program 0: r0 = syz_io_uring_setup(0x4a5a, &(0x7f0000000240)={0x0, 0x0, 0x4}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "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", "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"}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) io_uring_enter(r0, 0x2ff, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) 10:57:07 executing program 4: r0 = socket$inet_udplite(0xa, 0x2, 0x88) syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), r0) 10:57:07 executing program 3: rt_sigtimedwait(&(0x7f00000003c0), 0x0, &(0x7f0000000480), 0x8) [ 1137.174433][ T2971] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1137.188250][ T8526] usb 4-1: USB disconnect, device number 30 [ 1137.243907][ T2971] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1137.277647][ T2971] CPU: 1 PID: 2971 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1137.286542][ T2971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1137.296595][ T2971] Call Trace: [ 1137.299872][ T2971] dump_stack_lvl+0xcd/0x134 [ 1137.304471][ T2971] sysfs_warn_dup.cold+0x1c/0x29 [ 1137.309416][ T2971] sysfs_do_create_link_sd+0x11e/0x140 [ 1137.314888][ T2971] sysfs_create_link+0x5f/0xc0 [ 1137.319663][ T2971] device_add+0x78f/0x21b0 [ 1137.324095][ T2971] ? wait_for_completion_io+0x280/0x280 [ 1137.329644][ T2971] ? lock_downgrade+0x6e0/0x6e0 [ 1137.334501][ T2971] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1137.340746][ T2971] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1137.346996][ T2971] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1137.353244][ T2971] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1137.359412][ T2971] wiphy_register+0x1e8a/0x29b0 [ 1137.364275][ T2971] ? wiphy_unregister+0xbe0/0xbe0 [ 1137.369475][ T2971] ? minstrel_ht_alloc+0x531/0xa00 [ 1137.374606][ T2971] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1137.380688][ T2971] ieee80211_register_hw+0x1f18/0x3ed0 [ 1137.386172][ T2971] ? ieee80211_restart_hw+0x290/0x290 [ 1137.391554][ T2971] ? debug_object_destroy+0x210/0x210 [ 1137.396943][ T2971] ? memset+0x20/0x40 [ 1137.400934][ T2971] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1137.407183][ T2971] ? __hrtimer_init+0x136/0x280 [ 1137.412041][ T2971] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1137.417784][ T2971] ? hwsim_virtio_rx_work+0x350/0x350 [ 1137.423161][ T2971] ? __kmalloc_track_caller+0x193/0x310 [ 1137.428726][ T2971] ? memcpy+0x39/0x60 [ 1137.432721][ T2971] hwsim_new_radio_nl+0x9bc/0x1080 [ 1137.437840][ T2971] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1137.443751][ T2971] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1137.449995][ T2971] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1137.457373][ T2971] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1137.464667][ T2971] genl_family_rcv_msg_doit+0x228/0x320 [ 1137.470233][ T2971] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1137.477610][ T2971] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1137.483868][ T2971] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1137.490115][ T2971] ? ns_capable+0xd9/0x100 [ 1137.494540][ T2971] genl_rcv_msg+0x328/0x580 [ 1137.499051][ T2971] ? genl_get_cmd+0x480/0x480 [ 1137.503736][ T2971] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1137.509643][ T2971] ? lock_release+0x720/0x720 [ 1137.514324][ T2971] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1137.519621][ T2971] netlink_rcv_skb+0x153/0x420 [ 1137.524391][ T2971] ? genl_get_cmd+0x480/0x480 [ 1137.529074][ T2971] ? netlink_ack+0xa60/0xa60 [ 1137.533673][ T2971] ? netlink_deliver_tap+0x1b1/0xc30 [ 1137.538973][ T2971] genl_rcv+0x24/0x40 [ 1137.542957][ T2971] netlink_unicast+0x533/0x7d0 [ 1137.547737][ T2971] ? netlink_attachskb+0x890/0x890 [ 1137.552851][ T2971] ? __virt_addr_valid+0x5d/0x2d0 [ 1137.557880][ T2971] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1137.564124][ T2971] ? __phys_addr_symbol+0x2c/0x70 [ 1137.569152][ T2971] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1137.574878][ T2971] ? __check_object_size+0x16e/0x3f0 [ 1137.580174][ T2971] netlink_sendmsg+0x86d/0xdb0 [ 1137.584945][ T2971] ? netlink_unicast+0x7d0/0x7d0 [ 1137.589890][ T2971] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1137.596139][ T2971] ? netlink_unicast+0x7d0/0x7d0 [ 1137.601080][ T2971] sock_sendmsg+0xcf/0x120 [ 1137.605501][ T2971] ____sys_sendmsg+0x6e8/0x810 [ 1137.610271][ T2971] ? kernel_sendmsg+0x50/0x50 [ 1137.614951][ T2971] ? do_recvmmsg+0x6d0/0x6d0 [ 1137.619552][ T2971] ? lock_chain_count+0x20/0x20 [ 1137.624408][ T2971] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1137.630401][ T2971] ___sys_sendmsg+0xf3/0x170 [ 1137.635000][ T2971] ? sendmsg_copy_msghdr+0x160/0x160 [ 1137.640296][ T2971] ? __fget_files+0x21b/0x3e0 [ 1137.644977][ T2971] ? lock_downgrade+0x6e0/0x6e0 [ 1137.649933][ T2971] ? __fget_files+0x23d/0x3e0 [ 1137.654620][ T2971] ? __fget_light+0xea/0x280 [ 1137.659210][ T2971] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1137.665462][ T2971] __sys_sendmsg+0xe5/0x1b0 [ 1137.669974][ T2971] ? __sys_sendmsg_sock+0x30/0x30 [ 1137.675018][ T2971] ? syscall_enter_from_user_mode+0x21/0x70 [ 1137.680923][ T2971] do_syscall_64+0x35/0xb0 [ 1137.685345][ T2971] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1137.691245][ T2971] RIP: 0033:0x7f3e684f88d9 [ 1137.695662][ T2971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1137.715275][ T2971] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1137.723687][ T2971] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1137.731666][ T2971] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 10:57:07 executing program 3: rt_sigsuspend(&(0x7f0000000480)={[0x8001]}, 0x8) [ 1137.739640][ T2971] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1137.747610][ T2971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1137.755579][ T2971] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:08 executing program 5: socketpair(0x22, 0x0, 0x8, &(0x7f00000003c0)) 10:57:08 executing program 4: syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1}}]}}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x43, 0x0}, {0x4, &(0x7f0000000380)=@lang_id={0x4}}]}) 10:57:08 executing program 0: r0 = syz_io_uring_setup(0x4a5a, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x3, 0x2}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r4 = syz_io_uring_setup(0x0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x3, 0x283}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff1000/0x1000)=nil, &(0x7f00000001c0), &(0x7f00000003c0)) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x10, r4, 0x8000000) syz_io_uring_setup(0x187, &(0x7f00000002c0)={0x0, 0xa271, 0x8}, &(0x7f0000ee9000/0x1000)=nil, &(0x7f0000ff8000/0x3000)=nil, 0x0, &(0x7f0000000100)=0x0) r7 = syz_mount_image$romfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000010000)="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", 0x400}], 0x0, &(0x7f0000000900)=ANY=[]) r8 = openat(r7, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x24) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000080)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x3, 0x0, r8, 0x0, 0x0, 0x0, 0x2043, 0x1, {0x3, r9}}, 0x1) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x3, 0x0, @fd_index=0x8, 0xdd, 0x0, 0x10000000, 0x5, 0x0, {0x0, r9}}, 0xffffffff) r10 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r10, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030036000503d25a80648c63940d0624fc600800034014000200053582c137153e37000a018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "174660b85e4fa0bea0c420ef601ba551eeb69d8b76d0b8e766aa35b15993df63021ba7e761b6e5af72b20825ec41ecc54a52b457dc67095c4521609b243c687053f57eb6763fccbf660796cd49ed9ce7b2631a8c550b509f262b109acc2cfd47269a655e8ebfccd1265eadaa69f9436ca3b580b5eda2260500b3111979a6bfce3e1dd4747addf70790a299fdbd56b428ff021216ec0d4243ccdef0fdf9fbcbcbf7cfc8710847ed7b5d392eddd46e6c88429938df929767570b3816a84058329608cebbb7640575df481dc1b91b2b475297eacc8ac9a59745dbf0ed8e33e52801bb8a811a88f73aed3a979df0fba612452e0586120ddc2a502c4dcfa88730f326", "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"}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) io_uring_enter(r0, 0x2ff, 0x0, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000400)=[{r7, 0x100}, {r8, 0x4}], 0x2, &(0x7f0000000440)={0x0, 0x3938700}, &(0x7f0000000480)={[0x8]}, 0x8) ioctl$BTRFS_IOC_WAIT_SYNC(r3, 0x40089416, 0x0) socket$alg(0x26, 0x5, 0x0) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f00000005c0)="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", 0x1000) preadv(r0, &(0x7f0000000340)=[{&(0x7f0000000040)=""/97, 0x61}, {&(0x7f0000000100)}, {&(0x7f0000000180)=""/28, 0x1c}, {&(0x7f00000001c0)=""/94, 0x5e}, {&(0x7f00000002c0)=""/42, 0x2a}, {&(0x7f0000000300)=""/4, 0x4}], 0x6, 0x3f, 0x71) 10:57:08 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[], 0x64}}, 0x0) [ 1138.035460][ T2979] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1138.083440][ T2979] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1138.111097][ T2979] CPU: 0 PID: 2979 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1138.117178][ T3023] loop0: detected capacity change from 0 to 2 [ 1138.119983][ T2979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1138.136060][ T2979] Call Trace: [ 1138.139335][ T2979] dump_stack_lvl+0xcd/0x134 [ 1138.143928][ T2979] sysfs_warn_dup.cold+0x1c/0x29 [ 1138.148867][ T2979] sysfs_do_create_link_sd+0x11e/0x140 [ 1138.154337][ T2979] sysfs_create_link+0x5f/0xc0 [ 1138.159109][ T2979] device_add+0x78f/0x21b0 [ 1138.163533][ T2979] ? wait_for_completion_io+0x280/0x280 [ 1138.169081][ T2979] ? lock_downgrade+0x6e0/0x6e0 [ 1138.173937][ T2979] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1138.178870][ T3023] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 1138.180180][ T2979] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1138.193673][ T2979] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1138.199947][ T2979] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1138.205962][ T2979] wiphy_register+0x1e8a/0x29b0 [ 1138.210850][ T2979] ? wiphy_unregister+0xbe0/0xbe0 [ 1138.215891][ T2979] ? minstrel_ht_alloc+0x531/0xa00 [ 1138.221033][ T2979] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1138.227134][ T2979] ieee80211_register_hw+0x1f18/0x3ed0 [ 1138.232904][ T2979] ? ieee80211_restart_hw+0x290/0x290 [ 1138.238302][ T2979] ? debug_object_destroy+0x210/0x210 [ 1138.243699][ T2979] ? memset+0x20/0x40 [ 1138.247690][ T2979] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1138.253945][ T2979] ? __hrtimer_init+0x136/0x280 [ 1138.258820][ T2979] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1138.264576][ T2979] ? hwsim_virtio_rx_work+0x350/0x350 [ 1138.269967][ T2979] ? __kmalloc_track_caller+0x193/0x310 [ 1138.275543][ T2979] ? memcpy+0x39/0x60 [ 1138.279550][ T2979] hwsim_new_radio_nl+0x9bc/0x1080 [ 1138.284681][ T2979] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1138.290598][ T2979] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1138.296866][ T2979] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1138.304258][ T2979] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1138.311565][ T2979] genl_family_rcv_msg_doit+0x228/0x320 [ 1138.317140][ T2979] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1138.324542][ T2979] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1138.329050][ T3023] romfs: Mounting image 'rom 5f663c08' through the block layer [ 1138.330815][ T2979] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1138.344569][ T2979] ? ns_capable+0xd9/0x100 [ 1138.349013][ T2979] genl_rcv_msg+0x328/0x580 [ 1138.353539][ T2979] ? genl_get_cmd+0x480/0x480 [ 1138.358235][ T2979] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1138.364152][ T2979] ? lock_release+0x720/0x720 [ 1138.368851][ T2979] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1138.374190][ T2979] netlink_rcv_skb+0x153/0x420 [ 1138.378975][ T2979] ? genl_get_cmd+0x480/0x480 [ 1138.383670][ T2979] ? netlink_ack+0xa60/0xa60 [ 1138.388283][ T2979] ? netlink_deliver_tap+0x1b1/0xc30 [ 1138.393586][ T2979] genl_rcv+0x24/0x40 [ 1138.397574][ T2979] netlink_unicast+0x533/0x7d0 [ 1138.402359][ T2979] ? netlink_attachskb+0x890/0x890 [ 1138.407481][ T2979] ? __virt_addr_valid+0x5d/0x2d0 [ 1138.412526][ T2979] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1138.418790][ T2979] ? __phys_addr_symbol+0x2c/0x70 [ 1138.423832][ T2979] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1138.429578][ T2979] ? __check_object_size+0x16e/0x3f0 [ 1138.434889][ T2979] netlink_sendmsg+0x86d/0xdb0 [ 1138.439675][ T2979] ? netlink_unicast+0x7d0/0x7d0 [ 1138.444634][ T2979] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1138.450903][ T2979] ? netlink_unicast+0x7d0/0x7d0 [ 1138.455861][ T2979] sock_sendmsg+0xcf/0x120 [ 1138.460300][ T2979] ____sys_sendmsg+0x6e8/0x810 [ 1138.465084][ T2979] ? kernel_sendmsg+0x50/0x50 [ 1138.469776][ T2979] ? do_recvmmsg+0x6d0/0x6d0 [ 1138.474388][ T2979] ? lock_chain_count+0x20/0x20 [ 1138.479258][ T2979] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1138.485271][ T2979] ___sys_sendmsg+0xf3/0x170 [ 1138.489888][ T2979] ? sendmsg_copy_msghdr+0x160/0x160 [ 1138.495207][ T2979] ? __fget_files+0x21b/0x3e0 [ 1138.499899][ T2979] ? lock_downgrade+0x6e0/0x6e0 [ 1138.504785][ T2979] ? __fget_files+0x23d/0x3e0 [ 1138.509486][ T2979] ? __fget_light+0xea/0x280 [ 1138.514091][ T2979] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1138.520355][ T2979] __sys_sendmsg+0xe5/0x1b0 [ 1138.524881][ T2979] ? __sys_sendmsg_sock+0x30/0x30 [ 1138.529941][ T2979] ? syscall_enter_from_user_mode+0x21/0x70 [ 1138.535863][ T2979] do_syscall_64+0x35/0xb0 [ 1138.540302][ T2979] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1138.546227][ T2979] RIP: 0033:0x7f3e684f88d9 [ 1138.550655][ T2979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1138.570280][ T2979] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:57:09 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, 0x0, 0x0, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:57:09 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f003f013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) [ 1138.578710][ T2979] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1138.586696][ T2979] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1138.594680][ T2979] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1138.602661][ T2979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1138.610646][ T2979] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:57:09 executing program 5: syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000400)={{0x12, 0x1, 0x50, 0x0, 0x0, 0x0, 0x40, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x9, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x7, 0x1, 0x1, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x0, 0x7, 0xff, 0x4}}}}}]}}]}}, &(0x7f00000003c0)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x310, 0x1f, 0x0, 0x23}, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) 10:57:09 executing program 3: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000540)={0x12, 0x10, 0xfa00, {0x0}}, 0x18) 10:57:09 executing program 0: r0 = syz_io_uring_setup(0x4a5a, &(0x7f0000000240)={0x0, 0x9c83, 0x4}, &(0x7f0000ff9000/0x7000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000040)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) accept$alg(r4, 0x0, 0x0) r5 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, 0x6, &(0x7f00000006c0)=[{&(0x7f0000010000)="20000000000100000c000000bf0000000f00000001000000000000000000000000200000002000002000000029c4645f29c4645f0100ffff53ef01000100000029c4645f000000000000000001000000000000000b0000000004", 0x5a, 0x400}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010d00)="ed4100000004000029c4645f29c4645f29c4645f000000000000040002000000000000000500000025", 0x29, 0x1800}, {&(0x7f0000011100)="ed4100000004000029c4645f29c4645f29c4645f0000000000000200020000000000000003000000", 0x28, 0x4000}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c6530", 0x39, 0x9400}, {0x0, 0x0, 0x3fbfd}], 0x0, &(0x7f0000000180)=ANY=[]) unlinkat(r5, &(0x7f0000000100)='./file0\x00', 0x200) dup3(r4, r5, 0x80000) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "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", "21fb8ae51e9c8da6dfae6897e9e83cc4fe344ff6627b9132da3b0380b8c56c385fa5644b73a9f32f8387c53e5f638e0023a1db524d5025c724f59e20b5776b39bc4e833b0feb767b3a33de717808e4a38ec02ec4ce07cbe1bf238ab6b613f04c6b411dafb549d89239669a4544862b24426c0911d519491cd0cacc09c518756610fba9a2f7884e1e5c66aa4792bdf00d4a20c5e991c32e6499bc499c7c41adba3246209db7fd6ec59d16c9ba81881315a229bccb472f24d76de7a80d6287808474cca776690c1138c798f2e8df0ae6af4b127aec3d9f145cd1136f00600505f6f4f2f27c2fcfb548ff9e02ba9f13ca0e31a2242b1069622799e3442959c12821af9fb0283c217c41e228dc2bc1c5dcd8007678e9cb1a9d14937de4b4eab9226377ffdade29af598bdd59599a45a46590a2adc164f1ca7336a8f70e12932e4a18c3ca12923c4d6e183befc6b77ce0264a1e54959c8bfbbabc3b488f6e89bf699c01dd60ed649328bb42dbc9dca56cb17bc23cf904155f7f8aebcd46fd485f2e1386f852b88488216f0811b6925418cdcc42780406e719e8e94399ce1b9b883ba68389ed844f9959fcad8659304fe05c3a103d96c0c3e30d0991c91310e11ced71a461f68df1a6dccf41662b15b11807367116f3ad771c1e2bb26d57c127fdde5a292909817ddf38111927c7970062181be3013436490ec0b241fa69ceb26edc3c167990a0884a9740fc074fcc6bf2fa07b446060734743725813b5a72338f81943d06ec5831e9db572fbfc4374bd585ac2c1c9720b9199de7bec3815a55cf267f1999e7ae9e896763314f09544098b55c26a0f563bf891d169f6be2ed5a104b4845a839b33918a29a6aa4df7957c58367d151d3c369f5c502f6455b81a111a5112126886cae098f0311b10ba561d66051b4614aa009aa504565a7326c09bf52891bc6b414f25e94231d210b47237f2cca66b24ebb8c1b7a191f383d10443f2cc87b2dec4b099c7547702b0f57970c412fdead73cca63bc2ac990d6ff12e267e18311bb8ea35c53b7b915cb5ea7e170b297bee129b44ab44d1ce62c444d9ae1c4a62039fec33b7d35ec80bb5eb56c5847e65d344d7cfad210427a515b253eb766ed35bbd701346acfebd74233a7d193ecca6b7f229f74645ad6b9fc0253c51cb7a9f1f99c6f06f629c86c17e216d20dd57223ec4f81800b101467678631669ba64fbd6c832843bcb003e7c96a3b237e94cbfbe9105ced62d36174f58ca327929fa66ab2ffd72c281a35c50e0a02507a248bee38b7936214037fa20c49fd4abef241cc7f487ee77c28b352c5eae4c2f0a70deb0624010ad1ad06cad9094068c1c2da7c6a0b34fb4d7bdf4e814e27df5bbee04743202ab88276114b62958b7c51fc7283166f754c8abcabe509fc309fbf3c1913622a0041eaf7e1460785073babd8fb3687362359ea8f1572793132435e82c88f9c363d041c16528dc1b9608443728e05c61367eab7c626a53bac6ca5a22e885c708348c32725f6c14364a385c7468f6b0396f0930585fd53237c187546dae7bd455e2d4b021a497f090308f4a5cf4d1b3de4c42af40ad089643e45510706eab02ddfda6bc604d3b99eeca3233cb2752ac16c3eeaa2e5df5dc87a49fb7255617fdcce9170faa3f66deaa35704b86bbe1a59229039e85728704740538890715c4112ab3100c8d62f71819b9bf9878501818649b59b34785744b26e75989f3ed7f7b8909a814b6cd024f69b6f42207dd148ce0e10b3b8b3813205c8a2f1717d42873d16fa1a40e1072f0bca9835b850e87454b14fe9941cda01fa89cd09f8423410124ff7db0b7c8299538d75350fd635a7545cd00468831913734b3a2497415d65328077240581670da44e8ed497353043eb23efac8ad03bb22ffb5614385ef57084c7d1b4d0127c29a77116fa49fcfb21bc1899aa80feaaf4cdce7f514c8c2c8168aaef963b368521e4996cfcb7f44ca6873f14353ba1ec15fd46ce3710072de45d60d0a335899fdb601c3f56b32c575b0c4bc5879ab3101e4ff18564da3a9faa69daa2ab49fcce8ff678b6ef2ee03eb8c43afeedb0cccde8dbbcbf1a9e4370eaa1d337286e95ed5cd16586183845a99af79fccc2ab7131de3f08fbd966bc5c09f0617024c728558d7bf30361e3c339b1cfac0e6642f433dd19e09d88ecb63beea865bc11969ad7a30b3ae29eccd2ceae1b473b4546dabb13e77b5cd0e3f02d78d77f05527a79de8ba90eb78c2119c463c4b7cd01d0b16660f9e4ee3e00a048a26deb65caa46c1643473726f1fd23858ca6a811cc43f594f55ad9c4757d127c8757e91ca5b0d37c7cbe2e42b2c3ca81e294c095a76c61ebc0de413f1f2b4040cd39d0023b5b22733f8aa0cc858d9f62218b5df3d62932dcc34778918631aad99cb92986d7a1e432191148f62b342745cd9f3df596b62a8622be3bc9cdf619906c88aea6b4f284866cd58eefebdd037e3246d0bdda1e3df3b5c72b61087d99b576598900c76691df1c81960da44524c6a53c909b587befa89cddcf7ba3d340045c5cf0bcc74c6265b568a5da251dee47b2386df0f089edef9a0180d381dda4ca873eb5d886b2270fb1bf46bd8d4ec548fb86e832be160babd4445bf038f96390f18aced21df2e7d0623b922a968ee924ad53add4f9e77e7e10cd04311f34214397dcae831d38c69ee872d01ed44ba2c9c0d427fd7538d9f6ffb7e852e9f4213fc4631bf49b28c36f900f5d15d6445b843be1198c8d0b96e4932ad0c4f4d4830fe6e95d12d3f8a55c74345e62db832ccc95a542c417c65cd8ffd780aa32b750a8ae787ed420dd4b4c6acc2b3881b232b0179b9cd3e266deaa73a393c5fff2fae7db932783f363ae0953c206821424c4e4b1b22f10ab8a76b02f1e06fae7eee4cf207fdf4be5453a7f9f1584be9a8411f8d8974bee6d941a5b417227c068688ed8e9856f965f86774ab10f97990bd7773fb2170b7873f7e4053ecaab1024399acf396d071cf9e67b9927d757bdd40c331560ad8925151236b4ea52d92b075cbac7cd031fcf6b84cf11895bbf930de202cf5eef17e3d9f7f3ea7663cfa102c4792b914fe98a67ff07559ffe6f6483f3c895047c301dc54c9f346984ed9b16769d0de21746e420f921ea3bda41c2b2285a1fb69f0b2956c99d9aa75e08c3effdffb4148eb1f884fb42c9872e2a336e0d49334d7f0e263082c90c2abc0b4a63c202ffe9f79dd83f14da0e25147019439f551c7329970dbd36406150dc639cb3bf0e519deb4906c28fbc9fc16804222f1f34a25e5e7575f20fcb6d3ddadf42a4b4147e81774df0d0f21a7730c062139d7be6c12fca4349a48d8a3d11ec609006958ced994b27c2df15d6f096c4c85f6549004ffbda086f98d98f1866f742fb9124009f62515a50718787fc2d903cfe38f5a47d003af40049597469230a3f4160a2bc8a0e04b79ea600f7a599cd115cffc80d74b27972a790739aeba9fbeea86de794ca1fc34e5e10bd2cf17ffbaf841a0f9b3a518fec40cb9f6742b7300b6106e36bf1ec552218522d68760d876cdd1f92b7c0984c7c37215ee232717f8104378f3d0da65963a95f03f2691b77c1d19ecf563ee103741ad3d6097d3905d964fdc69f3c05c04c6af65282b4a5bf4f4f1fe08b9406e0af60cd1f68ac67421236e98fc7e32add2296533d5c362959136104e7643c0a2e5b3067bfac8e2ac48652068863b254574e46bd5296edff186e84b4db8a4eafb86bc34d55c5f60e9dcfb04e4a0820bfdb15eda4d3592e2dfba5ed8fa31ce936be3fb7e48bd2d96e5550a566b7de8e027fc14386c0943568baa33b18d7d26ea1098d2b968a16366044ed45869a8746d1b9967c9e0c0cc2b2f1b9c2a4a10cf567a8f86360477217444916b6e0d4d7683d615f57d58ab0e09e76c3195319a2bad0f4490c104607ded9dd386fa198be591071d6e42638a48230e0d4050800143189e67738e5ee385bedf912e8482bcd385637e7a50405c035478ad89b8d57e645db00e9a32483ed3a12be832f3d1f949012c8d9245c1fe8efca8185704422b3056238f363292c4976e234a3773307e75e33a7f69a4531cdd1a29aedd9e15ba4d6ebeb54fb7cfdc3e7ba62a51243c33d2829e8bf2e52f9e5876e12cffedf72fc668f255117ed703087090d4e5a91a421ae5074bf10b9ff030399c078fe114d78fe5845b975d110fda611d94aa9d0a5c57ba9c8cc5c416d8aacfb38a4428e86da8310da292f561d1473ba05fd4ae6b5406f56b20969eae833afa781474fac8551d7933171a8a149e3d3facdb833bc0fa3a0cf9892ef1d07fba1abfb2a2837af0d70d283296757c1144e7e1f9941ec9cca3404d83487e612efb8478d8d3cf7e3562ec83278b3447b58776552fbdf7ef949c2ab0d294bd08d09eab18f9ba2b1f4e02cec8efffa834e425a5f4b95cd0f8130696ec5d252672b8554feb40632368936c851b7b2da705ebef6d78c0fdba08097aaa728465b4dffa2699709a1c4f2cf573408d9598c4dbba65cd97059a97e97561733b1cba44539a669e02c6e434205d03bccbba516d0568d3dd820227f7674ffdd45a69c66c867fefcce705e0f756af47524059c09b20763994acaf8e28c96b79a6e36b7ddf2af4b426f6ff37cfe039e772d8679edf5bdb191f50826ae077b13544754750869457f5c8e9e08d10b9e7e44ba5cc42969233e6be68940b0c2bef5df2a690fb7735483d74027e24df2e99221ecfd3ba4cf582a34015e447e11cf4b9380178a5e3df55be6ee387c4ef911b42ac6e4093991e86be3b7e9ff3d3b705df0aeb373262337c0734b33509dcd23c2ca5fd60ec830af77635e01ac4e5e03c19cf0495cc6e030840681a0179d2386c672bb80db7aef3b39c5281a38eee4876f79fce20db5ac26ab60ee6ef09ddc31acb8403724f4c09eb0989e83a3a14b296413d3c355fa589e283fc8b60a13db2b4bebb8aaa219648c4fb95f738291d2a2831e6de333ef03a79ec1ac0ab9c85588fd46cfbf4ea54e3326544fadca95111fb1feebdca733ed08c15b626e0637fb80796baa00ca561966eb8125d937e976d11a181d76b90596f3d039a48acbcf47ad4216b9438855d497c84ddd3d72d8f33358e8e3e667169cf307c1b548ade0f36396dec501b03b9821c946b4a66c385e9cc283b369c316318d8a07eee21226ec48e12083c82acae747864e92e4853d3a8767c792945df4db1057cef0db3e9421b42289cf78fc913238b7f9697d8f86867d59617fd4dcac07e915eb54b3bcfad3c4b44c08fcec90f3ee80fabc742bf01f1c9b0b8e22998c1055e3af4ca4b5ea3a81f1c5cb969dc64907950fbbc891aa9472d5e3140ef5e01916f5e6b30138856129e69bf7b77f71aaa9f47841f5b4286fbb903"}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) io_uring_enter(r0, 0x2ff, 0x0, 0x0, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) [ 1138.764553][ T3047] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1138.795305][ T1050] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 1138.804227][ T3047] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1138.870783][ T3047] CPU: 1 PID: 3047 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1138.879597][ T3047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1138.889664][ T3047] Call Trace: [ 1138.892959][ T3047] dump_stack_lvl+0xcd/0x134 [ 1138.897570][ T3047] sysfs_warn_dup.cold+0x1c/0x29 [ 1138.902528][ T3047] sysfs_do_create_link_sd+0x11e/0x140 [ 1138.908014][ T3047] sysfs_create_link+0x5f/0xc0 [ 1138.910983][ T3063] loop0: detected capacity change from 0 to 1019 [ 1138.912797][ T3047] device_add+0x78f/0x21b0 [ 1138.912829][ T3047] ? wait_for_completion_io+0x280/0x280 [ 1138.929105][ T3047] ? lock_downgrade+0x6e0/0x6e0 [ 1138.933981][ T3047] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1138.940250][ T3047] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1138.946517][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1138.952789][ T3047] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1138.958806][ T3047] wiphy_register+0x1e8a/0x29b0 [ 1138.963685][ T3047] ? wiphy_unregister+0xbe0/0xbe0 [ 1138.968735][ T3047] ? minstrel_ht_alloc+0x531/0xa00 [ 1138.973881][ T3047] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1138.979983][ T3047] ieee80211_register_hw+0x1f18/0x3ed0 [ 1138.985482][ T3047] ? ieee80211_restart_hw+0x290/0x290 [ 1138.990881][ T3047] ? debug_object_destroy+0x210/0x210 [ 1138.996282][ T3047] ? memset+0x20/0x40 [ 1139.000277][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1139.006537][ T3047] ? __hrtimer_init+0x136/0x280 [ 1139.011415][ T3047] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1139.017175][ T3047] ? hwsim_virtio_rx_work+0x350/0x350 [ 1139.022567][ T3047] ? __kmalloc_track_caller+0x193/0x310 [ 1139.028142][ T3047] ? memcpy+0x39/0x60 [ 1139.032148][ T3047] hwsim_new_radio_nl+0x9bc/0x1080 [ 1139.037287][ T3047] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1139.043211][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1139.049474][ T3047] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1139.056871][ T3047] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1139.064187][ T3047] genl_family_rcv_msg_doit+0x228/0x320 [ 1139.069758][ T3047] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1139.077150][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1139.083424][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1139.089686][ T3047] ? ns_capable+0xd9/0x100 [ 1139.094135][ T3047] genl_rcv_msg+0x328/0x580 [ 1139.098659][ T3047] ? genl_get_cmd+0x480/0x480 [ 1139.103359][ T3047] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1139.109273][ T3047] ? lock_release+0x720/0x720 [ 1139.113964][ T3047] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1139.119271][ T3047] netlink_rcv_skb+0x153/0x420 [ 1139.124057][ T3047] ? genl_get_cmd+0x480/0x480 [ 1139.128754][ T3047] ? netlink_ack+0xa60/0xa60 [ 1139.133363][ T3047] ? netlink_deliver_tap+0x1b1/0xc30 [ 1139.138667][ T3047] genl_rcv+0x24/0x40 [ 1139.142670][ T3047] netlink_unicast+0x533/0x7d0 [ 1139.147461][ T3047] ? netlink_attachskb+0x890/0x890 [ 1139.152590][ T3047] ? __virt_addr_valid+0x5d/0x2d0 [ 1139.157639][ T3047] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1139.163912][ T3047] ? __phys_addr_symbol+0x2c/0x70 [ 1139.168961][ T3047] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1139.174709][ T3047] ? __check_object_size+0x16e/0x3f0 [ 1139.180024][ T3047] netlink_sendmsg+0x86d/0xdb0 [ 1139.184810][ T3047] ? netlink_unicast+0x7d0/0x7d0 [ 1139.189776][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1139.196048][ T3047] ? netlink_unicast+0x7d0/0x7d0 [ 1139.201003][ T3047] sock_sendmsg+0xcf/0x120 [ 1139.205440][ T3047] ____sys_sendmsg+0x6e8/0x810 [ 1139.210225][ T3047] ? kernel_sendmsg+0x50/0x50 [ 1139.214919][ T3047] ? do_recvmmsg+0x6d0/0x6d0 [ 1139.219532][ T3047] ? lock_chain_count+0x20/0x20 [ 1139.224403][ T3047] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1139.230415][ T3047] ___sys_sendmsg+0xf3/0x170 [ 1139.235034][ T3047] ? sendmsg_copy_msghdr+0x160/0x160 [ 1139.240347][ T3047] ? __fget_files+0x21b/0x3e0 [ 1139.245042][ T3047] ? lock_downgrade+0x6e0/0x6e0 [ 1139.249924][ T3047] ? __fget_files+0x23d/0x3e0 [ 1139.254629][ T3047] ? __fget_light+0xea/0x280 [ 1139.259242][ T3047] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1139.265511][ T3047] __sys_sendmsg+0xe5/0x1b0 [ 1139.270041][ T3047] ? __sys_sendmsg_sock+0x30/0x30 [ 1139.275105][ T3047] ? syscall_enter_from_user_mode+0x21/0x70 [ 1139.281377][ T3047] do_syscall_64+0x35/0xb0 [ 1139.285820][ T3047] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1139.291738][ T3047] RIP: 0033:0x7f3e684f88d9 [ 1139.296163][ T3047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1139.315875][ T3047] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1139.324303][ T3047] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1139.332374][ T3047] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1139.340361][ T3047] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1139.348525][ T3047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1139.356510][ T3047] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:09 executing program 3: socketpair(0xa, 0x0, 0xffffffc0, &(0x7f0000000000)) [ 1139.428567][ T3058] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1139.435276][ T8526] usb 6-1: new high-speed USB device number 19 using dummy_hcd 10:57:10 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1139.503104][ T3063] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1139.537765][ T3058] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1139.583325][ T3058] CPU: 1 PID: 3058 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1139.592131][ T3058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1139.602191][ T3058] Call Trace: [ 1139.605467][ T3058] dump_stack_lvl+0xcd/0x134 [ 1139.610055][ T3058] sysfs_warn_dup.cold+0x1c/0x29 [ 1139.614986][ T3058] sysfs_do_create_link_sd+0x11e/0x140 [ 1139.620447][ T3058] sysfs_create_link+0x5f/0xc0 [ 1139.625212][ T3058] device_add+0x78f/0x21b0 [ 1139.629629][ T3058] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1139.635863][ T3058] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1139.642099][ T3058] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1139.648338][ T3058] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1139.654327][ T3058] wiphy_register+0x1e8a/0x29b0 [ 1139.659183][ T3058] ? wiphy_unregister+0xbe0/0xbe0 [ 1139.664200][ T3058] ? minstrel_ht_alloc+0x531/0xa00 [ 1139.669311][ T3058] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1139.675385][ T3058] ieee80211_register_hw+0x1f18/0x3ed0 [ 1139.680857][ T3058] ? ieee80211_restart_hw+0x290/0x290 [ 1139.686221][ T3058] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1139.692384][ T3058] ? memset+0x20/0x40 [ 1139.696357][ T3058] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1139.702593][ T3058] ? __hrtimer_init+0x136/0x280 [ 1139.707436][ T3058] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1139.713169][ T3058] ? hwsim_virtio_rx_work+0x350/0x350 [ 1139.718530][ T3058] ? __kmalloc_track_caller+0x193/0x310 [ 1139.724074][ T3058] ? memcpy+0x39/0x60 [ 1139.728053][ T3058] hwsim_new_radio_nl+0x9bc/0x1080 [ 1139.733164][ T3058] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1139.739059][ T3058] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1139.745295][ T3058] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1139.752659][ T3058] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1139.759948][ T3058] genl_family_rcv_msg_doit+0x228/0x320 [ 1139.765489][ T3058] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1139.772860][ T3058] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1139.779111][ T3058] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1139.785351][ T3058] ? ns_capable+0xd9/0x100 [ 1139.789953][ T3058] genl_rcv_msg+0x328/0x580 [ 1139.794637][ T3058] ? genl_get_cmd+0x480/0x480 [ 1139.799331][ T3058] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1139.805236][ T3058] netlink_rcv_skb+0x153/0x420 [ 1139.810000][ T3058] ? genl_get_cmd+0x480/0x480 [ 1139.814672][ T3058] ? netlink_ack+0xa60/0xa60 [ 1139.819252][ T3058] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1139.825410][ T3058] ? down_read+0x19a/0x440 [ 1139.829817][ T3058] ? genl_get_cmd+0x480/0x480 [ 1139.834488][ T3058] genl_rcv+0x24/0x40 [ 1139.838463][ T3058] netlink_unicast+0x533/0x7d0 [ 1139.843225][ T3058] ? netlink_attachskb+0x890/0x890 [ 1139.848330][ T3058] ? _copy_from_iter+0x305/0x1320 [ 1139.853361][ T3058] netlink_sendmsg+0x86d/0xdb0 [ 1139.858124][ T3058] ? netlink_unicast+0x7d0/0x7d0 [ 1139.863060][ T3058] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1139.869294][ T3058] ? netlink_unicast+0x7d0/0x7d0 [ 1139.874224][ T3058] sock_sendmsg+0xcf/0x120 [ 1139.878636][ T3058] ____sys_sendmsg+0x6e8/0x810 [ 1139.883396][ T3058] ? kernel_sendmsg+0x50/0x50 [ 1139.888064][ T3058] ? do_recvmmsg+0x6d0/0x6d0 [ 1139.892651][ T3058] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1139.898622][ T3058] ? lock_chain_count+0x20/0x20 [ 1139.903469][ T3058] ___sys_sendmsg+0xf3/0x170 [ 1139.908053][ T3058] ? sendmsg_copy_msghdr+0x160/0x160 [ 1139.913335][ T3058] ? __fget_files+0x21b/0x3e0 [ 1139.918004][ T3058] ? lock_downgrade+0x6e0/0x6e0 [ 1139.922860][ T3058] ? __fget_files+0x23d/0x3e0 [ 1139.927533][ T3058] ? __fget_light+0xea/0x280 [ 1139.932115][ T3058] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1139.938355][ T3058] __sys_sendmsg+0xe5/0x1b0 [ 1139.942855][ T3058] ? __sys_sendmsg_sock+0x30/0x30 [ 1139.947882][ T3058] ? syscall_enter_from_user_mode+0x21/0x70 [ 1139.953773][ T3058] do_syscall_64+0x35/0xb0 [ 1139.958194][ T3058] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1139.964078][ T3058] RIP: 0033:0x7f4637cff8d9 [ 1139.968484][ T3058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1139.988085][ T3058] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1139.996495][ T3058] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1140.004459][ T3058] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1140.012420][ T3058] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1140.020384][ T3058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1140.028346][ T3058] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:57:10 executing program 0: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_COALESCE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x60, r0, 0x800, 0x70bd2d, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x8, 0x58}}}}, [@NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x8001}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0xfffffffa}}]}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x3}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0xa6}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x1004}, 0x40000) r2 = syz_io_uring_setup(0x4a5a, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r5, 0x0}, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "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", "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"}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) [ 1140.085715][ T1050] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 1140.131310][ T3089] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1140.186718][ T3089] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1140.225961][ T3047] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1140.260270][ T3089] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1140.283744][ T3047] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1140.288223][ T8526] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1140.325014][ T3047] CPU: 0 PID: 3047 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1140.333913][ T3047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1140.341023][ T8526] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 1140.343976][ T3047] Call Trace: [ 1140.343990][ T3047] dump_stack_lvl+0xcd/0x134 [ 1140.344018][ T3047] sysfs_warn_dup.cold+0x1c/0x29 [ 1140.366417][ T3047] sysfs_do_create_link_sd+0x11e/0x140 [ 1140.371911][ T3047] sysfs_create_link+0x5f/0xc0 [ 1140.376704][ T3047] device_add+0x78f/0x21b0 [ 1140.381131][ T3047] ? wait_for_completion_io+0x280/0x280 [ 1140.386875][ T3047] ? lock_downgrade+0x6e0/0x6e0 [ 1140.391739][ T3047] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1140.397995][ T3047] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1140.404244][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1140.410485][ T3047] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1140.416473][ T3047] wiphy_register+0x1e8a/0x29b0 [ 1140.421331][ T3047] ? wiphy_unregister+0xbe0/0xbe0 [ 1140.426346][ T3047] ? minstrel_ht_alloc+0x531/0xa00 [ 1140.431464][ T3047] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1140.437531][ T3047] ieee80211_register_hw+0x1f18/0x3ed0 [ 1140.442999][ T3047] ? ieee80211_restart_hw+0x290/0x290 [ 1140.448371][ T3047] ? debug_object_destroy+0x210/0x210 [ 1140.453748][ T3047] ? memset+0x20/0x40 [ 1140.457722][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1140.463956][ T3047] ? __hrtimer_init+0x136/0x280 [ 1140.468803][ T3047] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1140.474533][ T3047] ? hwsim_virtio_rx_work+0x350/0x350 [ 1140.479895][ T3047] ? __kmalloc_track_caller+0x193/0x310 [ 1140.485443][ T3047] ? memcpy+0x39/0x60 [ 1140.489419][ T3047] hwsim_new_radio_nl+0x9bc/0x1080 [ 1140.494527][ T3047] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1140.500423][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1140.506658][ T3047] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1140.514026][ T3047] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1140.521312][ T3047] genl_family_rcv_msg_doit+0x228/0x320 [ 1140.526859][ T3047] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1140.534230][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1140.540478][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1140.546718][ T3047] ? ns_capable+0xd9/0x100 [ 1140.551129][ T3047] genl_rcv_msg+0x328/0x580 [ 1140.555630][ T3047] ? genl_get_cmd+0x480/0x480 [ 1140.560298][ T3047] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1140.566194][ T3047] ? lock_release+0x720/0x720 [ 1140.570868][ T3047] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1140.576153][ T3047] netlink_rcv_skb+0x153/0x420 [ 1140.580921][ T3047] ? genl_get_cmd+0x480/0x480 [ 1140.585681][ T3047] ? netlink_ack+0xa60/0xa60 [ 1140.590277][ T3047] ? netlink_deliver_tap+0x1b1/0xc30 [ 1140.595648][ T3047] genl_rcv+0x24/0x40 [ 1140.599619][ T3047] netlink_unicast+0x533/0x7d0 [ 1140.604377][ T3047] ? netlink_attachskb+0x890/0x890 [ 1140.609478][ T3047] ? __virt_addr_valid+0x5d/0x2d0 [ 1140.614501][ T3047] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1140.620743][ T3047] ? __phys_addr_symbol+0x2c/0x70 [ 1140.625766][ T3047] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1140.631479][ T3047] ? __check_object_size+0x16e/0x3f0 [ 1140.636762][ T3047] netlink_sendmsg+0x86d/0xdb0 [ 1140.641523][ T3047] ? netlink_unicast+0x7d0/0x7d0 [ 1140.646453][ T3047] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1140.652688][ T3047] ? netlink_unicast+0x7d0/0x7d0 [ 1140.657617][ T3047] sock_sendmsg+0xcf/0x120 [ 1140.662030][ T3047] ____sys_sendmsg+0x6e8/0x810 [ 1140.666789][ T3047] ? kernel_sendmsg+0x50/0x50 [ 1140.671459][ T3047] ? do_recvmmsg+0x6d0/0x6d0 [ 1140.676045][ T3047] ? lock_chain_count+0x20/0x20 [ 1140.680888][ T3047] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1140.686960][ T3047] ___sys_sendmsg+0xf3/0x170 [ 1140.691549][ T3047] ? sendmsg_copy_msghdr+0x160/0x160 [ 1140.696835][ T3047] ? __fget_files+0x21b/0x3e0 [ 1140.701502][ T3047] ? lock_downgrade+0x6e0/0x6e0 [ 1140.706527][ T3047] ? __fget_files+0x23d/0x3e0 [ 1140.711204][ T3047] ? __fget_light+0xea/0x280 [ 1140.715784][ T3047] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1140.722028][ T3047] __sys_sendmsg+0xe5/0x1b0 [ 1140.726529][ T3047] ? __sys_sendmsg_sock+0x30/0x30 [ 1140.731559][ T3047] ? syscall_enter_from_user_mode+0x21/0x70 [ 1140.737449][ T3047] do_syscall_64+0x35/0xb0 [ 1140.741865][ T3047] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1140.747754][ T3047] RIP: 0033:0x7f3e684f88d9 [ 1140.752160][ T3047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1140.771770][ T3047] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1140.780184][ T3047] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1140.788156][ T3047] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1140.796125][ T3047] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1140.804086][ T3047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1140.812047][ T3047] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1140.885416][ T1050] usb 5-1: language id specifier not provided by device, defaulting to English 10:57:11 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='t'], 0x64}}, 0x0) 10:57:11 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}], 0x1, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1141.085483][ T1050] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1141.095705][ T1050] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1141.108324][ T8526] usb 6-1: string descriptor 0 read error: -22 [ 1141.114591][ T8526] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1141.122542][ T1050] usb 5-1: Product: syz 10:57:11 executing program 4: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mq_notify(r0, 0x0) [ 1141.165768][ T8526] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1141.175439][ T1050] usb 5-1: can't set config #1, error -71 [ 1141.185619][ T1050] usb 5-1: USB disconnect, device number 11 10:57:11 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r0, 0x89f6, 0x0) 10:57:11 executing program 4: r0 = inotify_init1(0x0) inotify_add_watch(r0, 0x0, 0x44000000) [ 1141.425289][ T3089] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1141.441896][ T3120] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1141.454430][ T8526] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 19 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 10:57:12 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0040013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) [ 1141.570806][ T3120] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1141.588522][ T8526] usb 6-1: USB disconnect, device number 19 [ 1141.654654][ T3120] CPU: 0 PID: 3120 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1141.663467][ T3120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1141.673533][ T3120] Call Trace: [ 1141.676987][ T3120] dump_stack_lvl+0xcd/0x134 [ 1141.681587][ T3120] sysfs_warn_dup.cold+0x1c/0x29 [ 1141.686531][ T3120] sysfs_do_create_link_sd+0x11e/0x140 [ 1141.692005][ T3120] sysfs_create_link+0x5f/0xc0 [ 1141.696780][ T3120] device_add+0x78f/0x21b0 [ 1141.701213][ T3120] ? ieee80211_set_bitrate_flags+0x109/0x650 [ 1141.707211][ T3120] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1141.713632][ T3120] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1141.719882][ T3120] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1141.726137][ T3120] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1141.732141][ T3120] wiphy_register+0x1e8a/0x29b0 [ 1141.737009][ T3120] ? wiphy_unregister+0xbe0/0xbe0 [ 1141.742033][ T3120] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1141.748208][ T3120] ? ieee80211_register_hw+0x1edf/0x3ed0 [ 1141.753851][ T3120] ? ieee80211_register_hw+0x1eee/0x3ed0 [ 1141.759493][ T3120] ieee80211_register_hw+0x1f18/0x3ed0 [ 1141.764974][ T3120] ? ieee80211_restart_hw+0x290/0x290 [ 1141.770356][ T3120] ? debug_object_destroy+0x210/0x210 [ 1141.775873][ T3120] ? memset+0x20/0x40 [ 1141.779857][ T3120] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1141.786195][ T3120] ? __hrtimer_init+0x136/0x280 [ 1141.791050][ T3120] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1141.796792][ T3120] ? hwsim_virtio_rx_work+0x350/0x350 [ 1141.802167][ T3120] ? __kmalloc_track_caller+0x193/0x310 [ 1141.807732][ T3120] ? memcpy+0x39/0x60 [ 1141.811725][ T3120] hwsim_new_radio_nl+0x9bc/0x1080 [ 1141.816931][ T3120] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1141.822838][ T3120] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1141.829090][ T3120] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1141.836472][ T3120] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1141.843779][ T3120] genl_family_rcv_msg_doit+0x228/0x320 [ 1141.849443][ T3120] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1141.856835][ T3120] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1141.863086][ T3120] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1141.869324][ T3120] ? ns_capable+0xd9/0x100 [ 1141.873750][ T3120] genl_rcv_msg+0x328/0x580 [ 1141.878257][ T3120] ? genl_get_cmd+0x480/0x480 [ 1141.882933][ T3120] ? mark_held_locks+0x9f/0xe0 [ 1141.887694][ T3120] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1141.893598][ T3120] ? lockdep_hardirqs_on+0x79/0x100 [ 1141.898793][ T3120] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1141.904955][ T3120] netlink_rcv_skb+0x153/0x420 [ 1141.909718][ T3120] ? genl_get_cmd+0x480/0x480 [ 1141.914402][ T3120] ? netlink_ack+0xa60/0xa60 [ 1141.918994][ T3120] ? netlink_deliver_tap+0x1b1/0xc30 [ 1141.924282][ T3120] genl_rcv+0x24/0x40 [ 1141.928347][ T3120] netlink_unicast+0x533/0x7d0 [ 1141.933112][ T3120] ? netlink_attachskb+0x890/0x890 [ 1141.938221][ T3120] ? _copy_from_iter+0x12b/0x1320 [ 1141.943245][ T3120] ? _copy_from_iter+0x16c/0x1320 [ 1141.948276][ T3120] netlink_sendmsg+0x86d/0xdb0 [ 1141.953040][ T3120] ? netlink_unicast+0x7d0/0x7d0 [ 1141.957978][ T3120] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1141.964219][ T3120] ? netlink_unicast+0x7d0/0x7d0 [ 1141.969153][ T3120] sock_sendmsg+0xcf/0x120 [ 1141.973571][ T3120] ____sys_sendmsg+0x6e8/0x810 [ 1141.978336][ T3120] ? kernel_sendmsg+0x50/0x50 [ 1141.983006][ T3120] ? do_recvmmsg+0x6d0/0x6d0 [ 1141.987602][ T3120] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1141.993578][ T3120] ? lock_chain_count+0x20/0x20 [ 1141.998432][ T3120] ___sys_sendmsg+0xf3/0x170 [ 1142.003024][ T3120] ? sendmsg_copy_msghdr+0x160/0x160 [ 1142.008315][ T3120] ? __fget_files+0x21b/0x3e0 [ 1142.012992][ T3120] ? lock_downgrade+0x6e0/0x6e0 [ 1142.017850][ T3120] ? __fget_files+0x23d/0x3e0 [ 1142.022529][ T3120] ? __fget_light+0xea/0x280 [ 1142.027114][ T3120] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1142.033358][ T3120] __sys_sendmsg+0xe5/0x1b0 [ 1142.037862][ T3120] ? __sys_sendmsg_sock+0x30/0x30 [ 1142.042899][ T3120] ? syscall_enter_from_user_mode+0x21/0x70 [ 1142.048796][ T3120] do_syscall_64+0x35/0xb0 [ 1142.053214][ T3120] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1142.059106][ T3120] RIP: 0033:0x7f4637cff8d9 [ 1142.063516][ T3120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1142.083120][ T3120] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1142.091528][ T3120] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1142.099492][ T3120] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1142.107454][ T3120] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1142.115417][ T3120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1142.123380][ T3120] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1142.176060][ T8526] usblp0: removed [ 1142.728689][ T8526] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 1142.858399][ T3150] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1142.886520][ T3150] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1142.910554][ T3150] CPU: 1 PID: 3150 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1142.919451][ T3150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1142.929518][ T3150] Call Trace: [ 1142.932808][ T3150] dump_stack_lvl+0xcd/0x134 [ 1142.937413][ T3150] sysfs_warn_dup.cold+0x1c/0x29 [ 1142.942367][ T3150] sysfs_do_create_link_sd+0x11e/0x140 [ 1142.947850][ T3150] sysfs_create_link+0x5f/0xc0 [ 1142.952636][ T3150] device_add+0x78f/0x21b0 [ 1142.957071][ T3150] ? wait_for_completion_io+0x280/0x280 [ 1142.962635][ T3150] ? lock_downgrade+0x6e0/0x6e0 [ 1142.967502][ T3150] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1142.973759][ T3150] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1142.980018][ T3150] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1142.986278][ T3150] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1142.992288][ T3150] wiphy_register+0x1e8a/0x29b0 [ 1142.997166][ T3150] ? wiphy_unregister+0xbe0/0xbe0 [ 1143.002213][ T3150] ? minstrel_ht_alloc+0x531/0xa00 [ 1143.007355][ T3150] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1143.013445][ T3150] ieee80211_register_hw+0x1f18/0x3ed0 [ 1143.018943][ T3150] ? ieee80211_restart_hw+0x290/0x290 [ 1143.024338][ T3150] ? debug_object_destroy+0x210/0x210 [ 1143.029742][ T3150] ? memset+0x20/0x40 [ 1143.033745][ T3150] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1143.040267][ T3150] ? __hrtimer_init+0x136/0x280 [ 1143.045137][ T3150] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1143.050890][ T3150] ? hwsim_virtio_rx_work+0x350/0x350 [ 1143.056273][ T3150] ? __kmalloc_track_caller+0x193/0x310 [ 1143.061841][ T3150] ? memcpy+0x39/0x60 [ 1143.065841][ T3150] hwsim_new_radio_nl+0x9bc/0x1080 [ 1143.070967][ T3150] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1143.076880][ T3150] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1143.083137][ T3150] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1143.090530][ T3150] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1143.097840][ T3150] genl_family_rcv_msg_doit+0x228/0x320 [ 1143.103492][ T3150] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1143.110966][ T3150] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1143.117234][ T3150] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1143.123665][ T3150] ? ns_capable+0xd9/0x100 [ 1143.128097][ T3150] genl_rcv_msg+0x328/0x580 [ 1143.132619][ T3150] ? genl_get_cmd+0x480/0x480 [ 1143.137314][ T3150] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1143.143228][ T3150] ? lock_release+0x720/0x720 [ 1143.147921][ T3150] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1143.153836][ T3150] netlink_rcv_skb+0x153/0x420 [ 1143.158616][ T3150] ? genl_get_cmd+0x480/0x480 [ 1143.163305][ T3150] ? netlink_ack+0xa60/0xa60 [ 1143.167906][ T3150] ? netlink_deliver_tap+0x1b1/0xc30 [ 1143.173214][ T3150] genl_rcv+0x24/0x40 [ 1143.177208][ T3150] netlink_unicast+0x533/0x7d0 [ 1143.182405][ T3150] ? netlink_attachskb+0x890/0x890 [ 1143.187531][ T3150] ? __virt_addr_valid+0x5d/0x2d0 [ 1143.192657][ T3150] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1143.198998][ T3150] ? __phys_addr_symbol+0x2c/0x70 [ 1143.204038][ T3150] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1143.209767][ T3150] ? __check_object_size+0x16e/0x3f0 [ 1143.215159][ T3150] netlink_sendmsg+0x86d/0xdb0 [ 1143.219941][ T3150] ? netlink_unicast+0x7d0/0x7d0 [ 1143.224893][ T3150] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1143.231161][ T3150] ? netlink_unicast+0x7d0/0x7d0 [ 1143.236132][ T3150] sock_sendmsg+0xcf/0x120 [ 1143.240570][ T3150] ____sys_sendmsg+0x6e8/0x810 [ 1143.245346][ T3150] ? kernel_sendmsg+0x50/0x50 [ 1143.250031][ T3150] ? do_recvmmsg+0x6d0/0x6d0 [ 1143.254637][ T3150] ? lock_chain_count+0x20/0x20 [ 1143.259497][ T3150] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1143.265679][ T3150] ___sys_sendmsg+0xf3/0x170 [ 1143.270287][ T3150] ? sendmsg_copy_msghdr+0x160/0x160 [ 1143.275591][ T3150] ? __fget_files+0x21b/0x3e0 [ 1143.280278][ T3150] ? lock_downgrade+0x6e0/0x6e0 [ 1143.285153][ T3150] ? __fget_files+0x23d/0x3e0 [ 1143.289845][ T3150] ? __fget_light+0xea/0x280 [ 1143.294442][ T3150] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1143.300704][ T3150] __sys_sendmsg+0xe5/0x1b0 [ 1143.305224][ T3150] ? __sys_sendmsg_sock+0x30/0x30 [ 1143.310274][ T3150] ? syscall_enter_from_user_mode+0x21/0x70 [ 1143.316186][ T3150] do_syscall_64+0x35/0xb0 [ 1143.320624][ T3150] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1143.326529][ T3150] RIP: 0033:0x7f3e684f88d9 [ 1143.330950][ T3150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1143.350570][ T3150] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1143.359000][ T3150] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1143.366988][ T3150] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1143.374969][ T3150] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1143.382956][ T3150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1143.390943][ T3150] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:14 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x4c, r1, 0x1b20f44704b4a561, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8}, {0x6}}]}, 0x4c}}, 0x0) 10:57:14 executing program 0: r0 = syz_io_uring_setup(0x4a5a, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/rcu_normal', 0x121881, 0x0) write$FUSE_GETXATTR(r4, &(0x7f0000000100)={0xffffffffffffff61}, 0x18) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000080)={0x2}) bind$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x9, @none, 0x7}, 0xe) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "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", "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"}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) io_uring_enter(r0, 0x2ff, 0x0, 0x0, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) 10:57:14 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:14 executing program 4: bpf$ENABLE_STATS(0x20, &(0x7f0000000040), 0xfffffffffffffffd) 10:57:14 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}], 0x1, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:57:14 executing program 4: openat$null(0xffffffffffffff9c, &(0x7f0000000500), 0xa0c01, 0x0) [ 1143.535338][ T8526] usb 6-1: device descriptor read/all, error -71 [ 1143.547800][ T3179] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:14 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1800007, 0x12, 0xffffffffffffffff, 0x0) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, 0x0, 0x28) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f00000000c0)={{0x2, 0x0, @multicast1}, {0x0, @broadcast}, 0x10, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x34}}, 'geneve1\x00'}) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000380)=ANY=[@ANYBLOB="66696c746595009627ed8500000000000000000000000000000000000000000002000000000000000000000000000000000600"/64], 0x48) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80}}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2) ioctl$VIDIOC_G_EXT_CTRLS(r1, 0xc0205648, &(0x7f0000000000)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f907, 0x0, '\x00', @p_u16=&(0x7f0000000080)}}) mkdir(0x0, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000001c0)) creat(&(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0\x00', 0x800000000000000) 10:57:14 executing program 0: r0 = syz_io_uring_setup(0x4a5a, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "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", "21fb8ae51e9c8da6dfae6897e9e83cc4fe344ff6627b9132da3b0380b8c56c385fa5644b73a9f32f8387c53e5f638e0023a1db524d5025c724f59e20b5776b39bc4e833b0feb767b3a33de717808e4a38ec02ec4ce07cbe1bf238ab6b613f04c6b411dafb549d89239669a4544862b24426c0911d519491cd0cacc09c518756610fba9a2f7884e1e5c66aa4792bdf00d4a20c5e991c32e6499bc499c7c41adba3246209db7fd6ec59d16c9ba81881315a229bccb472f24d76de7a80d6287808474cca776690c1138c798f2e8df0ae6af4b127aec3d9f145cd1136f00600505f6f4f2f27c2fcfb548ff9e02ba9f13ca0e31a2242b1069622799e3442959c12821af9fb0283c217c41e228dc2bc1c5dcd8007678e9cb1a9d14937de4b4eab9226377ffdade29af598bdd59599a45a46590a2adc164f1ca7336a8f70e12932e4a18c3ca12923c4d6e183befc6b77ce0264a1e54959c8bfbbabc3b488f6e89bf699c01dd60ed649328bb42dbc9dca56cb17bc23cf904155f7f8aebcd46fd485f2e1386f852b88488216f0811b6925418cdcc42780406e719e8e94399ce1b9b883ba68389ed844f9959fcad8659304fe05c3a103d96c0c3e30d0991c91310e11ced71a461f68df1a6dccf41662b15b11807367116f3ad771c1e2bb26d57c127fdde5a292909817ddf38111927c7970062181be3013436490ec0b241fa69ceb26edc3c167990a0884a9740fc074fcc6bf2fa07b446060734743725813b5a72338f81943d06ec5831e9db572fbfc4374bd585ac2c1c9720b9199de7bec3815a55cf267f1999e7ae9e896763314f09544098b55c26a0f563bf891d169f6be2ed5a104b4845a839b33918a29a6aa4df7957c58367d151d3c369f5c502f6455b81a111a5112126886cae098f0311b10ba561d66051b4614aa009aa504565a7326c09bf52891bc6b414f25e94231d210b47237f2cca66b24ebb8c1b7a191f383d10443f2cc87b2dec4b099c7547702b0f57970c412fdead73cca63bc2ac990d6ff12e267e18311bb8ea35c53b7b915cb5ea7e170b297bee129b44ab44d1ce62c444d9ae1c4a62039fec33b7d35ec80bb5eb56c5847e65d344d7cfad210427a515b253eb766ed35bbd701346acfebd74233a7d193ecca6b7f229f74645ad6b9fc0253c51cb7a9f1f99c6f06f629c86c17e216d20dd57223ec4f81800b101467678631669ba64fbd6c832843bcb003e7c96a3b237e94cbfbe9105ced62d36174f58ca327929fa66ab2ffd72c281a35c50e0a02507a248bee38b7936214037fa20c49fd4abef241cc7f487ee77c28b352c5eae4c2f0a70deb0624010ad1ad06cad9094068c1c2da7c6a0b34fb4d7bdf4e814e27df5bbee04743202ab88276114b62958b7c51fc7283166f754c8abcabe509fc309fbf3c1913622a0041eaf7e1460785073babd8fb3687362359ea8f1572793132435e82c88f9c363d041c16528dc1b9608443728e05c61367eab7c626a53bac6ca5a22e885c708348c32725f6c14364a385c7468f6b0396f0930585fd53237c187546dae7bd455e2d4b021a497f090308f4a5cf4d1b3de4c42af40ad089643e45510706eab02ddfda6bc604d3b99eeca3233cb2752ac16c3eeaa2e5df5dc87a49fb7255617fdcce9170faa3f66deaa35704b86bbe1a59229039e85728704740538890715c4112ab3100c8d62f71819b9bf9878501818649b59b34785744b26e75989f3ed7f7b8909a814b6cd024f69b6f42207dd148ce0e10b3b8b3813205c8a2f1717d42873d16fa1a40e1072f0bca9835b850e87454b14fe9941cda01fa89cd09f8423410124ff7db0b7c8299538d75350fd635a7545cd00468831913734b3a2497415d65328077240581670da44e8ed497353043eb23efac8ad03bb22ffb5614385ef57084c7d1b4d0127c29a77116fa49fcfb21bc1899aa80feaaf4cdce7f514c8c2c8168aaef963b368521e4996cfcb7f44ca6873f14353ba1ec15fd46ce3710072de45d60d0a335899fdb601c3f56b32c575b0c4bc5879ab3101e4ff18564da3a9faa69daa2ab49fcce8ff678b6ef2ee03eb8c43afeedb0cccde8dbbcbf1a9e4370eaa1d337286e95ed5cd16586183845a99af79fccc2ab7131de3f08fbd966bc5c09f0617024c728558d7bf30361e3c339b1cfac0e6642f433dd19e09d88ecb63beea865bc11969ad7a30b3ae29eccd2ceae1b473b4546dabb13e77b5cd0e3f02d78d77f05527a79de8ba90eb78c2119c463c4b7cd01d0b16660f9e4ee3e00a048a26deb65caa46c1643473726f1fd23858ca6a811cc43f594f55ad9c4757d127c8757e91ca5b0d37c7cbe2e42b2c3ca81e294c095a76c61ebc0de413f1f2b4040cd39d0023b5b22733f8aa0cc858d9f62218b5df3d62932dcc34778918631aad99cb92986d7a1e432191148f62b342745cd9f3df596b62a8622be3bc9cdf619906c88aea6b4f284866cd58eefebdd037e3246d0bdda1e3df3b5c72b61087d99b576598900c76691df1c81960da44524c6a53c909b587befa89cddcf7ba3d340045c5cf0bcc74c6265b568a5da251dee47b2386df0f089edef9a0180d381dda4ca873eb5d886b2270fb1bf46bd8d4ec548fb86e832be160babd4445bf038f96390f18aced21df2e7d0623b922a968ee924ad53add4f9e77e7e10cd04311f34214397dcae831d38c69ee872d01ed44ba2c9c0d427fd7538d9f6ffb7e852e9f4213fc4631bf49b28c36f900f5d15d6445b843be1198c8d0b96e4932ad0c4f4d4830fe6e95d12d3f8a55c74345e62db832ccc95a542c417c65cd8ffd780aa32b750a8ae787ed420dd4b4c6acc2b3881b232b0179b9cd3e266deaa73a393c5fff2fae7db932783f363ae0953c206821424c4e4b1b22f10ab8a76b02f1e06fae7eee4cf207fdf4be5453a7f9f1584be9a8411f8d8974bee6d941a5b417227c068688ed8e9856f965f86774ab10f97990bd7773fb2170b7873f7e4053ecaab1024399acf396d071cf9e67b9927d757bdd40c331560ad8925151236b4ea52d92b075cbac7cd031fcf6b84cf11895bbf930de202cf5eef17e3d9f7f3ea7663cfa102c4792b914fe98a67ff07559ffe6f6483f3c895047c301dc54c9f346984ed9b16769d0de21746e420f921ea3bda41c2b2285a1fb69f0b2956c99d9aa75e08c3effdffb4148eb1f884fb42c9872e2a336e0d49334d7f0e263082c90c2abc0b4a63c202ffe9f79dd83f14da0e25147019439f551c7329970dbd36406150dc639cb3bf0e519deb4906c28fbc9fc16804222f1f34a25e5e7575f20fcb6d3ddadf42a4b4147e81774df0d0f21a7730c062139d7be6c12fca4349a48d8a3d11ec609006958ced994b27c2df15d6f096c4c85f6549004ffbda086f98d98f1866f742fb9124009f62515a50718787fc2d903cfe38f5a47d003af40049597469230a3f4160a2bc8a0e04b79ea600f7a599cd115cffc80d74b27972a790739aeba9fbeea86de794ca1fc34e5e10bd2cf17ffbaf841a0f9b3a518fec40cb9f6742b7300b6106e36bf1ec552218522d68760d876cdd1f92b7c0984c7c37215ee232717f8104378f3d0da65963a95f03f2691b77c1d19ecf563ee103741ad3d6097d3905d964fdc69f3c05c04c6af65282b4a5bf4f4f1fe08b9406e0af60cd1f68ac67421236e98fc7e32add2296533d5c362959136104e7643c0a2e5b3067bfac8e2ac48652068863b254574e46bd5296edff186e84b4db8a4eafb86bc34d55c5f60e9dcfb04e4a0820bfdb15eda4d3592e2dfba5ed8fa31ce936be3fb7e48bd2d96e5550a566b7de8e027fc14386c0943568baa33b18d7d26ea1098d2b968a16366044ed45869a8746d1b9967c9e0c0cc2b2f1b9c2a4a10cf567a8f86360477217444916b6e0d4d7683d615f57d58ab0e09e76c3195319a2bad0f4490c104607ded9dd386fa198be591071d6e42638a48230e0d4050800143189e67738e5ee385bedf912e8482bcd385637e7a50405c035478ad89b8d57e645db00e9a32483ed3a12be832f3d1f949012c8d9245c1fe8efca8185704422b3056238f363292c4976e234a3773307e75e33a7f69a4531cdd1a29aedd9e15ba4d6ebeb54fb7cfdc3e7ba62a51243c33d2829e8bf2e52f9e5876e12cffedf72fc668f255117ed703087090d4e5a91a421ae5074bf10b9ff030399c078fe114d78fe5845b975d110fda611d94aa9d0a5c57ba9c8cc5c416d8aacfb38a4428e86da8310da292f561d1473ba05fd4ae6b5406f56b20969eae833afa781474fac8551d7933171a8a149e3d3facdb833bc0fa3a0cf9892ef1d07fba1abfb2a2837af0d70d283296757c1144e7e1f9941ec9cca3404d83487e612efb8478d8d3cf7e3562ec83278b3447b58776552fbdf7ef949c2ab0d294bd08d09eab18f9ba2b1f4e02cec8efffa834e425a5f4b95cd0f8130696ec5d252672b8554feb40632368936c851b7b2da705ebef6d78c0fdba08097aaa728465b4dffa2699709a1c4f2cf573408d9598c4dbba65cd97059a97e97561733b1cba44539a669e02c6e434205d03bccbba516d0568d3dd820227f7674ffdd45a69c66c867fefcce705e0f756af47524059c09b20763994acaf8e28c96b79a6e36b7ddf2af4b426f6ff37cfe039e772d8679edf5bdb191f50826ae077b13544754750869457f5c8e9e08d10b9e7e44ba5cc42969233e6be68940b0c2bef5df2a690fb7735483d74027e24df2e99221ecfd3ba4cf582a34015e447e11cf4b9380178a5e3df55be6ee387c4ef911b42ac6e4093991e86be3b7e9ff3d3b705df0aeb373262337c0734b33509dcd23c2ca5fd60ec830af77635e01ac4e5e03c19cf0495cc6e030840681a0179d2386c672bb80db7aef3b39c5281a38eee4876f79fce20db5ac26ab60ee6ef09ddc31acb8403724f4c09eb0989e83a3a14b296413d3c355fa589e283fc8b60a13db2b4bebb8aaa219648c4fb95f738291d2a2831e6de333ef03a79ec1ac0ab9c85588fd46cfbf4ea54e3326544fadca95111fb1feebdca733ed08c15b626e0637fb80796baa00ca561966eb8125d937e976d11a181d76b90596f3d039a48acbcf47ad4216b9438855d497c84ddd3d72d8f33358e8e3e667169cf307c1b548ade0f36396dec501b03b9821c946b4a66c385e9cc283b369c316318d8a07eee21226ec48e12083c82acae747864e92e4853d3a8767c792945df4db1057cef0db3e9421b42289cf78fc913238b7f9697d8f86867d59617fd4dcac07e915eb54b3bcfad3c4b44c08fcec90f3ee80fabc742bf01f1c9b0b8e22998c1055e3af4ca4b5ea3a81f1c5cb969dc64907950fbbc891aa9472d5e3140ef5e01916f5e6b30138856129e69bf7b77f71aaa9f47841f5b4286fbb903"}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) io_uring_enter(r0, 0x538d, 0x3eb4, 0x2, &(0x7f0000000040)={[0x2]}, 0x8) io_uring_enter(r0, 0x2ff, 0x40, 0x0, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) 10:57:14 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1800007, 0x12, 0xffffffffffffffff, 0x0) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, 0x0, 0x28) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f00000000c0)={{0x2, 0x0, @multicast1}, {0x0, @broadcast}, 0x10, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x34}}, 'geneve1\x00'}) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000380)=ANY=[@ANYBLOB="66696c746595009627ed8500000000000000000000000000000000000000000002000000000000000000000000000000000600"/64], 0x48) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80}}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2) ioctl$VIDIOC_G_EXT_CTRLS(r1, 0xc0205648, &(0x7f0000000000)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f907, 0x0, '\x00', @p_u16=&(0x7f0000000080)}}) mkdir(0x0, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000001c0)) creat(&(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0\x00', 0x800000000000000) 10:57:14 executing program 4: sendmsg$nl_route(0xffffffffffffffff, 0x0, 0xffab703ea97e312) 10:57:14 executing program 4: r0 = socket(0xa, 0x2, 0x0) getsockopt$inet_int(r0, 0x29, 0x37, 0x0, &(0x7f0000000080)) [ 1144.553030][ T3179] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1144.565529][ T3184] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1144.611278][ T3184] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1144.638247][ T3184] CPU: 0 PID: 3184 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1144.647144][ T3184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1144.657213][ T3184] Call Trace: [ 1144.660493][ T3184] dump_stack_lvl+0xcd/0x134 [ 1144.665080][ T3184] sysfs_warn_dup.cold+0x1c/0x29 [ 1144.670014][ T3184] sysfs_do_create_link_sd+0x11e/0x140 [ 1144.675479][ T3184] sysfs_create_link+0x5f/0xc0 [ 1144.680239][ T3184] device_add+0x78f/0x21b0 [ 1144.684647][ T3184] ? wait_for_completion_io+0x280/0x280 [ 1144.690193][ T3184] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1144.696436][ T3184] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1144.702673][ T3184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1144.708916][ T3184] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1144.714899][ T3184] wiphy_register+0x1e8a/0x29b0 [ 1144.719758][ T3184] ? wiphy_unregister+0xbe0/0xbe0 [ 1144.724777][ T3184] ? minstrel_ht_alloc+0x531/0xa00 [ 1144.729894][ T3184] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1144.735970][ T3184] ieee80211_register_hw+0x1f18/0x3ed0 [ 1144.741436][ T3184] ? ieee80211_restart_hw+0x290/0x290 [ 1144.746807][ T3184] ? memset+0x20/0x40 [ 1144.750780][ T3184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1144.757016][ T3184] ? __hrtimer_init+0x136/0x280 [ 1144.761861][ T3184] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1144.767586][ T3184] ? hwsim_virtio_rx_work+0x350/0x350 [ 1144.772953][ T3184] ? __kmalloc_track_caller+0x193/0x310 [ 1144.778495][ T3184] ? memcpy+0x39/0x60 [ 1144.782476][ T3184] hwsim_new_radio_nl+0x9bc/0x1080 [ 1144.787594][ T3184] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1144.793492][ T3184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1144.799733][ T3184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1144.807110][ T3184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1144.814401][ T3184] genl_family_rcv_msg_doit+0x228/0x320 [ 1144.819948][ T3184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1144.827319][ T3184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1144.833565][ T3184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1144.839809][ T3184] ? ns_capable+0xd9/0x100 [ 1144.844237][ T3184] genl_rcv_msg+0x328/0x580 [ 1144.848744][ T3184] ? genl_get_cmd+0x480/0x480 [ 1144.853441][ T3184] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1144.859348][ T3184] ? lock_release+0x720/0x720 [ 1144.864196][ T3184] netlink_rcv_skb+0x153/0x420 [ 1144.868955][ T3184] ? genl_get_cmd+0x480/0x480 [ 1144.873621][ T3184] ? netlink_ack+0xa60/0xa60 [ 1144.878206][ T3184] ? netlink_deliver_tap+0x1b1/0xc30 [ 1144.883676][ T3184] genl_rcv+0x24/0x40 [ 1144.887644][ T3184] netlink_unicast+0x533/0x7d0 [ 1144.892399][ T3184] ? netlink_attachskb+0x890/0x890 [ 1144.897499][ T3184] ? __virt_addr_valid+0x5d/0x2d0 [ 1144.902513][ T3184] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1144.908745][ T3184] ? __phys_addr_symbol+0x2c/0x70 [ 1144.913762][ T3184] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1144.919467][ T3184] ? __check_object_size+0x16e/0x3f0 [ 1144.924747][ T3184] netlink_sendmsg+0x86d/0xdb0 [ 1144.929504][ T3184] ? netlink_unicast+0x7d0/0x7d0 [ 1144.934436][ T3184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1144.940668][ T3184] ? netlink_unicast+0x7d0/0x7d0 [ 1144.945595][ T3184] sock_sendmsg+0xcf/0x120 [ 1144.950004][ T3184] ____sys_sendmsg+0x6e8/0x810 [ 1144.954762][ T3184] ? kernel_sendmsg+0x50/0x50 [ 1144.959426][ T3184] ? do_recvmmsg+0x6d0/0x6d0 [ 1144.964010][ T3184] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1144.970064][ T3184] ? lock_chain_count+0x20/0x20 [ 1144.975042][ T3184] ___sys_sendmsg+0xf3/0x170 [ 1144.979623][ T3184] ? sendmsg_copy_msghdr+0x160/0x160 [ 1144.984902][ T3184] ? __fget_files+0x21b/0x3e0 [ 1144.989565][ T3184] ? lock_downgrade+0x6e0/0x6e0 [ 1144.994416][ T3184] ? __fget_files+0x23d/0x3e0 [ 1144.999085][ T3184] ? __fget_light+0xea/0x280 [ 1145.003661][ T3184] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1145.009897][ T3184] __sys_sendmsg+0xe5/0x1b0 [ 1145.014390][ T3184] ? __sys_sendmsg_sock+0x30/0x30 [ 1145.019414][ T3184] ? syscall_enter_from_user_mode+0x21/0x70 [ 1145.025303][ T3184] do_syscall_64+0x35/0xb0 [ 1145.029713][ T3184] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1145.035596][ T3184] RIP: 0033:0x7f4637cff8d9 [ 1145.039998][ T3184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1145.059594][ T3184] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1145.067995][ T3184] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1145.075952][ T3184] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1145.083910][ T3184] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1145.091866][ T3184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1145.099825][ T3184] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:57:15 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f045d013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:15 executing program 5: r0 = add_key$fscrypt_v1(&(0x7f00000003c0), &(0x7f0000000400)={'fscrypt:', @desc1}, &(0x7f0000000440)={0x0, "aed1ce58a0fc2d52eb1e09e8ca18da4937d47e0647162a12a14e76f3aa89ee952910a5cae5462eee6ff415f301ea354f1596895e559b8e2d61922b2768425f14"}, 0x48, 0xfffffffffffffffd) keyctl$link(0x8, r0, r0) 10:57:15 executing program 4: r0 = socket(0xa, 0x2, 0x0) getsockopt$inet_int(r0, 0x29, 0x12, 0x0, &(0x7f0000000080)) 10:57:15 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1145.355391][ T3226] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1145.498277][ T3239] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:16 executing program 4: recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000400008000f8000020004000030000000000000001", 0x25}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f00000002c0)='./file0\x00') openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x84842, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) write(r0, &(0x7f0000004200)='t', 0xfff4) [ 1145.604482][ T3239] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1145.632565][ T3226] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:57:16 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}], 0x1, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:57:16 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_sys\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000005680)={'syztnl2\x00', &(0x7f0000005600)={'syztnl1\x00', 0x0, 0x29, 0x6, 0x0, 0xb172, 0x50, @mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x20, 0xc8, 0x3}}) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000440)={0x0, @dev, @empty}, 0x0) sendmsg$WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x4000) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000005d80)={'syztnl1\x00', &(0x7f0000005d00)={'ip6gre0\x00', 0x0, 0x29, 0x80, 0xd9, 0x4, 0x0, @empty, @private1={0xfc, 0x1, '\x00', 0x1}, 0x0, 0x20, 0x7}}) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000005dc0)) pipe(0x0) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, 0x0, 0x20004005) sendmsg$WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000008c0)={&(0x7f00000004c0)={0x36c, 0x0, 0x400, 0x70bd2d, 0x25dfdbfb, {}, [@WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_FWMARK={0x8}, @WGDEVICE_A_PEERS={0x300, 0x8, 0x0, 0x1, [{0x4}, {0x44, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @remote}}, @WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x28, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}]}, {0x28c, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x24c, 0x9, 0x0, 0x1, [{0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @remote}}, {0x5}}]}, {0xf4, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x43}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}]}, {0x7c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @broadcast}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x1}}]}, {0x4c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @empty}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x1}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private=0xa010100}, {0x5}}]}]}, @WGPEER_A_FLAGS={0x8, 0x3, 0x4}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x800}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "ccda25c9837a73f3500e43b24d6042984f9f73e156d60d74bc895fee1c8daf0d"}]}]}, @WGDEVICE_A_FLAGS={0x8}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}]}, 0x36c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x40, 0x0, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@NL802154_ATTR_NETNS_FD={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_PID={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0xc000}, 0x20004005) unshare(0x44060600) 10:57:16 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1145.742773][ T3226] sysfs: cannot create duplicate filename '/class/ieee80211/ !]5‚Á7>7' [ 1145.747919][ T3252] loop4: detected capacity change from 0 to 264192 [ 1145.782969][ T3226] CPU: 0 PID: 3226 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1145.791781][ T3226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1145.801852][ T3226] Call Trace: [ 1145.805344][ T3226] dump_stack_lvl+0xcd/0x134 [ 1145.809948][ T3226] sysfs_warn_dup.cold+0x1c/0x29 [ 1145.814893][ T3226] sysfs_do_create_link_sd+0x11e/0x140 [ 1145.820569][ T3226] sysfs_create_link+0x5f/0xc0 [ 1145.825345][ T3226] device_add+0x78f/0x21b0 [ 1145.829773][ T3226] ? wait_for_completion_io+0x280/0x280 [ 1145.835320][ T3226] ? lock_downgrade+0x6e0/0x6e0 [ 1145.840175][ T3226] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1145.846426][ T3226] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1145.852672][ T3226] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1145.857830][ T3252] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 1145.858917][ T3226] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1145.858954][ T3226] wiphy_register+0x1e8a/0x29b0 [ 1145.858986][ T3226] ? wiphy_unregister+0xbe0/0xbe0 [ 1145.883931][ T3226] ? minstrel_ht_alloc+0x531/0xa00 [ 1145.889061][ T3226] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1145.895146][ T3226] ieee80211_register_hw+0x1f18/0x3ed0 [ 1145.900633][ T3226] ? ieee80211_restart_hw+0x290/0x290 [ 1145.906019][ T3226] ? debug_object_destroy+0x210/0x210 [ 1145.911408][ T3226] ? memset+0x20/0x40 [ 1145.915398][ T3226] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1145.921343][ T26] audit: type=1800 audit(1633085836.481:47): pid=3252 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="loop4" ino=10 res=0 errno=0 [ 1145.921635][ T3226] ? __hrtimer_init+0x136/0x280 [ 1145.947192][ T3226] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1145.952946][ T3226] ? hwsim_virtio_rx_work+0x350/0x350 [ 1145.958409][ T3226] ? __kmalloc_track_caller+0x193/0x310 [ 1145.964053][ T3226] ? memcpy+0x39/0x60 [ 1145.968046][ T3226] hwsim_new_radio_nl+0x9bc/0x1080 [ 1145.973171][ T3226] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1145.979085][ T3226] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1145.985332][ T3226] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1145.992712][ T3226] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1146.000013][ T3226] genl_family_rcv_msg_doit+0x228/0x320 [ 1146.005097][ T26] audit: type=1800 audit(1633085836.541:48): pid=3262 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="loop4" ino=10 res=0 errno=0 [ 1146.005564][ T3226] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1146.005595][ T3226] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1146.005631][ T3226] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1146.005657][ T3226] ? ns_capable+0xd9/0x100 [ 1146.005683][ T3226] genl_rcv_msg+0x328/0x580 [ 1146.005706][ T3226] ? genl_get_cmd+0x480/0x480 [ 1146.005727][ T3226] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1146.065602][ T3226] ? lock_release+0x720/0x720 [ 1146.070287][ T3226] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1146.075584][ T3226] netlink_rcv_skb+0x153/0x420 [ 1146.080352][ T3226] ? genl_get_cmd+0x480/0x480 [ 1146.085034][ T3226] ? netlink_ack+0xa60/0xa60 [ 1146.089631][ T3226] ? netlink_deliver_tap+0x1b1/0xc30 [ 1146.094927][ T3226] genl_rcv+0x24/0x40 [ 1146.098913][ T3226] netlink_unicast+0x533/0x7d0 [ 1146.103824][ T3226] ? netlink_attachskb+0x890/0x890 [ 1146.108939][ T3226] ? __virt_addr_valid+0x5d/0x2d0 [ 1146.113970][ T3226] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1146.120391][ T3226] ? __phys_addr_symbol+0x2c/0x70 [ 1146.125420][ T3226] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1146.131158][ T3226] ? __check_object_size+0x16e/0x3f0 [ 1146.136463][ T3226] netlink_sendmsg+0x86d/0xdb0 [ 1146.141236][ T3226] ? netlink_unicast+0x7d0/0x7d0 [ 1146.146183][ T3226] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1146.152440][ T3226] ? netlink_unicast+0x7d0/0x7d0 [ 1146.157382][ T3226] sock_sendmsg+0xcf/0x120 [ 1146.161806][ T3226] ____sys_sendmsg+0x6e8/0x810 [ 1146.166579][ T3226] ? kernel_sendmsg+0x50/0x50 [ 1146.171259][ T3226] ? do_recvmmsg+0x6d0/0x6d0 [ 1146.175857][ T3226] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1146.181853][ T3226] ___sys_sendmsg+0xf3/0x170 [ 1146.186451][ T3226] ? sendmsg_copy_msghdr+0x160/0x160 [ 1146.192208][ T3226] ? __fget_files+0x21b/0x3e0 [ 1146.196909][ T3226] ? lock_downgrade+0x6e0/0x6e0 [ 1146.201798][ T3226] ? __fget_files+0x23d/0x3e0 [ 1146.206499][ T3226] ? __fget_light+0xea/0x280 [ 1146.211111][ T3226] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1146.217379][ T3226] __sys_sendmsg+0xe5/0x1b0 [ 1146.221909][ T3226] ? __sys_sendmsg_sock+0x30/0x30 [ 1146.227060][ T3226] ? syscall_enter_from_user_mode+0x21/0x70 [ 1146.232987][ T3226] do_syscall_64+0x35/0xb0 [ 1146.237425][ T3226] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1146.243340][ T3226] RIP: 0033:0x7f3e684f88d9 [ 1146.247774][ T3226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1146.267402][ T3226] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1146.275832][ T3226] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1146.283820][ T3226] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1146.291807][ T3226] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1146.299792][ T3226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1146.307778][ T3226] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1146.330471][ T6504] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 1146.362709][ T3274] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:17 executing program 4: clone(0x3a3dd4008400af01, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 10:57:17 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000001c0)=@assoc_value={0x0, 0xffffffc1}, 0x8) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x58, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8}, @in6={0xa, 0x4e21, 0x8, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8}, @in={0x2, 0x0, @empty}, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f00000000c0)=0xc) r1 = openat$proc_capi20ncci(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$PPPIOCGNPMODE(r1, 0xc008744c, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, 0x0, 0x0) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(0xffffffffffffffff, 0x84, 0x23, 0x0, 0x0) 10:57:17 executing program 0: r0 = syz_io_uring_setup(0x4a5a, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x12, r0, 0x8000000) r5 = syz_io_uring_setup(0x0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x3, 0x283}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff1000/0x1000)=nil, &(0x7f00000001c0), &(0x7f00000003c0)=0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x10, r5, 0x8000000) syz_io_uring_setup(0x187, &(0x7f00000002c0)={0x0, 0xa271, 0x8}, &(0x7f0000ee9000/0x1000)=nil, &(0x7f0000ff8000/0x3000)=nil, 0x0, &(0x7f0000000100)=0x0) r8 = syz_mount_image$romfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000010000)="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", 0x400}], 0x0, &(0x7f0000000900)=ANY=[]) r9 = openat(r8, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x24) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r11 = mmap$IORING_OFF_CQ_RING(&(0x7f0000001000/0x3000)=nil, 0x3000, 0xd, 0x10010, r5, 0x8000000) r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4, 0x10, r9, 0x0) syz_io_uring_submit(r12, r6, &(0x7f0000000400)=@IORING_OP_CONNECT={0x10, 0x4, 0x0, r3, 0x80, &(0x7f0000000340)=@x25={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}}, 0x0, 0x0, 0x0, {0x0, r10}}, 0x6) syz_io_uring_submit(r11, r7, &(0x7f0000000080)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x3, 0x0, r9, 0x0, 0x0, 0x0, 0x2043, 0x1, {0x3, r10}}, 0x2001) syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, r3, 0x80, &(0x7f0000000040)=@ipx={0x4, 0x800, 0x8, "a57e364896ca", 0x96}, 0x0, 0x0, 0x1, {0x0, r10}}, 0x4) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "174660b85e4fa0bea0c420ef601ba551eeb69d8b76d0b8e766aa35b15993df63021ba7e761b6e5af72b20825ec41ecc54a52b457dc67095c4521609b243c687053f57eb6763fccbf660796cd49ed9ce7b2631a8c550b509f262b109acc2cfd47269a655e8ebfccd1265eadaa69f9436ca3b580b5eda2260500b3111979a6bfce3e1dd4747addf70790a299fdbd56b428ff021216ec0d4243ccdef0fdf9fbcbcbf7cfc8710847ed7b5d392eddd46e6c88429938df929767570b3816a84058329608cebbb7640575df481dc1b91b2b475297eacc8ac9a59745dbf0ed8e33e52801bb8a811a88f73aed3a979df0fba612452e0586120ddc2a502c4dcfa88730f326", "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"}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) io_uring_enter(r0, 0x2ff, 0x0, 0x0, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) chdir(&(0x7f0000000200)='./file0/file0\x00') [ 1146.759216][ T3289] loop0: detected capacity change from 0 to 2 [ 1146.781404][ T3292] sctp: [Deprecated]: syz-executor.4 (pid 3292) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1146.781404][ T3292] Use struct sctp_sack_info instead [ 1146.799297][ T3289] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 1146.809079][ T3289] romfs: Mounting image 'rom 5f663c08' through the block layer [ 1146.844090][ T26] audit: type=1800 audit(1633085837.401:49): pid=3289 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed comm="syz-executor.0" name="file0" dev="loop0" ino=128 res=0 errno=0 [ 1146.874148][ T3292] sctp: [Deprecated]: syz-executor.4 (pid 3292) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1146.874148][ T3292] Use struct sctp_sack_info instead 10:57:17 executing program 4: r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) [ 1146.960586][ T26] audit: type=1800 audit(1633085837.401:50): pid=3289 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed comm="syz-executor.0" name="file0" dev="loop0" ino=128 res=0 errno=0 [ 1147.428773][ T3274] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1147.445786][ T3269] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. 10:57:18 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0060013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:18 executing program 4: syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x22a01) 10:57:18 executing program 0: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0) r1 = syz_io_uring_setup(0x4a5e, &(0x7f0000000180)={0x0, 0xf7e7, 0x0, 0xfffffffe, 0x0, 0x0, r0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000001000/0x4000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r4, 0x0}, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001740)={0x0, 0x0, "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", "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"}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) io_uring_enter(r1, 0x2ff, 0x0, 0x0, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) r5 = socket$alg(0x26, 0x5, 0x0) accept$alg(r5, 0x0, 0x0) ioctl$FS_IOC_GETFSLABEL(r5, 0x81009431, &(0x7f0000000200)) 10:57:18 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1147.546995][ T3269] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1147.554959][ T3269] CPU: 1 PID: 3269 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1147.563636][ T3269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1147.573692][ T3269] Call Trace: [ 1147.576969][ T3269] dump_stack_lvl+0xcd/0x134 [ 1147.581569][ T3269] sysfs_warn_dup.cold+0x1c/0x29 [ 1147.586517][ T3269] sysfs_do_create_link_sd+0x11e/0x140 [ 1147.591989][ T3269] sysfs_create_link+0x5f/0xc0 [ 1147.596766][ T3269] device_add+0x78f/0x21b0 [ 1147.601195][ T3269] ? wait_for_completion_io+0x280/0x280 [ 1147.606756][ T3269] ? mark_held_locks+0x9f/0xe0 [ 1147.611525][ T3269] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1147.617773][ T3269] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1147.624022][ T3269] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1147.630255][ T3269] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1147.636233][ T3269] wiphy_register+0x1e8a/0x29b0 [ 1147.641079][ T3269] ? wiphy_unregister+0xbe0/0xbe0 [ 1147.646094][ T3269] ? minstrel_ht_alloc+0x531/0xa00 [ 1147.651201][ T3269] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1147.657266][ T3269] ieee80211_register_hw+0x1f18/0x3ed0 [ 1147.662728][ T3269] ? ieee80211_restart_hw+0x290/0x290 [ 1147.668103][ T3269] ? debug_object_destroy+0x210/0x210 [ 1147.673474][ T3269] ? memset+0x20/0x40 [ 1147.677442][ T3269] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1147.683670][ T3269] ? __hrtimer_init+0x136/0x280 [ 1147.688515][ T3269] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1147.694238][ T3269] ? hwsim_virtio_rx_work+0x350/0x350 [ 1147.699594][ T3269] ? __kmalloc_track_caller+0x193/0x310 [ 1147.705135][ T3269] ? memcpy+0x39/0x60 [ 1147.709108][ T3269] hwsim_new_radio_nl+0x9bc/0x1080 [ 1147.714211][ T3269] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1147.720101][ T3269] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1147.726531][ T3269] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1147.734508][ T3269] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1147.741814][ T3269] genl_family_rcv_msg_doit+0x228/0x320 [ 1147.747367][ T3269] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1147.754734][ T3269] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1147.760985][ T3269] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1147.767227][ T3269] ? ns_capable+0xd9/0x100 [ 1147.771641][ T3269] genl_rcv_msg+0x328/0x580 [ 1147.776147][ T3269] ? genl_get_cmd+0x480/0x480 [ 1147.780820][ T3269] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1147.786714][ T3269] ? lock_release+0x720/0x720 [ 1147.791393][ T3269] netlink_rcv_skb+0x153/0x420 [ 1147.796152][ T3269] ? genl_get_cmd+0x480/0x480 [ 1147.800822][ T3269] ? netlink_ack+0xa60/0xa60 [ 1147.805407][ T3269] ? netlink_deliver_tap+0x1b1/0xc30 [ 1147.810679][ T3269] ? netlink_trim+0x37/0x240 [ 1147.815263][ T3269] genl_rcv+0x24/0x40 [ 1147.819233][ T3269] netlink_unicast+0x533/0x7d0 [ 1147.823991][ T3269] ? netlink_attachskb+0x890/0x890 [ 1147.829089][ T3269] ? __virt_addr_valid+0x5d/0x2d0 [ 1147.834107][ T3269] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1147.840338][ T3269] ? __phys_addr_symbol+0x2c/0x70 [ 1147.845352][ T3269] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1147.851234][ T3269] ? __check_object_size+0x16e/0x3f0 [ 1147.856515][ T3269] netlink_sendmsg+0x86d/0xdb0 [ 1147.861451][ T3269] ? netlink_unicast+0x7d0/0x7d0 [ 1147.866386][ T3269] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1147.872621][ T3269] ? netlink_unicast+0x7d0/0x7d0 [ 1147.877546][ T3269] sock_sendmsg+0xcf/0x120 [ 1147.881955][ T3269] ____sys_sendmsg+0x6e8/0x810 [ 1147.886716][ T3269] ? kernel_sendmsg+0x50/0x50 [ 1147.891380][ T3269] ? do_recvmmsg+0x6d0/0x6d0 [ 1147.895970][ T3269] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1147.901945][ T3269] ? lock_chain_count+0x20/0x20 [ 1147.906792][ T3269] ___sys_sendmsg+0xf3/0x170 [ 1147.911551][ T3269] ? sendmsg_copy_msghdr+0x160/0x160 [ 1147.916830][ T3269] ? __fget_files+0x21b/0x3e0 [ 1147.921498][ T3269] ? lock_downgrade+0x6e0/0x6e0 [ 1147.926429][ T3269] ? __fget_files+0x9f/0x3e0 [ 1147.931015][ T3269] ? __fget_files+0x23d/0x3e0 [ 1147.935685][ T3269] ? __fget_light+0xea/0x280 [ 1147.940263][ T3269] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1147.946497][ T3269] __sys_sendmsg+0xe5/0x1b0 [ 1147.950993][ T3269] ? __sys_sendmsg_sock+0x30/0x30 [ 1147.956011][ T3269] ? lockdep_hardirqs_on+0x79/0x100 [ 1147.961210][ T3269] ? trace_hardirqs_on+0x39/0x1c0 [ 1147.966231][ T3269] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1147.972119][ T3269] do_syscall_64+0x35/0xb0 [ 1147.976532][ T3269] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1147.982417][ T3269] RIP: 0033:0x7f4637cff8d9 [ 1147.986825][ T3269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1148.006425][ T3269] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1148.014834][ T3269] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1148.022968][ T3269] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1148.030927][ T3269] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1148.038884][ T3269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 10:57:18 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGBITSW(r0, 0x80404525, &(0x7f0000000140)=""/255) [ 1148.046842][ T3269] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1148.506551][ T3343] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1148.552011][ T3343] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1148.586356][ T3343] CPU: 1 PID: 3343 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 10:57:19 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {0x0}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1148.595257][ T3343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1148.605327][ T3343] Call Trace: [ 1148.608615][ T3343] dump_stack_lvl+0xcd/0x134 [ 1148.613228][ T3343] sysfs_warn_dup.cold+0x1c/0x29 [ 1148.618185][ T3343] sysfs_do_create_link_sd+0x11e/0x140 [ 1148.623676][ T3343] sysfs_create_link+0x5f/0xc0 [ 1148.628466][ T3343] device_add+0x78f/0x21b0 [ 1148.632903][ T3343] ? wait_for_completion_io+0x280/0x280 [ 1148.638464][ T3343] ? lock_downgrade+0x6e0/0x6e0 [ 1148.643332][ T3343] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1148.649595][ T3343] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1148.655861][ T3343] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1148.662125][ T3343] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1148.668138][ T3343] wiphy_register+0x1e8a/0x29b0 [ 1148.673025][ T3343] ? wiphy_unregister+0xbe0/0xbe0 [ 1148.678065][ T3343] ? minstrel_ht_alloc+0x531/0xa00 [ 1148.683214][ T3343] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1148.689313][ T3343] ieee80211_register_hw+0x1f18/0x3ed0 [ 1148.694816][ T3343] ? ieee80211_restart_hw+0x290/0x290 [ 1148.700220][ T3343] ? debug_object_destroy+0x210/0x210 [ 1148.705618][ T3343] ? memset+0x20/0x40 [ 1148.709614][ T3343] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1148.715875][ T3343] ? __hrtimer_init+0x136/0x280 [ 1148.720749][ T3343] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1148.726506][ T3343] ? hwsim_virtio_rx_work+0x350/0x350 [ 1148.731898][ T3343] ? __kmalloc_track_caller+0x193/0x310 [ 1148.737475][ T3343] ? memcpy+0x39/0x60 [ 1148.741477][ T3343] hwsim_new_radio_nl+0x9bc/0x1080 [ 1148.746607][ T3343] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1148.752533][ T3343] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1148.758799][ T3343] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1148.766193][ T3343] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1148.773511][ T3343] genl_family_rcv_msg_doit+0x228/0x320 [ 1148.779085][ T3343] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1148.786480][ T3343] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1148.792757][ T3343] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1148.799027][ T3343] ? ns_capable+0xd9/0x100 [ 1148.803469][ T3343] genl_rcv_msg+0x328/0x580 [ 1148.807997][ T3343] ? genl_get_cmd+0x480/0x480 [ 1148.812746][ T3343] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1148.818750][ T3343] ? lock_release+0x720/0x720 [ 1148.823442][ T3343] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1148.828745][ T3343] netlink_rcv_skb+0x153/0x420 [ 1148.833529][ T3343] ? genl_get_cmd+0x480/0x480 [ 1148.838229][ T3343] ? netlink_ack+0xa60/0xa60 [ 1148.842847][ T3343] ? netlink_deliver_tap+0x1b1/0xc30 [ 1148.848170][ T3343] genl_rcv+0x24/0x40 [ 1148.852171][ T3343] netlink_unicast+0x533/0x7d0 [ 1148.856957][ T3343] ? netlink_attachskb+0x890/0x890 [ 1148.862084][ T3343] ? __virt_addr_valid+0x5d/0x2d0 [ 1148.867392][ T3343] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1148.873658][ T3343] ? __phys_addr_symbol+0x2c/0x70 [ 1148.878718][ T3343] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1148.884460][ T3343] ? __check_object_size+0x16e/0x3f0 [ 1148.889780][ T3343] netlink_sendmsg+0x86d/0xdb0 [ 1148.894571][ T3343] ? netlink_unicast+0x7d0/0x7d0 [ 1148.899521][ T3343] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1148.905769][ T3343] ? netlink_unicast+0x7d0/0x7d0 [ 1148.910797][ T3343] sock_sendmsg+0xcf/0x120 [ 1148.915224][ T3343] ____sys_sendmsg+0x6e8/0x810 [ 1148.919998][ T3343] ? kernel_sendmsg+0x50/0x50 [ 1148.924685][ T3343] ? do_recvmmsg+0x6d0/0x6d0 [ 1148.929293][ T3343] ? lock_chain_count+0x20/0x20 [ 1148.934153][ T3343] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1148.940155][ T3343] ___sys_sendmsg+0xf3/0x170 [ 1148.944758][ T3343] ? sendmsg_copy_msghdr+0x160/0x160 [ 1148.950057][ T3343] ? __fget_files+0x21b/0x3e0 [ 1148.954736][ T3343] ? lock_downgrade+0x6e0/0x6e0 [ 1148.959604][ T3343] ? __fget_files+0x23d/0x3e0 [ 1148.964292][ T3343] ? __fget_light+0xea/0x280 [ 1148.968884][ T3343] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1148.975137][ T3343] __sys_sendmsg+0xe5/0x1b0 [ 1148.979646][ T3343] ? __sys_sendmsg_sock+0x30/0x30 [ 1148.984698][ T3343] ? syscall_enter_from_user_mode+0x21/0x70 [ 1148.990606][ T3343] do_syscall_64+0x35/0xb0 [ 1148.995034][ T3343] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1149.000937][ T3343] RIP: 0033:0x7f3e684f88d9 [ 1149.005359][ T3343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1149.025055][ T3343] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1149.033467][ T3343] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1149.041441][ T3343] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1149.049414][ T3343] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1149.057386][ T3343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1149.065358][ T3343] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1149.144806][ T3345] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1149.170542][ T3345] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1149.207370][ T3345] CPU: 1 PID: 3345 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1149.216359][ T3345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1149.226431][ T3345] Call Trace: [ 1149.229722][ T3345] dump_stack_lvl+0xcd/0x134 [ 1149.234329][ T3345] sysfs_warn_dup.cold+0x1c/0x29 [ 1149.239281][ T3345] sysfs_do_create_link_sd+0x11e/0x140 [ 1149.244770][ T3345] sysfs_create_link+0x5f/0xc0 [ 1149.249562][ T3345] device_add+0x78f/0x21b0 [ 1149.254002][ T3345] ? wait_for_completion_io+0x280/0x280 [ 1149.259563][ T3345] ? lock_downgrade+0x6e0/0x6e0 [ 1149.264430][ T3345] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1149.270693][ T3345] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1149.276961][ T3345] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1149.283225][ T3345] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1149.289236][ T3345] wiphy_register+0x1e8a/0x29b0 [ 1149.294119][ T3345] ? wiphy_unregister+0xbe0/0xbe0 [ 1149.299159][ T3345] ? minstrel_ht_alloc+0x531/0xa00 [ 1149.304296][ T3345] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1149.310396][ T3345] ieee80211_register_hw+0x1f18/0x3ed0 [ 1149.315896][ T3345] ? ieee80211_restart_hw+0x290/0x290 [ 1149.321298][ T3345] ? debug_object_destroy+0x210/0x210 [ 1149.326707][ T3345] ? memset+0x20/0x40 [ 1149.330712][ T3345] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1149.336973][ T3345] ? __hrtimer_init+0x136/0x280 [ 1149.341846][ T3345] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1149.347608][ T3345] ? hwsim_virtio_rx_work+0x350/0x350 [ 1149.353000][ T3345] ? __kmalloc_track_caller+0x193/0x310 [ 1149.358571][ T3345] ? memcpy+0x39/0x60 [ 1149.362572][ T3345] hwsim_new_radio_nl+0x9bc/0x1080 [ 1149.367712][ T3345] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1149.373636][ T3345] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1149.379907][ T3345] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1149.387302][ T3345] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1149.394619][ T3345] genl_family_rcv_msg_doit+0x228/0x320 [ 1149.400188][ T3345] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1149.407579][ T3345] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1149.413857][ T3345] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1149.420112][ T3345] ? ns_capable+0xd9/0x100 [ 1149.424552][ T3345] genl_rcv_msg+0x328/0x580 [ 1149.429077][ T3345] ? genl_get_cmd+0x480/0x480 [ 1149.433771][ T3345] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1149.439691][ T3345] ? lock_release+0x720/0x720 [ 1149.444395][ T3345] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1149.449717][ T3345] netlink_rcv_skb+0x153/0x420 [ 1149.454502][ T3345] ? genl_get_cmd+0x480/0x480 [ 1149.459197][ T3345] ? netlink_ack+0xa60/0xa60 [ 1149.463811][ T3345] ? netlink_deliver_tap+0x1b1/0xc30 [ 1149.469120][ T3345] genl_rcv+0x24/0x40 [ 1149.473119][ T3345] netlink_unicast+0x533/0x7d0 [ 1149.477907][ T3345] ? netlink_attachskb+0x890/0x890 [ 1149.483037][ T3345] ? __virt_addr_valid+0x5d/0x2d0 [ 1149.488079][ T3345] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1149.494338][ T3345] ? __phys_addr_symbol+0x2c/0x70 [ 1149.499380][ T3345] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1149.505118][ T3345] ? __check_object_size+0x16e/0x3f0 [ 1149.510429][ T3345] netlink_sendmsg+0x86d/0xdb0 [ 1149.515566][ T3345] ? netlink_unicast+0x7d0/0x7d0 [ 1149.520530][ T3345] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1149.526797][ T3345] ? netlink_unicast+0x7d0/0x7d0 [ 1149.531752][ T3345] sock_sendmsg+0xcf/0x120 [ 1149.536185][ T3345] ____sys_sendmsg+0x6e8/0x810 [ 1149.540963][ T3345] ? kernel_sendmsg+0x50/0x50 [ 1149.545647][ T3345] ? do_recvmmsg+0x6d0/0x6d0 [ 1149.550262][ T3345] ? lock_chain_count+0x20/0x20 [ 1149.555127][ T3345] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1149.561135][ T3345] ___sys_sendmsg+0xf3/0x170 [ 1149.565750][ T3345] ? sendmsg_copy_msghdr+0x160/0x160 [ 1149.571056][ T3345] ? __fget_files+0x21b/0x3e0 [ 1149.575743][ T3345] ? lock_downgrade+0x6e0/0x6e0 [ 1149.580621][ T3345] ? __fget_files+0x23d/0x3e0 [ 1149.585316][ T3345] ? __fget_light+0xea/0x280 [ 1149.589919][ T3345] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1149.596177][ T3345] __sys_sendmsg+0xe5/0x1b0 [ 1149.600699][ T3345] ? __sys_sendmsg_sock+0x30/0x30 [ 1149.605760][ T3345] ? syscall_enter_from_user_mode+0x21/0x70 [ 1149.611682][ T3345] do_syscall_64+0x35/0xb0 [ 1149.616301][ T3345] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1149.622216][ T3345] RIP: 0033:0x7f3e684f88d9 [ 1149.626646][ T3345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1149.646273][ T3345] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1149.654717][ T3345] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1149.662711][ T3345] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1149.670694][ T3345] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1149.678688][ T3345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1149.686767][ T3345] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1149.711094][ T3380] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1149.791310][ T3380] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1149.825334][ T3380] CPU: 0 PID: 3380 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1149.834231][ T3380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1149.844293][ T3380] Call Trace: [ 1149.847576][ T3380] dump_stack_lvl+0xcd/0x134 [ 1149.852172][ T3380] sysfs_warn_dup.cold+0x1c/0x29 [ 1149.857278][ T3380] sysfs_do_create_link_sd+0x11e/0x140 [ 1149.862740][ T3380] sysfs_create_link+0x5f/0xc0 [ 1149.867505][ T3380] device_add+0x78f/0x21b0 [ 1149.871920][ T3380] ? wait_for_completion_io+0x280/0x280 [ 1149.877460][ T3380] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1149.883697][ T3380] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1149.889933][ T3380] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1149.896167][ T3380] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1149.902156][ T3380] wiphy_register+0x1e8a/0x29b0 [ 1149.907007][ T3380] ? wiphy_unregister+0xbe0/0xbe0 [ 1149.912023][ T3380] ? minstrel_ht_alloc+0x531/0xa00 [ 1149.917139][ T3380] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1149.923213][ T3380] ieee80211_register_hw+0x1f18/0x3ed0 [ 1149.928679][ T3380] ? ieee80211_restart_hw+0x290/0x290 [ 1149.934047][ T3380] ? debug_object_destroy+0x210/0x210 [ 1149.939419][ T3380] ? memset+0x20/0x40 [ 1149.943392][ T3380] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1149.949627][ T3380] ? __hrtimer_init+0x136/0x280 [ 1149.954475][ T3380] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1149.960200][ T3380] ? hwsim_virtio_rx_work+0x350/0x350 [ 1149.965574][ T3380] ? __kmalloc_track_caller+0x193/0x310 [ 1149.971117][ T3380] ? memcpy+0x39/0x60 [ 1149.975092][ T3380] hwsim_new_radio_nl+0x9bc/0x1080 [ 1149.980200][ T3380] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1149.986189][ T3380] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1149.992433][ T3380] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1149.999804][ T3380] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1150.007094][ T3380] genl_family_rcv_msg_doit+0x228/0x320 [ 1150.012639][ T3380] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1150.020182][ T3380] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1150.026433][ T3380] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1150.032665][ T3380] ? ns_capable+0xd9/0x100 [ 1150.037078][ T3380] genl_rcv_msg+0x328/0x580 [ 1150.041581][ T3380] ? genl_get_cmd+0x480/0x480 [ 1150.046248][ T3380] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1150.052143][ T3380] netlink_rcv_skb+0x153/0x420 [ 1150.056898][ T3380] ? genl_get_cmd+0x480/0x480 [ 1150.061566][ T3380] ? netlink_ack+0xa60/0xa60 [ 1150.066144][ T3380] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1150.072302][ T3380] ? down_read+0x19a/0x440 [ 1150.076703][ T3380] ? genl_get_cmd+0x480/0x480 [ 1150.081374][ T3380] genl_rcv+0x24/0x40 [ 1150.085345][ T3380] netlink_unicast+0x533/0x7d0 [ 1150.090102][ T3380] ? netlink_attachskb+0x890/0x890 [ 1150.095207][ T3380] ? __virt_addr_valid+0x5d/0x2d0 [ 1150.100225][ T3380] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1150.106457][ T3380] ? __phys_addr_symbol+0x2c/0x70 [ 1150.111475][ T3380] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1150.117184][ T3380] ? __check_object_size+0x16e/0x3f0 [ 1150.122471][ T3380] netlink_sendmsg+0x86d/0xdb0 [ 1150.127233][ T3380] ? netlink_unicast+0x7d0/0x7d0 [ 1150.132169][ T3380] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1150.138407][ T3380] ? netlink_unicast+0x7d0/0x7d0 [ 1150.143337][ T3380] sock_sendmsg+0xcf/0x120 [ 1150.147750][ T3380] ____sys_sendmsg+0x6e8/0x810 [ 1150.152508][ T3380] ? lockdep_hardirqs_on+0x79/0x100 [ 1150.157710][ T3380] ? kernel_sendmsg+0x50/0x50 [ 1150.162393][ T3380] ? ___sys_sendmsg+0xd2/0x170 [ 1150.167160][ T3380] ___sys_sendmsg+0xf3/0x170 [ 1150.171748][ T3380] ? sendmsg_copy_msghdr+0x160/0x160 [ 1150.177033][ T3380] ? irqentry_enter+0x28/0x50 [ 1150.181710][ T3380] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1150.187860][ T3380] ? lockdep_hardirqs_on+0x79/0x100 [ 1150.193047][ T3380] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1150.199203][ T3380] ? sockfd_lookup_light+0x6d/0x180 [ 1150.204401][ T3380] ? sockfd_lookup_light+0x77/0x180 [ 1150.209592][ T3380] ? sockfd_lookup_light+0x9e/0x180 [ 1150.214791][ T3380] __sys_sendmsg+0xe5/0x1b0 [ 1150.219290][ T3380] ? __sys_sendmsg_sock+0x30/0x30 [ 1150.224320][ T3380] ? syscall_enter_from_user_mode+0x21/0x70 [ 1150.230212][ T3380] do_syscall_64+0x35/0xb0 [ 1150.234632][ T3380] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1150.240524][ T3380] RIP: 0033:0x7f4637cff8d9 [ 1150.244935][ T3380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1150.264540][ T3380] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1150.272955][ T3380] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1150.280920][ T3380] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1150.289058][ T3380] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1150.297020][ T3380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1150.304980][ T3380] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:57:23 executing program 5: socket(0x1e, 0x0, 0x80) 10:57:23 executing program 0: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) fstat(r0, &(0x7f0000000300)) 10:57:23 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:23 executing program 4: bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={&(0x7f0000000000)="91aa3331c14c60e7b4b9116fdf9da46e5c51616bf2b7afec053c59d4f2d41ba34035e9c98a83beb1db56fe1676e8365c7e2e4129d0318324d5ea707593bd85347e8bded911d2ca2ead9d8f2ec3b0672ba18589e8d4ddb694c2ad81aeefa007d832f3a93b4f76dcaec5f39e767ebe607c1d309e2e20ad43c1768caf5192007169", &(0x7f0000000080)=""/44, &(0x7f00000000c0)="104d61548b2ba0ad3412431188c7510a36004ff99622ab03196bf9003876e948605e0acc92f70c30dbd595d17f90cebab5cff1858246e99b33c1f8baa633edc83c5a822a6cbf62b0beeea03ea08364482c6f9848dda25080e35b7fff882de9c74afe9c09bedd540d693c960c7f36f5", &(0x7f0000000140)="08b2033c501ff21c678056796990a03432d6dbf88e37024820ecd368f2ddad2e13ac4e81b15b8e06541e3cf370c5a63c618c61be348da4b49cfc5eebe30b41c5b5f19b10b2dfeee9ecaac765ffd2bf82d39a5d37384337f8f2", 0x1, 0xffffffffffffffff, 0x4}, 0xfffffffffffffd42) 10:57:23 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f04ca013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:23 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {0x0}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:57:23 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000340)={0x0, @in6={{0xa, 0x0, 0x0, @private0}}}, 0x9c) 10:57:23 executing program 0: syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000480)='ns/mnt\x00') [ 1152.748184][ T3423] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:57:23 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:23 executing program 5: socketpair(0x0, 0x8080e, 0x0, &(0x7f0000001840)) 10:57:23 executing program 4: bpf$OBJ_GET_PROG(0x7, &(0x7f0000000200)={&(0x7f00000001c0)='./file0\x00'}, 0x10) 10:57:23 executing program 0: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000001240)=ANY=[], &(0x7f0000000080)=0x70) [ 1153.049623][ T3426] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. 10:57:23 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:23 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$FBIOPUTCMAP(r0, 0x4605, 0x0) [ 1153.128347][ T3426] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1153.270469][ T3467] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1153.280690][ T3426] CPU: 0 PID: 3426 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1153.289565][ T3426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1153.299727][ T3426] Call Trace: [ 1153.303015][ T3426] dump_stack_lvl+0xcd/0x134 [ 1153.307621][ T3426] sysfs_warn_dup.cold+0x1c/0x29 [ 1153.312580][ T3426] sysfs_do_create_link_sd+0x11e/0x140 10:57:23 executing program 0: fanotify_mark(0xffffffffffffffff, 0x62, 0x0, 0xffffffffffffffff, 0x0) [ 1153.318069][ T3426] sysfs_create_link+0x5f/0xc0 [ 1153.322859][ T3426] device_add+0x78f/0x21b0 [ 1153.327304][ T3426] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1153.333568][ T3426] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1153.339836][ T3426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1153.346097][ T3426] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1153.352092][ T3426] wiphy_register+0x1e8a/0x29b0 [ 1153.356947][ T3426] ? wiphy_unregister+0xbe0/0xbe0 [ 1153.361966][ T3426] ? minstrel_ht_alloc+0x531/0xa00 [ 1153.367083][ T3426] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1153.373157][ T3426] ieee80211_register_hw+0x1f18/0x3ed0 [ 1153.378629][ T3426] ? ieee80211_restart_hw+0x290/0x290 [ 1153.384001][ T3426] ? debug_object_destroy+0x210/0x210 [ 1153.389376][ T3426] ? memset+0x20/0x40 [ 1153.393356][ T3426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1153.399602][ T3426] ? __hrtimer_init+0x136/0x280 [ 1153.404454][ T3426] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1153.410191][ T3426] ? hwsim_virtio_rx_work+0x350/0x350 [ 1153.415560][ T3426] ? __kmalloc_track_caller+0x193/0x310 [ 1153.421108][ T3426] ? memcpy+0x39/0x60 [ 1153.425086][ T3426] hwsim_new_radio_nl+0x9bc/0x1080 [ 1153.430195][ T3426] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1153.436357][ T3426] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1153.442255][ T3426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1153.448490][ T3426] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1153.455858][ T3426] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1153.463142][ T3426] genl_family_rcv_msg_doit+0x228/0x320 [ 1153.468690][ T3426] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1153.476058][ T3426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1153.482307][ T3426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1153.488543][ T3426] ? ns_capable+0xd9/0x100 [ 1153.493171][ T3426] genl_rcv_msg+0x328/0x580 [ 1153.497685][ T3426] ? genl_get_cmd+0x480/0x480 [ 1153.502359][ T3426] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1153.508251][ T3426] ? lock_release+0x720/0x720 [ 1153.512926][ T3426] netlink_rcv_skb+0x153/0x420 [ 1153.517682][ T3426] ? genl_get_cmd+0x480/0x480 [ 1153.522354][ T3426] ? netlink_ack+0xa60/0xa60 [ 1153.526940][ T3426] ? netlink_deliver_tap+0x1b1/0xc30 [ 1153.532388][ T3426] ? _copy_from_iter+0x12b/0x1320 [ 1153.537418][ T3426] genl_rcv+0x24/0x40 [ 1153.541406][ T3426] netlink_unicast+0x533/0x7d0 [ 1153.546173][ T3426] ? netlink_attachskb+0x890/0x890 [ 1153.551277][ T3426] ? __virt_addr_valid+0x5d/0x2d0 [ 1153.556296][ T3426] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1153.562531][ T3426] ? __phys_addr_symbol+0x2c/0x70 [ 1153.567548][ T3426] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1153.573261][ T3426] ? __check_object_size+0x16e/0x3f0 [ 1153.578549][ T3426] netlink_sendmsg+0x86d/0xdb0 [ 1153.583315][ T3426] ? netlink_unicast+0x7d0/0x7d0 [ 1153.588251][ T3426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1153.594489][ T3426] ? netlink_unicast+0x7d0/0x7d0 [ 1153.599421][ T3426] sock_sendmsg+0xcf/0x120 [ 1153.603833][ T3426] ____sys_sendmsg+0x6e8/0x810 [ 1153.608592][ T3426] ? kernel_sendmsg+0x50/0x50 [ 1153.613261][ T3426] ? do_recvmmsg+0x6d0/0x6d0 [ 1153.617858][ T3426] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1153.623832][ T3426] ? lock_chain_count+0x20/0x20 [ 1153.628683][ T3426] ___sys_sendmsg+0xf3/0x170 [ 1153.633278][ T3426] ? sendmsg_copy_msghdr+0x160/0x160 [ 1153.638565][ T3426] ? __fget_files+0x21b/0x3e0 [ 1153.643235][ T3426] ? lock_downgrade+0x6e0/0x6e0 [ 1153.648098][ T3426] ? __fget_files+0x23d/0x3e0 [ 1153.652774][ T3426] ? __fget_light+0xea/0x280 [ 1153.657358][ T3426] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1153.663600][ T3426] __sys_sendmsg+0xe5/0x1b0 [ 1153.668100][ T3426] ? __sys_sendmsg_sock+0x30/0x30 [ 1153.673134][ T3426] ? syscall_enter_from_user_mode+0x21/0x70 [ 1153.679030][ T3426] do_syscall_64+0x35/0xb0 [ 1153.683444][ T3426] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1153.689334][ T3426] RIP: 0033:0x7f4637cff8d9 [ 1153.693750][ T3426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1153.713360][ T3426] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:57:24 executing program 4: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0) write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, &(0x7f00000000c0)={0x16, 0x98, 0xfa00, {0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @mcast1}}}, 0xa0) [ 1153.721774][ T3426] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1153.729742][ T3426] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1153.737708][ T3426] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1153.745672][ T3426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1153.753634][ T3426] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1154.018907][ T3467] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1154.049580][ T3427] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1154.079409][ T3427] sysfs: cannot create duplicate filename '/class/ieee80211/ !Ê5‚Á7>7' [ 1154.118901][ T3427] CPU: 0 PID: 3427 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1154.127786][ T3427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1154.137837][ T3427] Call Trace: [ 1154.141111][ T3427] dump_stack_lvl+0xcd/0x134 [ 1154.145713][ T3427] sysfs_warn_dup.cold+0x1c/0x29 [ 1154.150652][ T3427] sysfs_do_create_link_sd+0x11e/0x140 [ 1154.156122][ T3427] sysfs_create_link+0x5f/0xc0 [ 1154.160892][ T3427] device_add+0x78f/0x21b0 [ 1154.165313][ T3427] ? wait_for_completion_io+0x280/0x280 [ 1154.170862][ T3427] ? lock_downgrade+0x6e0/0x6e0 [ 1154.175718][ T3427] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1154.181961][ T3427] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1154.188207][ T3427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1154.194447][ T3427] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1154.200437][ T3427] wiphy_register+0x1e8a/0x29b0 [ 1154.205296][ T3427] ? wiphy_unregister+0xbe0/0xbe0 [ 1154.210319][ T3427] ? minstrel_ht_alloc+0x531/0xa00 [ 1154.215442][ T3427] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1154.221524][ T3427] ieee80211_register_hw+0x1f18/0x3ed0 [ 1154.227005][ T3427] ? ieee80211_restart_hw+0x290/0x290 [ 1154.232382][ T3427] ? debug_object_destroy+0x210/0x210 [ 1154.237763][ T3427] ? memset+0x20/0x40 [ 1154.241746][ T3427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1154.247989][ T3427] ? __hrtimer_init+0x136/0x280 [ 1154.252842][ T3427] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1154.258580][ T3427] ? hwsim_virtio_rx_work+0x350/0x350 [ 1154.263949][ T3427] ? __kmalloc_track_caller+0x193/0x310 [ 1154.269503][ T3427] ? memcpy+0x39/0x60 [ 1154.273487][ T3427] hwsim_new_radio_nl+0x9bc/0x1080 [ 1154.278602][ T3427] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1154.284509][ T3427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1154.290752][ T3427] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1154.298128][ T3427] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1154.305415][ T3427] genl_family_rcv_msg_doit+0x228/0x320 [ 1154.310960][ T3427] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1154.318342][ T3427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1154.324598][ T3427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1154.330838][ T3427] ? ns_capable+0xd9/0x100 [ 1154.335261][ T3427] genl_rcv_msg+0x328/0x580 [ 1154.339769][ T3427] ? genl_get_cmd+0x480/0x480 [ 1154.344444][ T3427] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1154.350345][ T3427] ? lock_release+0x720/0x720 [ 1154.355024][ T3427] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1154.360322][ T3427] netlink_rcv_skb+0x153/0x420 [ 1154.365088][ T3427] ? genl_get_cmd+0x480/0x480 [ 1154.369770][ T3427] ? netlink_ack+0xa60/0xa60 [ 1154.374368][ T3427] ? netlink_deliver_tap+0x1b1/0xc30 [ 1154.379660][ T3427] genl_rcv+0x24/0x40 [ 1154.383652][ T3427] netlink_unicast+0x533/0x7d0 [ 1154.388429][ T3427] ? netlink_attachskb+0x890/0x890 [ 1154.393539][ T3427] ? __virt_addr_valid+0x5d/0x2d0 [ 1154.398567][ T3427] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1154.404813][ T3427] ? __phys_addr_symbol+0x2c/0x70 [ 1154.409840][ T3427] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1154.415561][ T3427] ? __check_object_size+0x16e/0x3f0 [ 1154.420858][ T3427] netlink_sendmsg+0x86d/0xdb0 [ 1154.425630][ T3427] ? netlink_unicast+0x7d0/0x7d0 [ 1154.430577][ T3427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1154.436826][ T3427] ? netlink_unicast+0x7d0/0x7d0 [ 1154.441767][ T3427] sock_sendmsg+0xcf/0x120 [ 1154.446187][ T3427] ____sys_sendmsg+0x6e8/0x810 [ 1154.450959][ T3427] ? kernel_sendmsg+0x50/0x50 [ 1154.455638][ T3427] ? do_recvmmsg+0x6d0/0x6d0 [ 1154.460238][ T3427] ? lock_chain_count+0x20/0x20 [ 1154.465087][ T3427] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1154.471075][ T3427] ___sys_sendmsg+0xf3/0x170 [ 1154.475674][ T3427] ? sendmsg_copy_msghdr+0x160/0x160 [ 1154.480980][ T3427] ? __fget_files+0x21b/0x3e0 [ 1154.485659][ T3427] ? lock_downgrade+0x6e0/0x6e0 [ 1154.490796][ T3427] ? __fget_files+0x23d/0x3e0 [ 1154.495569][ T3427] ? __fget_light+0xea/0x280 [ 1154.500190][ T3427] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1154.506439][ T3427] __sys_sendmsg+0xe5/0x1b0 [ 1154.510951][ T3427] ? __sys_sendmsg_sock+0x30/0x30 [ 1154.515993][ T3427] ? syscall_enter_from_user_mode+0x21/0x70 [ 1154.521898][ T3427] do_syscall_64+0x35/0xb0 [ 1154.526323][ T3427] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1154.532223][ T3427] RIP: 0033:0x7f3e684f88d9 [ 1154.536637][ T3427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1154.556251][ T3427] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1154.564665][ T3427] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1154.572645][ T3427] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1154.580790][ T3427] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1154.588760][ T3427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1154.596733][ T3427] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:57:25 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f00f0013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:25 executing program 5: r0 = gettid() r1 = getpgid(0x0) prctl$PR_SET_PTRACER(0x59616d61, r1) clone(0x3102002dfe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) rt_sigtimedwait(&(0x7f00000001c0), 0x0, &(0x7f0000000040)={0x0, 0x1c9c380}, 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x200044) wait4(0x0, 0x0, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]}) syz_init_net_socket$rose(0xb, 0x5, 0x0) 10:57:25 executing program 0: syz_open_dev$dri(&(0x7f0000005580), 0x80000000, 0x0) 10:57:25 executing program 4: openat$proc_capi20ncci(0xffffff9c, &(0x7f0000000000), 0x80281, 0x0) 10:57:25 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:25 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {0x0}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1154.756581][ T3494] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:25 executing program 0: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}, 0x1c) 10:57:25 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, &(0x7f0000000200), 0x4) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x5, 0x0, 0x0) sendto$inet6(r0, &(0x7f0000000080)="ec", 0x1, 0x0, &(0x7f0000000180)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) [ 1154.807993][ T3494] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1154.847490][ T3502] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. 10:57:25 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1154.946340][ T3502] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1155.002105][ T26] audit: type=1326 audit(1633085845.561:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3489 comm="syz-executor.5" exe="/root/syz-executor.5" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1c480a98d9 code=0x0 [ 1155.026212][ T3502] CPU: 0 PID: 3502 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1155.034920][ T3502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1155.044989][ T3502] Call Trace: 10:57:25 executing program 5: request_key(&(0x7f0000000080)='syzkaller\x00', &(0x7f00000000c0)={'syz', 0x2}, 0x0, 0x0) [ 1155.048278][ T3502] dump_stack_lvl+0xcd/0x134 [ 1155.052891][ T3502] sysfs_warn_dup.cold+0x1c/0x29 [ 1155.057847][ T3502] sysfs_do_create_link_sd+0x11e/0x140 [ 1155.063332][ T3502] sysfs_create_link+0x5f/0xc0 [ 1155.068115][ T3502] device_add+0x78f/0x21b0 [ 1155.072552][ T3502] ? wait_for_completion_io+0x280/0x280 [ 1155.078116][ T3502] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1155.084363][ T3502] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1155.090602][ T3502] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1155.096840][ T3502] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1155.102824][ T3502] wiphy_register+0x1e8a/0x29b0 [ 1155.107684][ T3502] ? wiphy_unregister+0xbe0/0xbe0 [ 1155.112702][ T3502] ? minstrel_ht_alloc+0x531/0xa00 [ 1155.117820][ T3502] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1155.123891][ T3502] ieee80211_register_hw+0x1f18/0x3ed0 [ 1155.129360][ T3502] ? ieee80211_restart_hw+0x290/0x290 [ 1155.134728][ T3502] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1155.140899][ T3502] ? memset+0x20/0x40 [ 1155.144881][ T3502] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1155.151381][ T3502] ? __hrtimer_init+0x136/0x280 [ 1155.156235][ T3502] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1155.161964][ T3502] ? hwsim_virtio_rx_work+0x350/0x350 [ 1155.167329][ T3502] ? memcpy+0x39/0x60 [ 1155.171306][ T3502] hwsim_new_radio_nl+0x9bc/0x1080 [ 1155.176411][ T3502] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1155.182297][ T3502] ? __nla_validate_parse+0x2df/0x2410 [ 1155.187756][ T3502] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1155.193991][ T3502] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1155.201360][ T3502] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1155.208651][ T3502] genl_family_rcv_msg_doit+0x228/0x320 [ 1155.214194][ T3502] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1155.221564][ T3502] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1155.227818][ T3502] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1155.234057][ T3502] ? ns_capable+0xd9/0x100 [ 1155.238470][ T3502] genl_rcv_msg+0x328/0x580 [ 1155.242972][ T3502] ? genl_get_cmd+0x480/0x480 [ 1155.247640][ T3502] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1155.253529][ T3502] ? lock_release+0x720/0x720 [ 1155.258205][ T3502] netlink_rcv_skb+0x153/0x420 [ 1155.262962][ T3502] ? genl_get_cmd+0x480/0x480 [ 1155.267629][ T3502] ? netlink_ack+0xa60/0xa60 [ 1155.272215][ T3502] ? netlink_deliver_tap+0x1b1/0xc30 [ 1155.277488][ T3502] ? _copy_from_iter+0x12b/0x1320 [ 1155.282513][ T3502] genl_rcv+0x24/0x40 [ 1155.286490][ T3502] netlink_unicast+0x533/0x7d0 [ 1155.291245][ T3502] ? netlink_attachskb+0x890/0x890 [ 1155.296345][ T3502] ? __virt_addr_valid+0x5d/0x2d0 [ 1155.301364][ T3502] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1155.307595][ T3502] ? __phys_addr_symbol+0x2c/0x70 [ 1155.312608][ T3502] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1155.318321][ T3502] ? __check_object_size+0x16e/0x3f0 [ 1155.323604][ T3502] netlink_sendmsg+0x86d/0xdb0 [ 1155.328365][ T3502] ? netlink_unicast+0x7d0/0x7d0 [ 1155.333302][ T3502] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1155.339538][ T3502] ? netlink_unicast+0x7d0/0x7d0 [ 1155.344470][ T3502] sock_sendmsg+0xcf/0x120 [ 1155.348884][ T3502] ____sys_sendmsg+0x6e8/0x810 [ 1155.353647][ T3502] ? kernel_sendmsg+0x50/0x50 [ 1155.358318][ T3502] ? do_recvmmsg+0x6d0/0x6d0 [ 1155.362908][ T3502] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1155.368881][ T3502] ? lock_chain_count+0x20/0x20 [ 1155.373733][ T3502] ___sys_sendmsg+0xf3/0x170 [ 1155.378322][ T3502] ? sendmsg_copy_msghdr+0x160/0x160 [ 1155.383608][ T3502] ? __fget_files+0x21b/0x3e0 [ 1155.388277][ T3502] ? lock_downgrade+0x6e0/0x6e0 [ 1155.393136][ T3502] ? __fget_files+0x23d/0x3e0 [ 1155.397809][ T3502] ? __fget_light+0xea/0x280 [ 1155.402389][ T3502] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1155.408626][ T3502] __sys_sendmsg+0xe5/0x1b0 [ 1155.413131][ T3502] ? __sys_sendmsg_sock+0x30/0x30 [ 1155.418161][ T3502] ? syscall_enter_from_user_mode+0x21/0x70 [ 1155.424052][ T3502] do_syscall_64+0x35/0xb0 [ 1155.428466][ T3502] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1155.434360][ T3502] RIP: 0033:0x7f4637cff8d9 [ 1155.438773][ T3502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1155.458376][ T3502] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1155.466786][ T3502] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1155.474748][ T3502] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1155.482713][ T3502] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1155.490678][ T3502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1155.498645][ T3502] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:57:26 executing program 5: io_uring_setup(0x47d3, &(0x7f0000000000)={0x0, 0x0, 0x21}) [ 1155.696804][ T3530] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:26 executing program 5: r0 = fsopen(&(0x7f0000000000)='hfsplus\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) [ 1156.317159][ T3530] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1156.355990][ T3503] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1156.410672][ T3503] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1156.495243][ T3503] CPU: 0 PID: 3503 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1156.504131][ T3503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1156.514187][ T3503] Call Trace: [ 1156.517461][ T3503] dump_stack_lvl+0xcd/0x134 [ 1156.522062][ T3503] sysfs_warn_dup.cold+0x1c/0x29 [ 1156.527003][ T3503] sysfs_do_create_link_sd+0x11e/0x140 [ 1156.532476][ T3503] sysfs_create_link+0x5f/0xc0 [ 1156.537467][ T3503] device_add+0x78f/0x21b0 [ 1156.542036][ T3503] ? wait_for_completion_io+0x280/0x280 [ 1156.547586][ T3503] ? lock_downgrade+0x6e0/0x6e0 [ 1156.552430][ T3503] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1156.558664][ T3503] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1156.564900][ T3503] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1156.571128][ T3503] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1156.577111][ T3503] wiphy_register+0x1e8a/0x29b0 [ 1156.581960][ T3503] ? wiphy_unregister+0xbe0/0xbe0 [ 1156.586968][ T3503] ? minstrel_ht_alloc+0x531/0xa00 [ 1156.592079][ T3503] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1156.598145][ T3503] ieee80211_register_hw+0x1f18/0x3ed0 [ 1156.603606][ T3503] ? ieee80211_restart_hw+0x290/0x290 [ 1156.608971][ T3503] ? debug_object_destroy+0x210/0x210 [ 1156.614339][ T3503] ? memset+0x20/0x40 [ 1156.618308][ T3503] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1156.624540][ T3503] ? __hrtimer_init+0x136/0x280 [ 1156.629379][ T3503] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1156.635107][ T3503] ? hwsim_virtio_rx_work+0x350/0x350 [ 1156.640467][ T3503] ? __kmalloc_track_caller+0x193/0x310 [ 1156.646007][ T3503] ? memcpy+0x39/0x60 [ 1156.649981][ T3503] hwsim_new_radio_nl+0x9bc/0x1080 [ 1156.655085][ T3503] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1156.660977][ T3503] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1156.667213][ T3503] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1156.674577][ T3503] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1156.681855][ T3503] genl_family_rcv_msg_doit+0x228/0x320 [ 1156.687392][ T3503] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1156.694752][ T3503] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1156.701009][ T3503] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1156.707240][ T3503] ? ns_capable+0xd9/0x100 [ 1156.711648][ T3503] genl_rcv_msg+0x328/0x580 [ 1156.716142][ T3503] ? genl_get_cmd+0x480/0x480 [ 1156.720808][ T3503] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1156.726691][ T3503] ? lock_release+0x720/0x720 [ 1156.731357][ T3503] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1156.736632][ T3503] netlink_rcv_skb+0x153/0x420 [ 1156.741383][ T3503] ? genl_get_cmd+0x480/0x480 [ 1156.746051][ T3503] ? netlink_ack+0xa60/0xa60 [ 1156.750633][ T3503] ? netlink_deliver_tap+0x1b1/0xc30 [ 1156.755911][ T3503] genl_rcv+0x24/0x40 [ 1156.759886][ T3503] netlink_unicast+0x533/0x7d0 [ 1156.764641][ T3503] ? netlink_attachskb+0x890/0x890 [ 1156.769746][ T3503] ? __virt_addr_valid+0x5d/0x2d0 [ 1156.774769][ T3503] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1156.781008][ T3503] ? __phys_addr_symbol+0x2c/0x70 [ 1156.786023][ T3503] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1156.791757][ T3503] ? __check_object_size+0x16e/0x3f0 [ 1156.797042][ T3503] netlink_sendmsg+0x86d/0xdb0 [ 1156.801803][ T3503] ? netlink_unicast+0x7d0/0x7d0 [ 1156.806733][ T3503] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1156.812972][ T3503] ? netlink_unicast+0x7d0/0x7d0 [ 1156.817901][ T3503] sock_sendmsg+0xcf/0x120 [ 1156.822313][ T3503] ____sys_sendmsg+0x6e8/0x810 [ 1156.827155][ T3503] ? kernel_sendmsg+0x50/0x50 [ 1156.831826][ T3503] ? do_recvmmsg+0x6d0/0x6d0 [ 1156.836413][ T3503] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1156.842394][ T3503] ___sys_sendmsg+0xf3/0x170 [ 1156.846980][ T3503] ? sendmsg_copy_msghdr+0x160/0x160 [ 1156.852264][ T3503] ? __fget_files+0x21b/0x3e0 [ 1156.856933][ T3503] ? lock_downgrade+0x6e0/0x6e0 [ 1156.861786][ T3503] ? __fget_files+0x23d/0x3e0 [ 1156.866457][ T3503] ? __fget_light+0xea/0x280 [ 1156.871036][ T3503] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1156.877274][ T3503] __sys_sendmsg+0xe5/0x1b0 [ 1156.881775][ T3503] ? __sys_sendmsg_sock+0x30/0x30 [ 1156.886804][ T3503] ? syscall_enter_from_user_mode+0x21/0x70 [ 1156.892697][ T3503] do_syscall_64+0x35/0xb0 [ 1156.897107][ T3503] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1156.902991][ T3503] RIP: 0033:0x7f3e684f88d9 [ 1156.907399][ T3503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1156.927088][ T3503] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1156.935497][ T3503] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1156.943633][ T3503] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1156.951594][ T3503] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1156.959559][ T3503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1156.967518][ T3503] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1157.138998][ T3509] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1157.166907][ T3509] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1157.174663][ T3509] CPU: 0 PID: 3509 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1157.183351][ T3509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1157.193422][ T3509] Call Trace: [ 1157.197008][ T3509] dump_stack_lvl+0xcd/0x134 [ 1157.201597][ T3509] sysfs_warn_dup.cold+0x1c/0x29 [ 1157.206525][ T3509] sysfs_do_create_link_sd+0x11e/0x140 [ 1157.211983][ T3509] sysfs_create_link+0x5f/0xc0 [ 1157.216741][ T3509] device_add+0x78f/0x21b0 [ 1157.221157][ T3509] ? wait_for_completion_io+0x280/0x280 [ 1157.226694][ T3509] ? lock_downgrade+0x6e0/0x6e0 [ 1157.231538][ T3509] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1157.237773][ T3509] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1157.244011][ T3509] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1157.250246][ T3509] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1157.256232][ T3509] wiphy_register+0x1e8a/0x29b0 [ 1157.261083][ T3509] ? wiphy_unregister+0xbe0/0xbe0 [ 1157.266095][ T3509] ? minstrel_ht_alloc+0x531/0xa00 [ 1157.271213][ T3509] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1157.277279][ T3509] ieee80211_register_hw+0x1f18/0x3ed0 [ 1157.282743][ T3509] ? ieee80211_restart_hw+0x290/0x290 [ 1157.288114][ T3509] ? debug_object_destroy+0x210/0x210 [ 1157.293492][ T3509] ? memset+0x20/0x40 [ 1157.297463][ T3509] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1157.303697][ T3509] ? __hrtimer_init+0x136/0x280 [ 1157.308539][ T3509] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1157.314263][ T3509] ? hwsim_virtio_rx_work+0x350/0x350 [ 1157.319627][ T3509] ? __kmalloc_track_caller+0x193/0x310 [ 1157.325180][ T3509] ? memcpy+0x39/0x60 [ 1157.329165][ T3509] hwsim_new_radio_nl+0x9bc/0x1080 [ 1157.334279][ T3509] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1157.340174][ T3509] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1157.346417][ T3509] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1157.353782][ T3509] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1157.361067][ T3509] genl_family_rcv_msg_doit+0x228/0x320 [ 1157.366611][ T3509] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1157.373978][ T3509] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1157.380224][ T3509] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1157.386457][ T3509] ? ns_capable+0xd9/0x100 [ 1157.390868][ T3509] genl_rcv_msg+0x328/0x580 [ 1157.395362][ T3509] ? genl_get_cmd+0x480/0x480 [ 1157.400031][ T3509] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1157.405917][ T3509] ? lock_release+0x720/0x720 [ 1157.410582][ T3509] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1157.415860][ T3509] netlink_rcv_skb+0x153/0x420 [ 1157.420620][ T3509] ? genl_get_cmd+0x480/0x480 [ 1157.425288][ T3509] ? netlink_ack+0xa60/0xa60 [ 1157.429873][ T3509] ? netlink_deliver_tap+0x1b1/0xc30 [ 1157.435152][ T3509] genl_rcv+0x24/0x40 [ 1157.439125][ T3509] netlink_unicast+0x533/0x7d0 [ 1157.443886][ T3509] ? netlink_attachskb+0x890/0x890 [ 1157.448985][ T3509] ? __virt_addr_valid+0x5d/0x2d0 [ 1157.454004][ T3509] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1157.460239][ T3509] ? __phys_addr_symbol+0x2c/0x70 [ 1157.465255][ T3509] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1157.470965][ T3509] ? __check_object_size+0x16e/0x3f0 [ 1157.476246][ T3509] netlink_sendmsg+0x86d/0xdb0 [ 1157.481007][ T3509] ? netlink_unicast+0x7d0/0x7d0 [ 1157.485939][ T3509] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1157.492176][ T3509] ? netlink_unicast+0x7d0/0x7d0 [ 1157.497106][ T3509] sock_sendmsg+0xcf/0x120 [ 1157.501517][ T3509] ____sys_sendmsg+0x6e8/0x810 [ 1157.506272][ T3509] ? kernel_sendmsg+0x50/0x50 [ 1157.510938][ T3509] ? do_recvmmsg+0x6d0/0x6d0 [ 1157.515522][ T3509] ? lock_chain_count+0x20/0x20 [ 1157.520363][ T3509] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1157.526337][ T3509] ___sys_sendmsg+0xf3/0x170 [ 1157.530922][ T3509] ? sendmsg_copy_msghdr+0x160/0x160 [ 1157.536205][ T3509] ? __fget_files+0x21b/0x3e0 [ 1157.540876][ T3509] ? lock_downgrade+0x6e0/0x6e0 [ 1157.545728][ T3509] ? __fget_files+0x23d/0x3e0 [ 1157.550399][ T3509] ? __fget_light+0xea/0x280 [ 1157.554977][ T3509] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1157.561221][ T3509] __sys_sendmsg+0xe5/0x1b0 [ 1157.565724][ T3509] ? __sys_sendmsg_sock+0x30/0x30 [ 1157.570751][ T3509] ? syscall_enter_from_user_mode+0x21/0x70 [ 1157.576639][ T3509] do_syscall_64+0x35/0xb0 [ 1157.581047][ T3509] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1157.586933][ T3509] RIP: 0033:0x7f3e684f88d9 [ 1157.591341][ T3509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1157.610941][ T3509] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1157.619351][ T3509] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1157.627318][ T3509] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1157.635279][ T3509] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1157.643239][ T3509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1157.651199][ T3509] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:57:28 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0004003582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:28 executing program 0: syz_emit_ethernet(0x46, &(0x7f0000000040)={@multicast, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x6, 0x0, @broadcast, @remote, {[@timestamp_addr={0x44, 0x4}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa}]}}}}}}}, 0x0) 10:57:28 executing program 4: openat$fb1(0xffffffffffffff9c, &(0x7f0000000900), 0x0, 0x0) 10:57:28 executing program 5: syz_open_dev$I2C(&(0x7f0000000000), 0x6, 0x0) 10:57:28 executing program 3: socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:28 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/120, 0x78}], 0x1, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1157.789225][ T3569] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1157.825579][ T3573] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:57:28 executing program 5: socketpair(0x25, 0x5, 0x800, &(0x7f0000000c00)) 10:57:28 executing program 0: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x14, 0x0, 0x0) 10:57:28 executing program 4: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 1157.839269][ T3569] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1157.911770][ T3573] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1157.941290][ T3573] CPU: 0 PID: 3573 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1157.950156][ T3573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1157.960208][ T3573] Call Trace: [ 1157.963491][ T3573] dump_stack_lvl+0xcd/0x134 [ 1157.968094][ T3573] sysfs_warn_dup.cold+0x1c/0x29 [ 1157.973037][ T3573] sysfs_do_create_link_sd+0x11e/0x140 [ 1157.978508][ T3573] sysfs_create_link+0x5f/0xc0 [ 1157.983279][ T3573] device_add+0x78f/0x21b0 [ 1157.987714][ T3573] ? wait_for_completion_io+0x280/0x280 [ 1157.993266][ T3573] ? lock_downgrade+0x6e0/0x6e0 [ 1157.998124][ T3573] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1158.004362][ T3573] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1158.010597][ T3573] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1158.016828][ T3573] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1158.022809][ T3573] wiphy_register+0x1e8a/0x29b0 [ 1158.027687][ T3573] ? wiphy_unregister+0xbe0/0xbe0 [ 1158.032710][ T3573] ? minstrel_ht_alloc+0x531/0xa00 [ 1158.038132][ T3573] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1158.044207][ T3573] ieee80211_register_hw+0x1f18/0x3ed0 [ 1158.049668][ T3573] ? ieee80211_restart_hw+0x290/0x290 [ 1158.055036][ T3573] ? debug_object_destroy+0x210/0x210 [ 1158.060404][ T3573] ? memset+0x20/0x40 [ 1158.064374][ T3573] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1158.070603][ T3573] ? __hrtimer_init+0x136/0x280 [ 1158.075443][ T3573] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1158.081167][ T3573] ? hwsim_virtio_rx_work+0x350/0x350 [ 1158.086529][ T3573] ? __kmalloc_track_caller+0x193/0x310 [ 1158.092069][ T3573] ? memcpy+0x39/0x60 [ 1158.096043][ T3573] hwsim_new_radio_nl+0x9bc/0x1080 [ 1158.101152][ T3573] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1158.107061][ T3573] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1158.113307][ T3573] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1158.120674][ T3573] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1158.127961][ T3573] genl_family_rcv_msg_doit+0x228/0x320 [ 1158.133508][ T3573] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1158.140880][ T3573] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1158.147128][ T3573] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1158.153362][ T3573] ? ns_capable+0xd9/0x100 [ 1158.157772][ T3573] genl_rcv_msg+0x328/0x580 [ 1158.162270][ T3573] ? genl_get_cmd+0x480/0x480 [ 1158.166936][ T3573] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1158.172827][ T3573] ? lock_release+0x720/0x720 [ 1158.177492][ T3573] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1158.182775][ T3573] netlink_rcv_skb+0x153/0x420 [ 1158.187530][ T3573] ? genl_get_cmd+0x480/0x480 [ 1158.192204][ T3573] ? netlink_ack+0xa60/0xa60 [ 1158.196787][ T3573] ? netlink_deliver_tap+0x1b1/0xc30 [ 1158.202088][ T3573] genl_rcv+0x24/0x40 [ 1158.206065][ T3573] netlink_unicast+0x533/0x7d0 [ 1158.210827][ T3573] ? netlink_attachskb+0x890/0x890 [ 1158.215928][ T3573] ? __virt_addr_valid+0x5d/0x2d0 [ 1158.220947][ T3573] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1158.227181][ T3573] ? __phys_addr_symbol+0x2c/0x70 [ 1158.232207][ T3573] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1158.237917][ T3573] ? __check_object_size+0x16e/0x3f0 [ 1158.243207][ T3573] netlink_sendmsg+0x86d/0xdb0 [ 1158.247967][ T3573] ? netlink_unicast+0x7d0/0x7d0 [ 1158.252904][ T3573] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1158.259145][ T3573] ? netlink_unicast+0x7d0/0x7d0 [ 1158.264082][ T3573] sock_sendmsg+0xcf/0x120 [ 1158.268496][ T3573] ____sys_sendmsg+0x6e8/0x810 [ 1158.273257][ T3573] ? kernel_sendmsg+0x50/0x50 [ 1158.277927][ T3573] ? do_recvmmsg+0x6d0/0x6d0 [ 1158.282513][ T3573] ? lock_chain_count+0x20/0x20 [ 1158.287355][ T3573] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1158.293335][ T3573] ___sys_sendmsg+0xf3/0x170 [ 1158.297923][ T3573] ? sendmsg_copy_msghdr+0x160/0x160 [ 1158.303211][ T3573] ? __fget_files+0x21b/0x3e0 [ 1158.307878][ T3573] ? lock_downgrade+0x6e0/0x6e0 [ 1158.312732][ T3573] ? __fget_files+0x23d/0x3e0 [ 1158.317402][ T3573] ? __fget_light+0xea/0x280 [ 1158.321983][ T3573] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1158.328224][ T3573] __sys_sendmsg+0xe5/0x1b0 [ 1158.332727][ T3573] ? __sys_sendmsg_sock+0x30/0x30 [ 1158.337758][ T3573] ? syscall_enter_from_user_mode+0x21/0x70 [ 1158.343651][ T3573] do_syscall_64+0x35/0xb0 [ 1158.348065][ T3573] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1158.353954][ T3573] RIP: 0033:0x7f3e684f88d9 [ 1158.358361][ T3573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1158.377966][ T3573] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1158.386373][ T3573] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1158.394337][ T3573] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1158.402296][ T3573] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 10:57:28 executing program 3: socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1158.410259][ T3573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1158.418221][ T3573] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:29 executing program 5: syz_mount_image$ntfs(&(0x7f00000018c0), &(0x7f0000001900)='./file0\x00', 0x0, 0x0, &(0x7f0000002d40), 0x0, &(0x7f0000002e00)={[], [{@uid_eq={'uid', 0x3d, 0xee01}}]}) [ 1158.528998][ T3594] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:29 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, @dev, @mcast2}}) [ 1158.678618][ T3594] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1158.709076][ T3574] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1158.772267][ T3574] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1158.798661][ T3574] CPU: 1 PID: 3574 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1158.807796][ T3574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1158.817862][ T3574] Call Trace: [ 1158.821156][ T3574] dump_stack_lvl+0xcd/0x134 [ 1158.825781][ T3574] sysfs_warn_dup.cold+0x1c/0x29 [ 1158.830743][ T3574] sysfs_do_create_link_sd+0x11e/0x140 [ 1158.836236][ T3574] sysfs_create_link+0x5f/0xc0 [ 1158.841029][ T3574] device_add+0x78f/0x21b0 [ 1158.845475][ T3574] ? ieee80211_set_bitrate_flags+0x354/0x650 [ 1158.851479][ T3574] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1158.857746][ T3574] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1158.864009][ T3574] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1158.870274][ T3574] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1158.876286][ T3574] wiphy_register+0x1e8a/0x29b0 [ 1158.881165][ T3574] ? wiphy_unregister+0xbe0/0xbe0 [ 1158.886295][ T3574] ? minstrel_ht_alloc+0x531/0xa00 [ 1158.891434][ T3574] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1158.897525][ T3574] ieee80211_register_hw+0x1f18/0x3ed0 [ 1158.903020][ T3574] ? ieee80211_restart_hw+0x290/0x290 [ 1158.908413][ T3574] ? debug_object_destroy+0x210/0x210 [ 1158.913810][ T3574] ? memset+0x20/0x40 [ 1158.917807][ T3574] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1158.924066][ T3574] ? __hrtimer_init+0x136/0x280 [ 1158.928933][ T3574] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1158.934688][ T3574] ? hwsim_virtio_rx_work+0x350/0x350 [ 1158.940075][ T3574] ? __kmalloc_track_caller+0x193/0x310 [ 1158.945645][ T3574] ? memcpy+0x39/0x60 [ 1158.949644][ T3574] hwsim_new_radio_nl+0x9bc/0x1080 [ 1158.954778][ T3574] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1158.960703][ T3574] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1158.968015][ T3574] genl_family_rcv_msg_doit+0x228/0x320 [ 1158.973581][ T3574] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1158.980971][ T3574] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1158.987251][ T3574] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1158.993513][ T3574] ? ns_capable+0xd9/0x100 [ 1158.997951][ T3574] genl_rcv_msg+0x328/0x580 [ 1159.002474][ T3574] ? genl_get_cmd+0x480/0x480 [ 1159.007168][ T3574] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1159.013093][ T3574] ? lock_release+0x720/0x720 [ 1159.017788][ T3574] netlink_rcv_skb+0x153/0x420 [ 1159.022567][ T3574] ? genl_get_cmd+0x480/0x480 [ 1159.027260][ T3574] ? netlink_ack+0xa60/0xa60 [ 1159.031871][ T3574] ? netlink_deliver_tap+0x1b1/0xc30 [ 1159.037178][ T3574] ? _copy_from_iter+0x12b/0x1320 [ 1159.042233][ T3574] genl_rcv+0x24/0x40 [ 1159.046230][ T3574] netlink_unicast+0x533/0x7d0 [ 1159.051009][ T3574] ? netlink_attachskb+0x890/0x890 [ 1159.056133][ T3574] ? __virt_addr_valid+0x5d/0x2d0 [ 1159.061179][ T3574] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1159.067534][ T3574] ? __phys_addr_symbol+0x2c/0x70 [ 1159.072573][ T3574] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1159.078311][ T3574] ? __check_object_size+0x16e/0x3f0 [ 1159.083619][ T3574] netlink_sendmsg+0x86d/0xdb0 [ 1159.088402][ T3574] ? netlink_unicast+0x7d0/0x7d0 [ 1159.093362][ T3574] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1159.099623][ T3574] ? netlink_unicast+0x7d0/0x7d0 [ 1159.104580][ T3574] sock_sendmsg+0xcf/0x120 [ 1159.109016][ T3574] ____sys_sendmsg+0x6e8/0x810 [ 1159.113799][ T3574] ? kernel_sendmsg+0x50/0x50 [ 1159.118484][ T3574] ? do_recvmmsg+0x6d0/0x6d0 [ 1159.123099][ T3574] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1159.129100][ T3574] ? lock_chain_count+0x20/0x20 [ 1159.133977][ T3574] ___sys_sendmsg+0xf3/0x170 [ 1159.138590][ T3574] ? sendmsg_copy_msghdr+0x160/0x160 [ 1159.143905][ T3574] ? __fget_files+0x21b/0x3e0 [ 1159.148600][ T3574] ? lock_downgrade+0x6e0/0x6e0 [ 1159.153478][ T3574] ? __fget_files+0x23d/0x3e0 [ 1159.158438][ T3574] ? __fget_light+0xea/0x280 [ 1159.163047][ T3574] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1159.169316][ T3574] __sys_sendmsg+0xe5/0x1b0 [ 1159.173841][ T3574] ? __sys_sendmsg_sock+0x30/0x30 [ 1159.178902][ T3574] ? syscall_enter_from_user_mode+0x21/0x70 [ 1159.184823][ T3574] do_syscall_64+0x35/0xb0 [ 1159.189265][ T3574] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1159.195181][ T3574] RIP: 0033:0x7f4637cff8d9 [ 1159.199614][ T3574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1159.219239][ T3574] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1159.227669][ T3574] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1159.235655][ T3574] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1159.243640][ T3574] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1159.251625][ T3574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1159.259613][ T3574] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1159.303324][ T3576] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1159.347270][ T3576] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1159.355112][ T3576] CPU: 1 PID: 3576 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1159.363800][ T3576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1159.373869][ T3576] Call Trace: [ 1159.377160][ T3576] dump_stack_lvl+0xcd/0x134 [ 1159.381778][ T3576] sysfs_warn_dup.cold+0x1c/0x29 [ 1159.386735][ T3576] sysfs_do_create_link_sd+0x11e/0x140 [ 1159.392227][ T3576] sysfs_create_link+0x5f/0xc0 [ 1159.397018][ T3576] device_add+0x78f/0x21b0 [ 1159.401453][ T3576] ? wait_for_completion_io+0x280/0x280 [ 1159.407015][ T3576] ? lock_downgrade+0x6e0/0x6e0 [ 1159.411887][ T3576] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1159.418151][ T3576] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1159.424418][ T3576] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1159.430681][ T3576] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1159.436687][ T3576] wiphy_register+0x1e8a/0x29b0 [ 1159.441564][ T3576] ? wiphy_unregister+0xbe0/0xbe0 [ 1159.446604][ T3576] ? minstrel_ht_alloc+0x531/0xa00 [ 1159.451745][ T3576] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1159.457837][ T3576] ieee80211_register_hw+0x1f18/0x3ed0 [ 1159.463327][ T3576] ? ieee80211_restart_hw+0x290/0x290 [ 1159.468718][ T3576] ? debug_object_destroy+0x210/0x210 [ 1159.474115][ T3576] ? memset+0x20/0x40 [ 1159.478109][ T3576] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1159.484366][ T3576] ? __hrtimer_init+0x136/0x280 [ 1159.489239][ T3576] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1159.494994][ T3576] ? hwsim_virtio_rx_work+0x350/0x350 [ 1159.500381][ T3576] ? __kmalloc_track_caller+0x193/0x310 [ 1159.505955][ T3576] ? memcpy+0x39/0x60 [ 1159.509959][ T3576] hwsim_new_radio_nl+0x9bc/0x1080 [ 1159.515090][ T3576] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1159.521014][ T3576] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1159.527280][ T3576] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1159.534674][ T3576] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1159.541990][ T3576] genl_family_rcv_msg_doit+0x228/0x320 [ 1159.547556][ T3576] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1159.554949][ T3576] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1159.561228][ T3576] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1159.567491][ T3576] ? ns_capable+0xd9/0x100 [ 1159.571931][ T3576] genl_rcv_msg+0x328/0x580 [ 1159.576460][ T3576] ? genl_get_cmd+0x480/0x480 [ 1159.581153][ T3576] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1159.587075][ T3576] ? lock_release+0x720/0x720 [ 1159.591767][ T3576] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1159.597075][ T3576] netlink_rcv_skb+0x153/0x420 [ 1159.601852][ T3576] ? genl_get_cmd+0x480/0x480 [ 1159.606541][ T3576] ? netlink_ack+0xa60/0xa60 [ 1159.611155][ T3576] ? netlink_deliver_tap+0x1b1/0xc30 [ 1159.616466][ T3576] genl_rcv+0x24/0x40 [ 1159.620463][ T3576] netlink_unicast+0x533/0x7d0 [ 1159.625247][ T3576] ? netlink_attachskb+0x890/0x890 [ 1159.630372][ T3576] ? __virt_addr_valid+0x5d/0x2d0 [ 1159.635590][ T3576] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1159.641940][ T3576] ? __phys_addr_symbol+0x2c/0x70 [ 1159.646980][ T3576] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1159.652716][ T3576] ? __check_object_size+0x16e/0x3f0 [ 1159.658027][ T3576] netlink_sendmsg+0x86d/0xdb0 [ 1159.662814][ T3576] ? netlink_unicast+0x7d0/0x7d0 [ 1159.667775][ T3576] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1159.674037][ T3576] ? netlink_unicast+0x7d0/0x7d0 [ 1159.678989][ T3576] sock_sendmsg+0xcf/0x120 [ 1159.683425][ T3576] ____sys_sendmsg+0x6e8/0x810 [ 1159.688217][ T3576] ? kernel_sendmsg+0x50/0x50 [ 1159.692910][ T3576] ? do_recvmmsg+0x6d0/0x6d0 [ 1159.697523][ T3576] ? lock_chain_count+0x20/0x20 [ 1159.702393][ T3576] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1159.708401][ T3576] ___sys_sendmsg+0xf3/0x170 [ 1159.713008][ T3576] ? sendmsg_copy_msghdr+0x160/0x160 [ 1159.718315][ T3576] ? __fget_files+0x21b/0x3e0 [ 1159.723009][ T3576] ? lock_downgrade+0x6e0/0x6e0 [ 1159.727888][ T3576] ? __fget_files+0x23d/0x3e0 [ 1159.732586][ T3576] ? __fget_light+0xea/0x280 [ 1159.737191][ T3576] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1159.743462][ T3576] __sys_sendmsg+0xe5/0x1b0 [ 1159.748161][ T3576] ? __sys_sendmsg_sock+0x30/0x30 [ 1159.753232][ T3576] ? syscall_enter_from_user_mode+0x21/0x70 [ 1159.759151][ T3576] do_syscall_64+0x35/0xb0 [ 1159.763596][ T3576] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1159.769511][ T3576] RIP: 0033:0x7f3e684f88d9 [ 1159.773934][ T3576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1159.793556][ T3576] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1159.801993][ T3576] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1159.809977][ T3576] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1159.817962][ T3576] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1159.825949][ T3576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1159.833933][ T3576] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:57:30 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0002013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:30 executing program 0: r0 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0xc0286687, 0x0) 10:57:30 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@random="11c75af24677", @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "a2c196", 0x18, 0x3a, 0x0, @private2, @mcast2, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @private2}}}}}}, 0x0) 10:57:30 executing program 4: r0 = socket(0xa, 0x80805, 0x0) r1 = socket$inet(0x2, 0x80001, 0x84) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="fe"], 0x58}}, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000040)=@assoc_value={0x0}, &(0x7f0000000240)=0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0xd, &(0x7f0000000140)={r2}, &(0x7f0000000180)=0xc) 10:57:30 executing program 3: socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:30 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/120, 0x78}], 0x1, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1160.073982][ T3636] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1160.110959][ T3636] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:30 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@random="11c75af24677", @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "a2c196", 0x18, 0x3a, 0x0, @private2, @mcast2, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @private2}}}}}}, 0x0) [ 1160.151587][ T3645] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:57:30 executing program 0: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x79, 0x0, 0x0) 10:57:30 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_PROTOCOLS(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={0x0}}, 0x1) 10:57:30 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1160.262531][ T3645] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1160.304878][ T3645] CPU: 1 PID: 3645 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1160.313688][ T3645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1160.323761][ T3645] Call Trace: [ 1160.327046][ T3645] dump_stack_lvl+0xcd/0x134 [ 1160.331656][ T3645] sysfs_warn_dup.cold+0x1c/0x29 [ 1160.336620][ T3645] sysfs_do_create_link_sd+0x11e/0x140 [ 1160.342105][ T3645] sysfs_create_link+0x5f/0xc0 [ 1160.346889][ T3645] device_add+0x78f/0x21b0 [ 1160.351324][ T3645] ? wait_for_completion_io+0x280/0x280 [ 1160.356889][ T3645] ? lock_downgrade+0x6e0/0x6e0 [ 1160.361757][ T3645] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1160.368021][ T3645] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1160.374285][ T3645] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1160.380547][ T3645] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1160.386554][ T3645] wiphy_register+0x1e8a/0x29b0 [ 1160.391429][ T3645] ? wiphy_unregister+0xbe0/0xbe0 [ 1160.394846][ T3666] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1160.396464][ T3645] ? minstrel_ht_alloc+0x531/0xa00 [ 1160.396503][ T3645] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1160.396538][ T3645] ieee80211_register_hw+0x1f18/0x3ed0 [ 1160.421291][ T3645] ? ieee80211_restart_hw+0x290/0x290 [ 1160.426693][ T3645] ? debug_object_destroy+0x210/0x210 [ 1160.432099][ T3645] ? memset+0x20/0x40 [ 1160.436099][ T3645] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1160.442364][ T3645] ? __hrtimer_init+0x136/0x280 [ 1160.447233][ T3645] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1160.452985][ T3645] ? hwsim_virtio_rx_work+0x350/0x350 [ 1160.458375][ T3645] ? __kmalloc_track_caller+0x193/0x310 [ 1160.463944][ T3645] ? memcpy+0x39/0x60 [ 1160.467949][ T3645] hwsim_new_radio_nl+0x9bc/0x1080 [ 1160.473086][ T3645] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1160.479005][ T3645] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1160.485270][ T3645] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1160.492663][ T3645] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1160.499984][ T3645] genl_family_rcv_msg_doit+0x228/0x320 [ 1160.505552][ T3645] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1160.512950][ T3645] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1160.519222][ T3645] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1160.525486][ T3645] ? ns_capable+0xd9/0x100 [ 1160.529927][ T3645] genl_rcv_msg+0x328/0x580 [ 1160.534453][ T3645] ? genl_get_cmd+0x480/0x480 [ 1160.539149][ T3645] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1160.545074][ T3645] ? lock_release+0x720/0x720 [ 1160.549770][ T3645] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1160.555078][ T3645] netlink_rcv_skb+0x153/0x420 [ 1160.559862][ T3645] ? genl_get_cmd+0x480/0x480 [ 1160.564557][ T3645] ? netlink_ack+0xa60/0xa60 [ 1160.569172][ T3645] ? netlink_deliver_tap+0x1b1/0xc30 [ 1160.574482][ T3645] genl_rcv+0x24/0x40 [ 1160.578482][ T3645] netlink_unicast+0x533/0x7d0 [ 1160.583269][ T3645] ? netlink_attachskb+0x890/0x890 [ 1160.588395][ T3645] ? __virt_addr_valid+0x5d/0x2d0 [ 1160.593440][ T3645] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1160.599714][ T3645] ? __phys_addr_symbol+0x2c/0x70 [ 1160.604767][ T3645] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1160.610508][ T3645] ? __check_object_size+0x16e/0x3f0 [ 1160.615822][ T3645] netlink_sendmsg+0x86d/0xdb0 [ 1160.620698][ T3645] ? netlink_unicast+0x7d0/0x7d0 [ 1160.625753][ T3645] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1160.632018][ T3645] ? netlink_unicast+0x7d0/0x7d0 [ 1160.636975][ T3645] sock_sendmsg+0xcf/0x120 [ 1160.641416][ T3645] ____sys_sendmsg+0x6e8/0x810 [ 1160.646204][ T3645] ? kernel_sendmsg+0x50/0x50 [ 1160.650901][ T3645] ? do_recvmmsg+0x6d0/0x6d0 [ 1160.655519][ T3645] ? lock_chain_count+0x20/0x20 [ 1160.660394][ T3645] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1160.666402][ T3645] ___sys_sendmsg+0xf3/0x170 [ 1160.671014][ T3645] ? sendmsg_copy_msghdr+0x160/0x160 [ 1160.676319][ T3645] ? __fget_files+0x21b/0x3e0 [ 1160.681012][ T3645] ? lock_downgrade+0x6e0/0x6e0 [ 1160.685890][ T3645] ? __fget_files+0x23d/0x3e0 [ 1160.690588][ T3645] ? __fget_light+0xea/0x280 [ 1160.695191][ T3645] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1160.701453][ T3645] __sys_sendmsg+0xe5/0x1b0 [ 1160.705975][ T3645] ? __sys_sendmsg_sock+0x30/0x30 [ 1160.711035][ T3645] ? syscall_enter_from_user_mode+0x21/0x70 [ 1160.716958][ T3645] do_syscall_64+0x35/0xb0 [ 1160.721396][ T3645] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1160.727311][ T3645] RIP: 0033:0x7f3e684f88d9 [ 1160.731739][ T3645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 10:57:31 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = dup2(r0, r0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x7fff}, 0x1c) [ 1160.751360][ T3645] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1160.759792][ T3645] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1160.767779][ T3645] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1160.775765][ T3645] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1160.783755][ T3645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1160.791744][ T3645] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:31 executing program 0: r0 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r0, &(0x7f00000000c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x32) [ 1161.301573][ T3666] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1161.328563][ T3646] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1161.391688][ T3646] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1161.403423][ T3646] CPU: 1 PID: 3646 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1161.412218][ T3646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1161.422282][ T3646] Call Trace: [ 1161.425567][ T3646] dump_stack_lvl+0xcd/0x134 [ 1161.430165][ T3646] sysfs_warn_dup.cold+0x1c/0x29 [ 1161.435115][ T3646] sysfs_do_create_link_sd+0x11e/0x140 [ 1161.440589][ T3646] sysfs_create_link+0x5f/0xc0 [ 1161.445368][ T3646] device_add+0x78f/0x21b0 [ 1161.449798][ T3646] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1161.456045][ T3646] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1161.462295][ T3646] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1161.468544][ T3646] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1161.474544][ T3646] wiphy_register+0x1e8a/0x29b0 [ 1161.479413][ T3646] ? wiphy_unregister+0xbe0/0xbe0 [ 1161.484447][ T3646] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1161.490620][ T3646] ? wake_up_klogd.part.0+0x8e/0xd0 [ 1161.495827][ T3646] ? rtnl_unlock+0x5/0x10 [ 1161.500162][ T3646] ieee80211_register_hw+0x1f18/0x3ed0 [ 1161.505640][ T3646] ? ieee80211_restart_hw+0x290/0x290 [ 1161.511020][ T3646] ? debug_object_destroy+0x210/0x210 [ 1161.516402][ T3646] ? memset+0x20/0x40 [ 1161.520387][ T3646] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1161.526634][ T3646] ? __hrtimer_init+0x136/0x280 [ 1161.531495][ T3646] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1161.537238][ T3646] ? hwsim_virtio_rx_work+0x350/0x350 [ 1161.542610][ T3646] ? __kmalloc_track_caller+0x193/0x310 [ 1161.548167][ T3646] ? memcpy+0x39/0x60 [ 1161.552159][ T3646] hwsim_new_radio_nl+0x9bc/0x1080 [ 1161.557276][ T3646] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1161.563183][ T3646] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1161.569429][ T3646] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1161.576811][ T3646] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1161.584111][ T3646] genl_family_rcv_msg_doit+0x228/0x320 [ 1161.589675][ T3646] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1161.597068][ T3646] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1161.603329][ T3646] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1161.609581][ T3646] ? ns_capable+0xd9/0x100 [ 1161.614015][ T3646] genl_rcv_msg+0x328/0x580 [ 1161.618532][ T3646] ? genl_get_cmd+0x480/0x480 [ 1161.623212][ T3646] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1161.629380][ T3646] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1161.635291][ T3646] ? netlink_rcv_skb+0x2d9/0x420 [ 1161.640237][ T3646] netlink_rcv_skb+0x153/0x420 [ 1161.645008][ T3646] ? genl_get_cmd+0x480/0x480 [ 1161.649689][ T3646] ? netlink_ack+0xa60/0xa60 [ 1161.654299][ T3646] ? netlink_deliver_tap+0x1b1/0xc30 [ 1161.659593][ T3646] genl_rcv+0x24/0x40 [ 1161.663578][ T3646] netlink_unicast+0x533/0x7d0 [ 1161.668351][ T3646] ? netlink_attachskb+0x890/0x890 [ 1161.673460][ T3646] ? __virt_addr_valid+0x5d/0x2d0 [ 1161.678493][ T3646] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1161.684741][ T3646] ? __phys_addr_symbol+0x2c/0x70 [ 1161.689773][ T3646] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1161.695504][ T3646] ? __check_object_size+0x16e/0x3f0 [ 1161.700803][ T3646] netlink_sendmsg+0x86d/0xdb0 [ 1161.705581][ T3646] ? netlink_unicast+0x7d0/0x7d0 [ 1161.710527][ T3646] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1161.716777][ T3646] ? netlink_unicast+0x7d0/0x7d0 [ 1161.721726][ T3646] sock_sendmsg+0xcf/0x120 [ 1161.726151][ T3646] ____sys_sendmsg+0x6e8/0x810 [ 1161.730926][ T3646] ? kernel_sendmsg+0x50/0x50 [ 1161.735606][ T3646] ? do_recvmmsg+0x6d0/0x6d0 [ 1161.740198][ T3646] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1161.746364][ T3646] ? sockfd_lookup_light+0x6d/0x180 [ 1161.751576][ T3646] ___sys_sendmsg+0xf3/0x170 [ 1161.756177][ T3646] ? sendmsg_copy_msghdr+0x160/0x160 [ 1161.761473][ T3646] ? __fget_files+0x21b/0x3e0 [ 1161.766158][ T3646] ? lock_downgrade+0x6e0/0x6e0 [ 1161.771024][ T3646] ? __fget_files+0x23d/0x3e0 [ 1161.775716][ T3646] ? __fget_light+0xea/0x280 [ 1161.780311][ T3646] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1161.786559][ T3646] __sys_sendmsg+0xe5/0x1b0 [ 1161.791069][ T3646] ? __sys_sendmsg_sock+0x30/0x30 [ 1161.796102][ T3646] ? lockdep_hardirqs_on+0x79/0x100 [ 1161.801311][ T3646] ? trace_hardirqs_on+0x39/0x1c0 [ 1161.806775][ T3646] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1161.812686][ T3646] do_syscall_64+0x35/0xb0 [ 1161.817110][ T3646] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1161.823011][ T3646] RIP: 0033:0x7f4637cff8d9 [ 1161.827424][ T3646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1161.847038][ T3646] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1161.855465][ T3646] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1161.863439][ T3646] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1161.871590][ T3646] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1161.879570][ T3646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1161.887546][ T3646] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1162.043090][ T3648] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1162.074855][ T3648] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1162.094813][ T3648] CPU: 0 PID: 3648 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1162.103717][ T3648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1162.113790][ T3648] Call Trace: [ 1162.117081][ T3648] dump_stack_lvl+0xcd/0x134 [ 1162.121693][ T3648] sysfs_warn_dup.cold+0x1c/0x29 [ 1162.126650][ T3648] sysfs_do_create_link_sd+0x11e/0x140 [ 1162.132137][ T3648] sysfs_create_link+0x5f/0xc0 [ 1162.136917][ T3648] device_add+0x78f/0x21b0 [ 1162.141355][ T3648] ? wait_for_completion_io+0x280/0x280 [ 1162.146917][ T3648] ? lock_downgrade+0x6e0/0x6e0 [ 1162.151779][ T3648] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1162.158036][ T3648] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1162.164289][ T3648] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1162.170536][ T3648] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1162.176540][ T3648] wiphy_register+0x1e8a/0x29b0 [ 1162.181411][ T3648] ? wiphy_unregister+0xbe0/0xbe0 [ 1162.186437][ T3648] ? minstrel_ht_alloc+0x531/0xa00 [ 1162.191561][ T3648] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1162.197644][ T3648] ieee80211_register_hw+0x1f18/0x3ed0 [ 1162.203141][ T3648] ? ieee80211_restart_hw+0x290/0x290 [ 1162.208536][ T3648] ? debug_object_destroy+0x210/0x210 [ 1162.213927][ T3648] ? memset+0x20/0x40 [ 1162.217915][ T3648] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1162.224167][ T3648] ? __hrtimer_init+0x136/0x280 [ 1162.229030][ T3648] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1162.234778][ T3648] ? hwsim_virtio_rx_work+0x350/0x350 [ 1162.240162][ T3648] ? __kmalloc_track_caller+0x193/0x310 [ 1162.245734][ T3648] ? memcpy+0x39/0x60 [ 1162.249727][ T3648] hwsim_new_radio_nl+0x9bc/0x1080 [ 1162.254848][ T3648] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1162.260766][ T3648] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1162.267024][ T3648] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1162.274405][ T3648] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1162.281715][ T3648] genl_family_rcv_msg_doit+0x228/0x320 [ 1162.287272][ T3648] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1162.294652][ T3648] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1162.300916][ T3648] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1162.307171][ T3648] ? ns_capable+0xd9/0x100 [ 1162.311603][ T3648] genl_rcv_msg+0x328/0x580 [ 1162.316119][ T3648] ? genl_get_cmd+0x480/0x480 [ 1162.320803][ T3648] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1162.326714][ T3648] ? lock_release+0x720/0x720 [ 1162.331396][ T3648] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1162.336691][ T3648] netlink_rcv_skb+0x153/0x420 [ 1162.341463][ T3648] ? genl_get_cmd+0x480/0x480 [ 1162.346143][ T3648] ? netlink_ack+0xa60/0xa60 [ 1162.350745][ T3648] ? netlink_deliver_tap+0x1b1/0xc30 [ 1162.356035][ T3648] genl_rcv+0x24/0x40 [ 1162.360018][ T3648] netlink_unicast+0x533/0x7d0 [ 1162.364785][ T3648] ? netlink_attachskb+0x890/0x890 [ 1162.369894][ T3648] ? __virt_addr_valid+0x5d/0x2d0 [ 1162.374924][ T3648] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1162.381172][ T3648] ? __phys_addr_symbol+0x2c/0x70 [ 1162.386204][ T3648] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1162.391930][ T3648] ? __check_object_size+0x16e/0x3f0 [ 1162.397231][ T3648] netlink_sendmsg+0x86d/0xdb0 [ 1162.402008][ T3648] ? netlink_unicast+0x7d0/0x7d0 [ 1162.406956][ T3648] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1162.413209][ T3648] ? netlink_unicast+0x7d0/0x7d0 [ 1162.418150][ T3648] sock_sendmsg+0xcf/0x120 [ 1162.422574][ T3648] ____sys_sendmsg+0x6e8/0x810 [ 1162.427345][ T3648] ? kernel_sendmsg+0x50/0x50 [ 1162.432023][ T3648] ? do_recvmmsg+0x6d0/0x6d0 [ 1162.436624][ T3648] ? lock_chain_count+0x20/0x20 [ 1162.441484][ T3648] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1162.447481][ T3648] ___sys_sendmsg+0xf3/0x170 [ 1162.452082][ T3648] ? sendmsg_copy_msghdr+0x160/0x160 [ 1162.457382][ T3648] ? __fget_files+0x21b/0x3e0 [ 1162.462063][ T3648] ? lock_downgrade+0x6e0/0x6e0 [ 1162.466929][ T3648] ? __fget_files+0x23d/0x3e0 [ 1162.471618][ T3648] ? __fget_light+0xea/0x280 [ 1162.476208][ T3648] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1162.482460][ T3648] __sys_sendmsg+0xe5/0x1b0 [ 1162.486972][ T3648] ? __sys_sendmsg_sock+0x30/0x30 [ 1162.492020][ T3648] ? syscall_enter_from_user_mode+0x21/0x70 [ 1162.497926][ T3648] do_syscall_64+0x35/0xb0 [ 1162.502352][ T3648] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1162.508256][ T3648] RIP: 0033:0x7f3e684f88d9 [ 1162.512680][ T3648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1162.532302][ T3648] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1162.540948][ T3648] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1162.549138][ T3648] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1162.557119][ T3648] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1162.565092][ T3648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1162.573070][ T3648] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:57:33 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0003013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:33 executing program 4: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0) write$RDMA_USER_CM_CMD_ACCEPT(r0, &(0x7f0000000000)={0x8, 0x120, 0xfa00, {0x0, {0x0, 0x0, "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"}}}, 0x128) 10:57:33 executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000e40)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b7000000002d200095000000000000002c3f2cc2b7954244cef7bc0609b199b6ed90e0596acec976e57309ebcdac5f7a860c00269c781f6428457253e89ad528d985636a86ec0f60f5a6d1159a2c2e85d726859a91aa4917a0ad635062ccdce290c5bc074c27f805000000ab5d5b0d7ff0575cc2727e8d974927676468ff2d8621c3ac94712ed9cf6b40b3cf252a47c05af3a30d57cc3ed67d1867b54d24e2da18568c3b0f24b52616bf84d3b042d6e432cd0e3b57239fbc4c0127473e6ba922aff649609d40b47ec331ccba3ce8d530ffff19a6471bf3abc742d9cbcfb964b1383103468a2c7b2235dc99de9aa3e6b77c7a2877261ed72da90864987f30926c9013eec3b86836ae504479f60b0ec9204d2b85627aa5a79f670000000000000000000000008f02712c3d8fc4e2686e21a855e823887196d46852b8831705000000000000008c39bc424d1bafe5725c8a4047b91da3768c1ca6a4410009f95d4ba21068285afa8d3b4a6893d3626ab5becbcdb887af2c85c2d9ab09b5dd7d3c4406d2d7650bf7b2ff6602aec1eea200000064881c560c371a08e051374cf05c921a06fb78183e7e68de9dabe35f1a5d50f20209eec6eb2c510b2cc8d95e4e5b365d1e1298f431432010e10000000000000000000000000000b23a0742e7a56ab5ae95763d585a9d46cff6f2d6bdced3e1c59973e6bc263116f9dcf26731af05a58905bf8e93171d73f3875c7fb6a24033d0968067805c4843f6d2c990191bff4749fe9a99b68bfffa7924d66c4126288751f032ef33e09506d43b0f57d161df28b122ed19e19860f7a660729da828be9f89f39034096c4c919f67df3d6a257c20844c0a6952b272330e5f21b7c648349b2e7e0c7b1ed160fcccc5aad65b5a883cd50d133fcf8e22a34219fe92e3c9000000003556214a6c98e50c8fa36cea844f153281011ad8933598a3087a1619f322ef5fed6e90ea1552a4321a5907ac26ec8e515b938d82cb486d7985"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x20e, 0x69, 0xfd000000, &(0x7f00000004c0)="b91803b700030703009e40f005dd1fff060000000000008477fbac141434e0000001c699da153f13e0e6e380f60108f683317585d7473f1cab4439f0f570ff155bc5f73ba3f8bb99a6e8ded1ce485cf058105cd981b42493481cd659416a2e10c9119664f36eb00b333c20c9ec0c222d644bdcb178c1cc53d6960fbb842d6a33dfcde3a1e1848135214baf139753866cadcbe3ce52505e992818cc452bee339d9ab076f484020eaa348a21d7911e4c44905256ec2cc54cca47a198b00c10aff62a4bed43a2ebcad92743fb22c593f28fd4bb7c703cde9cae0569d4c8d9a823f2c12863f7a6c0cf88ed22aae4f6f084508833b61429a25773eedf63dd9f33d430f2a0a30a7761db16fe0f743b95ded898c28aac1256ce2751b3d738899b8b19d9052b7f13ff94", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000b00)) 10:57:33 executing program 5: socketpair(0x22, 0x0, 0xfffffffc, &(0x7f0000000000)) 10:57:33 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:33 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/120, 0x78}], 0x1, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1162.747989][ T3717] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1162.787217][ T3717] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:33 executing program 5: openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x47200, 0x0) 10:57:33 executing program 4: add_key(&(0x7f0000000200)='encrypted\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffb) [ 1162.808231][ T3721] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1162.873908][ T3721] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1162.912331][ T3721] CPU: 0 PID: 3721 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1162.921221][ T3721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1162.931275][ T3721] Call Trace: [ 1162.934552][ T3721] dump_stack_lvl+0xcd/0x134 [ 1162.939152][ T3721] sysfs_warn_dup.cold+0x1c/0x29 [ 1162.944085][ T3721] sysfs_do_create_link_sd+0x11e/0x140 [ 1162.949541][ T3721] sysfs_create_link+0x5f/0xc0 [ 1162.954304][ T3721] device_add+0x78f/0x21b0 [ 1162.958715][ T3721] ? wait_for_completion_io+0x280/0x280 [ 1162.964251][ T3721] ? lock_downgrade+0x6e0/0x6e0 [ 1162.969093][ T3721] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1162.975323][ T3721] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1162.981560][ T3721] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1162.987793][ T3721] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1162.993769][ T3721] wiphy_register+0x1e8a/0x29b0 [ 1162.998637][ T3721] ? wiphy_unregister+0xbe0/0xbe0 [ 1163.003645][ T3721] ? minstrel_ht_alloc+0x531/0xa00 [ 1163.008756][ T3721] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1163.014822][ T3721] ieee80211_register_hw+0x1f18/0x3ed0 [ 1163.020286][ T3721] ? ieee80211_restart_hw+0x290/0x290 [ 1163.025656][ T3721] ? debug_object_destroy+0x210/0x210 [ 1163.031028][ T3721] ? memset+0x20/0x40 [ 1163.034996][ T3721] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1163.041225][ T3721] ? __hrtimer_init+0x136/0x280 [ 1163.046067][ T3721] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1163.051789][ T3721] ? hwsim_virtio_rx_work+0x350/0x350 [ 1163.057150][ T3721] ? __kmalloc_track_caller+0x193/0x310 [ 1163.062688][ T3721] ? memcpy+0x39/0x60 [ 1163.066660][ T3721] hwsim_new_radio_nl+0x9bc/0x1080 [ 1163.071766][ T3721] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1163.077656][ T3721] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1163.083884][ T3721] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1163.091246][ T3721] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1163.098526][ T3721] genl_family_rcv_msg_doit+0x228/0x320 [ 1163.104063][ T3721] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1163.111422][ T3721] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1163.117663][ T3721] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1163.123891][ T3721] ? ns_capable+0xd9/0x100 [ 1163.128300][ T3721] genl_rcv_msg+0x328/0x580 [ 1163.132796][ T3721] ? genl_get_cmd+0x480/0x480 [ 1163.137457][ T3721] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1163.143342][ T3721] ? lock_release+0x720/0x720 [ 1163.148387][ T3721] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1163.154196][ T3721] netlink_rcv_skb+0x153/0x420 [ 1163.158962][ T3721] ? genl_get_cmd+0x480/0x480 [ 1163.163632][ T3721] ? netlink_ack+0xa60/0xa60 [ 1163.168221][ T3721] ? netlink_deliver_tap+0x1b1/0xc30 [ 1163.173500][ T3721] genl_rcv+0x24/0x40 [ 1163.177472][ T3721] netlink_unicast+0x533/0x7d0 [ 1163.182230][ T3721] ? netlink_attachskb+0x890/0x890 [ 1163.187330][ T3721] ? __virt_addr_valid+0x5d/0x2d0 [ 1163.192348][ T3721] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1163.198581][ T3721] ? __phys_addr_symbol+0x2c/0x70 [ 1163.203596][ T3721] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1163.209308][ T3721] ? __check_object_size+0x16e/0x3f0 [ 1163.214596][ T3721] netlink_sendmsg+0x86d/0xdb0 [ 1163.219357][ T3721] ? netlink_unicast+0x7d0/0x7d0 [ 1163.224291][ T3721] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1163.230531][ T3721] ? netlink_unicast+0x7d0/0x7d0 [ 1163.235464][ T3721] sock_sendmsg+0xcf/0x120 [ 1163.239878][ T3721] ____sys_sendmsg+0x6e8/0x810 [ 1163.244633][ T3721] ? kernel_sendmsg+0x50/0x50 [ 1163.249298][ T3721] ? do_recvmmsg+0x6d0/0x6d0 [ 1163.253883][ T3721] ? lock_chain_count+0x20/0x20 [ 1163.258726][ T3721] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1163.264702][ T3721] ___sys_sendmsg+0xf3/0x170 [ 1163.269288][ T3721] ? sendmsg_copy_msghdr+0x160/0x160 [ 1163.274570][ T3721] ? __fget_files+0x21b/0x3e0 [ 1163.279239][ T3721] ? lock_downgrade+0x6e0/0x6e0 [ 1163.284091][ T3721] ? __fget_files+0x23d/0x3e0 [ 1163.288765][ T3721] ? __fget_light+0xea/0x280 [ 1163.293345][ T3721] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1163.299580][ T3721] __sys_sendmsg+0xe5/0x1b0 [ 1163.304082][ T3721] ? __sys_sendmsg_sock+0x30/0x30 [ 1163.309108][ T3721] ? syscall_enter_from_user_mode+0x21/0x70 [ 1163.315001][ T3721] do_syscall_64+0x35/0xb0 [ 1163.319416][ T3721] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1163.325302][ T3721] RIP: 0033:0x7f3e684f88d9 [ 1163.329708][ T3721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1163.349314][ T3721] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1163.357724][ T3721] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1163.365687][ T3721] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 10:57:34 executing program 0: socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket(0x29, 0x2, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[], 0x24}}, 0x0) r1 = getuid() sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x3150524}, 0xc, &(0x7f0000000340)={&(0x7f0000001740)=ANY=[@ANYBLOB="64020000180008002dbd7000ffdbdf25fc0200000000000000000000000000010a0101000000000000000000000000004e2400", @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="00000000000000000000000000000001000004d332000000fc0200efffffffffffffff000000000108000000000000004000000000000000050000000000000005000000000000000200000000000009018000000000000004000000000000003f0000000000000005000000000000000000000000000000030000000000000090000000000000000000010007000000ee02000025bd700003350000020001023a00000000000000030000000000000008000b00ffffff7f08001d0001040000050019002b00000008001d0003000000850003006c7a7300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e80100004a94e8b270a8f962a8a0886bcd6b8d9bcc5b302fb0c4681734c8ae1002e6e31350d585edcc1036a1357793699f7fa3a749bf3406ca6e974e0effc74971000000c40005000a010100000000000000000000000000000004d6330000000a000000fc00000000000000000000000000000106350000040004000900000000000080fbffffffac14141a000000000000000000000000000004d56c00000005000000fe8000000000000000000000000000bb0035000002039400510200000800000007000000ac14143b000000000000000000000000000004d63c00000002000000fc00000000000000000000000000000102350000041a0700070000007793bd1f5f4e0000"], 0x264}, 0x1, 0x0, 0x0, 0x8000}, 0x48041) connect$inet6(0xffffffffffffffff, 0x0, 0x0) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) syz_open_procfs$userns(0x0, 0x0) mmap(&(0x7f00001d9000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) bind$inet(r2, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7654}]}, 0x10) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='illinois\x00', 0x9) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10) bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0) bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) sendmsg$inet(r2, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0) recvmsg(r2, &(0x7f0000000580)={0x0, 0x3b, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15c7}], 0x1, 0x0, 0x2000000000000}, 0x700) [ 1163.373648][ T3721] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1163.381609][ T3721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1163.389573][ T3721] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:34 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:34 executing program 4: openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000d80), 0x2, 0x0) openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x4041, 0x0) 10:57:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x1000}) [ 1163.581725][ T3741] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1164.087930][ T3741] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1164.131573][ T3722] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1164.168164][ T3722] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1164.190771][ T3722] CPU: 0 PID: 3722 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1164.199671][ T3722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1164.209745][ T3722] Call Trace: [ 1164.213033][ T3722] dump_stack_lvl+0xcd/0x134 [ 1164.217638][ T3722] sysfs_warn_dup.cold+0x1c/0x29 [ 1164.222587][ T3722] sysfs_do_create_link_sd+0x11e/0x140 [ 1164.228071][ T3722] sysfs_create_link+0x5f/0xc0 [ 1164.232869][ T3722] device_add+0x78f/0x21b0 [ 1164.237302][ T3722] ? ieee80211_set_bitrate_flags+0x354/0x650 [ 1164.243300][ T3722] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1164.249559][ T3722] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1164.255822][ T3722] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1164.262082][ T3722] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1164.268092][ T3722] wiphy_register+0x1e8a/0x29b0 [ 1164.272972][ T3722] ? wiphy_unregister+0xbe0/0xbe0 [ 1164.278016][ T3722] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1164.284198][ T3722] ? ieee80211_register_hw+0x1b8f/0x3ed0 [ 1164.289863][ T3722] ieee80211_register_hw+0x1f18/0x3ed0 [ 1164.295361][ T3722] ? ieee80211_restart_hw+0x290/0x290 [ 1164.300759][ T3722] ? debug_object_destroy+0x210/0x210 [ 1164.306157][ T3722] ? memset+0x20/0x40 [ 1164.310155][ T3722] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1164.316410][ T3722] ? __hrtimer_init+0x136/0x280 [ 1164.321282][ T3722] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1164.327035][ T3722] ? hwsim_virtio_rx_work+0x350/0x350 [ 1164.332425][ T3722] ? __kmalloc_track_caller+0x193/0x310 [ 1164.337997][ T3722] ? memcpy+0x39/0x60 [ 1164.341999][ T3722] hwsim_new_radio_nl+0x9bc/0x1080 [ 1164.347131][ T3722] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1164.353058][ T3722] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1164.359321][ T3722] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1164.366720][ T3722] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1164.374015][ T3722] genl_family_rcv_msg_doit+0x228/0x320 [ 1164.379564][ T3722] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1164.386940][ T3722] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1164.393188][ T3722] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1164.399425][ T3722] ? ns_capable+0xd9/0x100 [ 1164.403843][ T3722] genl_rcv_msg+0x328/0x580 [ 1164.408348][ T3722] ? genl_get_cmd+0x480/0x480 [ 1164.413023][ T3722] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1164.418931][ T3722] netlink_rcv_skb+0x153/0x420 [ 1164.423702][ T3722] ? genl_get_cmd+0x480/0x480 [ 1164.428382][ T3722] ? netlink_ack+0xa60/0xa60 [ 1164.432968][ T3722] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1164.439130][ T3722] ? down_read+0x19a/0x440 [ 1164.443543][ T3722] ? genl_get_cmd+0x480/0x480 [ 1164.448396][ T3722] genl_rcv+0x24/0x40 [ 1164.452379][ T3722] netlink_unicast+0x533/0x7d0 [ 1164.457144][ T3722] ? netlink_attachskb+0x890/0x890 [ 1164.462250][ T3722] ? __virt_addr_valid+0x5d/0x2d0 [ 1164.467271][ T3722] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1164.473511][ T3722] ? __phys_addr_symbol+0x2c/0x70 [ 1164.478529][ T3722] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1164.484329][ T3722] ? __check_object_size+0x16e/0x3f0 [ 1164.489614][ T3722] netlink_sendmsg+0x86d/0xdb0 [ 1164.494376][ T3722] ? netlink_unicast+0x7d0/0x7d0 [ 1164.499313][ T3722] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1164.505551][ T3722] ? netlink_unicast+0x7d0/0x7d0 [ 1164.510483][ T3722] sock_sendmsg+0xcf/0x120 [ 1164.514896][ T3722] ____sys_sendmsg+0x6e8/0x810 [ 1164.519742][ T3722] ? kernel_sendmsg+0x50/0x50 [ 1164.524411][ T3722] ? do_recvmmsg+0x6d0/0x6d0 [ 1164.529002][ T3722] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1164.534979][ T3722] ? lock_chain_count+0x20/0x20 [ 1164.539828][ T3722] ___sys_sendmsg+0xf3/0x170 [ 1164.544418][ T3722] ? sendmsg_copy_msghdr+0x160/0x160 [ 1164.549700][ T3722] ? __fget_files+0x21b/0x3e0 [ 1164.554374][ T3722] ? lock_downgrade+0x6e0/0x6e0 [ 1164.559227][ T3722] ? __fget_files+0x23d/0x3e0 [ 1164.563902][ T3722] ? __fget_light+0xea/0x280 [ 1164.568481][ T3722] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1164.574729][ T3722] __sys_sendmsg+0xe5/0x1b0 [ 1164.579229][ T3722] ? __sys_sendmsg_sock+0x30/0x30 [ 1164.584259][ T3722] ? syscall_enter_from_user_mode+0x21/0x70 [ 1164.590150][ T3722] do_syscall_64+0x35/0xb0 [ 1164.594569][ T3722] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1164.600460][ T3722] RIP: 0033:0x7f4637cff8d9 [ 1164.604875][ T3722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1164.624477][ T3722] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1164.632891][ T3722] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1164.640861][ T3722] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1164.648917][ T3722] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1164.656880][ T3722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1164.664927][ T3722] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1164.766087][ T3724] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1164.798534][ T3724] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1164.830801][ T3724] CPU: 0 PID: 3724 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1164.839785][ T3724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1164.849854][ T3724] Call Trace: [ 1164.853134][ T3724] dump_stack_lvl+0xcd/0x134 [ 1164.857729][ T3724] sysfs_warn_dup.cold+0x1c/0x29 [ 1164.862666][ T3724] sysfs_do_create_link_sd+0x11e/0x140 [ 1164.868137][ T3724] sysfs_create_link+0x5f/0xc0 [ 1164.872900][ T3724] device_add+0x78f/0x21b0 [ 1164.877316][ T3724] ? wait_for_completion_io+0x280/0x280 [ 1164.882862][ T3724] ? asm_exc_int3+0x31/0x40 [ 1164.887361][ T3724] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1164.893596][ T3724] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1164.899835][ T3724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1164.906078][ T3724] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1164.912062][ T3724] wiphy_register+0x1e8a/0x29b0 [ 1164.916913][ T3724] ? wiphy_unregister+0xbe0/0xbe0 [ 1164.921925][ T3724] ? minstrel_ht_alloc+0x531/0xa00 [ 1164.927039][ T3724] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1164.933107][ T3724] ieee80211_register_hw+0x1f18/0x3ed0 [ 1164.938575][ T3724] ? ieee80211_restart_hw+0x290/0x290 [ 1164.943947][ T3724] ? debug_object_destroy+0x210/0x210 [ 1164.949326][ T3724] ? memset+0x20/0x40 [ 1164.953301][ T3724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1164.959536][ T3724] ? __hrtimer_init+0x136/0x280 [ 1164.964385][ T3724] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1164.970119][ T3724] ? hwsim_virtio_rx_work+0x350/0x350 [ 1164.975491][ T3724] ? __kmalloc_track_caller+0x193/0x310 [ 1164.981035][ T3724] ? memcpy+0x39/0x60 [ 1164.985008][ T3724] hwsim_new_radio_nl+0x9bc/0x1080 [ 1164.990117][ T3724] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1164.996016][ T3724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1165.002249][ T3724] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1165.009617][ T3724] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1165.016903][ T3724] genl_family_rcv_msg_doit+0x228/0x320 [ 1165.022445][ T3724] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1165.029815][ T3724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1165.036062][ T3724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1165.042296][ T3724] ? ns_capable+0xd9/0x100 [ 1165.046710][ T3724] genl_rcv_msg+0x328/0x580 [ 1165.051210][ T3724] ? genl_get_cmd+0x480/0x480 [ 1165.055878][ T3724] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1165.061770][ T3724] ? lock_release+0x720/0x720 [ 1165.066438][ T3724] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1165.071726][ T3724] netlink_rcv_skb+0x153/0x420 [ 1165.076482][ T3724] ? genl_get_cmd+0x480/0x480 [ 1165.081150][ T3724] ? netlink_ack+0xa60/0xa60 [ 1165.085734][ T3724] ? netlink_deliver_tap+0x1b1/0xc30 [ 1165.091014][ T3724] genl_rcv+0x24/0x40 [ 1165.094984][ T3724] netlink_unicast+0x533/0x7d0 [ 1165.099741][ T3724] ? netlink_attachskb+0x890/0x890 [ 1165.104842][ T3724] ? __virt_addr_valid+0x5d/0x2d0 [ 1165.109860][ T3724] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1165.116095][ T3724] ? __phys_addr_symbol+0x2c/0x70 [ 1165.121112][ T3724] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1165.126822][ T3724] ? __check_object_size+0x16e/0x3f0 [ 1165.132105][ T3724] netlink_sendmsg+0x86d/0xdb0 [ 1165.136865][ T3724] ? netlink_unicast+0x7d0/0x7d0 [ 1165.141797][ T3724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1165.148032][ T3724] ? netlink_unicast+0x7d0/0x7d0 [ 1165.152957][ T3724] sock_sendmsg+0xcf/0x120 [ 1165.157370][ T3724] ____sys_sendmsg+0x6e8/0x810 [ 1165.162125][ T3724] ? kernel_sendmsg+0x50/0x50 [ 1165.166790][ T3724] ? do_recvmmsg+0x6d0/0x6d0 [ 1165.171374][ T3724] ? lock_chain_count+0x20/0x20 [ 1165.176216][ T3724] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1165.182194][ T3724] ___sys_sendmsg+0xf3/0x170 [ 1165.186780][ T3724] ? sendmsg_copy_msghdr+0x160/0x160 [ 1165.192061][ T3724] ? __fget_files+0x21b/0x3e0 [ 1165.196733][ T3724] ? lock_downgrade+0x6e0/0x6e0 [ 1165.201707][ T3724] ? __fget_files+0x23d/0x3e0 [ 1165.206384][ T3724] ? __fget_light+0xea/0x280 [ 1165.210968][ T3724] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1165.217228][ T3724] __sys_sendmsg+0xe5/0x1b0 [ 1165.221729][ T3724] ? __sys_sendmsg_sock+0x30/0x30 [ 1165.226755][ T3724] ? syscall_enter_from_user_mode+0x21/0x70 [ 1165.232646][ T3724] do_syscall_64+0x35/0xb0 [ 1165.237060][ T3724] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1165.242945][ T3724] RIP: 0033:0x7f3e684f88d9 [ 1165.247351][ T3724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1165.266953][ T3724] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1165.275361][ T3724] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1165.283329][ T3724] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1165.291297][ T3724] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1165.299264][ T3724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1165.307230][ T3724] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:57:36 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0004013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:36 executing program 4: fsopen(&(0x7f0000000000)='ncpfs\x00', 0x0) 10:57:36 executing program 5: keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, &(0x7f0000000000)='^,\x00', 0x0) 10:57:36 executing program 3: perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:36 executing program 0: socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket(0x29, 0x2, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[], 0x24}}, 0x0) r1 = getuid() sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x3150524}, 0xc, &(0x7f0000000340)={&(0x7f0000001740)=ANY=[@ANYBLOB="64020000180008002dbd7000ffdbdf25fc0200000000000000000000000000010a0101000000000000000000000000004e2400", @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="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"], 0x264}, 0x1, 0x0, 0x0, 0x8000}, 0x48041) connect$inet6(0xffffffffffffffff, 0x0, 0x0) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) syz_open_procfs$userns(0x0, 0x0) mmap(&(0x7f00001d9000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) bind$inet(r2, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7654}]}, 0x10) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='illinois\x00', 0x9) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10) bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0) bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) sendmsg$inet(r2, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0) recvmsg(r2, &(0x7f0000000580)={0x0, 0x3b, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15c7}], 0x1, 0x0, 0x2000000000000}, 0x700) 10:57:36 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{0x0}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:57:36 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$L2TP_CMD_SESSION_MODIFY(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x14, r1, 0x1}, 0x14}}, 0x0) [ 1165.619691][ T3787] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1165.639111][ T3791] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1165.670257][ T3791] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1165.726903][ T3791] CPU: 0 PID: 3791 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1165.735804][ T3791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1165.745872][ T3791] Call Trace: [ 1165.749161][ T3791] dump_stack_lvl+0xcd/0x134 [ 1165.753777][ T3791] sysfs_warn_dup.cold+0x1c/0x29 [ 1165.758733][ T3791] sysfs_do_create_link_sd+0x11e/0x140 [ 1165.764222][ T3791] sysfs_create_link+0x5f/0xc0 [ 1165.769004][ T3791] device_add+0x78f/0x21b0 [ 1165.773438][ T3791] ? wait_for_completion_io+0x280/0x280 [ 1165.779002][ T3791] ? lock_downgrade+0x6e0/0x6e0 [ 1165.783869][ T3791] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1165.790125][ T3791] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1165.796389][ T3791] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1165.802653][ T3791] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1165.808661][ T3791] wiphy_register+0x1e8a/0x29b0 [ 1165.813542][ T3791] ? wiphy_unregister+0xbe0/0xbe0 [ 1165.818578][ T3791] ? minstrel_ht_alloc+0x531/0xa00 [ 1165.823731][ T3791] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1165.829827][ T3791] ieee80211_register_hw+0x1f18/0x3ed0 [ 1165.835320][ T3791] ? ieee80211_restart_hw+0x290/0x290 [ 1165.840735][ T3791] ? debug_object_destroy+0x210/0x210 [ 1165.846143][ T3791] ? memset+0x20/0x40 [ 1165.850141][ T3791] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1165.856394][ T3791] ? __hrtimer_init+0x136/0x280 [ 1165.861251][ T3791] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1165.866991][ T3791] ? hwsim_virtio_rx_work+0x350/0x350 [ 1165.872368][ T3791] ? __kmalloc_track_caller+0x193/0x310 [ 1165.877922][ T3791] ? memcpy+0x39/0x60 [ 1165.881907][ T3791] hwsim_new_radio_nl+0x9bc/0x1080 [ 1165.887028][ T3791] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1165.892940][ T3791] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1165.899188][ T3791] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1165.906567][ T3791] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1165.913868][ T3791] genl_family_rcv_msg_doit+0x228/0x320 [ 1165.919419][ T3791] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1165.926799][ T3791] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1165.933061][ T3791] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1165.939306][ T3791] ? ns_capable+0xd9/0x100 [ 1165.943735][ T3791] genl_rcv_msg+0x328/0x580 [ 1165.948245][ T3791] ? genl_get_cmd+0x480/0x480 [ 1165.952927][ T3791] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1165.958836][ T3791] ? lock_release+0x720/0x720 [ 1165.963518][ T3791] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1165.969337][ T3791] netlink_rcv_skb+0x153/0x420 [ 1165.974105][ T3791] ? genl_get_cmd+0x480/0x480 [ 1165.978788][ T3791] ? netlink_ack+0xa60/0xa60 [ 1165.983398][ T3791] ? netlink_deliver_tap+0x1b1/0xc30 [ 1165.988691][ T3791] genl_rcv+0x24/0x40 [ 1165.992678][ T3791] netlink_unicast+0x533/0x7d0 [ 1165.997456][ T3791] ? netlink_attachskb+0x890/0x890 [ 1166.002569][ T3791] ? __virt_addr_valid+0x5d/0x2d0 [ 1166.007602][ T3791] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1166.013851][ T3791] ? __phys_addr_symbol+0x2c/0x70 [ 1166.018881][ T3791] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1166.024606][ T3791] ? __check_object_size+0x16e/0x3f0 [ 1166.029905][ T3791] netlink_sendmsg+0x86d/0xdb0 [ 1166.034679][ T3791] ? netlink_unicast+0x7d0/0x7d0 [ 1166.039624][ T3791] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1166.045873][ T3791] ? netlink_unicast+0x7d0/0x7d0 [ 1166.050822][ T3791] sock_sendmsg+0xcf/0x120 [ 1166.055246][ T3791] ____sys_sendmsg+0x6e8/0x810 [ 1166.060017][ T3791] ? kernel_sendmsg+0x50/0x50 [ 1166.064698][ T3791] ? do_recvmmsg+0x6d0/0x6d0 [ 1166.069297][ T3791] ? lock_chain_count+0x20/0x20 [ 1166.074147][ T3791] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1166.080132][ T3791] ? lock_chain_count+0x20/0x20 [ 1166.084997][ T3791] ___sys_sendmsg+0xf3/0x170 [ 1166.089593][ T3791] ? sendmsg_copy_msghdr+0x160/0x160 [ 1166.094902][ T3791] ? __fget_files+0x21b/0x3e0 [ 1166.099607][ T3791] ? lock_downgrade+0x6e0/0x6e0 [ 1166.104497][ T3791] ? __fget_files+0x23d/0x3e0 [ 1166.109206][ T3791] ? __fget_light+0xea/0x280 [ 1166.113821][ T3791] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1166.120095][ T3791] __sys_sendmsg+0xe5/0x1b0 [ 1166.124624][ T3791] ? __sys_sendmsg_sock+0x30/0x30 [ 1166.129688][ T3791] ? syscall_enter_from_user_mode+0x21/0x70 [ 1166.135624][ T3791] do_syscall_64+0x35/0xb0 [ 1166.140065][ T3791] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1166.145977][ T3791] RIP: 0033:0x7f3e684f88d9 [ 1166.150411][ T3791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1166.170038][ T3791] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:57:36 executing program 4: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) write$sndseq(r0, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time=@time}], 0x1c) [ 1166.178472][ T3791] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1166.186462][ T3791] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1166.194452][ T3791] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1166.202439][ T3791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1166.210424][ T3791] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:37 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$TIPC_NL_MEDIA_SET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000c0000002000058014000280080001000001a0c47a0002000000000008000100756470"], 0x34}}, 0x0) [ 1166.485738][ T3787] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1166.495386][ T3794] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1166.537259][ T3794] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1166.571935][ T3794] CPU: 0 PID: 3794 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1166.580833][ T3794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1166.590890][ T3794] Call Trace: [ 1166.594187][ T3794] dump_stack_lvl+0xcd/0x134 [ 1166.598801][ T3794] sysfs_warn_dup.cold+0x1c/0x29 [ 1166.603757][ T3794] sysfs_do_create_link_sd+0x11e/0x140 [ 1166.609243][ T3794] sysfs_create_link+0x5f/0xc0 [ 1166.614030][ T3794] device_add+0x78f/0x21b0 [ 1166.618465][ T3794] ? wait_for_completion_io+0x280/0x280 [ 1166.624025][ T3794] ? lock_downgrade+0x6e0/0x6e0 [ 1166.628896][ T3794] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1166.635156][ T3794] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1166.641418][ T3794] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1166.647680][ T3794] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1166.653695][ T3794] wiphy_register+0x1e8a/0x29b0 [ 1166.658579][ T3794] ? wiphy_unregister+0xbe0/0xbe0 [ 1166.663619][ T3794] ? minstrel_ht_alloc+0x531/0xa00 [ 1166.668766][ T3794] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1166.674864][ T3794] ieee80211_register_hw+0x1f18/0x3ed0 [ 1166.680361][ T3794] ? ieee80211_restart_hw+0x290/0x290 [ 1166.685761][ T3794] ? debug_object_destroy+0x210/0x210 [ 1166.691160][ T3794] ? memset+0x20/0x40 [ 1166.695144][ T3794] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1166.701381][ T3794] ? __hrtimer_init+0x136/0x280 [ 1166.706238][ T3794] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1166.711975][ T3794] ? hwsim_virtio_rx_work+0x350/0x350 [ 1166.717341][ T3794] ? __kmalloc_track_caller+0x193/0x310 [ 1166.722890][ T3794] ? memcpy+0x39/0x60 [ 1166.726868][ T3794] hwsim_new_radio_nl+0x9bc/0x1080 [ 1166.731976][ T3794] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1166.737862][ T3794] ? lockdep_hardirqs_on+0x79/0x100 [ 1166.743072][ T3794] genl_family_rcv_msg_doit+0x228/0x320 [ 1166.748616][ T3794] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1166.755982][ T3794] ? bpf_lsm_capable+0x5/0x10 [ 1166.760664][ T3794] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1166.766904][ T3794] ? ns_capable+0xd9/0x100 [ 1166.771314][ T3794] genl_rcv_msg+0x328/0x580 [ 1166.775816][ T3794] ? genl_get_cmd+0x480/0x480 [ 1166.780483][ T3794] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1166.786372][ T3794] ? lock_release+0x720/0x720 [ 1166.791048][ T3794] netlink_rcv_skb+0x153/0x420 [ 1166.795806][ T3794] ? genl_get_cmd+0x480/0x480 [ 1166.800478][ T3794] ? netlink_ack+0xa60/0xa60 [ 1166.805065][ T3794] ? netlink_deliver_tap+0x1b1/0xc30 [ 1166.810341][ T3794] ? _copy_from_iter+0x12b/0x1320 [ 1166.815364][ T3794] genl_rcv+0x24/0x40 [ 1166.819335][ T3794] netlink_unicast+0x533/0x7d0 [ 1166.824091][ T3794] ? netlink_attachskb+0x890/0x890 [ 1166.829191][ T3794] ? __virt_addr_valid+0x5d/0x2d0 [ 1166.834210][ T3794] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1166.840446][ T3794] ? __phys_addr_symbol+0x2c/0x70 [ 1166.845463][ T3794] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1166.851175][ T3794] ? __check_object_size+0x16e/0x3f0 [ 1166.856460][ T3794] netlink_sendmsg+0x86d/0xdb0 [ 1166.861222][ T3794] ? netlink_unicast+0x7d0/0x7d0 [ 1166.866154][ T3794] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1166.872428][ T3794] ? netlink_unicast+0x7d0/0x7d0 [ 1166.877587][ T3794] sock_sendmsg+0xcf/0x120 [ 1166.882003][ T3794] ____sys_sendmsg+0x6e8/0x810 [ 1166.886763][ T3794] ? kernel_sendmsg+0x50/0x50 [ 1166.891428][ T3794] ? do_recvmmsg+0x6d0/0x6d0 [ 1166.896038][ T3794] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1166.902010][ T3794] ? lock_chain_count+0x20/0x20 [ 1166.906854][ T3794] ___sys_sendmsg+0xf3/0x170 [ 1166.911438][ T3794] ? sendmsg_copy_msghdr+0x160/0x160 [ 1166.916718][ T3794] ? __fget_files+0x21b/0x3e0 [ 1166.921385][ T3794] ? lock_downgrade+0x6e0/0x6e0 [ 1166.926237][ T3794] ? __fget_files+0x23d/0x3e0 [ 1166.930906][ T3794] ? __fget_light+0xea/0x280 [ 1166.935482][ T3794] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1166.941715][ T3794] __sys_sendmsg+0xe5/0x1b0 [ 1166.946215][ T3794] ? __sys_sendmsg_sock+0x30/0x30 [ 1166.951242][ T3794] ? syscall_enter_from_user_mode+0x21/0x70 [ 1166.957129][ T3794] do_syscall_64+0x35/0xb0 [ 1166.961537][ T3794] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1166.967422][ T3794] RIP: 0033:0x7f4637cff8d9 [ 1166.971826][ T3794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1166.991422][ T3794] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1166.999823][ T3794] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1167.007780][ T3794] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1167.015737][ T3794] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1167.023693][ T3794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1167.031649][ T3794] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:57:37 executing program 0: r0 = gettid() r1 = getpgid(0x0) prctl$PR_SET_PTRACER(0x59616d61, r1) clone(0x3102002dfe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) rt_sigtimedwait(&(0x7f00000001c0), 0x0, &(0x7f0000000040)={0x0, 0x1c9c380}, 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x200044) wait4(0x0, 0x0, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]}) process_vm_writev(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 10:57:37 executing program 3: perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1167.083083][ T3832] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1167.109274][ T3798] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1167.154153][ T3798] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1167.198187][ T3798] CPU: 0 PID: 3798 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1167.207097][ T3798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1167.217164][ T3798] Call Trace: [ 1167.220454][ T3798] dump_stack_lvl+0xcd/0x134 [ 1167.225061][ T3798] sysfs_warn_dup.cold+0x1c/0x29 [ 1167.230010][ T3798] sysfs_do_create_link_sd+0x11e/0x140 [ 1167.235495][ T3798] sysfs_create_link+0x5f/0xc0 [ 1167.240280][ T3798] device_add+0x78f/0x21b0 [ 1167.244711][ T3798] ? wait_for_completion_io+0x280/0x280 [ 1167.250277][ T3798] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1167.256532][ T3798] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1167.262775][ T3798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1167.269016][ T3798] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1167.275000][ T3798] wiphy_register+0x1e8a/0x29b0 [ 1167.279856][ T3798] ? wiphy_unregister+0xbe0/0xbe0 [ 1167.284870][ T3798] ? minstrel_ht_alloc+0x531/0xa00 [ 1167.289984][ T3798] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1167.296054][ T3798] ieee80211_register_hw+0x1f18/0x3ed0 [ 1167.301521][ T3798] ? ieee80211_restart_hw+0x290/0x290 [ 1167.306890][ T3798] ? debug_object_destroy+0x210/0x210 [ 1167.312262][ T3798] ? memset+0x20/0x40 [ 1167.316233][ T3798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1167.322475][ T3798] ? __hrtimer_init+0x136/0x280 [ 1167.327325][ T3798] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1167.333056][ T3798] ? hwsim_virtio_rx_work+0x350/0x350 [ 1167.338416][ T3798] ? __kmalloc_track_caller+0x193/0x310 [ 1167.343958][ T3798] ? memcpy+0x39/0x60 [ 1167.347934][ T3798] hwsim_new_radio_nl+0x9bc/0x1080 [ 1167.353044][ T3798] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1167.358938][ T3798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1167.365171][ T3798] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1167.372541][ T3798] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1167.379832][ T3798] genl_family_rcv_msg_doit+0x228/0x320 [ 1167.385373][ T3798] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1167.392742][ T3798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1167.398984][ T3798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1167.405223][ T3798] ? ns_capable+0xd9/0x100 [ 1167.409631][ T3798] genl_rcv_msg+0x328/0x580 [ 1167.414130][ T3798] ? genl_get_cmd+0x480/0x480 [ 1167.418801][ T3798] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1167.424698][ T3798] ? lock_release+0x720/0x720 [ 1167.429371][ T3798] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1167.434653][ T3798] netlink_rcv_skb+0x153/0x420 [ 1167.439415][ T3798] ? genl_get_cmd+0x480/0x480 [ 1167.444088][ T3798] ? netlink_ack+0xa60/0xa60 [ 1167.448675][ T3798] ? netlink_deliver_tap+0x1b1/0xc30 [ 1167.453962][ T3798] genl_rcv+0x24/0x40 [ 1167.457939][ T3798] netlink_unicast+0x533/0x7d0 [ 1167.462702][ T3798] ? netlink_attachskb+0x890/0x890 [ 1167.467806][ T3798] ? __virt_addr_valid+0x5d/0x2d0 [ 1167.472826][ T3798] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1167.479060][ T3798] ? __phys_addr_symbol+0x2c/0x70 [ 1167.484081][ T3798] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1167.489796][ T3798] ? __check_object_size+0x16e/0x3f0 [ 1167.495084][ T3798] netlink_sendmsg+0x86d/0xdb0 [ 1167.499850][ T3798] ? netlink_unicast+0x7d0/0x7d0 [ 1167.504788][ T3798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1167.511029][ T3798] ? netlink_unicast+0x7d0/0x7d0 [ 1167.515964][ T3798] sock_sendmsg+0xcf/0x120 [ 1167.520375][ T3798] ____sys_sendmsg+0x6e8/0x810 [ 1167.525133][ T3798] ? kernel_sendmsg+0x50/0x50 [ 1167.529799][ T3798] ? do_recvmmsg+0x6d0/0x6d0 [ 1167.534387][ T3798] ? lock_chain_count+0x20/0x20 [ 1167.539233][ T3798] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1167.545221][ T3798] ___sys_sendmsg+0xf3/0x170 [ 1167.549813][ T3798] ? sendmsg_copy_msghdr+0x160/0x160 [ 1167.555101][ T3798] ? __fget_files+0x21b/0x3e0 [ 1167.559774][ T3798] ? lock_downgrade+0x6e0/0x6e0 [ 1167.564630][ T3798] ? __fget_files+0x23d/0x3e0 [ 1167.569308][ T3798] ? __fget_light+0xea/0x280 [ 1167.573894][ T3798] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1167.580133][ T3798] __sys_sendmsg+0xe5/0x1b0 [ 1167.584640][ T3798] ? __sys_sendmsg_sock+0x30/0x30 [ 1167.589674][ T3798] ? syscall_enter_from_user_mode+0x21/0x70 [ 1167.595574][ T3798] do_syscall_64+0x35/0xb0 [ 1167.599993][ T3798] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1167.605880][ T3798] RIP: 0033:0x7f3e684f88d9 [ 1167.610287][ T3798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1167.629888][ T3798] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1167.638301][ T3798] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 10:57:38 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{0x0}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1167.646269][ T3798] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1167.654229][ T3798] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1167.662193][ T3798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1167.670162][ T3798] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1167.702700][ T26] audit: type=1326 audit(1633085858.261:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3835 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb63800a8d9 code=0x0 [ 1167.754196][ T3832] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:38 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0008013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:38 executing program 5: syz_usb_connect(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0xb, 0x75, 0xa2, 0x10, 0x51b3, 0x4f82, 0x9f79, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x8, 0x2, 0x50, 0x0, [], [{{0x9, 0x5, 0x8a, 0x2}}, {{0x9, 0x5, 0x2, 0x2}}]}}]}}]}}, 0x0) 10:57:38 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$TIPC_NL_MEDIA_SET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000c0000002000058014000280080001000001a0c47a0002000000000008"], 0x34}}, 0x0) [ 1167.839461][ T3846] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. 10:57:38 executing program 3: perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1167.956636][ T3846] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1167.993044][ T3862] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1168.009263][ T3846] CPU: 1 PID: 3846 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1168.018155][ T3846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1168.028216][ T3846] Call Trace: [ 1168.031501][ T3846] dump_stack_lvl+0xcd/0x134 [ 1168.036102][ T3846] sysfs_warn_dup.cold+0x1c/0x29 [ 1168.041052][ T3846] sysfs_do_create_link_sd+0x11e/0x140 [ 1168.046522][ T3846] sysfs_create_link+0x5f/0xc0 [ 1168.051301][ T3846] device_add+0x78f/0x21b0 [ 1168.055756][ T3846] ? ieee80211_set_bitrate_flags+0x514/0x650 [ 1168.061749][ T3846] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1168.068114][ T3846] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1168.074369][ T3846] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.080617][ T3846] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1168.086614][ T3846] wiphy_register+0x1e8a/0x29b0 [ 1168.091485][ T3846] ? wiphy_unregister+0xbe0/0xbe0 [ 1168.096527][ T3846] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1168.102611][ T3846] ieee80211_register_hw+0x1f18/0x3ed0 [ 1168.108094][ T3846] ? ieee80211_restart_hw+0x290/0x290 [ 1168.113480][ T3846] ? debug_object_destroy+0x210/0x210 [ 1168.118875][ T3846] ? memset+0x20/0x40 [ 1168.122866][ T3846] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.129113][ T3846] ? __hrtimer_init+0x136/0x280 [ 1168.133972][ T3846] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1168.139960][ T3846] ? hwsim_virtio_rx_work+0x350/0x350 [ 1168.145564][ T3846] ? __kmalloc_track_caller+0x193/0x310 [ 1168.151125][ T3846] ? memcpy+0x39/0x60 [ 1168.155112][ T3846] hwsim_new_radio_nl+0x9bc/0x1080 [ 1168.160404][ T3846] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1168.166305][ T3846] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1168.173592][ T3846] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xb7/0x290 [ 1168.180885][ T3846] genl_family_rcv_msg_doit+0x228/0x320 [ 1168.186435][ T3846] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1168.193804][ T3846] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.200056][ T3846] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.206298][ T3846] ? ns_capable+0xd9/0x100 [ 1168.210725][ T3846] genl_rcv_msg+0x328/0x580 [ 1168.215240][ T3846] ? genl_get_cmd+0x480/0x480 [ 1168.219925][ T3846] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1168.225829][ T3846] ? lock_release+0x720/0x720 [ 1168.230518][ T3846] netlink_rcv_skb+0x153/0x420 [ 1168.235290][ T3846] ? genl_get_cmd+0x480/0x480 [ 1168.239972][ T3846] ? netlink_ack+0xa60/0xa60 [ 1168.244576][ T3846] ? netlink_deliver_tap+0x1b1/0xc30 [ 1168.249875][ T3846] genl_rcv+0x24/0x40 [ 1168.253866][ T3846] netlink_unicast+0x533/0x7d0 [ 1168.258641][ T3846] ? netlink_attachskb+0x890/0x890 [ 1168.263756][ T3846] ? __virt_addr_valid+0x5d/0x2d0 [ 1168.268789][ T3846] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1168.275035][ T3846] ? __phys_addr_symbol+0x2c/0x70 [ 1168.280067][ T3846] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1168.285795][ T3846] ? __check_object_size+0x16e/0x3f0 [ 1168.291090][ T3846] netlink_sendmsg+0x86d/0xdb0 [ 1168.295861][ T3846] ? netlink_unicast+0x7d0/0x7d0 [ 1168.300807][ T3846] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.307057][ T3846] ? netlink_unicast+0x7d0/0x7d0 [ 1168.311995][ T3846] sock_sendmsg+0xcf/0x120 [ 1168.316422][ T3846] ____sys_sendmsg+0x6e8/0x810 [ 1168.321192][ T3846] ? kernel_sendmsg+0x50/0x50 [ 1168.325876][ T3846] ? do_recvmmsg+0x6d0/0x6d0 [ 1168.330475][ T3846] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1168.336459][ T3846] ? lock_chain_count+0x20/0x20 [ 1168.341318][ T3846] ___sys_sendmsg+0xf3/0x170 [ 1168.345924][ T3846] ? sendmsg_copy_msghdr+0x160/0x160 [ 1168.351223][ T3846] ? __fget_files+0x21b/0x3e0 [ 1168.355905][ T3846] ? lock_downgrade+0x6e0/0x6e0 [ 1168.360778][ T3846] ? __fget_files+0x23d/0x3e0 [ 1168.365465][ T3846] ? __fget_light+0xea/0x280 [ 1168.370058][ T3846] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1168.376313][ T3846] __sys_sendmsg+0xe5/0x1b0 [ 1168.380826][ T3846] ? __sys_sendmsg_sock+0x30/0x30 [ 1168.385870][ T3846] ? syscall_enter_from_user_mode+0x21/0x70 [ 1168.391776][ T3846] do_syscall_64+0x35/0xb0 [ 1168.396204][ T3846] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1168.402113][ T3846] RIP: 0033:0x7f4637cff8d9 [ 1168.406534][ T3846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1168.426146][ T3846] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1168.434574][ T3846] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1168.442551][ T3846] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1168.450525][ T3846] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1168.458495][ T3846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1168.466466][ T3846] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1168.546693][ T26] audit: type=1326 audit(1633085859.111:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3835 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb63800a8d9 code=0x0 [ 1168.586514][ T3862] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1168.610080][ T3863] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1168.639601][ T3863] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1168.645563][ T8198] usb 6-1: new high-speed USB device number 22 using dummy_hcd 10:57:39 executing program 0: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x19, 0x0, 0x0) [ 1168.653537][ T3863] CPU: 0 PID: 3863 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1168.663642][ T3863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1168.673720][ T3863] Call Trace: [ 1168.677003][ T3863] dump_stack_lvl+0xcd/0x134 [ 1168.681617][ T3863] sysfs_warn_dup.cold+0x1c/0x29 [ 1168.686573][ T3863] sysfs_do_create_link_sd+0x11e/0x140 [ 1168.692057][ T3863] sysfs_create_link+0x5f/0xc0 [ 1168.696845][ T3863] device_add+0x78f/0x21b0 [ 1168.701280][ T3863] ? wait_for_completion_io+0x280/0x280 10:57:39 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1168.706844][ T3863] ? lock_downgrade+0x6e0/0x6e0 [ 1168.711720][ T3863] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1168.717985][ T3863] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1168.724248][ T3863] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.730506][ T3863] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1168.736518][ T3863] wiphy_register+0x1e8a/0x29b0 [ 1168.741402][ T3863] ? wiphy_unregister+0xbe0/0xbe0 [ 1168.746446][ T3863] ? minstrel_ht_alloc+0x531/0xa00 [ 1168.751583][ T3863] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1168.757684][ T3863] ieee80211_register_hw+0x1f18/0x3ed0 [ 1168.763192][ T3863] ? ieee80211_restart_hw+0x290/0x290 [ 1168.768588][ T3863] ? debug_object_destroy+0x210/0x210 [ 1168.773994][ T3863] ? memset+0x20/0x40 [ 1168.777993][ T3863] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.784237][ T3863] ? __hrtimer_init+0x136/0x280 [ 1168.789087][ T3863] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1168.794817][ T3863] ? hwsim_virtio_rx_work+0x350/0x350 [ 1168.800184][ T3863] ? __kmalloc_track_caller+0x193/0x310 [ 1168.805738][ T3863] ? memcpy+0x39/0x60 [ 1168.809721][ T3863] hwsim_new_radio_nl+0x9bc/0x1080 [ 1168.814829][ T3863] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1168.820731][ T3863] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.826974][ T3863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1168.834339][ T3863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1168.841627][ T3863] genl_family_rcv_msg_doit+0x228/0x320 [ 1168.847178][ T3863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1168.854550][ T3863] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.860817][ T3863] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.867066][ T3863] ? ns_capable+0xd9/0x100 [ 1168.871479][ T3863] genl_rcv_msg+0x328/0x580 [ 1168.875981][ T3863] ? genl_get_cmd+0x480/0x480 [ 1168.880648][ T3863] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1168.886534][ T3863] ? lock_release+0x720/0x720 [ 1168.891199][ T3863] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1168.896475][ T3863] netlink_rcv_skb+0x153/0x420 [ 1168.901226][ T3863] ? genl_get_cmd+0x480/0x480 [ 1168.905893][ T3863] ? netlink_ack+0xa60/0xa60 [ 1168.910475][ T3863] ? netlink_deliver_tap+0x1b1/0xc30 [ 1168.915751][ T3863] genl_rcv+0x24/0x40 [ 1168.919725][ T3863] netlink_unicast+0x533/0x7d0 [ 1168.924479][ T3863] ? netlink_attachskb+0x890/0x890 [ 1168.929574][ T3863] ? __virt_addr_valid+0x5d/0x2d0 [ 1168.934590][ T3863] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1168.940820][ T3863] ? __phys_addr_symbol+0x2c/0x70 [ 1168.945834][ T3863] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1168.951541][ T3863] ? __check_object_size+0x16e/0x3f0 [ 1168.956820][ T3863] netlink_sendmsg+0x86d/0xdb0 [ 1168.961577][ T3863] ? netlink_unicast+0x7d0/0x7d0 [ 1168.966507][ T3863] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.972759][ T3863] ? netlink_unicast+0x7d0/0x7d0 [ 1168.977690][ T3863] sock_sendmsg+0xcf/0x120 [ 1168.982097][ T3863] ____sys_sendmsg+0x6e8/0x810 [ 1168.986852][ T3863] ? kernel_sendmsg+0x50/0x50 [ 1168.991516][ T3863] ? do_recvmmsg+0x6d0/0x6d0 [ 1168.996099][ T3863] ? lock_chain_count+0x20/0x20 [ 1169.000939][ T3863] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1169.006916][ T3863] ___sys_sendmsg+0xf3/0x170 [ 1169.011497][ T3863] ? sendmsg_copy_msghdr+0x160/0x160 [ 1169.016784][ T3863] ? __fget_files+0x21b/0x3e0 [ 1169.021448][ T3863] ? lock_downgrade+0x6e0/0x6e0 [ 1169.026297][ T3863] ? __fget_files+0x23d/0x3e0 [ 1169.030966][ T3863] ? __fget_light+0xea/0x280 [ 1169.035545][ T3863] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1169.041785][ T3863] __sys_sendmsg+0xe5/0x1b0 [ 1169.046277][ T3863] ? __sys_sendmsg_sock+0x30/0x30 [ 1169.051302][ T3863] ? syscall_enter_from_user_mode+0x21/0x70 [ 1169.057189][ T3863] do_syscall_64+0x35/0xb0 [ 1169.061601][ T3863] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1169.067483][ T3863] RIP: 0033:0x7f3e684f88d9 [ 1169.071888][ T3863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1169.091483][ T3863] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1169.099903][ T3863] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1169.107886][ T3863] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1169.115859][ T3863] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1169.123823][ T3863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1169.131789][ T3863] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:39 executing program 0: r0 = getpid() ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000380)={{0x0, 0x3, 0x401, 0x4}, 0x0, 0x30, 0x8, r0, 0x0, 0x9, 'syz0\x00', 0x0, 0x0, '\x00', [0x4, 0x7, 0xa]}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8000000000, 0xffffffffffffffff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getdents(0xffffffffffffff9c, &(0x7f0000000200)=""/148, 0x94) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) r1 = dup(0xffffffffffffffff) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x4000) r2 = socket$pppl2tp(0x18, 0x1, 0x1) r3 = getpid() process_vm_readv(r3, &(0x7f0000000480)=[{&(0x7f00000008c0)=""/96, 0x60}, {&(0x7f00000004c0)=""/173, 0xad}], 0x10000062, &(0x7f0000000580), 0x1, 0x0) socket$inet_dccp(0x2, 0x6, 0x0) connect$pppl2tp(0xffffffffffffffff, &(0x7f00000006c0)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x0, 0x3, 0x0, 0x2, {0xa, 0x4e23, 0x9, @remote, 0xfff}}}, 0x32) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000940)={{0xa, 0x3, 0x3, 0x7, 'syz1\x00', 0x3ff}, 0x4, 0x10, 0xc0b, 0x0, 0x1, 0x4, 'syz1\x00', &(0x7f0000000100)=['!\xe9{\x00'], 0x4, '\x00', [0x800, 0x3, 0x8, 0x9]}) perf_event_open(&(0x7f0000000640)={0x4, 0x80, 0x3, 0xa8, 0x2, 0xda, 0x0, 0x0, 0x9000, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1f, 0x2, @perf_bp={&(0x7f0000000600), 0x16}, 0x89, 0xcb, 0xfd9, 0x9, 0x10000, 0x7f, 0x6, 0x0, 0x9, 0x0, 0x6}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) sched_setscheduler(r3, 0x5, &(0x7f0000000380)) sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000700)={&(0x7f0000000780)=ANY=[@ANYBLOB="e8000000042b010200000000000000000a000009080007006e617400090001280008800c00024000000000000000000c00024000000000000005860c0002400000000000000009280004801400030076657468305f746f5f7465616d0000000800014000000003080002403cf693ee0900030073797a3000000000640008800c000140000000000040003f0c000100010c0002400000000000007fff0c00014000000000000004010c00024000000000000003c40c00014000000000000000030100000000000000000000060c00014000000001000000003e5b2390094d6a2c01ce1eeb1eb8cfc331dab48f35b8819b445bd796cc28c4b889d698928e03e4a924dfa38f0d6df8a489870d0022115061b7225c4504f0015716af8fad2b9585ba4164234344ec0adad0c80de200"/316], 0xe8}, 0x1, 0x0, 0x0, 0x40090}, 0x4) r4 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000505d25a80308c63940d0424fc60100002400a000a00053582c137153e37040c188000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f00000000c0)={0x0, 0x9, 0xd50}, 0x8) add_key$keyring(&(0x7f0000000180), &(0x7f0000000200)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) [ 1169.199992][ T3884] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:39 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{0x0}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1169.242496][ T3884] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1169.285340][ T3867] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1169.301461][ T8198] usb 6-1: Using ep0 maxpacket: 16 [ 1169.311243][ T3867] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1169.322836][ T3867] CPU: 1 PID: 3867 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1169.331637][ T3867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1169.341705][ T3867] Call Trace: [ 1169.344994][ T3867] dump_stack_lvl+0xcd/0x134 [ 1169.349605][ T3867] sysfs_warn_dup.cold+0x1c/0x29 [ 1169.354560][ T3867] sysfs_do_create_link_sd+0x11e/0x140 [ 1169.360048][ T3867] sysfs_create_link+0x5f/0xc0 [ 1169.364838][ T3867] device_add+0x78f/0x21b0 [ 1169.369281][ T3867] ? wait_for_completion_io+0x280/0x280 [ 1169.374848][ T3867] ? lock_downgrade+0x6e0/0x6e0 [ 1169.379717][ T3867] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1169.385979][ T3867] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1169.392247][ T3867] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1169.398514][ T3867] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1169.404529][ T3867] wiphy_register+0x1e8a/0x29b0 [ 1169.409414][ T3867] ? wiphy_unregister+0xbe0/0xbe0 [ 1169.414460][ T3867] ? minstrel_ht_alloc+0x531/0xa00 [ 1169.419607][ T3867] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1169.425709][ T3867] ieee80211_register_hw+0x1f18/0x3ed0 [ 1169.431214][ T3867] ? ieee80211_restart_hw+0x290/0x290 [ 1169.436614][ T3867] ? debug_object_destroy+0x210/0x210 [ 1169.442015][ T3867] ? memset+0x20/0x40 [ 1169.446014][ T3867] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1169.452275][ T3867] ? __hrtimer_init+0x136/0x280 [ 1169.457150][ T3867] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1169.462917][ T3867] ? hwsim_virtio_rx_work+0x350/0x350 [ 1169.468309][ T3867] ? __kmalloc_track_caller+0x193/0x310 [ 1169.473884][ T3867] ? memcpy+0x39/0x60 [ 1169.477886][ T3867] hwsim_new_radio_nl+0x9bc/0x1080 [ 1169.483018][ T3867] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1169.488937][ T3867] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1169.495202][ T3867] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1169.502599][ T3867] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1169.509913][ T3867] genl_family_rcv_msg_doit+0x228/0x320 [ 1169.515484][ T3867] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1169.522877][ T3867] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1169.529147][ T3867] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1169.535410][ T3867] ? ns_capable+0xd9/0x100 [ 1169.539845][ T3867] genl_rcv_msg+0x328/0x580 [ 1169.544366][ T3867] ? genl_get_cmd+0x480/0x480 [ 1169.549058][ T3867] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1169.554975][ T3867] ? lock_release+0x720/0x720 [ 1169.559668][ T3867] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1169.564973][ T3867] netlink_rcv_skb+0x153/0x420 [ 1169.569755][ T3867] ? genl_get_cmd+0x480/0x480 [ 1169.574454][ T3867] ? netlink_ack+0xa60/0xa60 [ 1169.579067][ T3867] ? netlink_deliver_tap+0x1b1/0xc30 [ 1169.584371][ T3867] genl_rcv+0x24/0x40 [ 1169.588369][ T3867] netlink_unicast+0x533/0x7d0 [ 1169.593155][ T3867] ? netlink_attachskb+0x890/0x890 [ 1169.598282][ T3867] ? __virt_addr_valid+0x5d/0x2d0 [ 1169.603327][ T3867] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1169.609587][ T3867] ? __phys_addr_symbol+0x2c/0x70 [ 1169.614634][ T3867] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1169.620374][ T3867] ? __check_object_size+0x16e/0x3f0 [ 1169.625686][ T3867] netlink_sendmsg+0x86d/0xdb0 [ 1169.630474][ T3867] ? netlink_unicast+0x7d0/0x7d0 [ 1169.635441][ T3867] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1169.641709][ T3867] ? netlink_unicast+0x7d0/0x7d0 [ 1169.646668][ T3867] sock_sendmsg+0xcf/0x120 [ 1169.651110][ T3867] ____sys_sendmsg+0x6e8/0x810 [ 1169.655899][ T3867] ? kernel_sendmsg+0x50/0x50 [ 1169.660591][ T3867] ? do_recvmmsg+0x6d0/0x6d0 [ 1169.665215][ T3867] ? lock_chain_count+0x20/0x20 [ 1169.670085][ T3867] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1169.676095][ T3867] ___sys_sendmsg+0xf3/0x170 [ 1169.680710][ T3867] ? sendmsg_copy_msghdr+0x160/0x160 [ 1169.686025][ T3867] ? __fget_files+0x21b/0x3e0 [ 1169.690729][ T3867] ? lock_downgrade+0x6e0/0x6e0 [ 1169.695608][ T3867] ? __fget_files+0x23d/0x3e0 [ 1169.700305][ T3867] ? __fget_light+0xea/0x280 [ 1169.704909][ T3867] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1169.711174][ T3867] __sys_sendmsg+0xe5/0x1b0 [ 1169.715706][ T3867] ? __sys_sendmsg_sock+0x30/0x30 [ 1169.720766][ T3867] ? syscall_enter_from_user_mode+0x21/0x70 [ 1169.726687][ T3867] do_syscall_64+0x35/0xb0 [ 1169.731128][ T3867] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1169.737048][ T3867] RIP: 0033:0x7f3e684f88d9 [ 1169.741479][ T3867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1169.761104][ T3867] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1169.769536][ T3867] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1169.777526][ T3867] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 10:57:40 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:40 executing program 4: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0) write$sndseq(r0, &(0x7f00000002c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}], 0x1c) [ 1169.785513][ T3867] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1169.793496][ T3867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1169.801483][ T3867] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1169.879851][ T3904] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:40 executing program 4: r0 = gettid() r1 = getpgid(0x0) prctl$PR_SET_PTRACER(0x59616d61, r1) clone(0x3102002dfe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) rt_sigtimedwait(&(0x7f00000001c0), 0x0, &(0x7f0000000040)={0x0, 0x1c9c380}, 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x200044) wait4(0x0, 0x0, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]}) pidfd_send_signal(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 1169.928901][ T8198] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1169.944731][ T8198] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 0 [ 1169.999225][ T8198] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 1170.020049][ T8198] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 1170.031760][ T3904] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:40 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f000e013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) [ 1170.043074][ T3888] netlink: 'syz-executor.0': attribute type 11 has an invalid length. [ 1170.063114][ T26] audit: type=1326 audit(1633085860.621:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3913 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9f254298d9 code=0x0 10:57:40 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1170.115748][ T3888] netlink: 209848 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1170.193929][ T3924] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1170.205948][ T8198] usb 6-1: New USB device found, idVendor=51b3, idProduct=4f82, bcdDevice=9f.79 [ 1170.215022][ T8198] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1170.229151][ T8198] usb 6-1: Product: syz [ 1170.233861][ T8198] usb 6-1: Manufacturer: syz [ 1170.240405][ T8198] usb 6-1: SerialNumber: syz [ 1170.251171][ T8198] usb 6-1: config 0 descriptor?? [ 1170.309019][ T8198] usb-storage 6-1:0.0: USB Mass Storage device detected [ 1170.315485][ T3924] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1170.359539][ T3909] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1170.397875][ T8198] scsi host1: usb-storage 6-1:0.0 [ 1170.459354][ T3909] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1170.502281][ T8198] usb 6-1: USB disconnect, device number 22 [ 1170.523907][ T3909] CPU: 1 PID: 3909 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1170.532805][ T3909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1170.542878][ T3909] Call Trace: [ 1170.546166][ T3909] dump_stack_lvl+0xcd/0x134 [ 1170.550777][ T3909] sysfs_warn_dup.cold+0x1c/0x29 [ 1170.555738][ T3909] sysfs_do_create_link_sd+0x11e/0x140 [ 1170.561227][ T3909] sysfs_create_link+0x5f/0xc0 [ 1170.566011][ T3909] device_add+0x78f/0x21b0 [ 1170.570451][ T3909] ? wait_for_completion_io+0x280/0x280 [ 1170.576011][ T3909] ? lock_downgrade+0x6e0/0x6e0 [ 1170.580878][ T3909] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1170.587133][ T3909] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1170.593396][ T3909] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1170.599657][ T3909] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1170.605676][ T3909] wiphy_register+0x1e8a/0x29b0 [ 1170.610561][ T3909] ? wiphy_unregister+0xbe0/0xbe0 [ 1170.615598][ T3909] ? minstrel_ht_alloc+0x531/0xa00 [ 1170.620745][ T3909] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1170.626841][ T3909] ieee80211_register_hw+0x1f18/0x3ed0 [ 1170.632335][ T3909] ? ieee80211_restart_hw+0x290/0x290 [ 1170.637740][ T3909] ? debug_object_destroy+0x210/0x210 [ 1170.643139][ T3909] ? memset+0x20/0x40 [ 1170.647135][ T3909] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1170.653399][ T3909] ? __hrtimer_init+0x136/0x280 [ 1170.658267][ T3909] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1170.664020][ T3909] ? hwsim_virtio_rx_work+0x350/0x350 [ 1170.669406][ T3909] ? __kmalloc_track_caller+0x193/0x310 [ 1170.674973][ T3909] ? memcpy+0x39/0x60 [ 1170.678975][ T3909] hwsim_new_radio_nl+0x9bc/0x1080 [ 1170.684106][ T3909] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1170.690029][ T3909] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1170.696293][ T3909] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1170.703690][ T3909] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1170.711012][ T3909] genl_family_rcv_msg_doit+0x228/0x320 [ 1170.716590][ T3909] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1170.723990][ T3909] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1170.730259][ T3909] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1170.736521][ T3909] ? ns_capable+0xd9/0x100 [ 1170.740961][ T3909] genl_rcv_msg+0x328/0x580 [ 1170.745481][ T3909] ? genl_get_cmd+0x480/0x480 [ 1170.750172][ T3909] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1170.756095][ T3909] ? lock_release+0x720/0x720 [ 1170.760801][ T3909] netlink_rcv_skb+0x153/0x420 [ 1170.765582][ T3909] ? genl_get_cmd+0x480/0x480 [ 1170.770281][ T3909] ? netlink_ack+0xa60/0xa60 [ 1170.774890][ T3909] ? netlink_deliver_tap+0x1b1/0xc30 [ 1170.780194][ T3909] ? _copy_from_iter+0x12b/0x1320 [ 1170.785247][ T3909] genl_rcv+0x24/0x40 [ 1170.789247][ T3909] netlink_unicast+0x533/0x7d0 [ 1170.794038][ T3909] ? netlink_attachskb+0x890/0x890 [ 1170.799171][ T3909] ? __virt_addr_valid+0x5d/0x2d0 [ 1170.804212][ T3909] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1170.810474][ T3909] ? __phys_addr_symbol+0x2c/0x70 [ 1170.815518][ T3909] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1170.821258][ T3909] ? __check_object_size+0x16e/0x3f0 [ 1170.826569][ T3909] netlink_sendmsg+0x86d/0xdb0 [ 1170.831360][ T3909] ? netlink_unicast+0x7d0/0x7d0 [ 1170.836321][ T3909] ? kcov_remote_stop+0x3a0/0x3a0 [ 1170.841369][ T3909] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1170.847635][ T3909] ? netlink_unicast+0x7d0/0x7d0 [ 1170.852595][ T3909] sock_sendmsg+0xcf/0x120 [ 1170.857034][ T3909] ____sys_sendmsg+0x6e8/0x810 [ 1170.861823][ T3909] ? kernel_sendmsg+0x50/0x50 [ 1170.866522][ T3909] ? do_recvmmsg+0x6d0/0x6d0 [ 1170.871140][ T3909] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1170.877138][ T3909] ? lock_chain_count+0x20/0x20 [ 1170.882020][ T3909] ___sys_sendmsg+0xf3/0x170 [ 1170.886636][ T3909] ? sendmsg_copy_msghdr+0x160/0x160 [ 1170.891947][ T3909] ? __fget_files+0x21b/0x3e0 [ 1170.896644][ T3909] ? lock_downgrade+0x6e0/0x6e0 [ 1170.901522][ T3909] ? __fget_files+0x1a8/0x3e0 [ 1170.906232][ T3909] ? __fget_files+0x23d/0x3e0 [ 1170.910931][ T3909] ? __fget_light+0xea/0x280 [ 1170.915527][ T3909] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1170.921781][ T3909] __sys_sendmsg+0xe5/0x1b0 [ 1170.926297][ T3909] ? __sys_sendmsg_sock+0x30/0x30 [ 1170.931331][ T3909] ? lockdep_hardirqs_on+0x79/0x100 [ 1170.936539][ T3909] ? trace_hardirqs_on+0x39/0x1c0 [ 1170.941579][ T3909] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1170.947487][ T3909] do_syscall_64+0x35/0xb0 [ 1170.951912][ T3909] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1170.957814][ T3909] RIP: 0033:0x7f4637cff8d9 [ 1170.962229][ T3909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1170.981840][ T3909] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1170.990256][ T3909] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1170.998228][ T3909] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1171.006199][ T3909] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1171.014171][ T3909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1171.022141][ T3909] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1171.120201][ T26] audit: type=1326 audit(1633085861.681:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3913 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9f254298d9 code=0x0 [ 1171.354445][ T3925] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1171.384162][ T3925] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1171.412885][ T3925] CPU: 0 PID: 3925 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1171.421778][ T3925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1171.431846][ T3925] Call Trace: [ 1171.435137][ T3925] dump_stack_lvl+0xcd/0x134 [ 1171.439744][ T3925] sysfs_warn_dup.cold+0x1c/0x29 [ 1171.444706][ T3925] sysfs_do_create_link_sd+0x11e/0x140 [ 1171.450189][ T3925] sysfs_create_link+0x5f/0xc0 [ 1171.454981][ T3925] device_add+0x78f/0x21b0 [ 1171.459416][ T3925] ? wait_for_completion_io+0x280/0x280 [ 1171.464979][ T3925] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1171.471247][ T3925] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1171.477512][ T3925] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1171.483771][ T3925] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1171.489780][ T3925] wiphy_register+0x1e8a/0x29b0 [ 1171.494651][ T3925] ? wiphy_unregister+0xbe0/0xbe0 [ 1171.499684][ T3925] ? minstrel_ht_alloc+0x531/0xa00 [ 1171.504819][ T3925] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1171.510912][ T3925] ieee80211_register_hw+0x1f18/0x3ed0 [ 1171.516405][ T3925] ? ieee80211_restart_hw+0x290/0x290 [ 1171.521803][ T3925] ? debug_object_destroy+0x210/0x210 [ 1171.527204][ T3925] ? memset+0x20/0x40 [ 1171.531206][ T3925] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1171.537471][ T3925] ? __hrtimer_init+0x136/0x280 [ 1171.542339][ T3925] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1171.548092][ T3925] ? hwsim_virtio_rx_work+0x350/0x350 [ 1171.553475][ T3925] ? __kmalloc_track_caller+0x193/0x310 [ 1171.559039][ T3925] ? memcpy+0x39/0x60 [ 1171.563035][ T3925] hwsim_new_radio_nl+0x9bc/0x1080 [ 1171.568161][ T3925] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1171.574082][ T3925] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1171.580335][ T3925] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1171.587725][ T3925] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1171.595033][ T3925] genl_family_rcv_msg_doit+0x228/0x320 [ 1171.600599][ T3925] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1171.607989][ T3925] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1171.614259][ T3925] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1171.620522][ T3925] ? ns_capable+0xd9/0x100 [ 1171.624962][ T3925] genl_rcv_msg+0x328/0x580 [ 1171.629479][ T3925] ? genl_get_cmd+0x480/0x480 [ 1171.634165][ T3925] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1171.640086][ T3925] ? lock_release+0x720/0x720 [ 1171.644777][ T3925] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1171.650077][ T3925] netlink_rcv_skb+0x153/0x420 [ 1171.654859][ T3925] ? genl_get_cmd+0x480/0x480 [ 1171.659548][ T3925] ? netlink_ack+0xa60/0xa60 [ 1171.664153][ T3925] ? netlink_deliver_tap+0x1b1/0xc30 [ 1171.669455][ T3925] genl_rcv+0x24/0x40 [ 1171.673448][ T3925] netlink_unicast+0x533/0x7d0 [ 1171.678231][ T3925] ? netlink_attachskb+0x890/0x890 [ 1171.683351][ T3925] ? __virt_addr_valid+0x5d/0x2d0 [ 1171.688393][ T3925] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1171.694648][ T3925] ? __phys_addr_symbol+0x2c/0x70 [ 1171.699686][ T3925] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1171.705417][ T3925] ? __check_object_size+0x16e/0x3f0 [ 1171.710726][ T3925] netlink_sendmsg+0x86d/0xdb0 [ 1171.715507][ T3925] ? netlink_unicast+0x7d0/0x7d0 [ 1171.720459][ T3925] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1171.726726][ T3925] ? netlink_unicast+0x7d0/0x7d0 [ 1171.731679][ T3925] sock_sendmsg+0xcf/0x120 [ 1171.736113][ T3925] ____sys_sendmsg+0x6e8/0x810 [ 1171.740896][ T3925] ? kernel_sendmsg+0x50/0x50 [ 1171.745585][ T3925] ? do_recvmmsg+0x6d0/0x6d0 [ 1171.750192][ T3925] ? lock_chain_count+0x20/0x20 [ 1171.755060][ T3925] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1171.761059][ T3925] ___sys_sendmsg+0xf3/0x170 [ 1171.765666][ T3925] ? sendmsg_copy_msghdr+0x160/0x160 [ 1171.770974][ T3925] ? __fget_files+0x21b/0x3e0 [ 1171.775658][ T3925] ? lock_downgrade+0x6e0/0x6e0 [ 1171.780535][ T3925] ? __fget_files+0x23d/0x3e0 [ 1171.785229][ T3925] ? __fget_light+0xea/0x280 [ 1171.789824][ T3925] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1171.796086][ T3925] __sys_sendmsg+0xe5/0x1b0 [ 1171.800610][ T3925] ? __sys_sendmsg_sock+0x30/0x30 [ 1171.805665][ T3925] ? syscall_enter_from_user_mode+0x21/0x70 [ 1171.811575][ T3925] do_syscall_64+0x35/0xb0 [ 1171.816005][ T3925] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1171.821919][ T3925] RIP: 0033:0x7f3e684f88d9 [ 1171.826349][ T3925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1171.845970][ T3925] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1171.854401][ T3925] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1171.862475][ T3925] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1171.870635][ T3925] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1171.878608][ T3925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1171.886578][ T3925] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1171.955092][ T3898] netlink: 'syz-executor.0': attribute type 11 has an invalid length. [ 1171.977049][ T3898] netlink: 209848 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1172.066464][ T3928] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1172.087516][ T3928] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1172.097942][ T3928] CPU: 0 PID: 3928 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1172.106623][ T3928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1172.116680][ T3928] Call Trace: [ 1172.119956][ T3928] dump_stack_lvl+0xcd/0x134 [ 1172.124554][ T3928] sysfs_warn_dup.cold+0x1c/0x29 [ 1172.129491][ T3928] sysfs_do_create_link_sd+0x11e/0x140 [ 1172.134962][ T3928] sysfs_create_link+0x5f/0xc0 [ 1172.139736][ T3928] device_add+0x78f/0x21b0 [ 1172.144158][ T3928] ? wait_for_completion_io+0x280/0x280 [ 1172.149706][ T3928] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1172.155950][ T3928] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1172.162194][ T3928] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1172.168440][ T3928] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1172.175274][ T3928] wiphy_register+0x1e8a/0x29b0 [ 1172.180347][ T3928] ? wiphy_unregister+0xbe0/0xbe0 [ 1172.185315][ T8198] usb 6-1: new high-speed USB device number 23 using dummy_hcd [ 1172.185370][ T3928] ? minstrel_ht_alloc+0x531/0xa00 [ 1172.197982][ T3928] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1172.204063][ T3928] ieee80211_register_hw+0x1f18/0x3ed0 [ 1172.209541][ T3928] ? ieee80211_restart_hw+0x290/0x290 [ 1172.214921][ T3928] ? debug_object_destroy+0x210/0x210 [ 1172.220304][ T3928] ? memset+0x20/0x40 [ 1172.224287][ T3928] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1172.230530][ T3928] ? __hrtimer_init+0x136/0x280 [ 1172.235392][ T3928] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1172.241136][ T3928] ? hwsim_virtio_rx_work+0x350/0x350 [ 1172.246506][ T3928] ? __kmalloc_track_caller+0x193/0x310 [ 1172.252057][ T3928] ? memcpy+0x39/0x60 [ 1172.256042][ T3928] hwsim_new_radio_nl+0x9bc/0x1080 [ 1172.261160][ T3928] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1172.267071][ T3928] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1172.273316][ T3928] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1172.280691][ T3928] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1172.287980][ T3928] genl_family_rcv_msg_doit+0x228/0x320 [ 1172.293531][ T3928] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1172.300904][ T3928] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1172.307159][ T3928] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1172.313409][ T3928] ? ns_capable+0xd9/0x100 [ 1172.317834][ T3928] genl_rcv_msg+0x328/0x580 [ 1172.322952][ T3928] ? genl_get_cmd+0x480/0x480 [ 1172.327627][ T3928] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1172.333525][ T3928] ? lock_release+0x720/0x720 [ 1172.338201][ T3928] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1172.343501][ T3928] netlink_rcv_skb+0x153/0x420 [ 1172.348263][ T3928] ? genl_get_cmd+0x480/0x480 [ 1172.352941][ T3928] ? netlink_ack+0xa60/0xa60 [ 1172.357534][ T3928] ? netlink_deliver_tap+0x1b1/0xc30 [ 1172.362824][ T3928] genl_rcv+0x24/0x40 [ 1172.366805][ T3928] netlink_unicast+0x533/0x7d0 [ 1172.371578][ T3928] ? netlink_attachskb+0x890/0x890 [ 1172.376690][ T3928] ? __virt_addr_valid+0x5d/0x2d0 [ 1172.381714][ T3928] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1172.387958][ T3928] ? __phys_addr_symbol+0x2c/0x70 [ 1172.392986][ T3928] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1172.398709][ T3928] ? __check_object_size+0x16e/0x3f0 [ 1172.404007][ T3928] netlink_sendmsg+0x86d/0xdb0 [ 1172.408776][ T3928] ? netlink_unicast+0x7d0/0x7d0 [ 1172.413719][ T3928] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1172.419960][ T3928] ? netlink_unicast+0x7d0/0x7d0 [ 1172.424897][ T3928] sock_sendmsg+0xcf/0x120 [ 1172.425300][ T8198] usb 6-1: Using ep0 maxpacket: 16 [ 1172.429313][ T3928] ____sys_sendmsg+0x6e8/0x810 [ 1172.439142][ T3928] ? kernel_sendmsg+0x50/0x50 [ 1172.444174][ T3928] ? do_recvmmsg+0x6d0/0x6d0 [ 1172.448783][ T3928] ? lock_chain_count+0x20/0x20 [ 1172.453636][ T3928] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1172.459624][ T3928] ___sys_sendmsg+0xf3/0x170 [ 1172.464227][ T3928] ? sendmsg_copy_msghdr+0x160/0x160 [ 1172.469521][ T3928] ? __fget_files+0x21b/0x3e0 [ 1172.474200][ T3928] ? lock_downgrade+0x6e0/0x6e0 [ 1172.479076][ T3928] ? __fget_files+0x23d/0x3e0 [ 1172.483759][ T3928] ? __fget_light+0xea/0x280 [ 1172.488349][ T3928] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1172.494597][ T3928] __sys_sendmsg+0xe5/0x1b0 [ 1172.499102][ T3928] ? __sys_sendmsg_sock+0x30/0x30 [ 1172.504141][ T3928] ? syscall_enter_from_user_mode+0x21/0x70 [ 1172.510044][ T3928] do_syscall_64+0x35/0xb0 [ 1172.514466][ T3928] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1172.520364][ T3928] RIP: 0033:0x7f3e684f88d9 [ 1172.524777][ T3928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1172.544386][ T3928] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1172.545727][ T8198] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1172.552798][ T3928] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1172.570439][ T3928] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1172.575285][ T8198] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 0 [ 1172.578405][ T3928] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1172.596037][ T3928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1172.604008][ T3928] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1172.612824][ T8198] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 1172.644640][ T8198] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 1172.845441][ T8198] usb 6-1: New USB device found, idVendor=51b3, idProduct=4f82, bcdDevice=9f.79 [ 1172.854910][ T8198] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1172.874803][ T8198] usb 6-1: Product: syz [ 1172.892973][ T8198] usb 6-1: Manufacturer: syz [ 1172.898717][ T8198] usb 6-1: SerialNumber: syz [ 1172.908827][ T8198] usb 6-1: config 0 descriptor?? 10:57:43 executing program 5: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, 0x0, 0x7000000) 10:57:43 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r0) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r1, &(0x7f0000000340)={&(0x7f0000000240), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x1c}}, 0x0) 10:57:43 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:43 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:57:43 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0010013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:43 executing program 0: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0xb, 0x0, 0x0) [ 1172.945457][ T8198] usb 6-1: can't set config #0, error -71 [ 1172.986916][ T8198] usb 6-1: USB disconnect, device number 23 [ 1173.010592][ T4011] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:43 executing program 4: r0 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) sched_setattr(0x0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$incfs(0xffffffffffffff9c, 0x0, 0x745000, 0x80) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000002c0), 0x0, 0x4000) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)) r2 = open(&(0x7f0000000100)='./bus\x00', 0x6e842, 0x0) pwritev2(r2, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x300000}], 0x1, 0x4200, 0x0, 0x3) [ 1173.040572][ T4013] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1173.068034][ T4011] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:57:43 executing program 0: r0 = socket(0xa, 0x80805, 0x0) r1 = socket$inet(0x2, 0x80001, 0x84) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="fe"], 0x58}}, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000040)=@assoc_value={0x0}, &(0x7f0000000240)=0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x66, &(0x7f0000000140)={r2}, &(0x7f0000000180)=0xc) 10:57:43 executing program 5: openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_mount_image$ntfs(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1173.122279][ T4013] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1173.161785][ T4013] CPU: 0 PID: 4013 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1173.170686][ T4013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1173.180757][ T4013] Call Trace: [ 1173.184045][ T4013] dump_stack_lvl+0xcd/0x134 [ 1173.188662][ T4013] sysfs_warn_dup.cold+0x1c/0x29 [ 1173.193621][ T4013] sysfs_do_create_link_sd+0x11e/0x140 [ 1173.199476][ T4013] sysfs_create_link+0x5f/0xc0 [ 1173.204257][ T4013] device_add+0x78f/0x21b0 [ 1173.208690][ T4013] ? wait_for_completion_io+0x280/0x280 [ 1173.214243][ T4013] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1173.220490][ T4013] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1173.226737][ T4013] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1173.232982][ T4013] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1173.238979][ T4013] wiphy_register+0x1e8a/0x29b0 [ 1173.243847][ T4013] ? wiphy_unregister+0xbe0/0xbe0 [ 1173.248871][ T4013] ? minstrel_ht_alloc+0x531/0xa00 [ 1173.253995][ T4013] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1173.260082][ T4013] ieee80211_register_hw+0x1f18/0x3ed0 [ 1173.265566][ T4013] ? ieee80211_restart_hw+0x290/0x290 [ 1173.270948][ T4013] ? debug_object_destroy+0x210/0x210 [ 1173.276336][ T4013] ? memset+0x20/0x40 [ 1173.280324][ T4013] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1173.286574][ T4013] ? __hrtimer_init+0x136/0x280 [ 1173.291433][ T4013] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1173.297175][ T4013] ? hwsim_virtio_rx_work+0x350/0x350 [ 1173.302559][ T4013] ? __kmalloc_track_caller+0x193/0x310 [ 1173.308116][ T4013] ? memcpy+0x39/0x60 [ 1173.312105][ T4013] hwsim_new_radio_nl+0x9bc/0x1080 [ 1173.317232][ T4013] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1173.323142][ T4013] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1173.329388][ T4013] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1173.336767][ T4013] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1173.344066][ T4013] genl_family_rcv_msg_doit+0x228/0x320 [ 1173.349623][ T4013] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1173.357000][ T4013] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1173.363259][ T4013] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1173.369505][ T4013] ? ns_capable+0xd9/0x100 [ 1173.373930][ T4013] genl_rcv_msg+0x328/0x580 [ 1173.378439][ T4013] ? genl_get_cmd+0x480/0x480 [ 1173.383124][ T4013] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1173.389027][ T4013] ? lock_release+0x720/0x720 [ 1173.393708][ T4013] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1173.399526][ T4013] netlink_rcv_skb+0x153/0x420 [ 1173.404293][ T4013] ? genl_get_cmd+0x480/0x480 [ 1173.408971][ T4013] ? netlink_ack+0xa60/0xa60 [ 1173.413573][ T4013] ? netlink_deliver_tap+0x1b1/0xc30 [ 1173.418871][ T4013] genl_rcv+0x24/0x40 [ 1173.422853][ T4013] netlink_unicast+0x533/0x7d0 [ 1173.427626][ T4013] ? netlink_attachskb+0x890/0x890 [ 1173.432744][ T4013] ? __virt_addr_valid+0x5d/0x2d0 [ 1173.437774][ T4013] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1173.444023][ T4013] ? __phys_addr_symbol+0x2c/0x70 [ 1173.449052][ T4013] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1173.454781][ T4013] ? __check_object_size+0x16e/0x3f0 [ 1173.460077][ T4013] netlink_sendmsg+0x86d/0xdb0 [ 1173.464853][ T4013] ? netlink_unicast+0x7d0/0x7d0 [ 1173.469802][ T4013] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1173.476050][ T4013] ? netlink_unicast+0x7d0/0x7d0 [ 1173.480994][ T4013] sock_sendmsg+0xcf/0x120 [ 1173.485418][ T4013] ____sys_sendmsg+0x6e8/0x810 [ 1173.490204][ T4013] ? kernel_sendmsg+0x50/0x50 [ 1173.494909][ T4013] ? do_recvmmsg+0x6d0/0x6d0 [ 1173.499516][ T4013] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1173.505679][ T4013] ___sys_sendmsg+0xf3/0x170 [ 1173.510294][ T4013] ? sendmsg_copy_msghdr+0x160/0x160 [ 1173.515602][ T4013] ? __fget_files+0x21b/0x3e0 [ 1173.520297][ T4013] ? lock_downgrade+0x6e0/0x6e0 [ 1173.525178][ T4013] ? __fget_files+0x23d/0x3e0 [ 1173.529885][ T4013] ? __fget_light+0xea/0x280 [ 1173.534495][ T4013] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1173.540770][ T4013] __sys_sendmsg+0xe5/0x1b0 [ 1173.545298][ T4013] ? __sys_sendmsg_sock+0x30/0x30 [ 1173.550360][ T4013] ? syscall_enter_from_user_mode+0x21/0x70 [ 1173.556281][ T4013] do_syscall_64+0x35/0xb0 [ 1173.560722][ T4013] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1173.566644][ T4013] RIP: 0033:0x7f3e684f88d9 [ 1173.571075][ T4013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1173.590703][ T4013] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1173.599130][ T4013] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1173.607113][ T4013] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1173.615098][ T4013] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 10:57:44 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1173.623085][ T4013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1173.631069][ T4013] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:44 executing program 5: socket$inet6(0xa, 0x80e, 0x0) 10:57:44 executing program 0: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x9, 0x3, 0x2a0, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1d0, 0xffffffff, 0xffffffff, 0x1d0, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@CLASSIFY={0x28}}, {{@uncond, 0x0, 0xd0, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x300) [ 1173.864854][ T4049] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1173.921722][ T4049] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1173.924924][ T4021] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1173.944268][ T4058] x_tables: duplicate underflow at hook 3 [ 1173.954748][ T4021] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1173.978308][ T4021] CPU: 0 PID: 4021 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1173.987264][ T4021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1173.997333][ T4021] Call Trace: [ 1174.000619][ T4021] dump_stack_lvl+0xcd/0x134 [ 1174.005231][ T4021] sysfs_warn_dup.cold+0x1c/0x29 [ 1174.010189][ T4021] sysfs_do_create_link_sd+0x11e/0x140 [ 1174.015679][ T4021] sysfs_create_link+0x5f/0xc0 [ 1174.020818][ T4021] device_add+0x78f/0x21b0 [ 1174.025266][ T4021] ? wait_for_completion_io+0x280/0x280 [ 1174.030833][ T4021] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1174.037107][ T4021] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1174.043374][ T4021] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1174.049745][ T4021] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1174.055780][ T4021] wiphy_register+0x1e8a/0x29b0 [ 1174.060663][ T4021] ? wiphy_unregister+0xbe0/0xbe0 [ 1174.065720][ T4021] ? minstrel_ht_alloc+0x531/0xa00 [ 1174.070864][ T4021] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1174.076963][ T4021] ieee80211_register_hw+0x1f18/0x3ed0 [ 1174.082460][ T4021] ? ieee80211_restart_hw+0x290/0x290 [ 1174.087862][ T4021] ? debug_object_destroy+0x210/0x210 [ 1174.093276][ T4021] ? memset+0x20/0x40 [ 1174.097276][ T4021] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1174.103630][ T4021] ? __hrtimer_init+0x136/0x280 [ 1174.108500][ T4021] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1174.114251][ T4021] ? hwsim_virtio_rx_work+0x350/0x350 [ 1174.119636][ T4021] ? __kmalloc_track_caller+0x193/0x310 [ 1174.125206][ T4021] ? memcpy+0x39/0x60 [ 1174.129208][ T4021] hwsim_new_radio_nl+0x9bc/0x1080 [ 1174.134341][ T4021] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1174.140260][ T4021] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1174.146520][ T4021] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1174.153906][ T4021] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1174.161212][ T4021] genl_family_rcv_msg_doit+0x228/0x320 [ 1174.166784][ T4021] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1174.174176][ T4021] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1174.180445][ T4021] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1174.186707][ T4021] ? ns_capable+0xd9/0x100 [ 1174.191144][ T4021] genl_rcv_msg+0x328/0x580 [ 1174.195663][ T4021] ? genl_get_cmd+0x480/0x480 [ 1174.200352][ T4021] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1174.206260][ T4021] ? lock_release+0x720/0x720 [ 1174.210951][ T4021] netlink_rcv_skb+0x153/0x420 [ 1174.215726][ T4021] ? genl_get_cmd+0x480/0x480 [ 1174.220411][ T4021] ? netlink_ack+0xa60/0xa60 [ 1174.225018][ T4021] ? netlink_deliver_tap+0x1b1/0xc30 [ 1174.230317][ T4021] genl_rcv+0x24/0x40 [ 1174.234306][ T4021] netlink_unicast+0x533/0x7d0 [ 1174.239084][ T4021] ? netlink_attachskb+0x890/0x890 [ 1174.244197][ T4021] ? __virt_addr_valid+0x5d/0x2d0 [ 1174.249229][ T4021] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1174.255476][ T4021] ? __phys_addr_symbol+0x2c/0x70 [ 1174.260507][ T4021] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1174.266235][ T4021] ? __check_object_size+0x16e/0x3f0 [ 1174.271537][ T4021] netlink_sendmsg+0x86d/0xdb0 [ 1174.276312][ T4021] ? netlink_unicast+0x7d0/0x7d0 [ 1174.281260][ T4021] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1174.287514][ T4021] ? netlink_unicast+0x7d0/0x7d0 [ 1174.292455][ T4021] sock_sendmsg+0xcf/0x120 [ 1174.296881][ T4021] ____sys_sendmsg+0x6e8/0x810 [ 1174.301654][ T4021] ? kernel_sendmsg+0x50/0x50 [ 1174.306331][ T4021] ? do_recvmmsg+0x6d0/0x6d0 [ 1174.310936][ T4021] ? finish_task_switch.isra.0+0x232/0xa50 [ 1174.316753][ T4021] ___sys_sendmsg+0xf3/0x170 [ 1174.321359][ T4021] ? sendmsg_copy_msghdr+0x160/0x160 [ 1174.326661][ T4021] ? io_schedule_timeout+0x140/0x140 [ 1174.331962][ T4021] ? preempt_schedule_irq+0x82/0x90 [ 1174.337171][ T4021] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1174.343334][ T4021] ? lockdep_hardirqs_on+0x79/0x100 [ 1174.348541][ T4021] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1174.354718][ T4021] ? sockfd_lookup_light+0x6d/0x180 [ 1174.360103][ T4021] ? __sys_sendmsg+0xcc/0x1b0 [ 1174.364790][ T4021] __sys_sendmsg+0xe5/0x1b0 [ 1174.369301][ T4021] ? __sys_sendmsg_sock+0x30/0x30 [ 1174.374331][ T4021] ? lockdep_hardirqs_on+0x79/0x100 [ 1174.379542][ T4021] ? trace_hardirqs_on+0x39/0x1c0 [ 1174.384579][ T4021] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1174.390486][ T4021] do_syscall_64+0x35/0xb0 [ 1174.394914][ T4021] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1174.400819][ T4021] RIP: 0033:0x7f4637cff8d9 [ 1174.405234][ T4021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 10:57:44 executing program 0: syz_mount_image$ntfs(0x0, 0x0, 0x0, 0x2, &(0x7f0000002d40)=[{&(0x7f0000001940)='A', 0x1}, {&(0x7f0000001b00)="ee683fd6fd7df62850ff7863827d0ba01ee2db1c6f80d53192d4ab7f5363340a834010e0aeb3b7d4c36842c29c33ec462ecdb8b06db833b34b29ddf0b9ffd93bcd309ffefc7f8fe2e6370f907aeed688fe1cf44895675ecc9688d032b11ee4ea995b00a75856aec7dbb3727c6b1a95f5460779a2fbce448eb95c1d170ca5ac4025a29b0de5b7dc1390c1cc89cbc5098324c49c4ab0ce66bb5755f82433116d71905b99040d32ea69c6d4d6e54c594cbbda08c688e5bd26f51fb3f3468ac33a48582bc0404fc33f420b09b47aa96e48abb4", 0xd1, 0x3}], 0x0, 0x0) 10:57:45 executing program 4: r0 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000100)={{{@in6=@loopback, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}}, {{@in=@multicast1}, 0x0, @in6=@mcast1}}, 0xe8) [ 1174.424850][ T4021] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1174.433273][ T4021] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1174.441251][ T4021] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1174.449229][ T4021] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1174.457202][ T4021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1174.465264][ T4021] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:57:45 executing program 5: r0 = fsopen(&(0x7f0000000040)='hugetlbfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) [ 1175.043592][ T4054] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1175.085012][ T4054] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1175.135180][ T4054] CPU: 1 PID: 4054 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1175.144080][ T4054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1175.154147][ T4054] Call Trace: [ 1175.157434][ T4054] dump_stack_lvl+0xcd/0x134 [ 1175.162038][ T4054] sysfs_warn_dup.cold+0x1c/0x29 [ 1175.166990][ T4054] sysfs_do_create_link_sd+0x11e/0x140 [ 1175.172475][ T4054] sysfs_create_link+0x5f/0xc0 [ 1175.177260][ T4054] device_add+0x78f/0x21b0 [ 1175.181699][ T4054] ? wait_for_completion_io+0x280/0x280 [ 1175.187279][ T4054] ? lock_downgrade+0x6e0/0x6e0 [ 1175.192152][ T4054] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1175.198417][ T4054] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1175.204679][ T4054] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1175.210951][ T4054] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1175.216963][ T4054] wiphy_register+0x1e8a/0x29b0 [ 1175.221844][ T4054] ? wiphy_unregister+0xbe0/0xbe0 [ 1175.226881][ T4054] ? minstrel_ht_alloc+0x531/0xa00 [ 1175.232018][ T4054] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1175.238120][ T4054] ieee80211_register_hw+0x1f18/0x3ed0 [ 1175.243617][ T4054] ? ieee80211_restart_hw+0x290/0x290 [ 1175.249016][ T4054] ? debug_object_destroy+0x210/0x210 [ 1175.254415][ T4054] ? memset+0x20/0x40 [ 1175.258416][ T4054] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1175.264677][ T4054] ? __hrtimer_init+0x136/0x280 [ 1175.269554][ T4054] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1175.275316][ T4054] ? hwsim_virtio_rx_work+0x350/0x350 [ 1175.280703][ T4054] ? __kmalloc_track_caller+0x193/0x310 [ 1175.286283][ T4054] ? memcpy+0x39/0x60 [ 1175.290286][ T4054] hwsim_new_radio_nl+0x9bc/0x1080 [ 1175.295419][ T4054] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1175.301342][ T4054] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1175.307609][ T4054] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1175.315005][ T4054] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1175.322322][ T4054] genl_family_rcv_msg_doit+0x228/0x320 [ 1175.327891][ T4054] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1175.335290][ T4054] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1175.341564][ T4054] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1175.347824][ T4054] ? ns_capable+0xd9/0x100 [ 1175.352253][ T4054] genl_rcv_msg+0x328/0x580 [ 1175.356770][ T4054] ? genl_get_cmd+0x480/0x480 [ 1175.361453][ T4054] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1175.367359][ T4054] ? lock_release+0x720/0x720 [ 1175.372043][ T4054] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1175.377866][ T4054] netlink_rcv_skb+0x153/0x420 [ 1175.382642][ T4054] ? genl_get_cmd+0x480/0x480 [ 1175.387329][ T4054] ? netlink_ack+0xa60/0xa60 [ 1175.391931][ T4054] ? netlink_deliver_tap+0x1b1/0xc30 [ 1175.397226][ T4054] genl_rcv+0x24/0x40 [ 1175.401212][ T4054] netlink_unicast+0x533/0x7d0 [ 1175.405984][ T4054] ? netlink_attachskb+0x890/0x890 [ 1175.411100][ T4054] ? __virt_addr_valid+0x5d/0x2d0 [ 1175.416138][ T4054] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1175.422391][ T4054] ? __phys_addr_symbol+0x2c/0x70 [ 1175.427422][ T4054] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1175.433147][ T4054] ? __check_object_size+0x16e/0x3f0 [ 1175.438447][ T4054] netlink_sendmsg+0x86d/0xdb0 [ 1175.443228][ T4054] ? netlink_unicast+0x7d0/0x7d0 [ 1175.448179][ T4054] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1175.454433][ T4054] ? netlink_unicast+0x7d0/0x7d0 [ 1175.459379][ T4054] sock_sendmsg+0xcf/0x120 [ 1175.463806][ T4054] ____sys_sendmsg+0x6e8/0x810 [ 1175.468580][ T4054] ? kernel_sendmsg+0x50/0x50 [ 1175.473265][ T4054] ? do_recvmmsg+0x6d0/0x6d0 [ 1175.477868][ T4054] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1175.483862][ T4054] ___sys_sendmsg+0xf3/0x170 [ 1175.488463][ T4054] ? sendmsg_copy_msghdr+0x160/0x160 [ 1175.493763][ T4054] ? __fget_files+0x21b/0x3e0 [ 1175.498445][ T4054] ? lock_downgrade+0x6e0/0x6e0 [ 1175.503301][ T4054] ? finish_task_switch.isra.0+0x232/0xa50 [ 1175.509125][ T4054] ? __fget_files+0x23d/0x3e0 [ 1175.513824][ T4054] ? __fget_light+0xea/0x280 [ 1175.518425][ T4054] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1175.524678][ T4054] __sys_sendmsg+0xe5/0x1b0 [ 1175.529198][ T4054] ? __sys_sendmsg_sock+0x30/0x30 [ 1175.534237][ T4054] ? lockdep_hardirqs_on+0x79/0x100 [ 1175.539456][ T4054] ? trace_hardirqs_on+0x39/0x1c0 [ 1175.544503][ T4054] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1175.550412][ T4054] do_syscall_64+0x35/0xb0 [ 1175.554847][ T4054] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1175.560756][ T4054] RIP: 0033:0x7f3e684f88d9 [ 1175.565177][ T4054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 10:57:46 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1175.584794][ T4054] RSP: 002b:00007f3e65a2d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1175.593221][ T4054] RAX: ffffffffffffffda RBX: 00007f3e685fd0e0 RCX: 00007f3e684f88d9 [ 1175.601289][ T4054] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1175.609268][ T4054] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1175.617252][ T4054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1175.625229][ T4054] R13: 00007ffed818e9ff R14: 00007f3e65a2d300 R15: 0000000000022000 10:57:46 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0035013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:46 executing program 4: syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f71756f74612c736d61636b66736861743d1e292c646f6e745f61707072616973652c736d61636b66737472616e736d7574653d", @ANYBLOB]) 10:57:46 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:46 executing program 5: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x22, 0x0, 0x0) 10:57:46 executing program 0: r0 = gettid() r1 = getpgid(0x0) prctl$PR_SET_PTRACER(0x59616d61, r1) clone(0x3102002dfe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) rt_sigtimedwait(&(0x7f00000001c0), 0x0, &(0x7f0000000040)={0x0, 0x1c9c380}, 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x200044) wait4(0x0, 0x0, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]}) gettid() kcmp(0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff) [ 1175.813523][ T4101] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1175.839620][ T4097] REISERFS warning (device loop4): super-6502 reiserfs_getopt: unknown mount option "smackfshat=)" [ 1175.845126][ T4105] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:57:46 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000003f80)={0xec4, 0x0, 0x0, 0x0, 0x0, {}, [@ETHTOOL_A_WOL_MODES={0xeb0, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_VALUE={0xad, 0x4, "0ed65f98341771259284eb573008fce85293bec043651eaa3b1880ce89b080129e6af1be3c6bb6a048c936387439803ed97a15147f7529bcca72866e6c5c49085cc388afcdbc9df91a33244dd1782e8e26090322800e757d1d77e2a5b9bb26cbabf2e46b57b6d8f19fe85b87d0d1fbf942a8b25f665201083303712b6af7f934da34fad594819c8d6b888a275305dd4ba4c49777e2ff6f18ebf84da2ef4a2b1da88a253b273d2ce4bd"}, @ETHTOOL_A_BITSET_VALUE={0xde5, 0x4, "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"}]}]}, 0xec4}}, 0x0) 10:57:46 executing program 5: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, 0x1c) [ 1175.862593][ T4105] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1175.881608][ T26] audit: type=1326 audit(1633085866.441:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=4109 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=231 compat=0 ip=0x7fb63800a8d9 code=0x0 [ 1175.945721][ T4105] CPU: 0 PID: 4105 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1175.954517][ T4105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1175.964577][ T4105] Call Trace: [ 1175.967858][ T4105] dump_stack_lvl+0xcd/0x134 [ 1175.972457][ T4105] sysfs_warn_dup.cold+0x1c/0x29 [ 1175.977398][ T4105] sysfs_do_create_link_sd+0x11e/0x140 [ 1175.982871][ T4105] sysfs_create_link+0x5f/0xc0 [ 1175.987646][ T4105] device_add+0x78f/0x21b0 [ 1175.992075][ T4105] ? wait_for_completion_io+0x280/0x280 [ 1175.997631][ T4105] ? lock_downgrade+0x6e0/0x6e0 [ 1176.002489][ T4105] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1176.008741][ T4105] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1176.014991][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1176.021242][ T4105] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1176.027245][ T4105] wiphy_register+0x1e8a/0x29b0 [ 1176.032113][ T4105] ? wiphy_unregister+0xbe0/0xbe0 [ 1176.037141][ T4105] ? minstrel_ht_alloc+0x531/0xa00 [ 1176.042269][ T4105] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1176.048352][ T4105] ieee80211_register_hw+0x1f18/0x3ed0 [ 1176.053834][ T4105] ? ieee80211_restart_hw+0x290/0x290 [ 1176.059217][ T4105] ? debug_object_destroy+0x210/0x210 [ 1176.064612][ T4105] ? memset+0x20/0x40 [ 1176.068598][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1176.074846][ T4105] ? __hrtimer_init+0x136/0x280 [ 1176.079708][ T4105] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1176.085449][ T4105] ? hwsim_virtio_rx_work+0x350/0x350 [ 1176.090824][ T4105] ? __kmalloc_track_caller+0x193/0x310 [ 1176.096380][ T4105] ? memcpy+0x39/0x60 [ 1176.100373][ T4105] hwsim_new_radio_nl+0x9bc/0x1080 [ 1176.105494][ T4105] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1176.111405][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1176.117653][ T4105] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1176.125030][ T4105] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1176.132326][ T4105] genl_family_rcv_msg_doit+0x228/0x320 [ 1176.137884][ T4105] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1176.145662][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1176.151943][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1176.158213][ T4105] ? ns_capable+0xd9/0x100 [ 1176.162668][ T4105] genl_rcv_msg+0x328/0x580 [ 1176.167202][ T4105] ? genl_get_cmd+0x480/0x480 [ 1176.171907][ T4105] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1176.177831][ T4105] ? lock_release+0x720/0x720 [ 1176.182530][ T4105] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1176.188370][ T4105] netlink_rcv_skb+0x153/0x420 [ 1176.193156][ T4105] ? genl_get_cmd+0x480/0x480 [ 1176.197843][ T4105] ? netlink_ack+0xa60/0xa60 [ 1176.202440][ T4105] ? netlink_deliver_tap+0x1b1/0xc30 [ 1176.207725][ T4105] genl_rcv+0x24/0x40 [ 1176.211703][ T4105] netlink_unicast+0x533/0x7d0 [ 1176.216467][ T4105] ? netlink_attachskb+0x890/0x890 [ 1176.221570][ T4105] ? __virt_addr_valid+0x5d/0x2d0 [ 1176.226586][ T4105] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1176.232831][ T4105] ? __phys_addr_symbol+0x2c/0x70 [ 1176.237858][ T4105] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1176.243576][ T4105] ? __check_object_size+0x16e/0x3f0 [ 1176.248858][ T4105] netlink_sendmsg+0x86d/0xdb0 [ 1176.253625][ T4105] ? netlink_unicast+0x7d0/0x7d0 [ 1176.258559][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1176.264886][ T4105] ? netlink_unicast+0x7d0/0x7d0 [ 1176.269822][ T4105] sock_sendmsg+0xcf/0x120 [ 1176.274239][ T4105] ____sys_sendmsg+0x6e8/0x810 [ 1176.278996][ T4105] ? kernel_sendmsg+0x50/0x50 [ 1176.283662][ T4105] ? do_recvmmsg+0x6d0/0x6d0 [ 1176.288254][ T4105] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1176.294237][ T4105] ___sys_sendmsg+0xf3/0x170 [ 1176.298828][ T4105] ? sendmsg_copy_msghdr+0x160/0x160 [ 1176.304115][ T4105] ? __fget_files+0x21b/0x3e0 [ 1176.308782][ T4105] ? lock_downgrade+0x6e0/0x6e0 [ 1176.313636][ T4105] ? __fget_files+0x23d/0x3e0 [ 1176.318308][ T4105] ? __fget_light+0xea/0x280 [ 1176.322977][ T4105] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1176.329220][ T4105] __sys_sendmsg+0xe5/0x1b0 [ 1176.333728][ T4105] ? __sys_sendmsg_sock+0x30/0x30 [ 1176.338850][ T4105] ? syscall_enter_from_user_mode+0x21/0x70 [ 1176.344743][ T4105] do_syscall_64+0x35/0xb0 [ 1176.349157][ T4105] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1176.355044][ T4105] RIP: 0033:0x7f3e684f88d9 [ 1176.359452][ T4105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1176.379061][ T4105] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1176.387472][ T4105] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1176.395435][ T4105] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1176.403395][ T4105] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1176.411357][ T4105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1176.419321][ T4105] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1176.462183][ T4097] REISERFS warning (device loop4): super-6502 reiserfs_getopt: unknown mount option "smackfshat=)" [ 1176.506280][ T1355] ieee802154 phy0 wpan0: encryption failed: -22 [ 1176.512788][ T1355] ieee802154 phy1 wpan1: encryption failed: -22 10:57:47 executing program 0: r0 = socket$l2tp6(0xa, 0x2, 0x73) sendmsg$inet6(r0, &(0x7f0000001780)={&(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x9}, 0x1c, 0x0, 0x0, &(0x7f0000000400)=[@rthdr={{0x38, 0x29, 0x39, {0x0, 0x4, 0x2, 0x0, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private1]}}}], 0x38}, 0x0) 10:57:47 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0) 10:57:47 executing program 5: r0 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$inet6_buf(r0, 0x29, 0x43, 0x0, 0x4) [ 1176.638567][ T4101] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 1176.686021][ T4106] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. 10:57:47 executing program 0: syz_genetlink_get_family_id$l2tp(&(0x7f0000002540), 0xffffffffffffffff) [ 1176.732177][ T4106] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1176.772538][ T4106] CPU: 1 PID: 4106 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1176.781605][ T4106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1176.791676][ T4106] Call Trace: [ 1176.794965][ T4106] dump_stack_lvl+0xcd/0x134 [ 1176.799573][ T4106] sysfs_warn_dup.cold+0x1c/0x29 [ 1176.804531][ T4106] sysfs_do_create_link_sd+0x11e/0x140 [ 1176.810022][ T4106] sysfs_create_link+0x5f/0xc0 [ 1176.814819][ T4106] device_add+0x78f/0x21b0 [ 1176.819265][ T4106] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1176.825525][ T4106] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1176.831787][ T4106] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1176.838048][ T4106] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1176.844056][ T4106] wiphy_register+0x1e8a/0x29b0 [ 1176.848939][ T4106] ? wiphy_unregister+0xbe0/0xbe0 [ 1176.853986][ T4106] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1176.860178][ T4106] ? ieee80211_register_hw+0x1b8f/0x3ed0 [ 1176.865839][ T4106] ? ieee80211_register_hw+0x1bde/0x3ed0 [ 1176.871487][ T4106] ieee80211_register_hw+0x1f18/0x3ed0 [ 1176.876969][ T4106] ? ieee80211_restart_hw+0x290/0x290 [ 1176.882359][ T4106] ? debug_object_destroy+0x210/0x210 [ 1176.887753][ T4106] ? memset+0x20/0x40 [ 1176.891743][ T4106] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1176.897993][ T4106] ? __hrtimer_init+0x136/0x280 [ 1176.902853][ T4106] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1176.908598][ T4106] ? hwsim_virtio_rx_work+0x350/0x350 [ 1176.913979][ T4106] ? __kmalloc_track_caller+0x193/0x310 [ 1176.919539][ T4106] ? memcpy+0x39/0x60 [ 1176.923532][ T4106] hwsim_new_radio_nl+0x9bc/0x1080 [ 1176.928656][ T4106] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1176.934570][ T4106] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1176.940816][ T4106] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1176.948194][ T4106] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1176.955500][ T4106] genl_family_rcv_msg_doit+0x228/0x320 [ 1176.961055][ T4106] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1176.968441][ T4106] ? __sanitizer_cov_trace_pc+0x7/0x60 [ 1176.973910][ T4106] ? ns_capable+0xd9/0x100 [ 1176.978342][ T4106] genl_rcv_msg+0x328/0x580 [ 1176.982856][ T4106] ? genl_get_cmd+0x480/0x480 [ 1176.987543][ T4106] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1176.993449][ T4106] ? lock_release+0x720/0x720 [ 1176.998141][ T4106] netlink_rcv_skb+0x153/0x420 [ 1177.002912][ T4106] ? genl_get_cmd+0x480/0x480 [ 1177.007598][ T4106] ? netlink_ack+0xa60/0xa60 [ 1177.012201][ T4106] ? netlink_deliver_tap+0x1b1/0xc30 [ 1177.017497][ T4106] ? _copy_from_iter+0x12b/0x1320 [ 1177.022536][ T4106] genl_rcv+0x24/0x40 [ 1177.026525][ T4106] netlink_unicast+0x533/0x7d0 [ 1177.031302][ T4106] ? netlink_attachskb+0x890/0x890 [ 1177.036415][ T4106] ? __virt_addr_valid+0x5d/0x2d0 [ 1177.041452][ T4106] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1177.047704][ T4106] ? __phys_addr_symbol+0x2c/0x70 [ 1177.052733][ T4106] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1177.058462][ T4106] ? __check_object_size+0x16e/0x3f0 [ 1177.063762][ T4106] netlink_sendmsg+0x86d/0xdb0 [ 1177.068542][ T4106] ? netlink_unicast+0x7d0/0x7d0 [ 1177.073496][ T4106] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1177.079748][ T4106] ? netlink_unicast+0x7d0/0x7d0 [ 1177.084692][ T4106] sock_sendmsg+0xcf/0x120 [ 1177.089120][ T4106] ____sys_sendmsg+0x6e8/0x810 [ 1177.093897][ T4106] ? kernel_sendmsg+0x50/0x50 [ 1177.098578][ T4106] ? do_recvmmsg+0x6d0/0x6d0 [ 1177.103194][ T4106] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1177.109205][ T4106] ? lock_chain_count+0x20/0x20 [ 1177.114096][ T4106] ___sys_sendmsg+0xf3/0x170 [ 1177.118711][ T4106] ? sendmsg_copy_msghdr+0x160/0x160 [ 1177.124027][ T4106] ? __fget_files+0x21b/0x3e0 [ 1177.128723][ T4106] ? lock_downgrade+0x6e0/0x6e0 [ 1177.133607][ T4106] ? __fget_files+0x23d/0x3e0 [ 1177.138310][ T4106] ? __fget_light+0xea/0x280 [ 1177.142921][ T4106] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1177.149195][ T4106] __sys_sendmsg+0xe5/0x1b0 [ 1177.153734][ T4106] ? __sys_sendmsg_sock+0x30/0x30 [ 1177.158793][ T4106] ? syscall_enter_from_user_mode+0x21/0x70 [ 1177.165090][ T4106] do_syscall_64+0x35/0xb0 [ 1177.169533][ T4106] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1177.175447][ T4106] RIP: 0033:0x7f4637cff8d9 [ 1177.179874][ T4106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1177.199499][ T4106] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1177.207934][ T4106] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1177.215924][ T4106] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1177.223908][ T4106] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1177.231898][ T4106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1177.239887][ T4106] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1177.482847][ T4105] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1177.532982][ T4105] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1177.628466][ T4105] CPU: 1 PID: 4105 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1177.637368][ T4105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1177.647441][ T4105] Call Trace: [ 1177.650729][ T4105] dump_stack_lvl+0xcd/0x134 [ 1177.655344][ T4105] sysfs_warn_dup.cold+0x1c/0x29 [ 1177.660307][ T4105] sysfs_do_create_link_sd+0x11e/0x140 [ 1177.665802][ T4105] sysfs_create_link+0x5f/0xc0 [ 1177.670596][ T4105] device_add+0x78f/0x21b0 [ 1177.675040][ T4105] ? wait_for_completion_io+0x280/0x280 [ 1177.680613][ T4105] ? lock_downgrade+0x6e0/0x6e0 [ 1177.685488][ T4105] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1177.691756][ T4105] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1177.698022][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1177.704460][ T4105] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1177.710472][ T4105] wiphy_register+0x1e8a/0x29b0 [ 1177.715355][ T4105] ? wiphy_unregister+0xbe0/0xbe0 [ 1177.720400][ T4105] ? minstrel_ht_alloc+0x531/0xa00 [ 1177.725543][ T4105] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1177.731644][ T4105] ieee80211_register_hw+0x1f18/0x3ed0 [ 1177.737139][ T4105] ? ieee80211_restart_hw+0x290/0x290 [ 1177.742542][ T4105] ? debug_object_destroy+0x210/0x210 [ 1177.747946][ T4105] ? memset+0x20/0x40 [ 1177.751949][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1177.758222][ T4105] ? __hrtimer_init+0x136/0x280 [ 1177.763100][ T4105] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1177.768862][ T4105] ? hwsim_virtio_rx_work+0x350/0x350 [ 1177.774255][ T4105] ? __kmalloc_track_caller+0x193/0x310 [ 1177.779834][ T4105] ? memcpy+0x39/0x60 [ 1177.783844][ T4105] hwsim_new_radio_nl+0x9bc/0x1080 [ 1177.788989][ T4105] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1177.794918][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1177.801185][ T4105] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1177.808590][ T4105] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1177.816076][ T4105] genl_family_rcv_msg_doit+0x228/0x320 [ 1177.821629][ T4105] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1177.829010][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1177.835266][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1177.841515][ T4105] ? ns_capable+0xd9/0x100 [ 1177.845937][ T4105] genl_rcv_msg+0x328/0x580 [ 1177.850445][ T4105] ? genl_get_cmd+0x480/0x480 [ 1177.855124][ T4105] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1177.861025][ T4105] ? lock_release+0x720/0x720 [ 1177.865704][ T4105] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1177.871005][ T4105] netlink_rcv_skb+0x153/0x420 [ 1177.875776][ T4105] ? genl_get_cmd+0x480/0x480 [ 1177.880633][ T4105] ? netlink_ack+0xa60/0xa60 [ 1177.885229][ T4105] ? netlink_deliver_tap+0x1b1/0xc30 [ 1177.890521][ T4105] genl_rcv+0x24/0x40 [ 1177.894505][ T4105] netlink_unicast+0x533/0x7d0 [ 1177.899274][ T4105] ? netlink_attachskb+0x890/0x890 [ 1177.904389][ T4105] ? __virt_addr_valid+0x5d/0x2d0 [ 1177.909419][ T4105] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1177.915666][ T4105] ? __phys_addr_symbol+0x2c/0x70 [ 1177.920698][ T4105] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1177.926426][ T4105] ? __check_object_size+0x16e/0x3f0 [ 1177.931732][ T4105] netlink_sendmsg+0x86d/0xdb0 [ 1177.936507][ T4105] ? netlink_unicast+0x7d0/0x7d0 [ 1177.941450][ T4105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1177.947697][ T4105] ? netlink_unicast+0x7d0/0x7d0 [ 1177.952641][ T4105] sock_sendmsg+0xcf/0x120 [ 1177.957063][ T4105] ____sys_sendmsg+0x6e8/0x810 [ 1177.961832][ T4105] ? kernel_sendmsg+0x50/0x50 [ 1177.966509][ T4105] ? do_recvmmsg+0x6d0/0x6d0 [ 1177.971114][ T4105] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1177.977111][ T4105] ___sys_sendmsg+0xf3/0x170 [ 1177.981708][ T4105] ? sendmsg_copy_msghdr+0x160/0x160 [ 1177.987012][ T4105] ? __fget_files+0x21b/0x3e0 [ 1177.991689][ T4105] ? lock_downgrade+0x6e0/0x6e0 [ 1177.996564][ T4105] ? __fget_files+0x23d/0x3e0 [ 1178.001248][ T4105] ? __fget_light+0xea/0x280 [ 1178.005838][ T4105] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1178.012086][ T4105] __sys_sendmsg+0xe5/0x1b0 [ 1178.016594][ T4105] ? __sys_sendmsg_sock+0x30/0x30 [ 1178.021638][ T4105] ? syscall_enter_from_user_mode+0x21/0x70 [ 1178.027539][ T4105] do_syscall_64+0x35/0xb0 [ 1178.031963][ T4105] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1178.037859][ T4105] RIP: 0033:0x7f3e684f88d9 [ 1178.042275][ T4105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.061884][ T4105] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1178.070297][ T4105] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1178.078266][ T4105] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1178.086236][ T4105] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1178.094207][ T4105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1178.102176][ T4105] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:48 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:57:48 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0060013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:48 executing program 5: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000080)) 10:57:48 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:48 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$OSF_MSG_REMOVE(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000380)={0x268, 0x1, 0x5, 0x801, 0x0, 0x0, {}, [{{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz1\x00', "cb2e106c1a9fab1bb105038e808a222f6f46957324be08654f594b5b11bd8e96", "bcac1c7d4ce0f4ac3cbbda7b2cb6e27f27374ac3b33c833116cdfcaec71f2a7f"}}}]}, 0x268}}, 0x0) 10:57:48 executing program 0: r0 = syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x100000001, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="6873717307000000911d675f001000000000000001000c00d00002000400000026010000000000000602000000000000b501000000000000ee0100000000000099000000000000003e010000000000008501000000000000a30100000000000078da2baeacca4eccc9492d2aa61d030085492b1f78da2baeacca4eccc9492d2a1e658c324619a30c1803005565c4a273797a6b616c6c657273a30078da636278cbc8c0c0c83051363d1ec8604800e2ff4000a41852805804889990d43003f925486aa4581818a4813433c37fb81aa01003c82c3520d62fc92dd02faeacd2cdcc4d4c4f4d4fcd3331b434373733b634d24fcbcc493580908c48363031400088d604627620e644926705f2fba16ab81850012392cba0f28cc87ad9806233a1721acaa87a9990f4229b0131f700dc0c76a818282442807ee400d2008b6a3509450078da63648000662056016226061686b4cc9c54030f0646a0208463c80255c508a5991838c0127ac9f939296d40614698b6654006cc0cc3470cac708e1132c71800421f11fb1c0078da636080803628ad02a53da0f43228fd084aab3142680046df02a2850100000000000008805cf90100535f0100ab010000000000001d0078da63606063a8482c29293264636080b21860624670312300b5bc09ab108000000000000000000200000024000000bd010000000000000100000000000000dc01", 0x200}], 0x0, &(0x7f00000000c0)=ANY=[]) openat(r0, &(0x7f0000000040)='./file2\x00', 0x40, 0x0) 10:57:48 executing program 5: r0 = socket(0xa, 0x80805, 0x0) r1 = socket$inet(0x2, 0x80001, 0x84) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="fe"], 0x58}}, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000040)=@assoc_value={0x0}, &(0x7f0000000240)=0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x14, &(0x7f0000000140)={r2}, &(0x7f0000000180)=0xc) 10:57:48 executing program 4: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r0) 10:57:48 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1178.354352][ T4178] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1178.372091][ T4179] loop0: detected capacity change from 0 to 264192 [ 1178.401951][ T4178] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1178.458672][ T4178] CPU: 1 PID: 4178 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1178.467672][ T4178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1178.477745][ T4178] Call Trace: [ 1178.481037][ T4178] dump_stack_lvl+0xcd/0x134 [ 1178.485654][ T4178] sysfs_warn_dup.cold+0x1c/0x29 [ 1178.490618][ T4178] sysfs_do_create_link_sd+0x11e/0x140 [ 1178.496096][ T4178] sysfs_create_link+0x5f/0xc0 [ 1178.500874][ T4178] device_add+0x78f/0x21b0 [ 1178.505297][ T4178] ? wait_for_completion_io+0x280/0x280 [ 1178.510839][ T4178] ? lock_downgrade+0x6e0/0x6e0 [ 1178.515684][ T4178] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1178.521926][ T4178] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1178.528162][ T4178] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1178.534403][ T4178] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1178.540391][ T4178] wiphy_register+0x1e8a/0x29b0 [ 1178.545253][ T4178] ? wiphy_unregister+0xbe0/0xbe0 [ 1178.550279][ T4178] ? minstrel_ht_alloc+0x531/0xa00 [ 1178.555394][ T4178] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1178.561461][ T4178] ieee80211_register_hw+0x1f18/0x3ed0 [ 1178.566927][ T4178] ? ieee80211_restart_hw+0x290/0x290 [ 1178.572299][ T4178] ? debug_object_destroy+0x210/0x210 [ 1178.577671][ T4178] ? memset+0x20/0x40 [ 1178.581646][ T4178] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1178.587887][ T4178] ? __hrtimer_init+0x136/0x280 [ 1178.592745][ T4178] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1178.598474][ T4178] ? hwsim_virtio_rx_work+0x350/0x350 [ 1178.603837][ T4178] ? __kmalloc_track_caller+0x193/0x310 [ 1178.609384][ T4178] ? memcpy+0x39/0x60 [ 1178.613366][ T4178] hwsim_new_radio_nl+0x9bc/0x1080 [ 1178.618472][ T4178] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1178.624369][ T4178] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1178.630604][ T4178] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1178.637969][ T4178] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1178.645250][ T4178] genl_family_rcv_msg_doit+0x228/0x320 [ 1178.650794][ T4178] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1178.658167][ T4178] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1178.664411][ T4178] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1178.670647][ T4178] ? ns_capable+0xd9/0x100 [ 1178.675064][ T4178] genl_rcv_msg+0x328/0x580 [ 1178.679564][ T4178] ? genl_get_cmd+0x480/0x480 [ 1178.684240][ T4178] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1178.690133][ T4178] ? lock_release+0x720/0x720 [ 1178.694805][ T4178] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1178.700088][ T4178] netlink_rcv_skb+0x153/0x420 [ 1178.704855][ T4178] ? genl_get_cmd+0x480/0x480 [ 1178.709532][ T4178] ? netlink_ack+0xa60/0xa60 [ 1178.714121][ T4178] ? netlink_deliver_tap+0x1b1/0xc30 [ 1178.719402][ T4178] genl_rcv+0x24/0x40 [ 1178.723374][ T4178] netlink_unicast+0x533/0x7d0 [ 1178.728133][ T4178] ? netlink_attachskb+0x890/0x890 [ 1178.733235][ T4178] ? __virt_addr_valid+0x5d/0x2d0 [ 1178.738257][ T4178] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1178.744494][ T4178] ? __phys_addr_symbol+0x2c/0x70 [ 1178.749692][ T4178] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1178.755412][ T4178] ? __check_object_size+0x16e/0x3f0 [ 1178.760701][ T4178] netlink_sendmsg+0x86d/0xdb0 [ 1178.765468][ T4178] ? netlink_unicast+0x7d0/0x7d0 [ 1178.770404][ T4178] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1178.776642][ T4178] ? netlink_unicast+0x7d0/0x7d0 [ 1178.781572][ T4178] sock_sendmsg+0xcf/0x120 [ 1178.785984][ T4178] ____sys_sendmsg+0x6e8/0x810 [ 1178.790750][ T4178] ? kernel_sendmsg+0x50/0x50 [ 1178.795418][ T4178] ? do_recvmmsg+0x6d0/0x6d0 [ 1178.800008][ T4178] ? lock_chain_count+0x20/0x20 [ 1178.804852][ T4178] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1178.810837][ T4178] ___sys_sendmsg+0xf3/0x170 [ 1178.815517][ T4178] ? sendmsg_copy_msghdr+0x160/0x160 [ 1178.820801][ T4178] ? __fget_files+0x21b/0x3e0 [ 1178.825477][ T4178] ? lock_downgrade+0x6e0/0x6e0 [ 1178.830637][ T4178] ? __fget_files+0x23d/0x3e0 [ 1178.835312][ T4178] ? __fget_light+0xea/0x280 [ 1178.839893][ T4178] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1178.846134][ T4178] __sys_sendmsg+0xe5/0x1b0 [ 1178.850634][ T4178] ? __sys_sendmsg_sock+0x30/0x30 [ 1178.855666][ T4178] ? syscall_enter_from_user_mode+0x21/0x70 [ 1178.861562][ T4178] do_syscall_64+0x35/0xb0 [ 1178.865977][ T4178] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1178.871870][ T4178] RIP: 0033:0x7f3e684f88d9 [ 1178.876282][ T4178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.895885][ T4178] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:57:49 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000200)={&(0x7f0000000100), 0xa, &(0x7f00000001c0)={&(0x7f0000000140)={0x44}, 0x44}}, 0x0) [ 1178.904296][ T4178] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1178.912262][ T4178] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1178.920218][ T4178] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1178.928174][ T4178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1178.936132][ T4178] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:49 executing program 5: socket$l2tp(0x2, 0x2, 0x73) sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, 0x0, 0x0) 10:57:49 executing program 0: socket(0x0, 0x8080c, 0x0) [ 1179.348721][ T4190] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1179.411417][ T4190] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1179.437752][ T4190] CPU: 1 PID: 4190 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1179.446544][ T4190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1179.456595][ T4190] Call Trace: [ 1179.459867][ T4190] dump_stack_lvl+0xcd/0x134 [ 1179.464465][ T4190] sysfs_warn_dup.cold+0x1c/0x29 [ 1179.469403][ T4190] sysfs_do_create_link_sd+0x11e/0x140 [ 1179.474871][ T4190] sysfs_create_link+0x5f/0xc0 [ 1179.479638][ T4190] device_add+0x78f/0x21b0 [ 1179.484057][ T4190] ? wait_for_completion_io+0x280/0x280 [ 1179.489600][ T4190] ? minstrel_ht_alloc+0x837/0xa00 [ 1179.494714][ T4190] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1179.500954][ T4190] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1179.507283][ T4190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1179.513526][ T4190] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1179.519604][ T4190] wiphy_register+0x1e8a/0x29b0 [ 1179.524463][ T4190] ? wiphy_unregister+0xbe0/0xbe0 [ 1179.529482][ T4190] ? minstrel_ht_alloc+0x531/0xa00 [ 1179.534606][ T4190] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1179.540858][ T4190] ieee80211_register_hw+0x1f18/0x3ed0 [ 1179.546339][ T4190] ? ieee80211_restart_hw+0x290/0x290 [ 1179.551717][ T4190] ? debug_object_destroy+0x210/0x210 [ 1179.557100][ T4190] ? memset+0x20/0x40 [ 1179.561083][ T4190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1179.567498][ T4190] ? __hrtimer_init+0x136/0x280 [ 1179.572349][ T4190] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1179.578087][ T4190] ? hwsim_virtio_rx_work+0x350/0x350 [ 1179.583456][ T4190] ? __kmalloc_track_caller+0x193/0x310 [ 1179.589094][ T4190] ? memcpy+0x39/0x60 [ 1179.593080][ T4190] hwsim_new_radio_nl+0x9bc/0x1080 [ 1179.598196][ T4190] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1179.604114][ T4190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1179.610366][ T4190] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1179.617747][ T4190] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1179.625037][ T4190] genl_family_rcv_msg_doit+0x228/0x320 [ 1179.630583][ T4190] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1179.637955][ T4190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1179.644207][ T4190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1179.650451][ T4190] ? ns_capable+0xd9/0x100 [ 1179.654870][ T4190] genl_rcv_msg+0x328/0x580 [ 1179.659373][ T4190] ? genl_get_cmd+0x480/0x480 [ 1179.664050][ T4190] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1179.669948][ T4190] ? lock_release+0x720/0x720 [ 1179.674631][ T4190] netlink_rcv_skb+0x153/0x420 [ 1179.679394][ T4190] ? genl_get_cmd+0x480/0x480 [ 1179.684074][ T4190] ? netlink_ack+0xa60/0xa60 [ 1179.688669][ T4190] ? netlink_deliver_tap+0x1b1/0xc30 [ 1179.693950][ T4190] ? _copy_from_iter+0x12b/0x1320 [ 1179.698985][ T4190] genl_rcv+0x24/0x40 [ 1179.702966][ T4190] netlink_unicast+0x533/0x7d0 [ 1179.707740][ T4190] ? netlink_attachskb+0x890/0x890 [ 1179.712849][ T4190] ? __virt_addr_valid+0x5d/0x2d0 [ 1179.717878][ T4190] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1179.724117][ T4190] ? __phys_addr_symbol+0x2c/0x70 [ 1179.729138][ T4190] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1179.734858][ T4190] ? __check_object_size+0x16e/0x3f0 [ 1179.740152][ T4190] netlink_sendmsg+0x86d/0xdb0 [ 1179.744919][ T4190] ? netlink_unicast+0x7d0/0x7d0 [ 1179.749859][ T4190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1179.756102][ T4190] ? netlink_unicast+0x7d0/0x7d0 [ 1179.761037][ T4190] sock_sendmsg+0xcf/0x120 [ 1179.765455][ T4190] ____sys_sendmsg+0x6e8/0x810 [ 1179.770228][ T4190] ? kernel_sendmsg+0x50/0x50 [ 1179.774900][ T4190] ? do_recvmmsg+0x6d0/0x6d0 [ 1179.779498][ T4190] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1179.785478][ T4190] ? lock_chain_count+0x20/0x20 [ 1179.790339][ T4190] ___sys_sendmsg+0xf3/0x170 [ 1179.794944][ T4190] ? sendmsg_copy_msghdr+0x160/0x160 [ 1179.800244][ T4190] ? __fget_files+0x21b/0x3e0 [ 1179.804928][ T4190] ? irqentry_enter+0x28/0x50 [ 1179.809610][ T4190] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1179.815775][ T4190] ? lockdep_hardirqs_on+0x79/0x100 [ 1179.820972][ T4190] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1179.827135][ T4190] ? sockfd_lookup_light+0x6d/0x180 [ 1179.832346][ T4190] __sys_sendmsg+0xe5/0x1b0 [ 1179.836853][ T4190] ? __sys_sendmsg_sock+0x30/0x30 [ 1179.841880][ T4190] ? lockdep_hardirqs_on+0x79/0x100 [ 1179.847086][ T4190] ? trace_hardirqs_on+0x39/0x1c0 [ 1179.852121][ T4190] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1179.858026][ T4190] do_syscall_64+0x35/0xb0 [ 1179.862450][ T4190] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1179.868346][ T4190] RIP: 0033:0x7f4637cff8d9 [ 1179.872757][ T4190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1179.892362][ T4190] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1179.900773][ T4190] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1179.908744][ T4190] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1179.916711][ T4190] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1179.924685][ T4190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1179.932655][ T4190] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1180.024961][ T4186] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1180.076927][ T4186] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1180.084755][ T4186] CPU: 0 PID: 4186 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1180.093433][ T4186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1180.103485][ T4186] Call Trace: [ 1180.106764][ T4186] dump_stack_lvl+0xcd/0x134 [ 1180.111365][ T4186] sysfs_warn_dup.cold+0x1c/0x29 [ 1180.116310][ T4186] sysfs_do_create_link_sd+0x11e/0x140 [ 1180.121785][ T4186] sysfs_create_link+0x5f/0xc0 [ 1180.126558][ T4186] device_add+0x78f/0x21b0 [ 1180.130985][ T4186] ? wait_for_completion_io+0x280/0x280 [ 1180.136536][ T4186] ? lock_downgrade+0x6e0/0x6e0 [ 1180.141393][ T4186] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1180.147637][ T4186] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1180.153886][ T4186] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1180.160130][ T4186] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1180.166124][ T4186] wiphy_register+0x1e8a/0x29b0 [ 1180.170987][ T4186] ? wiphy_unregister+0xbe0/0xbe0 [ 1180.176407][ T4186] ? minstrel_ht_alloc+0x531/0xa00 [ 1180.181543][ T4186] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1180.187631][ T4186] ieee80211_register_hw+0x1f18/0x3ed0 [ 1180.193102][ T4186] ? ieee80211_restart_hw+0x290/0x290 [ 1180.198479][ T4186] ? debug_object_destroy+0x210/0x210 [ 1180.203859][ T4186] ? memset+0x20/0x40 [ 1180.207834][ T4186] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1180.214077][ T4186] ? __hrtimer_init+0x136/0x280 [ 1180.218921][ T4186] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1180.224653][ T4186] ? hwsim_virtio_rx_work+0x350/0x350 [ 1180.230026][ T4186] ? __kmalloc_track_caller+0x193/0x310 [ 1180.235576][ T4186] ? memcpy+0x39/0x60 [ 1180.239557][ T4186] hwsim_new_radio_nl+0x9bc/0x1080 [ 1180.244663][ T4186] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1180.250562][ T4186] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1180.256800][ T4186] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1180.264192][ T4186] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1180.271481][ T4186] genl_family_rcv_msg_doit+0x228/0x320 [ 1180.277029][ T4186] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1180.284397][ T4186] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1180.290643][ T4186] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1180.296878][ T4186] ? ns_capable+0xd9/0x100 [ 1180.301291][ T4186] genl_rcv_msg+0x328/0x580 [ 1180.305793][ T4186] ? genl_get_cmd+0x480/0x480 [ 1180.310462][ T4186] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1180.316356][ T4186] ? lock_release+0x720/0x720 [ 1180.321025][ T4186] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1180.326306][ T4186] netlink_rcv_skb+0x153/0x420 [ 1180.331066][ T4186] ? genl_get_cmd+0x480/0x480 [ 1180.335733][ T4186] ? netlink_ack+0xa60/0xa60 [ 1180.340319][ T4186] ? netlink_deliver_tap+0x1b1/0xc30 [ 1180.345596][ T4186] genl_rcv+0x24/0x40 [ 1180.349569][ T4186] netlink_unicast+0x533/0x7d0 [ 1180.354324][ T4186] ? netlink_attachskb+0x890/0x890 [ 1180.359422][ T4186] ? __virt_addr_valid+0x5d/0x2d0 [ 1180.364439][ T4186] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1180.370669][ T4186] ? __phys_addr_symbol+0x2c/0x70 [ 1180.375686][ T4186] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1180.381397][ T4186] ? __check_object_size+0x16e/0x3f0 [ 1180.386678][ T4186] netlink_sendmsg+0x86d/0xdb0 [ 1180.391441][ T4186] ? netlink_unicast+0x7d0/0x7d0 [ 1180.396374][ T4186] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1180.402610][ T4186] ? netlink_unicast+0x7d0/0x7d0 [ 1180.407541][ T4186] sock_sendmsg+0xcf/0x120 [ 1180.411956][ T4186] ____sys_sendmsg+0x6e8/0x810 [ 1180.416715][ T4186] ? kernel_sendmsg+0x50/0x50 [ 1180.421379][ T4186] ? do_recvmmsg+0x6d0/0x6d0 [ 1180.425960][ T4186] ? lock_chain_count+0x20/0x20 [ 1180.430805][ T4186] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1180.436784][ T4186] ___sys_sendmsg+0xf3/0x170 [ 1180.441373][ T4186] ? sendmsg_copy_msghdr+0x160/0x160 [ 1180.446656][ T4186] ? __fget_files+0x21b/0x3e0 [ 1180.451324][ T4186] ? lock_downgrade+0x6e0/0x6e0 [ 1180.456208][ T4186] ? __fget_files+0x23d/0x3e0 [ 1180.460885][ T4186] ? __fget_light+0xea/0x280 [ 1180.465462][ T4186] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1180.471699][ T4186] __sys_sendmsg+0xe5/0x1b0 [ 1180.476197][ T4186] ? __sys_sendmsg_sock+0x30/0x30 [ 1180.481234][ T4186] ? syscall_enter_from_user_mode+0x21/0x70 [ 1180.487122][ T4186] do_syscall_64+0x35/0xb0 [ 1180.491540][ T4186] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1180.497427][ T4186] RIP: 0033:0x7f3e684f88d9 [ 1180.501835][ T4186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 10:57:51 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1180.521440][ T4186] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1180.529850][ T4186] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1180.537815][ T4186] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1180.545779][ T4186] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1180.553740][ T4186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1180.561702][ T4186] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1181.147806][ T4235] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1181.203765][ T4235] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1181.234167][ T4235] CPU: 0 PID: 4235 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1181.243064][ T4235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1181.253133][ T4235] Call Trace: [ 1181.256418][ T4235] dump_stack_lvl+0xcd/0x134 [ 1181.261026][ T4235] sysfs_warn_dup.cold+0x1c/0x29 [ 1181.265983][ T4235] sysfs_do_create_link_sd+0x11e/0x140 [ 1181.271469][ T4235] sysfs_create_link+0x5f/0xc0 [ 1181.276256][ T4235] device_add+0x78f/0x21b0 [ 1181.280691][ T4235] ? wait_for_completion_io+0x280/0x280 [ 1181.286253][ T4235] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1181.292510][ T4235] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1181.298765][ T4235] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1181.305021][ T4235] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1181.311027][ T4235] wiphy_register+0x1e8a/0x29b0 [ 1181.315898][ T4235] ? wiphy_unregister+0xbe0/0xbe0 [ 1181.320928][ T4235] ? minstrel_ht_alloc+0x531/0xa00 [ 1181.326067][ T4235] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1181.332158][ T4235] ieee80211_register_hw+0x1f18/0x3ed0 [ 1181.337652][ T4235] ? ieee80211_restart_hw+0x290/0x290 [ 1181.343056][ T4235] ? __hrtimer_init+0x136/0x280 [ 1181.347924][ T4235] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1181.353671][ T4235] ? hwsim_virtio_rx_work+0x350/0x350 [ 1181.359063][ T4235] ? __kmalloc_track_caller+0x193/0x310 [ 1181.364630][ T4235] ? memcpy+0x39/0x60 [ 1181.368630][ T4235] hwsim_new_radio_nl+0x9bc/0x1080 [ 1181.373760][ T4235] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1181.379683][ T4235] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1181.385954][ T4235] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1181.393348][ T4235] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1181.400665][ T4235] genl_family_rcv_msg_doit+0x228/0x320 [ 1181.406240][ T4235] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1181.413633][ T4235] ? lockdep_hardirqs_on+0x79/0x100 [ 1181.418857][ T4235] ? genl_rcv_msg+0x2f9/0x580 [ 1181.423555][ T4235] genl_rcv_msg+0x328/0x580 [ 1181.428076][ T4235] ? genl_get_cmd+0x480/0x480 [ 1181.432768][ T4235] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1181.438685][ T4235] ? lock_release+0x720/0x720 [ 1181.443391][ T4235] netlink_rcv_skb+0x153/0x420 [ 1181.448173][ T4235] ? genl_get_cmd+0x480/0x480 [ 1181.452869][ T4235] ? netlink_ack+0xa60/0xa60 [ 1181.457479][ T4235] ? netlink_deliver_tap+0x1b1/0xc30 [ 1181.462782][ T4235] genl_rcv+0x24/0x40 [ 1181.466776][ T4235] netlink_unicast+0x533/0x7d0 [ 1181.471561][ T4235] ? netlink_attachskb+0x890/0x890 [ 1181.476687][ T4235] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1181.482953][ T4235] ? __phys_addr_symbol+0x2c/0x70 [ 1181.487994][ T4235] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1181.493732][ T4235] ? __check_object_size+0x16e/0x3f0 [ 1181.499035][ T4235] netlink_sendmsg+0x86d/0xdb0 [ 1181.503818][ T4235] ? netlink_unicast+0x7d0/0x7d0 [ 1181.508766][ T4235] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1181.515015][ T4235] ? netlink_unicast+0x7d0/0x7d0 [ 1181.519958][ T4235] sock_sendmsg+0xcf/0x120 [ 1181.524383][ T4235] ____sys_sendmsg+0x6e8/0x810 [ 1181.529158][ T4235] ? kernel_sendmsg+0x50/0x50 [ 1181.533840][ T4235] ? do_recvmmsg+0x6d0/0x6d0 [ 1181.538441][ T4235] ? lock_chain_count+0x20/0x20 [ 1181.543294][ T4235] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1181.549279][ T4235] ? lock_chain_count+0x20/0x20 [ 1181.554140][ T4235] ___sys_sendmsg+0xf3/0x170 [ 1181.558743][ T4235] ? sendmsg_copy_msghdr+0x160/0x160 [ 1181.564035][ T4235] ? __fget_files+0x21b/0x3e0 [ 1181.568719][ T4235] ? lock_downgrade+0x6e0/0x6e0 [ 1181.573574][ T4235] ? __fget_files+0x1c9/0x3e0 [ 1181.578261][ T4235] ? __fget_files+0x23d/0x3e0 [ 1181.582948][ T4235] ? __fget_light+0xea/0x280 [ 1181.587547][ T4235] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1181.593799][ T4235] __sys_sendmsg+0xe5/0x1b0 [ 1181.598308][ T4235] ? __sys_sendmsg_sock+0x30/0x30 [ 1181.603338][ T4235] ? lockdep_hardirqs_on+0x79/0x100 [ 1181.608548][ T4235] ? trace_hardirqs_on+0x39/0x1c0 [ 1181.613586][ T4235] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1181.619489][ T4235] do_syscall_64+0x35/0xb0 [ 1181.623913][ T4235] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1181.629817][ T4235] RIP: 0033:0x7f4637cff8d9 [ 1181.634236][ T4235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1181.653852][ T4235] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1181.662278][ T4235] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1181.670260][ T4235] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1181.678240][ T4235] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1181.686216][ T4235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1181.694192][ T4235] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:57:52 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000033582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:52 executing program 4: r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 10:57:52 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:52 executing program 5: r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) dup2(r0, r1) 10:57:52 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB="6400000007060104000000000000000005000000050001000700000008"], 0x64}}, 0x0) 10:57:52 executing program 4: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, 0x0) [ 1181.838955][ T4265] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1181.866443][ T4267] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:57:52 executing program 5: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, &(0x7f0000000200)=0x1, 0x4) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x5, 0x0, 0x0) sendto$inet6(r0, &(0x7f0000000080)="ec733cf29ebc1da11960d2c8ac731e0ce53b1c1b96d9ad8db7cf41908f71a167b6fcd1a882cc3274e556f8d090a5abc34a2d25614a578b16b3615f68abd2defb1641b9e5f87fad573c38d98438756725d6c73a75057d77522d1dbfbcd95e59449ab4a0ceafd09db766101f16bf8c57bb7df5e442947f86e95a6e75f83f49666709e04cfca92c8556fac66adabc5d7cde0b80d69a36245bf4d1d0b374c8c401a88fe8626c96ac75004d3cb26d34f2c53690e7251b95e8c4f8f74d", 0xba, 0x0, &(0x7f0000000180)={0xa, 0x0, 0x2, @ipv4={'\x00', '\xff\xff', @loopback}, 0x5}, 0x1c) 10:57:52 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1181.957745][ T4267] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1182.004238][ T4267] CPU: 1 PID: 4267 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1182.013047][ T4267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1182.023116][ T4267] Call Trace: [ 1182.026404][ T4267] dump_stack_lvl+0xcd/0x134 [ 1182.031011][ T4267] sysfs_warn_dup.cold+0x1c/0x29 [ 1182.035970][ T4267] sysfs_do_create_link_sd+0x11e/0x140 [ 1182.041447][ T4267] sysfs_create_link+0x5f/0xc0 [ 1182.046236][ T4267] device_add+0x78f/0x21b0 [ 1182.050668][ T4267] ? wait_for_completion_io+0x280/0x280 [ 1182.056240][ T4267] ? lock_downgrade+0x6e0/0x6e0 [ 1182.061107][ T4267] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1182.067367][ T4267] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1182.073630][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.079893][ T4267] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1182.085902][ T4267] wiphy_register+0x1e8a/0x29b0 [ 1182.090781][ T4267] ? wiphy_unregister+0xbe0/0xbe0 [ 1182.095817][ T4267] ? minstrel_ht_alloc+0x531/0xa00 [ 1182.100958][ T4267] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1182.107053][ T4267] ieee80211_register_hw+0x1f18/0x3ed0 [ 1182.112548][ T4267] ? ieee80211_restart_hw+0x290/0x290 [ 1182.117947][ T4267] ? debug_object_destroy+0x210/0x210 [ 1182.123350][ T4267] ? memset+0x20/0x40 [ 1182.127347][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.133611][ T4267] ? __hrtimer_init+0x136/0x280 [ 1182.138487][ T4267] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1182.144243][ T4267] ? hwsim_virtio_rx_work+0x350/0x350 [ 1182.149636][ T4267] ? __kmalloc_track_caller+0x193/0x310 [ 1182.155208][ T4267] ? memcpy+0x39/0x60 [ 1182.159210][ T4267] hwsim_new_radio_nl+0x9bc/0x1080 [ 1182.164344][ T4267] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1182.170272][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.176534][ T4267] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1182.183925][ T4267] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1182.191238][ T4267] genl_family_rcv_msg_doit+0x228/0x320 [ 1182.196814][ T4267] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1182.204210][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.210486][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.216751][ T4267] ? ns_capable+0xd9/0x100 [ 1182.221191][ T4267] genl_rcv_msg+0x328/0x580 [ 1182.225722][ T4267] ? genl_get_cmd+0x480/0x480 [ 1182.230420][ T4267] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1182.236343][ T4267] ? lock_release+0x720/0x720 [ 1182.241038][ T4267] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1182.246349][ T4267] netlink_rcv_skb+0x153/0x420 [ 1182.251134][ T4267] ? genl_get_cmd+0x480/0x480 [ 1182.255842][ T4267] ? netlink_ack+0xa60/0xa60 [ 1182.260460][ T4267] ? netlink_deliver_tap+0x1b1/0xc30 [ 1182.265773][ T4267] genl_rcv+0x24/0x40 [ 1182.269776][ T4267] netlink_unicast+0x533/0x7d0 [ 1182.274566][ T4267] ? netlink_attachskb+0x890/0x890 [ 1182.279698][ T4267] ? __virt_addr_valid+0x5d/0x2d0 [ 1182.284752][ T4267] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1182.291010][ T4267] ? __phys_addr_symbol+0x2c/0x70 [ 1182.296051][ T4267] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1182.301791][ T4267] ? __check_object_size+0x16e/0x3f0 [ 1182.307101][ T4267] netlink_sendmsg+0x86d/0xdb0 [ 1182.311891][ T4267] ? netlink_unicast+0x7d0/0x7d0 [ 1182.316858][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.323129][ T4267] ? netlink_unicast+0x7d0/0x7d0 [ 1182.328089][ T4267] sock_sendmsg+0xcf/0x120 [ 1182.332528][ T4267] ____sys_sendmsg+0x6e8/0x810 [ 1182.337318][ T4267] ? kernel_sendmsg+0x50/0x50 [ 1182.342015][ T4267] ? do_recvmmsg+0x6d0/0x6d0 [ 1182.346630][ T4267] ? lock_chain_count+0x20/0x20 [ 1182.351501][ T4267] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1182.357511][ T4267] ___sys_sendmsg+0xf3/0x170 [ 1182.362122][ T4267] ? sendmsg_copy_msghdr+0x160/0x160 [ 1182.367433][ T4267] ? __fget_files+0x21b/0x3e0 [ 1182.372134][ T4267] ? lock_downgrade+0x6e0/0x6e0 [ 1182.377022][ T4267] ? __fget_files+0x23d/0x3e0 [ 1182.381735][ T4267] ? __fget_light+0xea/0x280 [ 1182.386342][ T4267] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1182.392606][ T4267] __sys_sendmsg+0xe5/0x1b0 [ 1182.397134][ T4267] ? __sys_sendmsg_sock+0x30/0x30 [ 1182.402196][ T4267] ? syscall_enter_from_user_mode+0x21/0x70 [ 1182.408115][ T4267] do_syscall_64+0x35/0xb0 [ 1182.412549][ T4267] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1182.418454][ T4267] RIP: 0033:0x7f3e684f88d9 [ 1182.422878][ T4267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1182.442500][ T4267] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:57:53 executing program 4: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_SET_FEATURE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x20}, 0x20}}, 0x0) 10:57:53 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 1182.450932][ T4267] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1182.458917][ T4267] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1182.466900][ T4267] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1182.474884][ T4267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1182.482876][ T4267] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:53 executing program 0: request_key(&(0x7f0000000080)='syzkaller\x00', &(0x7f00000000c0)={'syz', 0x2}, &(0x7f0000000100)='keyring\x00', 0x0) [ 1182.521611][ T4267] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1182.569182][ T4267] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1182.610705][ T4267] CPU: 0 PID: 4267 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1182.619432][ T4267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1182.629503][ T4267] Call Trace: [ 1182.632786][ T4267] dump_stack_lvl+0xcd/0x134 [ 1182.637383][ T4267] sysfs_warn_dup.cold+0x1c/0x29 [ 1182.642324][ T4267] sysfs_do_create_link_sd+0x11e/0x140 [ 1182.647787][ T4267] sysfs_create_link+0x5f/0xc0 [ 1182.652545][ T4267] device_add+0x78f/0x21b0 [ 1182.656955][ T4267] ? wait_for_completion_io+0x280/0x280 [ 1182.662492][ T4267] ? lock_downgrade+0x6e0/0x6e0 [ 1182.667335][ T4267] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1182.673565][ T4267] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1182.679797][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.686032][ T4267] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1182.692012][ T4267] wiphy_register+0x1e8a/0x29b0 [ 1182.696859][ T4267] ? wiphy_unregister+0xbe0/0xbe0 [ 1182.701870][ T4267] ? minstrel_ht_alloc+0x531/0xa00 [ 1182.706983][ T4267] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1182.713048][ T4267] ieee80211_register_hw+0x1f18/0x3ed0 [ 1182.718511][ T4267] ? ieee80211_restart_hw+0x290/0x290 [ 1182.723876][ T4267] ? debug_object_destroy+0x210/0x210 [ 1182.729245][ T4267] ? memset+0x20/0x40 [ 1182.733223][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.739453][ T4267] ? __hrtimer_init+0x136/0x280 [ 1182.744294][ T4267] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1182.750017][ T4267] ? hwsim_virtio_rx_work+0x350/0x350 [ 1182.755375][ T4267] ? __kmalloc_track_caller+0x193/0x310 [ 1182.760913][ T4267] ? memcpy+0x39/0x60 [ 1182.764886][ T4267] hwsim_new_radio_nl+0x9bc/0x1080 [ 1182.769989][ T4267] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1182.775881][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.782111][ T4267] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1182.789472][ T4267] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1182.796752][ T4267] genl_family_rcv_msg_doit+0x228/0x320 [ 1182.802288][ T4267] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1182.809649][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.815892][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.822120][ T4267] ? ns_capable+0xd9/0x100 [ 1182.826526][ T4267] genl_rcv_msg+0x328/0x580 [ 1182.831020][ T4267] ? genl_get_cmd+0x480/0x480 [ 1182.835683][ T4267] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1182.841572][ T4267] ? lock_release+0x720/0x720 [ 1182.846236][ T4267] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1182.851513][ T4267] netlink_rcv_skb+0x153/0x420 [ 1182.856264][ T4267] ? genl_get_cmd+0x480/0x480 [ 1182.860932][ T4267] ? netlink_ack+0xa60/0xa60 [ 1182.865514][ T4267] ? netlink_deliver_tap+0x1b1/0xc30 [ 1182.870791][ T4267] genl_rcv+0x24/0x40 [ 1182.874758][ T4267] netlink_unicast+0x533/0x7d0 [ 1182.879512][ T4267] ? netlink_attachskb+0x890/0x890 [ 1182.884610][ T4267] ? __virt_addr_valid+0x5d/0x2d0 [ 1182.889623][ T4267] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1182.895854][ T4267] ? __phys_addr_symbol+0x2c/0x70 [ 1182.900866][ T4267] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1182.906572][ T4267] ? __check_object_size+0x16e/0x3f0 [ 1182.911853][ T4267] netlink_sendmsg+0x86d/0xdb0 [ 1182.916609][ T4267] ? netlink_unicast+0x7d0/0x7d0 [ 1182.921537][ T4267] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1182.927768][ T4267] ? netlink_unicast+0x7d0/0x7d0 [ 1182.932694][ T4267] sock_sendmsg+0xcf/0x120 [ 1182.937103][ T4267] ____sys_sendmsg+0x6e8/0x810 [ 1182.941859][ T4267] ? kernel_sendmsg+0x50/0x50 [ 1182.946522][ T4267] ? do_recvmmsg+0x6d0/0x6d0 [ 1182.951108][ T4267] ? lock_chain_count+0x20/0x20 [ 1182.955948][ T4267] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1182.961923][ T4267] ___sys_sendmsg+0xf3/0x170 [ 1182.966506][ T4267] ? sendmsg_copy_msghdr+0x160/0x160 [ 1182.971785][ T4267] ? __fget_files+0x21b/0x3e0 [ 1182.976449][ T4267] ? lock_downgrade+0x6e0/0x6e0 [ 1182.981298][ T4267] ? __fget_files+0x23d/0x3e0 [ 1182.985967][ T4267] ? __fget_light+0xea/0x280 [ 1182.990543][ T4267] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1182.996776][ T4267] __sys_sendmsg+0xe5/0x1b0 [ 1183.001271][ T4267] ? __sys_sendmsg_sock+0x30/0x30 [ 1183.006295][ T4267] ? syscall_enter_from_user_mode+0x21/0x70 [ 1183.012183][ T4267] do_syscall_64+0x35/0xb0 [ 1183.016596][ T4267] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1183.022479][ T4267] RIP: 0033:0x7f3e684f88d9 [ 1183.026882][ T4267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1183.046499][ T4267] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1183.054900][ T4267] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 10:57:53 executing program 5: get_mempolicy(&(0x7f0000000000), &(0x7f0000000040), 0x100000001, &(0x7f0000ffb000/0x4000)=nil, 0x4) [ 1183.062857][ T4267] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1183.070816][ T4267] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1183.078774][ T4267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1183.086734][ T4267] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1183.312976][ T4296] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1183.361021][ T4296] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1183.378377][ T4296] CPU: 1 PID: 4296 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1183.387270][ T4296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1183.397336][ T4296] Call Trace: [ 1183.400623][ T4296] dump_stack_lvl+0xcd/0x134 [ 1183.405228][ T4296] sysfs_warn_dup.cold+0x1c/0x29 [ 1183.410174][ T4296] sysfs_do_create_link_sd+0x11e/0x140 [ 1183.415656][ T4296] sysfs_create_link+0x5f/0xc0 [ 1183.420430][ T4296] device_add+0x78f/0x21b0 [ 1183.424856][ T4296] ? __sanitizer_cov_trace_switch+0x59/0xf0 [ 1183.430763][ T4296] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1183.437017][ T4296] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1183.443271][ T4296] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1183.449524][ T4296] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1183.455522][ T4296] wiphy_register+0x1e8a/0x29b0 [ 1183.460393][ T4296] ? wiphy_unregister+0xbe0/0xbe0 [ 1183.465423][ T4296] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1183.471594][ T4296] ? ieee80211_register_hw+0x1cb4/0x3ed0 [ 1183.477241][ T4296] ieee80211_register_hw+0x1f18/0x3ed0 [ 1183.482720][ T4296] ? ieee80211_restart_hw+0x290/0x290 [ 1183.488107][ T4296] ? debug_object_destroy+0x210/0x210 [ 1183.493498][ T4296] ? memset+0x20/0x40 [ 1183.497483][ T4296] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1183.503734][ T4296] ? __hrtimer_init+0x136/0x280 [ 1183.508596][ T4296] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1183.514339][ T4296] ? hwsim_virtio_rx_work+0x350/0x350 [ 1183.519719][ T4296] ? __kmalloc_track_caller+0x193/0x310 [ 1183.525276][ T4296] ? memcpy+0x39/0x60 [ 1183.529263][ T4296] hwsim_new_radio_nl+0x9bc/0x1080 [ 1183.534386][ T4296] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1183.540290][ T4296] ? lockdep_hardirqs_on+0x79/0x100 [ 1183.545501][ T4296] ? genl_family_rcv_msg_doit+0xec/0x320 [ 1183.551145][ T4296] ? genl_family_rcv_msg_doit+0xfe/0x320 [ 1183.556792][ T4296] genl_family_rcv_msg_doit+0x228/0x320 [ 1183.562351][ T4296] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1183.569741][ T4296] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1183.576004][ T4296] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1183.582253][ T4296] ? ns_capable+0xd9/0x100 [ 1183.586680][ T4296] genl_rcv_msg+0x328/0x580 [ 1183.591204][ T4296] ? genl_get_cmd+0x480/0x480 [ 1183.595888][ T4296] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1183.601795][ T4296] ? lock_release+0x720/0x720 [ 1183.606489][ T4296] netlink_rcv_skb+0x153/0x420 [ 1183.611259][ T4296] ? genl_get_cmd+0x480/0x480 [ 1183.615941][ T4296] ? netlink_ack+0xa60/0xa60 [ 1183.620538][ T4296] ? netlink_deliver_tap+0x1b1/0xc30 [ 1183.625827][ T4296] ? irqentry_enter+0x28/0x50 [ 1183.630512][ T4296] genl_rcv+0x24/0x40 [ 1183.634496][ T4296] netlink_unicast+0x533/0x7d0 [ 1183.639270][ T4296] ? netlink_attachskb+0x890/0x890 [ 1183.644382][ T4296] ? netlink_sendmsg+0x821/0xdb0 [ 1183.649329][ T4296] netlink_sendmsg+0x86d/0xdb0 [ 1183.654110][ T4296] ? netlink_unicast+0x7d0/0x7d0 [ 1183.659061][ T4296] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1183.665312][ T4296] ? netlink_unicast+0x7d0/0x7d0 [ 1183.670257][ T4296] sock_sendmsg+0xcf/0x120 [ 1183.674681][ T4296] ____sys_sendmsg+0x6e8/0x810 [ 1183.679459][ T4296] ? kernel_sendmsg+0x50/0x50 [ 1183.684139][ T4296] ? do_recvmmsg+0x6d0/0x6d0 [ 1183.688746][ T4296] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1183.694735][ T4296] ? lock_chain_count+0x20/0x20 [ 1183.699603][ T4296] ___sys_sendmsg+0xf3/0x170 [ 1183.704212][ T4296] ? sendmsg_copy_msghdr+0x160/0x160 [ 1183.709511][ T4296] ? __fget_files+0x21b/0x3e0 [ 1183.714192][ T4296] ? lock_downgrade+0x6e0/0x6e0 [ 1183.719059][ T4296] ? __fget_files+0x23d/0x3e0 [ 1183.723747][ T4296] ? __fget_light+0xea/0x280 [ 1183.728346][ T4296] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1183.734612][ T4296] __sys_sendmsg+0xe5/0x1b0 [ 1183.739131][ T4296] ? __sys_sendmsg_sock+0x30/0x30 [ 1183.744177][ T4296] ? syscall_enter_from_user_mode+0x21/0x70 [ 1183.750083][ T4296] do_syscall_64+0x35/0xb0 [ 1183.754512][ T4296] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1183.760644][ T4296] RIP: 0033:0x7f4637cff8d9 [ 1183.765070][ T4296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1183.784686][ T4296] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1183.793112][ T4296] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1183.801092][ T4296] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1183.809067][ T4296] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1183.817043][ T4296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1183.825022][ T4296] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:57:54 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000053582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:54 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:57:54 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet6(r0, &(0x7f0000000540)={&(0x7f0000000280)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000480)=[@rthdr_2292={{0x28, 0x29, 0x39, {0x0, 0x2, 0x2, 0x0, 0x0, [@empty]}}}], 0x28}, 0x0) 10:57:54 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r0) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x28, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x28}}, 0x0) 10:57:54 executing program 5: fsopen(&(0x7f0000000000)='xfs\x00', 0x0) 10:57:54 executing program 5: syz_mount_image$ocfs2(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="2d2c5e2f2b7b2c732b27252e24292a2c40152c2c7b2b2c592c2c402c252d2c2a2c2c7375626a5f757365723d26"]) 10:57:54 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1184.020742][ T4320] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:57:54 executing program 4: r0 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$inet6_buf(r0, 0x29, 0x4b, 0x0, 0x4) [ 1184.090347][ T4320] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1184.130710][ T4320] CPU: 0 PID: 4320 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1184.139528][ T4320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1184.149590][ T4320] Call Trace: [ 1184.152872][ T4320] dump_stack_lvl+0xcd/0x134 [ 1184.157471][ T4320] sysfs_warn_dup.cold+0x1c/0x29 [ 1184.162408][ T4320] sysfs_do_create_link_sd+0x11e/0x140 [ 1184.167870][ T4320] sysfs_create_link+0x5f/0xc0 [ 1184.172816][ T4320] device_add+0x78f/0x21b0 [ 1184.177236][ T4320] ? wait_for_completion_io+0x280/0x280 [ 1184.182782][ T4320] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1184.189021][ T4320] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1184.195258][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1184.201492][ T4320] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1184.207664][ T4320] wiphy_register+0x1e8a/0x29b0 [ 1184.212539][ T4320] ? wiphy_unregister+0xbe0/0xbe0 [ 1184.217555][ T4320] ? minstrel_ht_alloc+0x531/0xa00 [ 1184.222674][ T4320] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1184.228749][ T4320] ieee80211_register_hw+0x1f18/0x3ed0 [ 1184.234218][ T4320] ? ieee80211_restart_hw+0x290/0x290 [ 1184.239589][ T4320] ? debug_object_destroy+0x210/0x210 [ 1184.244960][ T4320] ? memset+0x20/0x40 [ 1184.248935][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1184.255171][ T4320] ? __hrtimer_init+0x136/0x280 [ 1184.260016][ T4320] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1184.265752][ T4320] ? hwsim_virtio_rx_work+0x350/0x350 [ 1184.271118][ T4320] ? __kmalloc_track_caller+0x193/0x310 [ 1184.276663][ T4320] ? memcpy+0x39/0x60 [ 1184.280639][ T4320] hwsim_new_radio_nl+0x9bc/0x1080 [ 1184.285749][ T4320] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1184.291643][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1184.297878][ T4320] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1184.305245][ T4320] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1184.312532][ T4320] genl_family_rcv_msg_doit+0x228/0x320 [ 1184.318076][ T4320] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1184.325444][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1184.331688][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1184.337928][ T4320] ? ns_capable+0xd9/0x100 [ 1184.342339][ T4320] genl_rcv_msg+0x328/0x580 [ 1184.346836][ T4320] ? genl_get_cmd+0x480/0x480 [ 1184.351504][ T4320] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1184.357398][ T4320] ? lock_release+0x720/0x720 [ 1184.362069][ T4320] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1184.367353][ T4320] netlink_rcv_skb+0x153/0x420 [ 1184.372110][ T4320] ? genl_get_cmd+0x480/0x480 [ 1184.376780][ T4320] ? netlink_ack+0xa60/0xa60 [ 1184.381364][ T4320] ? netlink_deliver_tap+0x1b1/0xc30 [ 1184.386645][ T4320] genl_rcv+0x24/0x40 [ 1184.390618][ T4320] netlink_unicast+0x533/0x7d0 [ 1184.395373][ T4320] ? netlink_attachskb+0x890/0x890 [ 1184.400473][ T4320] ? __virt_addr_valid+0x5d/0x2d0 [ 1184.405492][ T4320] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1184.411731][ T4320] ? __phys_addr_symbol+0x2c/0x70 [ 1184.416749][ T4320] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1184.422461][ T4320] ? __check_object_size+0x16e/0x3f0 [ 1184.427742][ T4320] netlink_sendmsg+0x86d/0xdb0 [ 1184.432503][ T4320] ? netlink_unicast+0x7d0/0x7d0 [ 1184.437437][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1184.443669][ T4320] ? netlink_unicast+0x7d0/0x7d0 [ 1184.448598][ T4320] sock_sendmsg+0xcf/0x120 [ 1184.453009][ T4320] ____sys_sendmsg+0x6e8/0x810 [ 1184.457770][ T4320] ? kernel_sendmsg+0x50/0x50 [ 1184.462440][ T4320] ? do_recvmmsg+0x6d0/0x6d0 [ 1184.467025][ T4320] ? lock_chain_count+0x20/0x20 [ 1184.471870][ T4320] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1184.477854][ T4320] ___sys_sendmsg+0xf3/0x170 [ 1184.482442][ T4320] ? sendmsg_copy_msghdr+0x160/0x160 [ 1184.487734][ T4320] ? __fget_files+0x21b/0x3e0 [ 1184.492402][ T4320] ? lock_downgrade+0x6e0/0x6e0 [ 1184.497254][ T4320] ? __fget_files+0x23d/0x3e0 [ 1184.501925][ T4320] ? __fget_light+0xea/0x280 [ 1184.506505][ T4320] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1184.512744][ T4320] __sys_sendmsg+0xe5/0x1b0 [ 1184.517241][ T4320] ? __sys_sendmsg_sock+0x30/0x30 [ 1184.522268][ T4320] ? syscall_enter_from_user_mode+0x21/0x70 [ 1184.528159][ T4320] do_syscall_64+0x35/0xb0 [ 1184.532571][ T4320] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1184.538458][ T4320] RIP: 0033:0x7f3e684f88d9 [ 1184.542867][ T4320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1184.562470][ T4320] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1184.570880][ T4320] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1184.578845][ T4320] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1184.586806][ T4320] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1184.594768][ T4320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1184.602737][ T4320] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:55 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0xc, 0x0, 0x0) [ 1184.840185][ T4320] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:57:55 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:57:55 executing program 5: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) sendmsg$DEVLINK_CMD_RELOAD(r0, 0x0, 0x0) 10:57:55 executing program 4: io_uring_setup(0x55a5, &(0x7f0000000100)={0x0, 0x13e4, 0x8}) [ 1184.909068][ T4320] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1184.955086][ T4320] CPU: 1 PID: 4320 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1184.963797][ T4320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1184.973937][ T4320] Call Trace: [ 1184.977219][ T4320] dump_stack_lvl+0xcd/0x134 [ 1184.981825][ T4320] sysfs_warn_dup.cold+0x1c/0x29 [ 1184.986768][ T4320] sysfs_do_create_link_sd+0x11e/0x140 [ 1184.992246][ T4320] sysfs_create_link+0x5f/0xc0 [ 1184.997016][ T4320] device_add+0x78f/0x21b0 [ 1185.001437][ T4320] ? wait_for_completion_io+0x280/0x280 [ 1185.006986][ T4320] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1185.013242][ T4320] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1185.019489][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1185.025742][ T4320] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1185.031732][ T4320] wiphy_register+0x1e8a/0x29b0 [ 1185.036594][ T4320] ? wiphy_unregister+0xbe0/0xbe0 [ 1185.041619][ T4320] ? minstrel_ht_alloc+0x531/0xa00 [ 1185.046743][ T4320] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1185.052823][ T4320] ieee80211_register_hw+0x1f18/0x3ed0 [ 1185.058302][ T4320] ? ieee80211_restart_hw+0x290/0x290 [ 1185.063686][ T4320] ? debug_object_destroy+0x210/0x210 [ 1185.069070][ T4320] ? memset+0x20/0x40 [ 1185.073052][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1185.079295][ T4320] ? __hrtimer_init+0x136/0x280 [ 1185.084150][ T4320] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1185.089893][ T4320] ? hwsim_virtio_rx_work+0x350/0x350 [ 1185.095270][ T4320] ? __kmalloc_track_caller+0x193/0x310 [ 1185.100828][ T4320] ? memcpy+0x39/0x60 [ 1185.104819][ T4320] hwsim_new_radio_nl+0x9bc/0x1080 [ 1185.109938][ T4320] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1185.115844][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1185.122088][ T4320] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1185.129466][ T4320] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1185.136761][ T4320] genl_family_rcv_msg_doit+0x228/0x320 [ 1185.142313][ T4320] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1185.149691][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1185.155944][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1185.162190][ T4320] ? ns_capable+0xd9/0x100 [ 1185.166627][ T4320] genl_rcv_msg+0x328/0x580 [ 1185.171152][ T4320] ? genl_get_cmd+0x480/0x480 [ 1185.175842][ T4320] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1185.181761][ T4320] ? lock_release+0x720/0x720 [ 1185.186455][ T4320] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1185.191765][ T4320] netlink_rcv_skb+0x153/0x420 [ 1185.196548][ T4320] ? genl_get_cmd+0x480/0x480 [ 1185.201248][ T4320] ? netlink_ack+0xa60/0xa60 [ 1185.205860][ T4320] ? netlink_deliver_tap+0x1b1/0xc30 [ 1185.211173][ T4320] genl_rcv+0x24/0x40 [ 1185.215184][ T4320] netlink_unicast+0x533/0x7d0 [ 1185.219978][ T4320] ? netlink_attachskb+0x890/0x890 [ 1185.225111][ T4320] ? __virt_addr_valid+0x5d/0x2d0 [ 1185.230158][ T4320] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1185.236431][ T4320] ? __phys_addr_symbol+0x2c/0x70 [ 1185.241476][ T4320] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1185.247214][ T4320] ? __check_object_size+0x16e/0x3f0 [ 1185.252533][ T4320] netlink_sendmsg+0x86d/0xdb0 [ 1185.257323][ T4320] ? netlink_unicast+0x7d0/0x7d0 [ 1185.262285][ T4320] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1185.268552][ T4320] ? netlink_unicast+0x7d0/0x7d0 [ 1185.273514][ T4320] sock_sendmsg+0xcf/0x120 [ 1185.277952][ T4320] ____sys_sendmsg+0x6e8/0x810 [ 1185.282742][ T4320] ? kernel_sendmsg+0x50/0x50 [ 1185.287437][ T4320] ? do_recvmmsg+0x6d0/0x6d0 [ 1185.292053][ T4320] ? lock_chain_count+0x20/0x20 [ 1185.296922][ T4320] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1185.302930][ T4320] ___sys_sendmsg+0xf3/0x170 [ 1185.307542][ T4320] ? sendmsg_copy_msghdr+0x160/0x160 [ 1185.312850][ T4320] ? __fget_files+0x21b/0x3e0 [ 1185.317540][ T4320] ? lock_downgrade+0x6e0/0x6e0 [ 1185.322417][ T4320] ? __fget_files+0x23d/0x3e0 [ 1185.327110][ T4320] ? __fget_light+0xea/0x280 [ 1185.331711][ T4320] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1185.337968][ T4320] __sys_sendmsg+0xe5/0x1b0 [ 1185.342489][ T4320] ? __sys_sendmsg_sock+0x30/0x30 [ 1185.347538][ T4320] ? syscall_enter_from_user_mode+0x21/0x70 [ 1185.353448][ T4320] do_syscall_64+0x35/0xb0 [ 1185.357883][ T4320] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1185.363794][ T4320] RIP: 0033:0x7f3e684f88d9 [ 1185.368225][ T4320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1185.387851][ T4320] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1185.396283][ T4320] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1185.404266][ T4320] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1185.412250][ T4320] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1185.420239][ T4320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1185.428231][ T4320] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:56 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000073582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:57:56 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, 0x0, 0x0) 10:57:56 executing program 0: r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.log\x00', 0x212c1, 0x0) write$tcp_congestion(r0, 0x0, 0x0) 10:57:56 executing program 4: openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.pending_reads\x00', 0xe18c2, 0x0) 10:57:56 executing program 5: syz_emit_ethernet(0xec, &(0x7f0000000040)={@multicast, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0xde, 0x0, 0x0, 0x0, 0x6, 0x0, @broadcast, @remote, {[@timestamp_addr={0x44, 0x4}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x2, 0x5e, 0x0, 0x0, {[@timestamp={0x8, 0xa}]}}, {"bba0f37c5ec76e0d83080c1e03010f562b9c2c0a5a481f32686e1a1e504be36cda32cd8edef79581c02e9c6473a7f33e700fae62f5277aa64880dd04d7d55b534c86fe26c6bcc77abe2bdc89243cba7bad806716563c7a49c4e6ee67ddb2cc4e627a742fda0c729d619dbb58ed2f5ba517d8b60401d5ee171470e334975a631b8fdbde50d8954997e4d605187ec7121d6d53f188e7e1b1b5f9bbff75cf639043478fc0401b50"}}}}}}, 0x0) [ 1186.064284][ T4349] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1186.102166][ T4349] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1186.159028][ T4349] CPU: 1 PID: 4349 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1186.167836][ T4349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1186.177903][ T4349] Call Trace: [ 1186.181193][ T4349] dump_stack_lvl+0xcd/0x134 [ 1186.185807][ T4349] sysfs_warn_dup.cold+0x1c/0x29 [ 1186.191160][ T4349] sysfs_do_create_link_sd+0x11e/0x140 [ 1186.196638][ T4349] sysfs_create_link+0x5f/0xc0 [ 1186.201409][ T4349] device_add+0x78f/0x21b0 [ 1186.205824][ T4349] ? wait_for_completion_io+0x280/0x280 [ 1186.211360][ T4349] ? mark_held_locks+0x9f/0xe0 [ 1186.216122][ T4349] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1186.222359][ T4349] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1186.228598][ T4349] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1186.234833][ T4349] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1186.240816][ T4349] wiphy_register+0x1e8a/0x29b0 [ 1186.245669][ T4349] ? wiphy_unregister+0xbe0/0xbe0 [ 1186.250684][ T4349] ? minstrel_ht_alloc+0x531/0xa00 [ 1186.255794][ T4349] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1186.261861][ T4349] ieee80211_register_hw+0x1f18/0x3ed0 [ 1186.267328][ T4349] ? ieee80211_restart_hw+0x290/0x290 [ 1186.272702][ T4349] ? debug_object_destroy+0x210/0x210 [ 1186.278073][ T4349] ? memset+0x20/0x40 [ 1186.282045][ T4349] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1186.288275][ T4349] ? __hrtimer_init+0x136/0x280 [ 1186.293122][ T4349] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1186.298849][ T4349] ? hwsim_virtio_rx_work+0x350/0x350 [ 1186.304211][ T4349] ? __kmalloc_track_caller+0x193/0x310 [ 1186.309757][ T4349] ? memcpy+0x39/0x60 [ 1186.313734][ T4349] hwsim_new_radio_nl+0x9bc/0x1080 [ 1186.318843][ T4349] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1186.324738][ T4349] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1186.330972][ T4349] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1186.338338][ T4349] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1186.345620][ T4349] genl_family_rcv_msg_doit+0x228/0x320 [ 1186.351161][ T4349] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1186.358526][ T4349] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1186.364770][ T4349] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1186.371005][ T4349] ? ns_capable+0xd9/0x100 [ 1186.375417][ T4349] genl_rcv_msg+0x328/0x580 [ 1186.379914][ T4349] ? genl_get_cmd+0x480/0x480 [ 1186.384582][ T4349] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1186.390473][ T4349] ? lock_release+0x720/0x720 [ 1186.395148][ T4349] netlink_rcv_skb+0x153/0x420 [ 1186.399904][ T4349] ? genl_get_cmd+0x480/0x480 [ 1186.404577][ T4349] ? netlink_ack+0xa60/0xa60 [ 1186.409161][ T4349] ? netlink_deliver_tap+0x1b1/0xc30 [ 1186.414439][ T4349] ? _copy_from_iter+0x12b/0x1320 [ 1186.419462][ T4349] genl_rcv+0x24/0x40 [ 1186.423435][ T4349] netlink_unicast+0x533/0x7d0 [ 1186.428195][ T4349] ? netlink_attachskb+0x890/0x890 [ 1186.433300][ T4349] ? __virt_addr_valid+0x5d/0x2d0 [ 1186.438316][ T4349] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1186.444550][ T4349] ? __phys_addr_symbol+0x2c/0x70 [ 1186.449566][ T4349] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1186.455276][ T4349] ? __check_object_size+0x16e/0x3f0 [ 1186.460556][ T4349] netlink_sendmsg+0x86d/0xdb0 [ 1186.465317][ T4349] ? netlink_unicast+0x7d0/0x7d0 [ 1186.470253][ T4349] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1186.476486][ T4349] ? netlink_unicast+0x7d0/0x7d0 [ 1186.481416][ T4349] sock_sendmsg+0xcf/0x120 [ 1186.485828][ T4349] ____sys_sendmsg+0x6e8/0x810 [ 1186.490584][ T4349] ? kernel_sendmsg+0x50/0x50 [ 1186.495249][ T4349] ? do_recvmmsg+0x6d0/0x6d0 [ 1186.499835][ T4349] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1186.505810][ T4349] ? lock_chain_count+0x20/0x20 [ 1186.510662][ T4349] ___sys_sendmsg+0xf3/0x170 [ 1186.515250][ T4349] ? sendmsg_copy_msghdr+0x160/0x160 [ 1186.520532][ T4349] ? __fget_files+0x21b/0x3e0 [ 1186.525201][ T4349] ? irqentry_enter+0x28/0x50 [ 1186.529882][ T4349] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1186.536036][ T4349] ? lockdep_hardirqs_on+0x79/0x100 [ 1186.541392][ T4349] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1186.547556][ T4349] ? sockfd_lookup_light+0x6d/0x180 [ 1186.552760][ T4349] __sys_sendmsg+0xe5/0x1b0 [ 1186.557261][ T4349] ? __sys_sendmsg_sock+0x30/0x30 [ 1186.562280][ T4349] ? lockdep_hardirqs_on+0x79/0x100 [ 1186.567474][ T4349] ? trace_hardirqs_on+0x39/0x1c0 [ 1186.572674][ T4349] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1186.578565][ T4349] do_syscall_64+0x35/0xb0 [ 1186.582980][ T4349] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1186.588868][ T4349] RIP: 0033:0x7f4637cff8d9 [ 1186.593276][ T4349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1186.612877][ T4349] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1186.621290][ T4349] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1186.629259][ T4349] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1186.637221][ T4349] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1186.645181][ T4349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1186.653143][ T4349] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:57:57 executing program 0: bpf$OBJ_GET_PROG(0x7, &(0x7f0000000100)={0x0, 0x0, 0x38}, 0x10) 10:57:57 executing program 4: r0 = socket(0x2a, 0x2, 0x0) sendmsg$TIPC_NL_KEY_FLUSH(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x40080) 10:57:57 executing program 5: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat$incfs(r0, &(0x7f0000002640)='.log\x00', 0x0, 0x0) 10:57:57 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001600)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$sock(r0, &(0x7f000000b900), 0x0, 0x40) [ 1187.389053][ T4388] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1187.442684][ T4388] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1187.492208][ T4388] CPU: 0 PID: 4388 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1187.501117][ T4388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1187.511184][ T4388] Call Trace: [ 1187.514478][ T4388] dump_stack_lvl+0xcd/0x134 [ 1187.519083][ T4388] sysfs_warn_dup.cold+0x1c/0x29 [ 1187.524018][ T4388] sysfs_do_create_link_sd+0x11e/0x140 [ 1187.529479][ T4388] sysfs_create_link+0x5f/0xc0 [ 1187.534240][ T4388] device_add+0x78f/0x21b0 [ 1187.538653][ T4388] ? wait_for_completion_io+0x280/0x280 [ 1187.544197][ T4388] ? lock_downgrade+0x6e0/0x6e0 [ 1187.549046][ T4388] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1187.555287][ T4388] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1187.561525][ T4388] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1187.567760][ T4388] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1187.573746][ T4388] wiphy_register+0x1e8a/0x29b0 [ 1187.578597][ T4388] ? wiphy_unregister+0xbe0/0xbe0 [ 1187.583612][ T4388] ? minstrel_ht_alloc+0x531/0xa00 [ 1187.588725][ T4388] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1187.594796][ T4388] ieee80211_register_hw+0x1f18/0x3ed0 [ 1187.600271][ T4388] ? ieee80211_restart_hw+0x290/0x290 [ 1187.605854][ T4388] ? debug_object_destroy+0x210/0x210 [ 1187.611234][ T4388] ? memset+0x20/0x40 [ 1187.615205][ T4388] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1187.621448][ T4388] ? __hrtimer_init+0x136/0x280 [ 1187.626297][ T4388] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1187.632021][ T4388] ? hwsim_virtio_rx_work+0x350/0x350 [ 1187.637385][ T4388] ? __kmalloc_track_caller+0x193/0x310 [ 1187.642933][ T4388] ? memcpy+0x39/0x60 [ 1187.646907][ T4388] hwsim_new_radio_nl+0x9bc/0x1080 [ 1187.652015][ T4388] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1187.657912][ T4388] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1187.664157][ T4388] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1187.671528][ T4388] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1187.678815][ T4388] genl_family_rcv_msg_doit+0x228/0x320 [ 1187.684359][ T4388] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1187.691815][ T4388] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1187.698064][ T4388] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1187.704297][ T4388] ? ns_capable+0xd9/0x100 [ 1187.708708][ T4388] genl_rcv_msg+0x328/0x580 [ 1187.713207][ T4388] ? genl_get_cmd+0x480/0x480 [ 1187.717883][ T4388] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1187.723774][ T4388] ? lock_release+0x720/0x720 [ 1187.728446][ T4388] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1187.733727][ T4388] netlink_rcv_skb+0x153/0x420 [ 1187.738662][ T4388] ? genl_get_cmd+0x480/0x480 [ 1187.743336][ T4388] ? netlink_ack+0xa60/0xa60 [ 1187.747922][ T4388] ? netlink_deliver_tap+0x1b1/0xc30 [ 1187.753202][ T4388] genl_rcv+0x24/0x40 [ 1187.757181][ T4388] netlink_unicast+0x533/0x7d0 [ 1187.761944][ T4388] ? netlink_attachskb+0x890/0x890 [ 1187.767043][ T4388] ? __virt_addr_valid+0x5d/0x2d0 [ 1187.772062][ T4388] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1187.778293][ T4388] ? __phys_addr_symbol+0x2c/0x70 [ 1187.783309][ T4388] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1187.789028][ T4388] ? __check_object_size+0x16e/0x3f0 [ 1187.794527][ T4388] netlink_sendmsg+0x86d/0xdb0 [ 1187.799463][ T4388] ? netlink_unicast+0x7d0/0x7d0 [ 1187.804402][ T4388] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1187.810642][ T4388] ? netlink_unicast+0x7d0/0x7d0 [ 1187.815577][ T4388] sock_sendmsg+0xcf/0x120 [ 1187.819991][ T4388] ____sys_sendmsg+0x6e8/0x810 [ 1187.824749][ T4388] ? kernel_sendmsg+0x50/0x50 [ 1187.829415][ T4388] ? do_recvmmsg+0x6d0/0x6d0 [ 1187.834005][ T4388] ? lock_chain_count+0x20/0x20 [ 1187.838846][ T4388] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1187.844826][ T4388] ___sys_sendmsg+0xf3/0x170 [ 1187.849410][ T4388] ? sendmsg_copy_msghdr+0x160/0x160 [ 1187.854694][ T4388] ? __fget_files+0x21b/0x3e0 [ 1187.859365][ T4388] ? lock_downgrade+0x6e0/0x6e0 [ 1187.864228][ T4388] ? __fget_files+0x23d/0x3e0 [ 1187.868991][ T4388] ? __fget_light+0xea/0x280 [ 1187.873572][ T4388] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1187.879813][ T4388] __sys_sendmsg+0xe5/0x1b0 [ 1187.884313][ T4388] ? __sys_sendmsg_sock+0x30/0x30 [ 1187.889343][ T4388] ? syscall_enter_from_user_mode+0x21/0x70 [ 1187.895239][ T4388] do_syscall_64+0x35/0xb0 [ 1187.899652][ T4388] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1187.905542][ T4388] RIP: 0033:0x7f3e684f88d9 [ 1187.909950][ T4388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1187.929550][ T4388] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1187.937960][ T4388] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1187.945920][ T4388] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1187.953878][ T4388] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1187.961838][ T4388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1187.969802][ T4388] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:57:58 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x4, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:57:58 executing program 4: openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x212c0, 0xde) 10:57:58 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001600)={0xffffffffffffffff}) sendto(r0, 0x0, 0x0, 0x4844, 0x0, 0xffffffffffffff1d) [ 1188.550413][ T4389] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1188.563552][ T4389] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1188.574833][ T4389] CPU: 1 PID: 4389 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1188.583598][ T4389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1188.593654][ T4389] Call Trace: [ 1188.596933][ T4389] dump_stack_lvl+0xcd/0x134 [ 1188.601532][ T4389] sysfs_warn_dup.cold+0x1c/0x29 [ 1188.606477][ T4389] sysfs_do_create_link_sd+0x11e/0x140 [ 1188.611951][ T4389] sysfs_create_link+0x5f/0xc0 [ 1188.616725][ T4389] device_add+0x78f/0x21b0 [ 1188.621146][ T4389] ? wait_for_completion_io+0x280/0x280 [ 1188.626696][ T4389] ? lock_downgrade+0x6e0/0x6e0 [ 1188.631549][ T4389] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1188.637798][ T4389] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1188.644043][ T4389] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1188.650287][ T4389] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1188.656286][ T4389] wiphy_register+0x1e8a/0x29b0 [ 1188.661152][ T4389] ? wiphy_unregister+0xbe0/0xbe0 [ 1188.666176][ T4389] ? minstrel_ht_alloc+0x531/0xa00 [ 1188.671309][ T4389] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1188.677392][ T4389] ieee80211_register_hw+0x1f18/0x3ed0 [ 1188.682873][ T4389] ? ieee80211_restart_hw+0x290/0x290 [ 1188.688256][ T4389] ? debug_object_destroy+0x210/0x210 [ 1188.693642][ T4389] ? memset+0x20/0x40 [ 1188.697626][ T4389] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1188.703871][ T4389] ? __hrtimer_init+0x136/0x280 [ 1188.708726][ T4389] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1188.714465][ T4389] ? hwsim_virtio_rx_work+0x350/0x350 [ 1188.719840][ T4389] ? __kmalloc_track_caller+0x193/0x310 [ 1188.725395][ T4389] ? memcpy+0x39/0x60 [ 1188.729384][ T4389] hwsim_new_radio_nl+0x9bc/0x1080 [ 1188.734503][ T4389] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1188.740499][ T4389] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1188.746915][ T4389] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1188.754293][ T4389] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1188.761588][ T4389] genl_family_rcv_msg_doit+0x228/0x320 [ 1188.767144][ T4389] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1188.774520][ T4389] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1188.780779][ T4389] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1188.787025][ T4389] ? ns_capable+0xd9/0x100 [ 1188.791449][ T4389] genl_rcv_msg+0x328/0x580 [ 1188.795957][ T4389] ? genl_get_cmd+0x480/0x480 [ 1188.800636][ T4389] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1188.806539][ T4389] ? lock_release+0x720/0x720 [ 1188.811226][ T4389] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1188.816519][ T4389] netlink_rcv_skb+0x153/0x420 [ 1188.821288][ T4389] ? genl_get_cmd+0x480/0x480 [ 1188.825969][ T4389] ? netlink_ack+0xa60/0xa60 [ 1188.830570][ T4389] ? netlink_deliver_tap+0x1b1/0xc30 [ 1188.835864][ T4389] genl_rcv+0x24/0x40 [ 1188.839847][ T4389] netlink_unicast+0x533/0x7d0 [ 1188.844617][ T4389] ? netlink_attachskb+0x890/0x890 [ 1188.849730][ T4389] ? __virt_addr_valid+0x5d/0x2d0 [ 1188.854764][ T4389] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1188.861012][ T4389] ? __phys_addr_symbol+0x2c/0x70 [ 1188.866040][ T4389] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1188.871764][ T4389] ? __check_object_size+0x16e/0x3f0 [ 1188.877063][ T4389] netlink_sendmsg+0x86d/0xdb0 [ 1188.881843][ T4389] ? netlink_unicast+0x7d0/0x7d0 [ 1188.886805][ T4389] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1188.893066][ T4389] ? netlink_unicast+0x7d0/0x7d0 [ 1188.898010][ T4389] sock_sendmsg+0xcf/0x120 [ 1188.902433][ T4389] ____sys_sendmsg+0x6e8/0x810 [ 1188.907204][ T4389] ? kernel_sendmsg+0x50/0x50 [ 1188.911883][ T4389] ? do_recvmmsg+0x6d0/0x6d0 [ 1188.916482][ T4389] ? lock_chain_count+0x20/0x20 [ 1188.921344][ T4389] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1188.927535][ T4389] ___sys_sendmsg+0xf3/0x170 [ 1188.932134][ T4389] ? sendmsg_copy_msghdr+0x160/0x160 [ 1188.937430][ T4389] ? __fget_files+0x21b/0x3e0 [ 1188.942111][ T4389] ? lock_downgrade+0x6e0/0x6e0 [ 1188.946978][ T4389] ? __fget_files+0x23d/0x3e0 [ 1188.951661][ T4389] ? __fget_light+0xea/0x280 [ 1188.956255][ T4389] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1188.962503][ T4389] __sys_sendmsg+0xe5/0x1b0 [ 1188.967016][ T4389] ? __sys_sendmsg_sock+0x30/0x30 [ 1188.972061][ T4389] ? syscall_enter_from_user_mode+0x21/0x70 [ 1188.978170][ T4389] do_syscall_64+0x35/0xb0 [ 1188.982596][ T4389] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1188.988496][ T4389] RIP: 0033:0x7f3e684f88d9 [ 1188.992910][ T4389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1189.012521][ T4389] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1189.020936][ T4389] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1189.028907][ T4389] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1189.037249][ T4389] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1189.045219][ T4389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1189.053391][ T4389] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1189.153045][ T4417] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1189.194674][ T4417] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1189.226115][ T4417] CPU: 0 PID: 4417 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1189.234898][ T4417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1189.244952][ T4417] Call Trace: [ 1189.248230][ T4417] dump_stack_lvl+0xcd/0x134 [ 1189.252828][ T4417] sysfs_warn_dup.cold+0x1c/0x29 [ 1189.257767][ T4417] sysfs_do_create_link_sd+0x11e/0x140 [ 1189.263236][ T4417] sysfs_create_link+0x5f/0xc0 [ 1189.268006][ T4417] device_add+0x78f/0x21b0 [ 1189.272428][ T4417] ? wait_for_completion_io+0x280/0x280 [ 1189.277975][ T4417] ? mark_held_locks+0x9f/0xe0 [ 1189.282743][ T4417] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1189.288984][ T4417] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1189.295218][ T4417] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1189.301450][ T4417] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1189.307427][ T4417] wiphy_register+0x1e8a/0x29b0 [ 1189.312273][ T4417] ? wiphy_unregister+0xbe0/0xbe0 [ 1189.317284][ T4417] ? minstrel_ht_alloc+0x837/0xa00 [ 1189.322398][ T4417] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1189.328461][ T4417] ieee80211_register_hw+0x1f18/0x3ed0 [ 1189.333926][ T4417] ? ieee80211_restart_hw+0x290/0x290 [ 1189.339292][ T4417] ? debug_object_destroy+0x210/0x210 [ 1189.344666][ T4417] ? memset+0x20/0x40 [ 1189.348640][ T4417] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1189.354875][ T4417] ? __hrtimer_init+0x136/0x280 [ 1189.359718][ T4417] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1189.365448][ T4417] ? hwsim_virtio_rx_work+0x350/0x350 [ 1189.370807][ T4417] ? __kmalloc_track_caller+0x193/0x310 [ 1189.376345][ T4417] ? memcpy+0x39/0x60 [ 1189.380336][ T4417] hwsim_new_radio_nl+0x9bc/0x1080 [ 1189.385438][ T4417] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1189.391327][ T4417] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1189.397555][ T4417] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1189.404916][ T4417] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1189.412210][ T4417] genl_family_rcv_msg_doit+0x228/0x320 [ 1189.417749][ T4417] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1189.425109][ T4417] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1189.431345][ T4417] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1189.437574][ T4417] ? ns_capable+0xd9/0x100 [ 1189.441985][ T4417] genl_rcv_msg+0x328/0x580 [ 1189.446477][ T4417] ? genl_get_cmd+0x480/0x480 [ 1189.451144][ T4417] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1189.457051][ T4417] ? lock_release+0x720/0x720 [ 1189.461721][ T4417] netlink_rcv_skb+0x153/0x420 [ 1189.466482][ T4417] ? genl_get_cmd+0x480/0x480 [ 1189.471149][ T4417] ? netlink_ack+0xa60/0xa60 [ 1189.475736][ T4417] ? netlink_deliver_tap+0x1b1/0xc30 [ 1189.481008][ T4417] ? _copy_from_iter+0x12b/0x1320 [ 1189.486026][ T4417] genl_rcv+0x24/0x40 [ 1189.489996][ T4417] netlink_unicast+0x533/0x7d0 [ 1189.494751][ T4417] ? netlink_attachskb+0x890/0x890 [ 1189.499847][ T4417] ? __virt_addr_valid+0x5d/0x2d0 [ 1189.504864][ T4417] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1189.511096][ T4417] ? __phys_addr_symbol+0x2c/0x70 [ 1189.516110][ T4417] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1189.521820][ T4417] ? __check_object_size+0x16e/0x3f0 [ 1189.527098][ T4417] netlink_sendmsg+0x86d/0xdb0 [ 1189.531854][ T4417] ? netlink_unicast+0x7d0/0x7d0 [ 1189.536785][ T4417] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1189.543015][ T4417] ? netlink_unicast+0x7d0/0x7d0 [ 1189.547944][ T4417] sock_sendmsg+0xcf/0x120 [ 1189.552351][ T4417] ____sys_sendmsg+0x6e8/0x810 [ 1189.557107][ T4417] ? kernel_sendmsg+0x50/0x50 [ 1189.561771][ T4417] ? do_recvmmsg+0x6d0/0x6d0 [ 1189.566355][ T4417] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1189.572324][ T4417] ? lock_chain_count+0x20/0x20 [ 1189.577167][ T4417] ___sys_sendmsg+0xf3/0x170 [ 1189.581748][ T4417] ? sendmsg_copy_msghdr+0x160/0x160 [ 1189.587032][ T4417] ? __fget_files+0x21b/0x3e0 [ 1189.591700][ T4417] ? lock_downgrade+0x6e0/0x6e0 [ 1189.596543][ T4417] ? __fget_files+0x9f/0x3e0 [ 1189.601125][ T4417] ? __fget_files+0x23d/0x3e0 [ 1189.605792][ T4417] ? __fget_light+0xea/0x280 [ 1189.610372][ T4417] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1189.616606][ T4417] __sys_sendmsg+0xe5/0x1b0 [ 1189.621101][ T4417] ? __sys_sendmsg_sock+0x30/0x30 [ 1189.626115][ T4417] ? lockdep_hardirqs_on+0x79/0x100 [ 1189.631307][ T4417] ? trace_hardirqs_on+0x39/0x1c0 [ 1189.636327][ T4417] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1189.642214][ T4417] do_syscall_64+0x35/0xb0 [ 1189.646623][ T4417] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1189.652506][ T4417] RIP: 0033:0x7f4637cff8d9 [ 1189.656909][ T4417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1189.676504][ T4417] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1189.684906][ T4417] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 10:58:00 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000353582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:00 executing program 5: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system', 0x0, 0x0) read$char_usb(r0, 0xfffffffffffffffe, 0x0) 10:58:00 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, 0x0, 0x0) 10:58:00 executing program 0: r0 = socket$inet_icmp(0x2, 0x2, 0x1) connect(r0, &(0x7f00000025c0)=@l2tp={0x2, 0x0, @empty}, 0x80) 10:58:00 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001600)={0xffffffffffffffff}) sendto(r0, 0x0, 0x0, 0x40004, &(0x7f00000016c0)=@ipx={0x4, 0x0, 0x0, '\x00\x00\x00\b\x00'}, 0x80) [ 1189.692863][ T4417] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1189.700823][ T4417] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1189.708782][ T4417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1189.716756][ T4417] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:58:00 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10041}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="09f000002200050ad26b80648c64940d7e60fc6312003e0e250907006a1c82c137153e370248038047000000d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4c000000}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) 10:58:00 executing program 5: perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0xd5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x29, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) close(r0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x100002, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$cgroup_int(r0, &(0x7f0000000200), 0x43408) 10:58:00 executing program 0: r0 = socket$kcm(0x11, 0x3, 0x300) r1 = socket$kcm(0x2, 0x1000000000000002, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x4) sendmsg$kcm(r1, &(0x7f0000003d00)={&(0x7f0000000000)=@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x80, 0x0}, 0xfd00) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfa38) [ 1189.942903][ T4452] netlink: 61337 bytes leftover after parsing attributes in process `syz-executor.4'. 10:58:00 executing program 0: openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.log\x00', 0x100040, 0x0) openat$incfs(0xffffffffffffff9c, &(0x7f0000000440)='.log\x00', 0x618c2, 0x0) [ 1190.532573][ T4443] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1190.572251][ T4443] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1190.648225][ T4443] CPU: 1 PID: 4443 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1190.657129][ T4443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1190.667195][ T4443] Call Trace: [ 1190.670487][ T4443] dump_stack_lvl+0xcd/0x134 [ 1190.675094][ T4443] sysfs_warn_dup.cold+0x1c/0x29 [ 1190.680044][ T4443] sysfs_do_create_link_sd+0x11e/0x140 [ 1190.685529][ T4443] sysfs_create_link+0x5f/0xc0 [ 1190.690323][ T4443] device_add+0x78f/0x21b0 [ 1190.694769][ T4443] ? wait_for_completion_io+0x280/0x280 [ 1190.700334][ T4443] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1190.706598][ T4443] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1190.712863][ T4443] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1190.719125][ T4443] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1190.725137][ T4443] wiphy_register+0x1e8a/0x29b0 [ 1190.730018][ T4443] ? wiphy_unregister+0xbe0/0xbe0 [ 1190.735061][ T4443] ? minstrel_ht_alloc+0x531/0xa00 [ 1190.740206][ T4443] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 10:58:01 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x4, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:01 executing program 0: r0 = epoll_create1(0x0) pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff}, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)) 10:58:01 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, 0x0, 0x0) [ 1190.746313][ T4443] ieee80211_register_hw+0x1f18/0x3ed0 [ 1190.751814][ T4443] ? ieee80211_restart_hw+0x290/0x290 [ 1190.757225][ T4443] ? debug_object_destroy+0x210/0x210 [ 1190.762632][ T4443] ? memset+0x20/0x40 [ 1190.766636][ T4443] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1190.767735][ T4452] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1190.772897][ T4443] ? __hrtimer_init+0x136/0x280 [ 1190.772934][ T4443] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1190.772975][ T4443] ? hwsim_virtio_rx_work+0x350/0x350 [ 1190.772997][ T4443] ? __kmalloc_track_caller+0x193/0x310 [ 1190.773027][ T4443] ? memcpy+0x39/0x60 [ 1190.773052][ T4443] hwsim_new_radio_nl+0x9bc/0x1080 [ 1190.773075][ T4443] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1190.773107][ T4443] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1190.773133][ T4443] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1190.773159][ T4443] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1190.773191][ T4443] genl_family_rcv_msg_doit+0x228/0x320 [ 1190.773222][ T4443] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1190.773250][ T4443] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1190.773283][ T4443] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1190.773307][ T4443] ? ns_capable+0xd9/0x100 [ 1190.773333][ T4443] genl_rcv_msg+0x328/0x580 [ 1190.773360][ T4443] ? genl_get_cmd+0x480/0x480 [ 1190.773379][ T4443] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1190.773406][ T4443] ? lock_release+0x720/0x720 [ 1190.773428][ T4443] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1190.773457][ T4443] netlink_rcv_skb+0x153/0x420 [ 1190.773479][ T4443] ? genl_get_cmd+0x480/0x480 [ 1190.773501][ T4443] ? netlink_ack+0xa60/0xa60 [ 1190.773530][ T4443] ? netlink_deliver_tap+0x1b1/0xc30 [ 1190.773554][ T4443] genl_rcv+0x24/0x40 [ 1190.773569][ T4443] netlink_unicast+0x533/0x7d0 [ 1190.773593][ T4443] ? netlink_attachskb+0x890/0x890 [ 1190.773613][ T4443] ? __virt_addr_valid+0x5d/0x2d0 [ 1190.773637][ T4443] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1190.773661][ T4443] ? __phys_addr_symbol+0x2c/0x70 [ 1190.773684][ T4443] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1190.773707][ T4443] ? __check_object_size+0x16e/0x3f0 [ 1190.773736][ T4443] netlink_sendmsg+0x86d/0xdb0 [ 1190.773763][ T4443] ? netlink_unicast+0x7d0/0x7d0 [ 1190.773790][ T4443] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1190.773817][ T4443] ? netlink_unicast+0x7d0/0x7d0 [ 1190.773839][ T4443] sock_sendmsg+0xcf/0x120 [ 1190.773864][ T4443] ____sys_sendmsg+0x6e8/0x810 [ 1190.773889][ T4443] ? kernel_sendmsg+0x50/0x50 [ 1190.773910][ T4443] ? do_recvmmsg+0x6d0/0x6d0 [ 1190.773938][ T4443] ? lock_chain_count+0x20/0x20 [ 1190.773961][ T4443] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1190.773992][ T4443] ___sys_sendmsg+0xf3/0x170 [ 1190.774019][ T4443] ? sendmsg_copy_msghdr+0x160/0x160 [ 1190.774049][ T4443] ? __fget_files+0x21b/0x3e0 [ 1190.774070][ T4443] ? lock_downgrade+0x6e0/0x6e0 [ 1190.774104][ T4443] ? __fget_files+0x23d/0x3e0 [ 1190.774130][ T4443] ? __fget_light+0xea/0x280 [ 1190.774152][ T4443] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1190.774183][ T4443] __sys_sendmsg+0xe5/0x1b0 [ 1190.774207][ T4443] ? __sys_sendmsg_sock+0x30/0x30 [ 1190.774251][ T4443] ? syscall_enter_from_user_mode+0x21/0x70 [ 1190.774284][ T4443] do_syscall_64+0x35/0xb0 [ 1190.774311][ T4443] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1190.774336][ T4443] RIP: 0033:0x7f3e684f88d9 [ 1190.774357][ T4443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1190.774379][ T4443] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1190.774403][ T4443] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1190.774418][ T4443] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1190.774432][ T4443] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1190.774447][ T4443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1190.774461][ T4443] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1190.797244][ T4458] netlink: 61337 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1190.917837][ T4452] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 1190.940636][ T4447] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1191.171163][ T4452] syz-executor.4 (4452) used greatest stack depth: 22272 bytes left [ 1191.588378][ T4447] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1191.608804][ T4447] CPU: 0 PID: 4447 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1191.617530][ T4447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1191.627597][ T4447] Call Trace: [ 1191.630885][ T4447] dump_stack_lvl+0xcd/0x134 [ 1191.635488][ T4447] sysfs_warn_dup.cold+0x1c/0x29 [ 1191.640435][ T4447] sysfs_do_create_link_sd+0x11e/0x140 [ 1191.646046][ T4447] sysfs_create_link+0x5f/0xc0 [ 1191.650833][ T4447] device_add+0x78f/0x21b0 [ 1191.655262][ T4447] ? wait_for_completion_io+0x280/0x280 [ 1191.660813][ T4447] ? lock_downgrade+0x6e0/0x6e0 [ 1191.665674][ T4447] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1191.671929][ T4447] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1191.678185][ T4447] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1191.684444][ T4447] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1191.690449][ T4447] wiphy_register+0x1e8a/0x29b0 [ 1191.695326][ T4447] ? wiphy_unregister+0xbe0/0xbe0 [ 1191.700359][ T4447] ? minstrel_ht_alloc+0x531/0xa00 [ 1191.705492][ T4447] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1191.711577][ T4447] ieee80211_register_hw+0x1f18/0x3ed0 [ 1191.717065][ T4447] ? ieee80211_restart_hw+0x290/0x290 [ 1191.722450][ T4447] ? debug_object_destroy+0x210/0x210 [ 1191.727843][ T4447] ? memset+0x20/0x40 [ 1191.731837][ T4447] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1191.738090][ T4447] ? __hrtimer_init+0x136/0x280 [ 1191.742952][ T4447] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1191.748699][ T4447] ? hwsim_virtio_rx_work+0x350/0x350 [ 1191.754086][ T4447] ? __kmalloc_track_caller+0x193/0x310 [ 1191.759845][ T4447] ? memcpy+0x39/0x60 [ 1191.763837][ T4447] hwsim_new_radio_nl+0x9bc/0x1080 [ 1191.768954][ T4447] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1191.774858][ T4447] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1191.781104][ T4447] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1191.788477][ T4447] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1191.795771][ T4447] genl_family_rcv_msg_doit+0x228/0x320 [ 1191.801321][ T4447] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1191.808695][ T4447] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1191.814947][ T4447] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1191.821187][ T4447] ? ns_capable+0xd9/0x100 [ 1191.825611][ T4447] genl_rcv_msg+0x328/0x580 [ 1191.830123][ T4447] ? genl_get_cmd+0x480/0x480 [ 1191.834803][ T4447] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1191.840702][ T4447] ? lock_release+0x720/0x720 [ 1191.845468][ T4447] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1191.850760][ T4447] netlink_rcv_skb+0x153/0x420 [ 1191.855524][ T4447] ? genl_get_cmd+0x480/0x480 [ 1191.860208][ T4447] ? netlink_ack+0xa60/0xa60 [ 1191.864816][ T4447] ? netlink_deliver_tap+0x1b1/0xc30 [ 1191.870105][ T4447] genl_rcv+0x24/0x40 [ 1191.874082][ T4447] netlink_unicast+0x533/0x7d0 [ 1191.878852][ T4447] ? netlink_attachskb+0x890/0x890 [ 1191.883960][ T4447] ? __virt_addr_valid+0x5d/0x2d0 [ 1191.888986][ T4447] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1191.895244][ T4447] ? __phys_addr_symbol+0x2c/0x70 [ 1191.900288][ T4447] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1191.906013][ T4447] ? __check_object_size+0x16e/0x3f0 [ 1191.911306][ T4447] netlink_sendmsg+0x86d/0xdb0 [ 1191.916076][ T4447] ? netlink_unicast+0x7d0/0x7d0 [ 1191.921022][ T4447] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1191.927268][ T4447] ? netlink_unicast+0x7d0/0x7d0 [ 1191.932205][ T4447] sock_sendmsg+0xcf/0x120 [ 1191.936624][ T4447] ____sys_sendmsg+0x6e8/0x810 [ 1191.941394][ T4447] ? kernel_sendmsg+0x50/0x50 [ 1191.946070][ T4447] ? do_recvmmsg+0x6d0/0x6d0 [ 1191.950668][ T4447] ? lock_chain_count+0x20/0x20 [ 1191.955519][ T4447] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1191.961509][ T4447] ___sys_sendmsg+0xf3/0x170 [ 1191.966109][ T4447] ? sendmsg_copy_msghdr+0x160/0x160 [ 1191.971402][ T4447] ? __fget_files+0x21b/0x3e0 [ 1191.976084][ T4447] ? lock_downgrade+0x6e0/0x6e0 [ 1191.980950][ T4447] ? __fget_files+0x23d/0x3e0 [ 1191.985633][ T4447] ? __fget_light+0xea/0x280 [ 1191.990220][ T4447] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1191.996464][ T4447] __sys_sendmsg+0xe5/0x1b0 [ 1192.000970][ T4447] ? __sys_sendmsg_sock+0x30/0x30 [ 1192.006014][ T4447] ? syscall_enter_from_user_mode+0x21/0x70 [ 1192.011915][ T4447] do_syscall_64+0x35/0xb0 [ 1192.016334][ T4447] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1192.022236][ T4447] RIP: 0033:0x7f3e684f88d9 [ 1192.026646][ T4447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1192.046251][ T4447] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1192.054661][ T4447] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1192.062628][ T4447] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1192.070595][ T4447] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1192.078560][ T4447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1192.086526][ T4447] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:58:02 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000403582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:02 executing program 5: r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.log\x00', 0x212c1, 0x0) write$tcp_congestion(r0, 0x0, 0x36) 10:58:02 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x29, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) close(r1) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x100002, 0x0) write$cgroup_subtree(r0, &(0x7f0000000480)=ANY=[], 0x6) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x6628, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_int(r1, &(0x7f0000000200), 0x43408) 10:58:02 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="2e0000003a000511d25a80648c63940d0124fc602f6e35400c00020f0204000037153e370400018025641d00d1bd", 0x2e}], 0x1}, 0x0) 10:58:02 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1192.144836][ T4491] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1192.191324][ T4491] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1192.262416][ T4491] CPU: 1 PID: 4491 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1192.271298][ T4491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1192.281377][ T4491] Call Trace: [ 1192.284664][ T4491] dump_stack_lvl+0xcd/0x134 [ 1192.289278][ T4491] sysfs_warn_dup.cold+0x1c/0x29 [ 1192.294340][ T4491] sysfs_do_create_link_sd+0x11e/0x140 [ 1192.299823][ T4491] sysfs_create_link+0x5f/0xc0 [ 1192.304606][ T4491] device_add+0x78f/0x21b0 [ 1192.309038][ T4491] ? wait_for_completion_io+0x280/0x280 [ 1192.314602][ T4491] ? lock_downgrade+0x6e0/0x6e0 [ 1192.319472][ T4491] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1192.325817][ T4491] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1192.332076][ T4491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1192.338345][ T4491] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1192.344360][ T4491] wiphy_register+0x1e8a/0x29b0 [ 1192.349239][ T4491] ? wiphy_unregister+0xbe0/0xbe0 [ 1192.354271][ T4491] ? minstrel_ht_alloc+0x531/0xa00 [ 1192.359415][ T4491] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1192.365511][ T4491] ieee80211_register_hw+0x1f18/0x3ed0 [ 1192.371003][ T4491] ? ieee80211_restart_hw+0x290/0x290 [ 1192.376396][ T4491] ? debug_object_destroy+0x210/0x210 [ 1192.381792][ T4491] ? memset+0x20/0x40 [ 1192.385785][ T4491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1192.392042][ T4491] ? __hrtimer_init+0x136/0x280 [ 1192.396913][ T4491] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1192.402667][ T4491] ? hwsim_virtio_rx_work+0x350/0x350 [ 1192.408061][ T4491] ? __kmalloc_track_caller+0x193/0x310 [ 1192.413635][ T4491] ? memcpy+0x39/0x60 [ 1192.417640][ T4491] hwsim_new_radio_nl+0x9bc/0x1080 [ 1192.422775][ T4491] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1192.428699][ T4491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1192.434968][ T4491] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1192.442362][ T4491] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1192.449678][ T4491] genl_family_rcv_msg_doit+0x228/0x320 [ 1192.455263][ T4491] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1192.462661][ T4491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1192.468942][ T4491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1192.475201][ T4491] ? ns_capable+0xd9/0x100 [ 1192.479629][ T4491] genl_rcv_msg+0x328/0x580 [ 1192.484149][ T4491] ? genl_get_cmd+0x480/0x480 [ 1192.488835][ T4491] ? mark_held_locks+0x9f/0xe0 [ 1192.493614][ T4491] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1192.499533][ T4491] ? lockdep_hardirqs_on+0x79/0x100 [ 1192.504752][ T4491] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1192.510939][ T4491] netlink_rcv_skb+0x153/0x420 [ 1192.515737][ T4491] ? genl_get_cmd+0x480/0x480 [ 1192.520437][ T4491] ? netlink_ack+0xa60/0xa60 [ 1192.525052][ T4491] ? netlink_deliver_tap+0x1b1/0xc30 [ 1192.530361][ T4491] genl_rcv+0x24/0x40 [ 1192.534363][ T4491] netlink_unicast+0x533/0x7d0 [ 1192.539156][ T4491] ? netlink_attachskb+0x890/0x890 [ 1192.544287][ T4491] ? __virt_addr_valid+0x5d/0x2d0 [ 1192.549338][ T4491] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1192.555609][ T4491] ? __phys_addr_symbol+0x2c/0x70 [ 1192.560656][ T4491] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1192.566396][ T4491] ? __check_object_size+0x16e/0x3f0 [ 1192.571717][ T4491] netlink_sendmsg+0x86d/0xdb0 [ 1192.576689][ T4491] ? netlink_unicast+0x7d0/0x7d0 [ 1192.581658][ T4491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1192.587927][ T4491] ? netlink_unicast+0x7d0/0x7d0 [ 1192.592890][ T4491] sock_sendmsg+0xcf/0x120 [ 1192.597335][ T4491] ____sys_sendmsg+0x6e8/0x810 [ 1192.602128][ T4491] ? kernel_sendmsg+0x50/0x50 [ 1192.606829][ T4491] ? do_recvmmsg+0x6d0/0x6d0 [ 1192.611627][ T4491] ? lock_chain_count+0x20/0x20 [ 1192.616502][ T4491] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1192.622505][ T4491] ? lock_chain_count+0x20/0x20 [ 1192.627388][ T4491] ___sys_sendmsg+0xf3/0x170 [ 1192.632006][ T4491] ? sendmsg_copy_msghdr+0x160/0x160 [ 1192.637320][ T4491] ? __fget_files+0x21b/0x3e0 [ 1192.642017][ T4491] ? lock_downgrade+0x6e0/0x6e0 [ 1192.646905][ T4491] ? __fget_files+0x23d/0x3e0 [ 1192.651614][ T4491] ? __fget_light+0xea/0x280 [ 1192.656229][ T4491] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1192.662500][ T4491] __sys_sendmsg+0xe5/0x1b0 [ 1192.667034][ T4491] ? __sys_sendmsg_sock+0x30/0x30 [ 1192.672099][ T4491] ? syscall_enter_from_user_mode+0x21/0x70 [ 1192.678021][ T4491] do_syscall_64+0x35/0xb0 [ 1192.682466][ T4491] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1192.688386][ T4491] RIP: 0033:0x7f4637cff8d9 [ 1192.692819][ T4491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1192.712447][ T4491] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1192.720879][ T4491] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1192.728867][ T4491] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1192.736854][ T4491] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1192.744843][ T4491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1192.752834][ T4491] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1192.779508][ T4522] netlink: 6 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1192.823953][ T4522] openvswitch: netlink: Flow actions attr not present in new flow. [ 1192.841811][ T4526] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:58:03 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:03 executing program 5: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000440)=ANY=[@ANYBLOB="b702000014000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b7000000000000009500000000000000e3a333a0daf2f73481c0e17a606fec68cb7d18ad123d27e7cf43548ee85857ad4a77cb56e0fcb3dfd4e70ebec677d6ac14c2c794f72cbf5fe31789e70227bfd8115efd90c8c48258f8dbe82e16cf00000000000000000000000001000000000000d54b107c8c8a14195e32f13799d6707432ff48bc085760314166443ce72c74f3db890e1ff15a10d9fe2238fff867ba8fd41b29caad2a986e0e244bd117474cac587c70cdea785300f64cc6ffda1a869db7e632df4de8572344b419c45c2170fe873692d8255170c16822bdffd3135480dae93c7e33bdef00000000d8fd8c79a5d0967ab7e43686b4d1e03e326beea7905ef7de375ef8bc8143df20d13c37db269971210fab7071cc3094078a044777aab9d86cf50afefd7b72a0950d389bc9cb43aa607b7269561dd50b22bd2491331818a10f2ac8c3249582a20d4e04fd1ab7883f656b84137d5f7a6edba86a7b9a4c2f3b3a8abf93b280ea53ce01dcc2d30f4310e8281b0cdc017f9759060ea88a2f65970600a85c9a74ca196700218f919746bb4b84c16fd56ee450e411d75ab7613b644ba7580b2a0942394ed173751732c9b05c9a8380daae477ac0a3eed10300000000000000cf1a60fe2dcc1a465aa8d54cb4000053c3f01ea714a7bd4fad615ff6e2991589bbdd1ae0d1bce65c620c4a2527a82afe16e019a5e0b5ec1b1b8aafba090000c3630488edcc4a8cbd3246e962b773a75b28a51cd09cbcb3577fea6f1e9fe8cd2b532c084cbd051b4aeaf0e716b256acf183d8e55580a678c664813354f14a453b093948d49bca31a7170419bb1d32f256ff3010e69b2f0482c63ab78a74dec8b1405e7daef356602487886b6f0beb5ca9a9b31a57e25525fa0ff5c2226e79db12959e59f2c911ee035c82f1a81ef15b43d51ff1fa025bfb80674c9d0e00000000000000000000000000000000000000000000009cf6af41a53e8d789b699c2855bf42d68528e3f6b422f497bdd86469f76de4b41946e5fa867b66e863a4b8a9be10a569f0e8c57ec33261cecb0a44008430d208cc665e8cdeccc3dd31a6f64a5f15cb20fc76fe3ff3fc706de19e247f37fbdacc444893dc0d2bd12e84221073bf9aa65c74595bc1d16e9870b4957f44225df93e1d30ab2045b7231eb6adbbda4d18d487de61eab3a2f61d018a69c41047efb1fb55272debf7811cafc5486eeb757c7fd1cb03e459cd"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x24f}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x24f}, 0x48) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000005c80)={r1, 0xc0, &(0x7f0000005bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000005c80)={r0, 0xc0, &(0x7f0000005bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) [ 1192.884371][ T4526] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1192.941950][ T4526] CPU: 1 PID: 4526 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1192.950757][ T4526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1192.960815][ T4526] Call Trace: [ 1192.964096][ T4526] dump_stack_lvl+0xcd/0x134 [ 1192.968697][ T4526] sysfs_warn_dup.cold+0x1c/0x29 [ 1192.973644][ T4526] sysfs_do_create_link_sd+0x11e/0x140 [ 1192.979115][ T4526] sysfs_create_link+0x5f/0xc0 [ 1192.983889][ T4526] device_add+0x78f/0x21b0 [ 1192.988317][ T4526] ? wait_for_completion_io+0x280/0x280 [ 1192.993867][ T4526] ? lock_downgrade+0x6e0/0x6e0 [ 1192.998732][ T4526] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1193.004983][ T4526] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1193.011234][ T4526] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.017485][ T4526] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1193.023483][ T4526] wiphy_register+0x1e8a/0x29b0 [ 1193.028353][ T4526] ? wiphy_unregister+0xbe0/0xbe0 [ 1193.033380][ T4526] ? minstrel_ht_alloc+0x531/0xa00 [ 1193.038508][ T4526] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1193.044579][ T4526] ieee80211_register_hw+0x1f18/0x3ed0 [ 1193.050043][ T4526] ? ieee80211_restart_hw+0x290/0x290 [ 1193.055409][ T4526] ? debug_object_destroy+0x210/0x210 [ 1193.060778][ T4526] ? memset+0x20/0x40 [ 1193.064749][ T4526] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.070978][ T4526] ? __hrtimer_init+0x136/0x280 [ 1193.075978][ T4526] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1193.082229][ T4526] ? hwsim_virtio_rx_work+0x350/0x350 [ 1193.087588][ T4526] ? __kmalloc_track_caller+0x193/0x310 [ 1193.093130][ T4526] ? memcpy+0x39/0x60 [ 1193.097105][ T4526] hwsim_new_radio_nl+0x9bc/0x1080 [ 1193.102212][ T4526] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1193.108104][ T4526] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.114337][ T4526] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1193.121698][ T4526] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1193.128983][ T4526] genl_family_rcv_msg_doit+0x228/0x320 [ 1193.134524][ T4526] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1193.141884][ T4526] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.148124][ T4526] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.154354][ T4526] ? ns_capable+0xd9/0x100 [ 1193.158762][ T4526] genl_rcv_msg+0x328/0x580 [ 1193.163293][ T4526] ? genl_get_cmd+0x480/0x480 [ 1193.167968][ T4526] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1193.173873][ T4526] ? lock_release+0x720/0x720 [ 1193.178543][ T4526] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1193.183831][ T4526] netlink_rcv_skb+0x153/0x420 [ 1193.188592][ T4526] ? genl_get_cmd+0x480/0x480 [ 1193.193268][ T4526] ? netlink_ack+0xa60/0xa60 [ 1193.197853][ T4526] ? netlink_deliver_tap+0x1b1/0xc30 [ 1193.203133][ T4526] genl_rcv+0x24/0x40 [ 1193.207105][ T4526] netlink_unicast+0x533/0x7d0 [ 1193.211866][ T4526] ? netlink_attachskb+0x890/0x890 [ 1193.216965][ T4526] ? __virt_addr_valid+0x5d/0x2d0 [ 1193.221981][ T4526] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1193.228214][ T4526] ? __phys_addr_symbol+0x2c/0x70 [ 1193.233230][ T4526] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1193.238943][ T4526] ? __check_object_size+0x16e/0x3f0 [ 1193.244229][ T4526] netlink_sendmsg+0x86d/0xdb0 [ 1193.248991][ T4526] ? netlink_unicast+0x7d0/0x7d0 [ 1193.253926][ T4526] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.260164][ T4526] ? netlink_unicast+0x7d0/0x7d0 [ 1193.265091][ T4526] sock_sendmsg+0xcf/0x120 [ 1193.269503][ T4526] ____sys_sendmsg+0x6e8/0x810 [ 1193.274261][ T4526] ? kernel_sendmsg+0x50/0x50 [ 1193.278929][ T4526] ? do_recvmmsg+0x6d0/0x6d0 [ 1193.283514][ T4526] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1193.289498][ T4526] ___sys_sendmsg+0xf3/0x170 [ 1193.294090][ T4526] ? sendmsg_copy_msghdr+0x160/0x160 [ 1193.299373][ T4526] ? __fget_files+0x21b/0x3e0 [ 1193.304042][ T4526] ? lock_downgrade+0x6e0/0x6e0 [ 1193.308896][ T4526] ? __fget_files+0x23d/0x3e0 [ 1193.313568][ T4526] ? __fget_light+0xea/0x280 [ 1193.318146][ T4526] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1193.324384][ T4526] __sys_sendmsg+0xe5/0x1b0 [ 1193.328883][ T4526] ? __sys_sendmsg_sock+0x30/0x30 [ 1193.333916][ T4526] ? syscall_enter_from_user_mode+0x21/0x70 [ 1193.339806][ T4526] do_syscall_64+0x35/0xb0 [ 1193.344226][ T4526] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1193.350112][ T4526] RIP: 0033:0x7f3e684f88d9 [ 1193.354516][ T4526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.374203][ T4526] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1193.382620][ T4526] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 10:58:04 executing program 0: r0 = socket$kcm(0x11, 0x3, 0x300) r1 = socket$kcm(0x2, 0x1000000000000002, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd07, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) close(0xffffffffffffffff) recvmsg(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x4) sendmsg$kcm(r1, &(0x7f0000003d00)={&(0x7f0000000380)=@in={0x2, 0x4e23, @multicast1}, 0x80, 0x0}, 0xfd00) bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000400)={0x4, 0x0}, 0x8) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001c40)={0x17, 0x9, &(0x7f0000001a00)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7}, [@map={0x18, 0x5}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}, @generic={0x48, 0x0, 0x5, 0x975}, @alu={0x7, 0x0, 0x8, 0x2, 0x3, 0x1, 0xfffffffffffffff0}, @alu={0x7, 0x0, 0x5, 0x2, 0x0, 0x10, 0xfffffffffffffff0}]}, &(0x7f0000001a80)='syzkaller\x00', 0x401, 0xdf, &(0x7f0000001ac0)=""/223, 0x40f00, 0x5, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x8, &(0x7f0000001bc0)={0x7}, 0x8, 0x10, &(0x7f0000001c00)={0x1, 0xc, 0xffff, 0x80000000}, 0x10, 0xffffffffffffffff}, 0x78) bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x0, 0x1, &(0x7f00000000c0)=@raw=[@exit], &(0x7f0000000200)='GPL\x00', 0x400, 0x0, 0x0, 0x40f00, 0xa, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000340)={0x2, 0x7, 0x2, 0xa7}, 0x10, r2, r3}, 0x78) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfa38) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xf, 0x8, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@map_val={0x18, 0x3}, @jmp={0x5, 0x0, 0x0, 0x1, 0x0, 0xc, 0xffffffffffffffff}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, @jmp={0x5, 0x1, 0x0, 0x0, 0x1, 0xfffffffffffffffe}]}, &(0x7f0000000480)='GPL\x00', 0x1f, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x9, 0x2}, 0x8, 0x10, &(0x7f0000000500)={0x5, 0xf, 0x4, 0x3}, 0x10, 0xffffffffffffffff}, 0x78) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000080)=@framed={{}, [@generic={0x0, 0xa}]}, &(0x7f0000000040)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 10:58:04 executing program 4: perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0xd5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) close(r1) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x100002, 0x0) write$cgroup_subtree(r0, &(0x7f0000000480)=ANY=[], 0x6) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$cgroup_int(r1, &(0x7f0000000200), 0x43408) [ 1193.390587][ T4526] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1193.398555][ T4526] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1193.406690][ T4526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1193.414656][ T4526] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1193.549323][ T4532] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1193.592820][ T4532] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1193.641665][ T4532] CPU: 0 PID: 4532 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1193.650565][ T4532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1193.660627][ T4532] Call Trace: [ 1193.663905][ T4532] dump_stack_lvl+0xcd/0x134 [ 1193.668502][ T4532] sysfs_warn_dup.cold+0x1c/0x29 [ 1193.673439][ T4532] sysfs_do_create_link_sd+0x11e/0x140 [ 1193.678902][ T4532] sysfs_create_link+0x5f/0xc0 [ 1193.683669][ T4532] device_add+0x78f/0x21b0 [ 1193.688084][ T4532] ? wait_for_completion_io+0x280/0x280 [ 1193.693871][ T4532] ? lock_downgrade+0x6e0/0x6e0 [ 1193.698731][ T4532] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1193.704975][ T4532] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1193.711221][ T4532] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.717479][ T4532] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1193.723468][ T4532] wiphy_register+0x1e8a/0x29b0 [ 1193.728327][ T4532] ? wiphy_unregister+0xbe0/0xbe0 [ 1193.733350][ T4532] ? minstrel_ht_alloc+0x531/0xa00 [ 1193.738472][ T4532] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1193.744547][ T4532] ieee80211_register_hw+0x1f18/0x3ed0 [ 1193.750024][ T4532] ? ieee80211_restart_hw+0x290/0x290 [ 1193.755404][ T4532] ? debug_object_destroy+0x210/0x210 [ 1193.760784][ T4532] ? memset+0x20/0x40 [ 1193.764761][ T4532] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.771000][ T4532] ? __hrtimer_init+0x136/0x280 [ 1193.775850][ T4532] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1193.781579][ T4532] ? hwsim_virtio_rx_work+0x350/0x350 [ 1193.786939][ T4532] ? __kmalloc_track_caller+0x193/0x310 [ 1193.792485][ T4532] ? memcpy+0x39/0x60 [ 1193.796464][ T4532] hwsim_new_radio_nl+0x9bc/0x1080 [ 1193.801575][ T4532] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1193.807473][ T4532] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.813799][ T4532] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1193.821457][ T4532] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1193.828750][ T4532] genl_family_rcv_msg_doit+0x228/0x320 [ 1193.834303][ T4532] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1193.841674][ T4532] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.847925][ T4532] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.854162][ T4532] ? ns_capable+0xd9/0x100 [ 1193.858574][ T4532] genl_rcv_msg+0x328/0x580 [ 1193.863076][ T4532] ? genl_get_cmd+0x480/0x480 [ 1193.867751][ T4532] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1193.873645][ T4532] ? lock_release+0x720/0x720 [ 1193.878318][ T4532] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1193.883604][ T4532] netlink_rcv_skb+0x153/0x420 [ 1193.888360][ T4532] ? genl_get_cmd+0x480/0x480 [ 1193.893025][ T4532] ? netlink_ack+0xa60/0xa60 [ 1193.897606][ T4532] ? netlink_deliver_tap+0x1b1/0xc30 [ 1193.902884][ T4532] genl_rcv+0x24/0x40 [ 1193.906851][ T4532] netlink_unicast+0x533/0x7d0 [ 1193.911609][ T4532] ? netlink_attachskb+0x890/0x890 [ 1193.916706][ T4532] ? __virt_addr_valid+0x5d/0x2d0 [ 1193.921722][ T4532] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1193.927954][ T4532] ? __phys_addr_symbol+0x2c/0x70 [ 1193.932971][ T4532] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1193.938685][ T4532] ? __check_object_size+0x16e/0x3f0 [ 1193.943982][ T4532] netlink_sendmsg+0x86d/0xdb0 [ 1193.948748][ T4532] ? netlink_unicast+0x7d0/0x7d0 [ 1193.953681][ T4532] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1193.959922][ T4532] ? netlink_unicast+0x7d0/0x7d0 [ 1193.964849][ T4532] sock_sendmsg+0xcf/0x120 [ 1193.969257][ T4532] ____sys_sendmsg+0x6e8/0x810 [ 1193.974012][ T4532] ? kernel_sendmsg+0x50/0x50 [ 1193.978678][ T4532] ? do_recvmmsg+0x6d0/0x6d0 [ 1193.983268][ T4532] ? lock_chain_count+0x20/0x20 [ 1193.988112][ T4532] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1193.994090][ T4532] ___sys_sendmsg+0xf3/0x170 [ 1193.998672][ T4532] ? sendmsg_copy_msghdr+0x160/0x160 [ 1194.003954][ T4532] ? __fget_files+0x21b/0x3e0 [ 1194.008617][ T4532] ? lock_downgrade+0x6e0/0x6e0 [ 1194.013466][ T4532] ? __fget_files+0x23d/0x3e0 [ 1194.018139][ T4532] ? __fget_light+0xea/0x280 [ 1194.022715][ T4532] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1194.028954][ T4532] __sys_sendmsg+0xe5/0x1b0 [ 1194.033450][ T4532] ? __sys_sendmsg_sock+0x30/0x30 [ 1194.038891][ T4532] ? syscall_enter_from_user_mode+0x21/0x70 [ 1194.044786][ T4532] do_syscall_64+0x35/0xb0 [ 1194.049196][ T4532] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1194.055087][ T4532] RIP: 0033:0x7f3e684f88d9 [ 1194.059491][ T4532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1194.079086][ T4532] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1194.087488][ T4532] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1194.095445][ T4532] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1194.103406][ T4532] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1194.111364][ T4532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1194.119319][ T4532] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:58:04 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x4, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:04 executing program 0: r0 = socket$kcm(0x11, 0x3, 0x300) r1 = socket$kcm(0x2, 0x1000000000000002, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd07, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) close(0xffffffffffffffff) recvmsg(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x4) sendmsg$kcm(r1, &(0x7f0000003d00)={&(0x7f0000000380)=@in={0x2, 0x4e23, @multicast1}, 0x80, 0x0}, 0xfd00) bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000400)={0x4, 0x0}, 0x8) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001c40)={0x17, 0x9, &(0x7f0000001a00)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7}, [@map={0x18, 0x5}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}, @generic={0x48, 0x0, 0x5, 0x975}, @alu={0x7, 0x0, 0x8, 0x2, 0x3, 0x1, 0xfffffffffffffff0}, @alu={0x7, 0x0, 0x5, 0x2, 0x0, 0x10, 0xfffffffffffffff0}]}, &(0x7f0000001a80)='syzkaller\x00', 0x401, 0xdf, &(0x7f0000001ac0)=""/223, 0x40f00, 0x5, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x8, &(0x7f0000001bc0)={0x7}, 0x8, 0x10, &(0x7f0000001c00)={0x1, 0xc, 0xffff, 0x80000000}, 0x10, 0xffffffffffffffff}, 0x78) bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x0, 0x1, &(0x7f00000000c0)=@raw=[@exit], &(0x7f0000000200)='GPL\x00', 0x400, 0x0, 0x0, 0x40f00, 0xa, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000340)={0x2, 0x7, 0x2, 0xa7}, 0x10, r2, r3}, 0x78) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfa38) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xf, 0x8, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@map_val={0x18, 0x3}, @jmp={0x5, 0x0, 0x0, 0x1, 0x0, 0xc, 0xffffffffffffffff}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, @jmp={0x5, 0x1, 0x0, 0x0, 0x1, 0xfffffffffffffffe}]}, &(0x7f0000000480)='GPL\x00', 0x1f, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x9, 0x2}, 0x8, 0x10, &(0x7f0000000500)={0x5, 0xf, 0x4, 0x3}, 0x10, 0xffffffffffffffff}, 0x78) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000080)=@framed={{}, [@generic={0x0, 0xa}]}, &(0x7f0000000040)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 10:58:04 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1195.164540][ T4567] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. 10:58:05 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000813582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:05 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:05 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x400000}, 0x20) r0 = socket$kcm(0x10, 0x2, 0x10) perf_event_open(&(0x7f00000005c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg(0xffffffffffffffff, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="2e0000003a000511d25a80648c63940d0124fc602f6e35400c0e02000204000037153e370400018025641d00d1bd", 0x2e}], 0x1}, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000140)='./cgroup/syz1\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) 10:58:05 executing program 4: ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x89a1, &(0x7f0000000300)={@local, 0x6a}) open(0x0, 0x1612c2, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(0xffffffffffffffff, 0x942e, 0x0) 10:58:05 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0) [ 1195.216691][ T4567] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1195.224771][ T4567] CPU: 1 PID: 4567 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1195.233463][ T4567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1195.243531][ T4567] Call Trace: [ 1195.246822][ T4567] dump_stack_lvl+0xcd/0x134 [ 1195.251440][ T4567] sysfs_warn_dup.cold+0x1c/0x29 [ 1195.256402][ T4567] sysfs_do_create_link_sd+0x11e/0x140 [ 1195.261898][ T4567] sysfs_create_link+0x5f/0xc0 [ 1195.266690][ T4567] device_add+0x78f/0x21b0 [ 1195.271137][ T4567] ? ieee80211_set_bitrate_flags+0x1c7/0x650 [ 1195.277145][ T4567] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1195.283410][ T4567] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1195.289679][ T4567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1195.295945][ T4567] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1195.301957][ T4567] wiphy_register+0x1e8a/0x29b0 [ 1195.306827][ T4567] ? wiphy_unregister+0xbe0/0xbe0 [ 1195.311861][ T4567] ? minstrel_ht_alloc+0x531/0xa00 [ 1195.316988][ T4567] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1195.323063][ T4567] ieee80211_register_hw+0x1f18/0x3ed0 [ 1195.328534][ T4567] ? ieee80211_restart_hw+0x290/0x290 [ 1195.333906][ T4567] ? debug_object_destroy+0x210/0x210 [ 1195.339282][ T4567] ? memset+0x20/0x40 [ 1195.343260][ T4567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1195.349501][ T4567] ? __hrtimer_init+0x136/0x280 [ 1195.354354][ T4567] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1195.360086][ T4567] ? hwsim_virtio_rx_work+0x350/0x350 [ 1195.365455][ T4567] ? __kmalloc_track_caller+0x193/0x310 [ 1195.371001][ T4567] ? memcpy+0x39/0x60 [ 1195.374979][ T4567] hwsim_new_radio_nl+0x9bc/0x1080 [ 1195.380097][ T4567] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1195.386006][ T4567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1195.392240][ T4567] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1195.399607][ T4567] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1195.406893][ T4567] genl_family_rcv_msg_doit+0x228/0x320 [ 1195.412440][ T4567] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1195.419817][ T4567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1195.426068][ T4567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1195.432304][ T4567] ? ns_capable+0xd9/0x100 [ 1195.436717][ T4567] genl_rcv_msg+0x328/0x580 [ 1195.441218][ T4567] ? genl_get_cmd+0x480/0x480 [ 1195.445893][ T4567] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1195.451785][ T4567] ? lock_release+0x720/0x720 [ 1195.456460][ T4567] netlink_rcv_skb+0x153/0x420 [ 1195.461220][ T4567] ? genl_get_cmd+0x480/0x480 [ 1195.465896][ T4567] ? netlink_ack+0xa60/0xa60 [ 1195.470481][ T4567] ? netlink_deliver_tap+0x1b1/0xc30 [ 1195.475755][ T4567] ? _copy_from_iter+0x12b/0x1320 [ 1195.480782][ T4567] genl_rcv+0x24/0x40 [ 1195.484758][ T4567] netlink_unicast+0x533/0x7d0 [ 1195.489517][ T4567] ? netlink_attachskb+0x890/0x890 [ 1195.494619][ T4567] ? __virt_addr_valid+0x5d/0x2d0 [ 1195.499640][ T4567] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1195.505878][ T4567] ? __phys_addr_symbol+0x2c/0x70 [ 1195.510894][ T4567] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1195.516604][ T4567] ? __check_object_size+0x16e/0x3f0 [ 1195.521889][ T4567] netlink_sendmsg+0x86d/0xdb0 [ 1195.526651][ T4567] ? netlink_unicast+0x7d0/0x7d0 [ 1195.531582][ T4567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1195.537817][ T4567] ? netlink_unicast+0x7d0/0x7d0 [ 1195.542839][ T4567] sock_sendmsg+0xcf/0x120 [ 1195.547253][ T4567] ____sys_sendmsg+0x6e8/0x810 [ 1195.552014][ T4567] ? kernel_sendmsg+0x50/0x50 [ 1195.556773][ T4567] ? do_recvmmsg+0x6d0/0x6d0 [ 1195.561362][ T4567] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1195.567338][ T4567] ? lock_chain_count+0x20/0x20 [ 1195.572186][ T4567] ___sys_sendmsg+0xf3/0x170 [ 1195.576776][ T4567] ? sendmsg_copy_msghdr+0x160/0x160 [ 1195.582058][ T4567] ? __fget_files+0x21b/0x3e0 [ 1195.586727][ T4567] ? lock_downgrade+0x6e0/0x6e0 [ 1195.591581][ T4567] ? __fget_files+0x23d/0x3e0 [ 1195.596256][ T4567] ? __fget_light+0xea/0x280 [ 1195.600839][ T4567] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1195.607077][ T4567] __sys_sendmsg+0xe5/0x1b0 [ 1195.611575][ T4567] ? __sys_sendmsg_sock+0x30/0x30 [ 1195.616601][ T4567] ? syscall_enter_from_user_mode+0x21/0x70 [ 1195.622495][ T4567] do_syscall_64+0x35/0xb0 [ 1195.626906][ T4567] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1195.632795][ T4567] RIP: 0033:0x7f4637cff8d9 [ 1195.637205][ T4567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1195.656815][ T4567] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1195.665231][ T4567] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1195.673197][ T4567] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1195.681163][ T4567] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1195.689124][ T4567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1195.697083][ T4567] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1195.789444][ T4600] netlink: 22 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1195.820166][ T4600] openvswitch: netlink: Flow key attr not present in new flow. [ 1195.849485][ T4604] netlink: 22 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1195.872787][ T4604] openvswitch: netlink: Flow key attr not present in new flow. 10:58:06 executing program 0: ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_DEL_KEY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000001700e18c35bdfdeb15bf303704bc"], 0x1c}}, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 1196.101194][ T4602] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:58:06 executing program 4: openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) 10:58:06 executing program 5: clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_DEL_KEY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000001700e18c35bdfdeb15bf303704"], 0x1c}}, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 1196.171176][ T4602] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1196.217334][ T4602] CPU: 0 PID: 4602 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1196.226238][ T4602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1196.236290][ T4602] Call Trace: [ 1196.239562][ T4602] dump_stack_lvl+0xcd/0x134 [ 1196.244150][ T4602] sysfs_warn_dup.cold+0x1c/0x29 [ 1196.249082][ T4602] sysfs_do_create_link_sd+0x11e/0x140 [ 1196.254541][ T4602] sysfs_create_link+0x5f/0xc0 [ 1196.259304][ T4602] device_add+0x78f/0x21b0 [ 1196.263719][ T4602] ? wait_for_completion_io+0x280/0x280 [ 1196.269264][ T4602] ? lock_downgrade+0x6e0/0x6e0 [ 1196.274114][ T4602] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1196.280353][ T4602] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1196.286596][ T4602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1196.292835][ T4602] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1196.298821][ T4602] wiphy_register+0x1e8a/0x29b0 [ 1196.303678][ T4602] ? wiphy_unregister+0xbe0/0xbe0 [ 1196.308692][ T4602] ? minstrel_ht_alloc+0x531/0xa00 [ 1196.313806][ T4602] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1196.319880][ T4602] ieee80211_register_hw+0x1f18/0x3ed0 [ 1196.325354][ T4602] ? ieee80211_restart_hw+0x290/0x290 [ 1196.330726][ T4602] ? debug_object_destroy+0x210/0x210 [ 1196.336103][ T4602] ? memset+0x20/0x40 [ 1196.340075][ T4602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1196.346307][ T4602] ? __hrtimer_init+0x136/0x280 [ 1196.351149][ T4602] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1196.356878][ T4602] ? hwsim_virtio_rx_work+0x350/0x350 [ 1196.362243][ T4602] ? __kmalloc_track_caller+0x193/0x310 [ 1196.367786][ T4602] ? memcpy+0x39/0x60 [ 1196.371763][ T4602] hwsim_new_radio_nl+0x9bc/0x1080 [ 1196.376868][ T4602] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1196.382762][ T4602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1196.388997][ T4602] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1196.396363][ T4602] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1196.403646][ T4602] genl_family_rcv_msg_doit+0x228/0x320 [ 1196.409194][ T4602] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1196.416567][ T4602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1196.422812][ T4602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1196.429048][ T4602] ? ns_capable+0xd9/0x100 [ 1196.433462][ T4602] genl_rcv_msg+0x328/0x580 [ 1196.437965][ T4602] ? genl_get_cmd+0x480/0x480 [ 1196.442634][ T4602] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1196.448521][ T4602] ? lock_release+0x720/0x720 [ 1196.453192][ T4602] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1196.459000][ T4602] netlink_rcv_skb+0x153/0x420 [ 1196.463762][ T4602] ? genl_get_cmd+0x480/0x480 [ 1196.468431][ T4602] ? netlink_ack+0xa60/0xa60 [ 1196.473018][ T4602] ? netlink_deliver_tap+0x1b1/0xc30 [ 1196.478300][ T4602] genl_rcv+0x24/0x40 [ 1196.482272][ T4602] netlink_unicast+0x533/0x7d0 [ 1196.487030][ T4602] ? netlink_attachskb+0x890/0x890 [ 1196.492130][ T4602] ? __virt_addr_valid+0x5d/0x2d0 [ 1196.497152][ T4602] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1196.503387][ T4602] ? __phys_addr_symbol+0x2c/0x70 [ 1196.508405][ T4602] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1196.514116][ T4602] ? __check_object_size+0x16e/0x3f0 [ 1196.519424][ T4602] netlink_sendmsg+0x86d/0xdb0 [ 1196.524204][ T4602] ? netlink_unicast+0x7d0/0x7d0 [ 1196.529140][ T4602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1196.535377][ T4602] ? netlink_unicast+0x7d0/0x7d0 [ 1196.540309][ T4602] sock_sendmsg+0xcf/0x120 [ 1196.544724][ T4602] ____sys_sendmsg+0x6e8/0x810 [ 1196.549491][ T4602] ? kernel_sendmsg+0x50/0x50 [ 1196.554168][ T4602] ? do_recvmmsg+0x6d0/0x6d0 [ 1196.558758][ T4602] ? lock_chain_count+0x20/0x20 [ 1196.563604][ T4602] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1196.569586][ T4602] ___sys_sendmsg+0xf3/0x170 [ 1196.574180][ T4602] ? sendmsg_copy_msghdr+0x160/0x160 [ 1196.579473][ T4602] ? __fget_files+0x21b/0x3e0 [ 1196.584144][ T4602] ? lock_downgrade+0x6e0/0x6e0 [ 1196.588999][ T4602] ? __fget_files+0x23d/0x3e0 [ 1196.593671][ T4602] ? __fget_light+0xea/0x280 [ 1196.598254][ T4602] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1196.604494][ T4602] __sys_sendmsg+0xe5/0x1b0 [ 1196.608994][ T4602] ? __sys_sendmsg_sock+0x30/0x30 [ 1196.614033][ T4602] ? syscall_enter_from_user_mode+0x21/0x70 [ 1196.619931][ T4602] do_syscall_64+0x35/0xb0 [ 1196.624349][ T4602] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1196.630242][ T4602] RIP: 0033:0x7f3e684f88d9 [ 1196.634652][ T4602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1196.654257][ T4602] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:58:07 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1196.662670][ T4602] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1196.670639][ T4602] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1196.678600][ T4602] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1196.686565][ T4602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1196.694523][ T4602] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:07 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:07 executing program 4: mknodat(0xffffffffffffff9c, 0x0, 0x0, 0x0) pipe2(0x0, 0x0) [ 1196.868210][ T4610] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1196.900028][ T4605] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:58:07 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1196.928755][ T4605] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1196.962572][ T4605] CPU: 1 PID: 4605 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1196.971464][ T4605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1196.981529][ T4605] Call Trace: [ 1196.984816][ T4605] dump_stack_lvl+0xcd/0x134 [ 1196.989421][ T4605] sysfs_warn_dup.cold+0x1c/0x29 [ 1196.994376][ T4605] sysfs_do_create_link_sd+0x11e/0x140 [ 1196.999859][ T4605] sysfs_create_link+0x5f/0xc0 [ 1197.004644][ T4605] device_add+0x78f/0x21b0 [ 1197.009081][ T4605] ? wait_for_completion_io+0x280/0x280 [ 1197.014642][ T4605] ? lock_downgrade+0x6e0/0x6e0 [ 1197.019505][ T4605] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1197.025750][ T4605] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1197.031987][ T4605] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1197.038220][ T4605] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1197.044201][ T4605] wiphy_register+0x1e8a/0x29b0 [ 1197.049051][ T4605] ? wiphy_unregister+0xbe0/0xbe0 [ 1197.054062][ T4605] ? minstrel_ht_alloc+0x531/0xa00 [ 1197.059174][ T4605] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1197.065243][ T4605] ieee80211_register_hw+0x1f18/0x3ed0 [ 1197.070711][ T4605] ? ieee80211_restart_hw+0x290/0x290 [ 1197.076085][ T4605] ? debug_object_destroy+0x210/0x210 [ 1197.081456][ T4605] ? memset+0x20/0x40 [ 1197.085428][ T4605] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1197.091663][ T4605] ? __hrtimer_init+0x136/0x280 [ 1197.096507][ T4605] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1197.102231][ T4605] ? hwsim_virtio_rx_work+0x350/0x350 [ 1197.107896][ T4605] ? __kmalloc_track_caller+0x193/0x310 [ 1197.113527][ T4605] ? memcpy+0x39/0x60 [ 1197.117522][ T4605] hwsim_new_radio_nl+0x9bc/0x1080 [ 1197.122626][ T4605] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1197.128519][ T4605] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1197.134757][ T4605] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1197.142120][ T4605] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1197.149399][ T4605] genl_family_rcv_msg_doit+0x228/0x320 [ 1197.154943][ T4605] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1197.162304][ T4605] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1197.168543][ T4605] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1197.174773][ T4605] ? ns_capable+0xd9/0x100 [ 1197.179181][ T4605] genl_rcv_msg+0x328/0x580 [ 1197.183678][ T4605] ? genl_get_cmd+0x480/0x480 [ 1197.188345][ T4605] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1197.194231][ T4605] ? lock_release+0x720/0x720 [ 1197.198898][ T4605] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1197.204176][ T4605] netlink_rcv_skb+0x153/0x420 [ 1197.208929][ T4605] ? genl_get_cmd+0x480/0x480 [ 1197.213596][ T4605] ? netlink_ack+0xa60/0xa60 [ 1197.218181][ T4605] ? netlink_deliver_tap+0x1b1/0xc30 [ 1197.223459][ T4605] genl_rcv+0x24/0x40 [ 1197.227426][ T4605] netlink_unicast+0x533/0x7d0 [ 1197.232183][ T4605] ? netlink_attachskb+0x890/0x890 [ 1197.237279][ T4605] ? __virt_addr_valid+0x5d/0x2d0 [ 1197.242295][ T4605] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1197.248529][ T4605] ? __phys_addr_symbol+0x2c/0x70 [ 1197.253541][ T4605] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1197.259248][ T4605] ? __check_object_size+0x16e/0x3f0 [ 1197.264529][ T4605] netlink_sendmsg+0x86d/0xdb0 [ 1197.269285][ T4605] ? netlink_unicast+0x7d0/0x7d0 [ 1197.274213][ T4605] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1197.280447][ T4605] ? netlink_unicast+0x7d0/0x7d0 [ 1197.285376][ T4605] sock_sendmsg+0xcf/0x120 [ 1197.289788][ T4605] ____sys_sendmsg+0x6e8/0x810 [ 1197.294547][ T4605] ? kernel_sendmsg+0x50/0x50 [ 1197.299211][ T4605] ? do_recvmmsg+0x6d0/0x6d0 [ 1197.303798][ T4605] ? lock_chain_count+0x20/0x20 [ 1197.308636][ T4605] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1197.314612][ T4605] ___sys_sendmsg+0xf3/0x170 [ 1197.319193][ T4605] ? sendmsg_copy_msghdr+0x160/0x160 [ 1197.324474][ T4605] ? __fget_files+0x21b/0x3e0 [ 1197.329142][ T4605] ? lock_downgrade+0x6e0/0x6e0 [ 1197.333994][ T4605] ? __fget_files+0x23d/0x3e0 [ 1197.338664][ T4605] ? __fget_light+0xea/0x280 [ 1197.343242][ T4605] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1197.349478][ T4605] __sys_sendmsg+0xe5/0x1b0 [ 1197.353971][ T4605] ? __sys_sendmsg_sock+0x30/0x30 [ 1197.358996][ T4605] ? syscall_enter_from_user_mode+0x21/0x70 [ 1197.364885][ T4605] do_syscall_64+0x35/0xb0 [ 1197.369295][ T4605] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1197.375182][ T4605] RIP: 0033:0x7f3e684f88d9 [ 1197.379587][ T4605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1197.399185][ T4605] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1197.407588][ T4605] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1197.415548][ T4605] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1197.423509][ T4605] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1197.431465][ T4605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1197.439423][ T4605] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1197.731550][ T4622] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1197.794053][ T4644] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1197.827709][ T4644] CPU: 0 PID: 4644 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1197.836497][ T4644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1197.846555][ T4644] Call Trace: [ 1197.849837][ T4644] dump_stack_lvl+0xcd/0x134 [ 1197.854437][ T4644] sysfs_warn_dup.cold+0x1c/0x29 [ 1197.859381][ T4644] sysfs_do_create_link_sd+0x11e/0x140 [ 1197.864853][ T4644] sysfs_create_link+0x5f/0xc0 [ 1197.869630][ T4644] device_add+0x78f/0x21b0 [ 1197.874055][ T4644] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1197.880299][ T4644] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1197.886542][ T4644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1197.892873][ T4644] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1197.898860][ T4644] wiphy_register+0x1e8a/0x29b0 [ 1197.903718][ T4644] ? wiphy_unregister+0xbe0/0xbe0 [ 1197.908757][ T4644] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1197.914929][ T4644] ? ieee80211_register_hw+0x1d4b/0x3ed0 [ 1197.920577][ T4644] ieee80211_register_hw+0x1f18/0x3ed0 [ 1197.926050][ T4644] ? ieee80211_restart_hw+0x290/0x290 [ 1197.931432][ T4644] ? debug_object_destroy+0x210/0x210 [ 1197.936816][ T4644] ? memset+0x20/0x40 [ 1197.940798][ T4644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1197.947039][ T4644] ? __hrtimer_init+0x136/0x280 [ 1197.951893][ T4644] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1197.957631][ T4644] ? hwsim_virtio_rx_work+0x350/0x350 [ 1197.963003][ T4644] ? __kmalloc_track_caller+0x193/0x310 [ 1197.968557][ T4644] ? memcpy+0x39/0x60 [ 1197.972543][ T4644] hwsim_new_radio_nl+0x9bc/0x1080 [ 1197.977657][ T4644] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1197.983558][ T4644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1197.989799][ T4644] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1197.997169][ T4644] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1198.004458][ T4644] genl_family_rcv_msg_doit+0x228/0x320 [ 1198.010010][ T4644] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1198.017381][ T4644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1198.023631][ T4644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1198.029994][ T4644] ? ns_capable+0xd9/0x100 [ 1198.034413][ T4644] genl_rcv_msg+0x328/0x580 [ 1198.039007][ T4644] ? genl_get_cmd+0x480/0x480 [ 1198.043685][ T4644] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1198.049590][ T4644] ? lock_release+0x720/0x720 [ 1198.054274][ T4644] netlink_rcv_skb+0x153/0x420 [ 1198.059040][ T4644] ? genl_get_cmd+0x480/0x480 [ 1198.063719][ T4644] ? netlink_ack+0xa60/0xa60 [ 1198.068317][ T4644] ? netlink_deliver_tap+0x1b1/0xc30 [ 1198.073774][ T4644] ? _copy_from_iter+0x12b/0x1320 [ 1198.078806][ T4644] genl_rcv+0x24/0x40 [ 1198.082784][ T4644] netlink_unicast+0x533/0x7d0 [ 1198.087557][ T4644] ? netlink_attachskb+0x890/0x890 [ 1198.092669][ T4644] ? __virt_addr_valid+0x5d/0x2d0 [ 1198.097718][ T4644] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1198.103968][ T4644] ? __phys_addr_symbol+0x2c/0x70 [ 1198.108994][ T4644] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1198.114717][ T4644] ? __check_object_size+0x16e/0x3f0 [ 1198.120014][ T4644] netlink_sendmsg+0x86d/0xdb0 [ 1198.124783][ T4644] ? netlink_unicast+0x7d0/0x7d0 [ 1198.129720][ T4644] ? lockdep_hardirqs_on+0x79/0x100 [ 1198.134931][ T4644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1198.141174][ T4644] ? netlink_unicast+0x7d0/0x7d0 [ 1198.146112][ T4644] sock_sendmsg+0xcf/0x120 [ 1198.150533][ T4644] ____sys_sendmsg+0x6e8/0x810 [ 1198.155300][ T4644] ? kernel_sendmsg+0x50/0x50 [ 1198.159976][ T4644] ? do_recvmmsg+0x6d0/0x6d0 [ 1198.164569][ T4644] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1198.170731][ T4644] ? sockfd_lookup_light+0x6d/0x180 [ 1198.175943][ T4644] ___sys_sendmsg+0xf3/0x170 [ 1198.180539][ T4644] ? sendmsg_copy_msghdr+0x160/0x160 [ 1198.185829][ T4644] ? __fget_files+0x21b/0x3e0 [ 1198.190508][ T4644] ? lock_downgrade+0x6e0/0x6e0 [ 1198.195369][ T4644] ? __fget_files+0x23d/0x3e0 [ 1198.200050][ T4644] ? __fget_light+0xea/0x280 [ 1198.204636][ T4644] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1198.210882][ T4644] __sys_sendmsg+0xe5/0x1b0 [ 1198.215388][ T4644] ? __sys_sendmsg_sock+0x30/0x30 [ 1198.220427][ T4644] ? syscall_enter_from_user_mode+0x21/0x70 [ 1198.226324][ T4644] do_syscall_64+0x35/0xb0 [ 1198.230749][ T4644] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1198.236644][ T4644] RIP: 0033:0x7f4637cff8d9 [ 1198.241059][ T4644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1198.260663][ T4644] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1198.269075][ T4644] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1198.277042][ T4644] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1198.285010][ T4644] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 10:58:08 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000023582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:08 executing program 4: r0 = socket(0x2, 0x3, 0x20) bind$unix(r0, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e) 10:58:08 executing program 0: request_key(&(0x7f0000000080)='logon\x00', &(0x7f00000000c0)={'syz', 0x1}, &(0x7f0000000100)='syz', 0x0) 10:58:08 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1198.292975][ T4644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1198.300939][ T4644] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:58:09 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000480)=@raw={'raw\x00', 0x9, 0x3, 0x1210, 0x10c0, 0xffffffff, 0xffffffff, 0x10c0, 0xffffffff, 0x1178, 0xffffffff, 0xffffffff, 0x1178, 0xffffffff, 0x3, 0x0, {[{{@ip={@rand_addr, @private, 0x0, 0x0, 'veth1_to_hsr\x00', 'veth0_to_bridge\x00'}, 0x0, 0x10a0, 0x10c0, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x0, 0x0, './cgroup.net/syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x1270) 10:58:09 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @empty}, 0x1c) [ 1198.400407][ T4652] __nla_validate_parse: 2 callbacks suppressed [ 1198.400425][ T4652] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1198.431523][ T4668] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:58:09 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:09 executing program 0: openat$null(0xffffffffffffff9c, 0x0, 0xd0400, 0x0) [ 1198.462918][ T4668] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1198.506008][ T4668] CPU: 1 PID: 4668 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1198.514715][ T4668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1198.524769][ T4668] Call Trace: [ 1198.528047][ T4668] dump_stack_lvl+0xcd/0x134 [ 1198.532644][ T4668] sysfs_warn_dup.cold+0x1c/0x29 [ 1198.537590][ T4668] sysfs_do_create_link_sd+0x11e/0x140 [ 1198.543063][ T4668] sysfs_create_link+0x5f/0xc0 [ 1198.547839][ T4668] device_add+0x78f/0x21b0 10:58:09 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, 0x0, &(0x7f0000000400)) [ 1198.552265][ T4668] ? wait_for_completion_io+0x280/0x280 [ 1198.557818][ T4668] ? lock_downgrade+0x6e0/0x6e0 [ 1198.562679][ T4668] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1198.568929][ T4668] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1198.575184][ T4668] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1198.581440][ T4668] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1198.587439][ T4668] wiphy_register+0x1e8a/0x29b0 [ 1198.592312][ T4668] ? wiphy_unregister+0xbe0/0xbe0 [ 1198.597339][ T4668] ? minstrel_ht_alloc+0x531/0xa00 [ 1198.602468][ T4668] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1198.608558][ T4668] ieee80211_register_hw+0x1f18/0x3ed0 [ 1198.614041][ T4668] ? ieee80211_restart_hw+0x290/0x290 [ 1198.619426][ T4668] ? debug_object_destroy+0x210/0x210 [ 1198.624818][ T4668] ? memset+0x20/0x40 [ 1198.628809][ T4668] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1198.635058][ T4668] ? __hrtimer_init+0x136/0x280 [ 1198.639920][ T4668] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1198.645664][ T4668] ? hwsim_virtio_rx_work+0x350/0x350 [ 1198.651040][ T4668] ? __kmalloc_track_caller+0x193/0x310 [ 1198.656598][ T4668] ? memcpy+0x39/0x60 [ 1198.660593][ T4668] hwsim_new_radio_nl+0x9bc/0x1080 [ 1198.665715][ T4668] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1198.671625][ T4668] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1198.677874][ T4668] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1198.685258][ T4668] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1198.692555][ T4668] genl_family_rcv_msg_doit+0x228/0x320 [ 1198.698110][ T4668] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1198.705492][ T4668] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1198.711758][ T4668] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1198.718003][ T4668] ? ns_capable+0xd9/0x100 [ 1198.722432][ T4668] genl_rcv_msg+0x328/0x580 [ 1198.726947][ T4668] ? genl_get_cmd+0x480/0x480 [ 1198.731628][ T4668] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1198.737531][ T4668] ? lock_release+0x720/0x720 [ 1198.742215][ T4668] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1198.748039][ T4668] netlink_rcv_skb+0x153/0x420 [ 1198.752809][ T4668] ? genl_get_cmd+0x480/0x480 [ 1198.757494][ T4668] ? netlink_ack+0xa60/0xa60 [ 1198.762096][ T4668] ? netlink_deliver_tap+0x1b1/0xc30 [ 1198.767391][ T4668] genl_rcv+0x24/0x40 [ 1198.771376][ T4668] netlink_unicast+0x533/0x7d0 [ 1198.776149][ T4668] ? netlink_attachskb+0x890/0x890 [ 1198.781261][ T4668] ? __virt_addr_valid+0x5d/0x2d0 [ 1198.786297][ T4668] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1198.792544][ T4668] ? __phys_addr_symbol+0x2c/0x70 [ 1198.797802][ T4668] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1198.803532][ T4668] ? __check_object_size+0x16e/0x3f0 [ 1198.808852][ T4668] netlink_sendmsg+0x86d/0xdb0 [ 1198.813647][ T4668] ? netlink_unicast+0x7d0/0x7d0 [ 1198.818609][ T4668] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1198.824875][ T4668] ? netlink_unicast+0x7d0/0x7d0 [ 1198.829834][ T4668] sock_sendmsg+0xcf/0x120 [ 1198.834271][ T4668] ____sys_sendmsg+0x6e8/0x810 [ 1198.839059][ T4668] ? kernel_sendmsg+0x50/0x50 [ 1198.843760][ T4668] ? do_recvmmsg+0x6d0/0x6d0 [ 1198.848374][ T4668] ? lock_chain_count+0x20/0x20 [ 1198.853243][ T4668] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1198.859252][ T4668] ___sys_sendmsg+0xf3/0x170 [ 1198.863870][ T4668] ? sendmsg_copy_msghdr+0x160/0x160 [ 1198.869186][ T4668] ? __fget_files+0x21b/0x3e0 [ 1198.873966][ T4668] ? lock_downgrade+0x6e0/0x6e0 [ 1198.878849][ T4668] ? __fget_files+0x23d/0x3e0 [ 1198.883554][ T4668] ? __fget_light+0xea/0x280 [ 1198.888161][ T4668] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1198.894515][ T4668] __sys_sendmsg+0xe5/0x1b0 [ 1198.899037][ T4668] ? __sys_sendmsg_sock+0x30/0x30 [ 1198.904094][ T4668] ? syscall_enter_from_user_mode+0x21/0x70 [ 1198.910015][ T4668] do_syscall_64+0x35/0xb0 [ 1198.914458][ T4668] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1198.920375][ T4668] RIP: 0033:0x7f3e684f88d9 [ 1198.924802][ T4668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1198.944426][ T4668] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1198.952863][ T4668] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1198.960846][ T4668] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1198.968830][ T4668] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1198.976811][ T4668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1198.984793][ T4668] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:09 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:09 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x8, &(0x7f0000000480)=0x8000, 0x4) 10:58:09 executing program 0: r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000200)='ns/ipc\x00') fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000240), 0x0, 0x0, 0x0) [ 1199.091067][ T4691] x_tables: duplicate underflow at hook 3 [ 1199.210262][ T4673] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1199.247913][ T4673] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1199.266720][ T4673] CPU: 1 PID: 4673 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1199.275538][ T4673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1199.285609][ T4673] Call Trace: [ 1199.288900][ T4673] dump_stack_lvl+0xcd/0x134 [ 1199.293508][ T4673] sysfs_warn_dup.cold+0x1c/0x29 [ 1199.298466][ T4673] sysfs_do_create_link_sd+0x11e/0x140 [ 1199.303955][ T4673] sysfs_create_link+0x5f/0xc0 [ 1199.308744][ T4673] device_add+0x78f/0x21b0 [ 1199.313176][ T4673] ? wait_for_completion_io+0x280/0x280 [ 1199.318746][ T4673] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1199.325009][ T4673] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1199.331275][ T4673] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1199.337536][ T4673] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1199.343547][ T4673] wiphy_register+0x1e8a/0x29b0 [ 1199.348426][ T4673] ? wiphy_unregister+0xbe0/0xbe0 [ 1199.353464][ T4673] ? minstrel_ht_alloc+0x531/0xa00 [ 1199.358603][ T4673] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1199.364698][ T4673] ieee80211_register_hw+0x1f18/0x3ed0 [ 1199.370210][ T4673] ? ieee80211_restart_hw+0x290/0x290 [ 1199.375615][ T4673] ? debug_object_destroy+0x210/0x210 [ 1199.381017][ T4673] ? memset+0x20/0x40 [ 1199.385020][ T4673] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1199.391283][ T4673] ? __hrtimer_init+0x136/0x280 [ 1199.396156][ T4673] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1199.401920][ T4673] ? hwsim_virtio_rx_work+0x350/0x350 [ 1199.407313][ T4673] ? __kmalloc_track_caller+0x193/0x310 [ 1199.412892][ T4673] ? memcpy+0x39/0x60 [ 1199.416899][ T4673] hwsim_new_radio_nl+0x9bc/0x1080 [ 1199.422036][ T4673] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1199.427962][ T4673] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1199.434226][ T4673] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1199.441625][ T4673] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1199.448941][ T4673] genl_family_rcv_msg_doit+0x228/0x320 [ 1199.454517][ T4673] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1199.461914][ T4673] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1199.468184][ T4673] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1199.474447][ T4673] ? ns_capable+0xd9/0x100 [ 1199.478884][ T4673] genl_rcv_msg+0x328/0x580 [ 1199.483406][ T4673] ? genl_get_cmd+0x480/0x480 [ 1199.488101][ T4673] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1199.494020][ T4673] ? lock_release+0x720/0x720 [ 1199.498715][ T4673] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1199.504034][ T4673] netlink_rcv_skb+0x153/0x420 [ 1199.508819][ T4673] ? genl_get_cmd+0x480/0x480 [ 1199.513518][ T4673] ? netlink_ack+0xa60/0xa60 [ 1199.518135][ T4673] ? netlink_deliver_tap+0x1b1/0xc30 [ 1199.523444][ T4673] genl_rcv+0x24/0x40 [ 1199.527440][ T4673] netlink_unicast+0x533/0x7d0 [ 1199.532221][ T4673] ? netlink_attachskb+0x890/0x890 [ 1199.537349][ T4673] ? __virt_addr_valid+0x5d/0x2d0 [ 1199.542399][ T4673] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1199.548662][ T4673] ? __phys_addr_symbol+0x2c/0x70 [ 1199.553705][ T4673] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1199.559451][ T4673] ? __check_object_size+0x16e/0x3f0 [ 1199.564766][ T4673] netlink_sendmsg+0x86d/0xdb0 [ 1199.569555][ T4673] ? netlink_unicast+0x7d0/0x7d0 [ 1199.574521][ T4673] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1199.580791][ T4673] ? netlink_unicast+0x7d0/0x7d0 [ 1199.585749][ T4673] sock_sendmsg+0xcf/0x120 [ 1199.590188][ T4673] ____sys_sendmsg+0x6e8/0x810 [ 1199.594968][ T4673] ? kernel_sendmsg+0x50/0x50 [ 1199.599658][ T4673] ? do_recvmmsg+0x6d0/0x6d0 [ 1199.604266][ T4673] ? lock_chain_count+0x20/0x20 [ 1199.609131][ T4673] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1199.615138][ T4673] ___sys_sendmsg+0xf3/0x170 [ 1199.619758][ T4673] ? sendmsg_copy_msghdr+0x160/0x160 [ 1199.625072][ T4673] ? __fget_files+0x21b/0x3e0 [ 1199.629770][ T4673] ? lock_downgrade+0x6e0/0x6e0 [ 1199.634652][ T4673] ? __fget_files+0x23d/0x3e0 [ 1199.639352][ T4673] ? __fget_light+0xea/0x280 [ 1199.643963][ T4673] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1199.650233][ T4673] __sys_sendmsg+0xe5/0x1b0 [ 1199.654763][ T4673] ? __sys_sendmsg_sock+0x30/0x30 [ 1199.659825][ T4673] ? syscall_enter_from_user_mode+0x21/0x70 [ 1199.665755][ T4673] do_syscall_64+0x35/0xb0 [ 1199.670199][ T4673] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1199.676115][ T4673] RIP: 0033:0x7f3e684f88d9 [ 1199.680546][ T4673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1199.700175][ T4673] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1199.708604][ T4673] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1199.716591][ T4673] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1199.724576][ T4673] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1199.732564][ T4673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1199.740548][ T4673] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1199.842075][ T4716] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. 10:58:10 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000033582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:10 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:10 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000000380)={0x10, 0x0, 0x0, 0x4}, 0xc) 10:58:10 executing program 0: syz_open_procfs(0x0, &(0x7f0000000080)='net/ip_tables_targets\x00') 10:58:10 executing program 4: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@GFS2_SMALL_FH_SIZE={0x10}, &(0x7f0000000180), 0x0) [ 1199.919134][ T4716] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1200.005684][ T4716] CPU: 1 PID: 4716 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1200.014502][ T4716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1200.024567][ T4716] Call Trace: [ 1200.027855][ T4716] dump_stack_lvl+0xcd/0x134 [ 1200.032466][ T4716] sysfs_warn_dup.cold+0x1c/0x29 [ 1200.037419][ T4716] sysfs_do_create_link_sd+0x11e/0x140 [ 1200.042899][ T4716] sysfs_create_link+0x5f/0xc0 [ 1200.047682][ T4716] device_add+0x78f/0x21b0 [ 1200.052127][ T4716] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1200.058393][ T4716] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1200.064660][ T4716] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1200.070925][ T4716] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1200.076938][ T4716] wiphy_register+0x1e8a/0x29b0 [ 1200.081814][ T4716] ? wiphy_unregister+0xbe0/0xbe0 [ 1200.086852][ T4716] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1200.093031][ T4716] ? ieee80211_register_hw+0x1edf/0x3ed0 [ 1200.098691][ T4716] ? ieee80211_register_hw+0x1eee/0x3ed0 [ 1200.104360][ T4716] ieee80211_register_hw+0x1f18/0x3ed0 [ 1200.109858][ T4716] ? ieee80211_restart_hw+0x290/0x290 [ 1200.115258][ T4716] ? debug_object_destroy+0x210/0x210 [ 1200.120661][ T4716] ? memset+0x20/0x40 [ 1200.124662][ T4716] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1200.130920][ T4716] ? __hrtimer_init+0x136/0x280 [ 1200.135794][ T4716] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1200.141551][ T4716] ? hwsim_virtio_rx_work+0x350/0x350 [ 1200.146943][ T4716] ? __kmalloc_track_caller+0x193/0x310 [ 1200.152517][ T4716] ? memcpy+0x39/0x60 [ 1200.156522][ T4716] hwsim_new_radio_nl+0x9bc/0x1080 [ 1200.161655][ T4716] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1200.167579][ T4716] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1200.173840][ T4716] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1200.181228][ T4716] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1200.188539][ T4716] genl_family_rcv_msg_doit+0x228/0x320 [ 1200.194111][ T4716] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1200.201505][ T4716] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1200.207779][ T4716] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1200.214043][ T4716] ? ns_capable+0xd9/0x100 [ 1200.218474][ T4716] genl_rcv_msg+0x328/0x580 [ 1200.222991][ T4716] ? genl_get_cmd+0x480/0x480 [ 1200.227678][ T4716] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1200.233597][ T4716] ? lock_release+0x720/0x720 [ 1200.238293][ T4716] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1200.244475][ T4716] netlink_rcv_skb+0x153/0x420 [ 1200.249260][ T4716] ? genl_get_cmd+0x480/0x480 [ 1200.253952][ T4716] ? netlink_ack+0xa60/0xa60 [ 1200.258565][ T4716] ? netlink_deliver_tap+0x1b1/0xc30 [ 1200.263865][ T4716] ? _copy_from_iter+0x12b/0x1320 [ 1200.268914][ T4716] genl_rcv+0x24/0x40 [ 1200.272913][ T4716] netlink_unicast+0x533/0x7d0 [ 1200.277706][ T4716] ? netlink_attachskb+0x890/0x890 [ 1200.282845][ T4716] ? __virt_addr_valid+0x5d/0x2d0 [ 1200.287899][ T4716] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1200.294158][ T4716] ? __phys_addr_symbol+0x2c/0x70 [ 1200.299202][ T4716] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1200.304943][ T4716] ? __check_object_size+0x16e/0x3f0 [ 1200.310250][ T4716] netlink_sendmsg+0x86d/0xdb0 [ 1200.315035][ T4716] ? netlink_unicast+0x7d0/0x7d0 [ 1200.319996][ T4716] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1200.326258][ T4716] ? netlink_unicast+0x7d0/0x7d0 [ 1200.331214][ T4716] sock_sendmsg+0xcf/0x120 [ 1200.335655][ T4716] ____sys_sendmsg+0x6e8/0x810 [ 1200.340450][ T4716] ? kernel_sendmsg+0x50/0x50 [ 1200.345148][ T4716] ? do_recvmmsg+0x6d0/0x6d0 [ 1200.349772][ T4716] ? lock_chain_count+0x20/0x20 [ 1200.354639][ T4716] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1200.360638][ T4716] ? lock_chain_count+0x20/0x20 [ 1200.365518][ T4716] ___sys_sendmsg+0xf3/0x170 [ 1200.370133][ T4716] ? sendmsg_copy_msghdr+0x160/0x160 [ 1200.375437][ T4716] ? __fget_files+0x21b/0x3e0 [ 1200.380122][ T4716] ? lock_downgrade+0x6e0/0x6e0 [ 1200.385000][ T4716] ? __fget_files+0x23d/0x3e0 [ 1200.389693][ T4716] ? __fget_light+0xea/0x280 [ 1200.394295][ T4716] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1200.400554][ T4716] __sys_sendmsg+0xe5/0x1b0 [ 1200.405084][ T4716] ? __sys_sendmsg_sock+0x30/0x30 [ 1200.410136][ T4716] ? syscall_enter_from_user_mode+0x21/0x70 [ 1200.416054][ T4716] do_syscall_64+0x35/0xb0 [ 1200.420497][ T4716] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1200.426412][ T4716] RIP: 0033:0x7f4637cff8d9 [ 1200.430839][ T4716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 10:58:11 executing program 0: prctl$PR_SET_TIMERSLACK(0x1d, 0x8) [ 1200.450459][ T4716] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1200.458894][ T4716] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1200.466885][ T4716] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1200.474872][ T4716] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1200.482865][ T4716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1200.490851][ T4716] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:58:11 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_int(r0, 0x6, 0x1b, 0x0, &(0x7f0000000000)) 10:58:11 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:11 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)={0x40, 0x1, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x40}}, 0x0) [ 1200.993650][ T4732] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1201.048553][ T4732] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1201.089920][ T4732] CPU: 0 PID: 4732 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1201.098818][ T4732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1201.108885][ T4732] Call Trace: [ 1201.112171][ T4732] dump_stack_lvl+0xcd/0x134 [ 1201.116775][ T4732] sysfs_warn_dup.cold+0x1c/0x29 [ 1201.121723][ T4732] sysfs_do_create_link_sd+0x11e/0x140 [ 1201.127207][ T4732] sysfs_create_link+0x5f/0xc0 [ 1201.131999][ T4732] device_add+0x78f/0x21b0 [ 1201.136438][ T4732] ? wait_for_completion_io+0x280/0x280 [ 1201.142002][ T4732] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1201.148264][ T4732] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1201.154524][ T4732] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1201.160788][ T4732] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1201.166800][ T4732] wiphy_register+0x1e8a/0x29b0 [ 1201.171676][ T4732] ? wiphy_unregister+0xbe0/0xbe0 [ 1201.176710][ T4732] ? minstrel_ht_alloc+0x531/0xa00 [ 1201.181853][ T4732] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1201.187954][ T4732] ieee80211_register_hw+0x1f18/0x3ed0 [ 1201.193449][ T4732] ? ieee80211_restart_hw+0x290/0x290 [ 1201.198841][ T4732] ? debug_object_destroy+0x210/0x210 [ 1201.204247][ T4732] ? memset+0x20/0x40 [ 1201.208253][ T4732] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1201.214686][ T4732] ? __hrtimer_init+0x136/0x280 [ 1201.219558][ T4732] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1201.225318][ T4732] ? hwsim_virtio_rx_work+0x350/0x350 [ 1201.230712][ T4732] ? __kmalloc_track_caller+0x193/0x310 [ 1201.236288][ T4732] ? memcpy+0x39/0x60 10:58:11 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:11 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) connect$netlink(r0, &(0x7f0000000280)=@proc={0x10, 0x0, 0x25dfdbfd}, 0xc) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000240)={&(0x7f0000000140), 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x14, 0x1, 0xa, 0x201}, 0x14}}, 0x0) 10:58:11 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1201.240290][ T4732] hwsim_new_radio_nl+0x9bc/0x1080 [ 1201.245421][ T4732] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1201.251345][ T4732] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1201.257609][ T4732] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1201.265000][ T4732] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1201.272315][ T4732] genl_family_rcv_msg_doit+0x228/0x320 [ 1201.277883][ T4732] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1201.285276][ T4732] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1201.291552][ T4732] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1201.297814][ T4732] ? ns_capable+0xd9/0x100 [ 1201.302256][ T4732] genl_rcv_msg+0x328/0x580 [ 1201.306786][ T4732] ? genl_get_cmd+0x480/0x480 [ 1201.311478][ T4732] ? rwsem_down_read_slowpath+0x2cc/0x990 [ 1201.317215][ T4732] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1201.323134][ T4732] ? down_write_killable_nested+0x180/0x180 [ 1201.329040][ T4732] ? lock_release+0x720/0x720 [ 1201.333734][ T4732] netlink_rcv_skb+0x153/0x420 [ 1201.338508][ T4732] ? genl_get_cmd+0x480/0x480 [ 1201.343199][ T4732] ? netlink_ack+0xa60/0xa60 [ 1201.347812][ T4732] ? netlink_deliver_tap+0x1b1/0xc30 [ 1201.353120][ T4732] genl_rcv+0x24/0x40 [ 1201.357118][ T4732] netlink_unicast+0x533/0x7d0 [ 1201.361897][ T4732] ? netlink_attachskb+0x890/0x890 [ 1201.367019][ T4732] ? __virt_addr_valid+0x5d/0x2d0 [ 1201.372061][ T4732] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1201.378328][ T4732] ? __phys_addr_symbol+0x2c/0x70 [ 1201.383374][ T4732] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1201.389116][ T4732] ? __check_object_size+0x16e/0x3f0 [ 1201.394429][ T4732] netlink_sendmsg+0x86d/0xdb0 [ 1201.399222][ T4732] ? netlink_unicast+0x7d0/0x7d0 [ 1201.404200][ T4732] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1201.410469][ T4732] ? netlink_unicast+0x7d0/0x7d0 [ 1201.415432][ T4732] sock_sendmsg+0xcf/0x120 [ 1201.419873][ T4732] ____sys_sendmsg+0x6e8/0x810 [ 1201.424656][ T4732] ? kernel_sendmsg+0x50/0x50 [ 1201.429346][ T4732] ? do_recvmmsg+0x6d0/0x6d0 [ 1201.433959][ T4732] ? lock_chain_count+0x20/0x20 [ 1201.438828][ T4732] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1201.444835][ T4732] ___sys_sendmsg+0xf3/0x170 [ 1201.449445][ T4732] ? sendmsg_copy_msghdr+0x160/0x160 [ 1201.454760][ T4732] ? __fget_files+0x21b/0x3e0 [ 1201.459452][ T4732] ? lock_downgrade+0x6e0/0x6e0 [ 1201.464332][ T4732] ? __fget_files+0x23d/0x3e0 [ 1201.469029][ T4732] ? __fget_light+0xea/0x280 [ 1201.473637][ T4732] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1201.479904][ T4732] __sys_sendmsg+0xe5/0x1b0 [ 1201.484434][ T4732] ? __sys_sendmsg_sock+0x30/0x30 [ 1201.489495][ T4732] ? syscall_enter_from_user_mode+0x21/0x70 [ 1201.495415][ T4732] do_syscall_64+0x35/0xb0 [ 1201.499857][ T4732] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1201.505772][ T4732] RIP: 0033:0x7f3e684f88d9 [ 1201.510201][ T4732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1201.529833][ T4732] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1201.538439][ T4732] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1201.546514][ T4732] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1201.554501][ T4732] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1201.562488][ T4732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1201.570475][ T4732] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1201.706774][ T4731] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1201.739760][ T4731] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1201.778339][ T4731] CPU: 0 PID: 4731 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1201.787326][ T4731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1201.797393][ T4731] Call Trace: [ 1201.800684][ T4731] dump_stack_lvl+0xcd/0x134 [ 1201.805289][ T4731] sysfs_warn_dup.cold+0x1c/0x29 [ 1201.810250][ T4731] sysfs_do_create_link_sd+0x11e/0x140 [ 1201.815727][ T4731] sysfs_create_link+0x5f/0xc0 [ 1201.820508][ T4731] device_add+0x78f/0x21b0 [ 1201.824943][ T4731] ? wait_for_completion_io+0x280/0x280 [ 1201.830502][ T4731] ? lock_downgrade+0x6e0/0x6e0 [ 1201.835371][ T4731] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1201.841636][ T4731] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1201.847895][ T4731] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1201.854149][ T4731] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1201.860153][ T4731] wiphy_register+0x1e8a/0x29b0 [ 1201.865031][ T4731] ? wiphy_unregister+0xbe0/0xbe0 [ 1201.870066][ T4731] ? minstrel_ht_alloc+0x531/0xa00 [ 1201.875209][ T4731] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1201.881483][ T4731] ieee80211_register_hw+0x1f18/0x3ed0 [ 1201.886982][ T4731] ? ieee80211_restart_hw+0x290/0x290 [ 1201.892373][ T4731] ? debug_object_destroy+0x210/0x210 [ 1201.897771][ T4731] ? memset+0x20/0x40 [ 1201.901765][ T4731] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1201.908019][ T4731] ? __hrtimer_init+0x136/0x280 [ 1201.912893][ T4731] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1201.918652][ T4731] ? hwsim_virtio_rx_work+0x350/0x350 [ 1201.924039][ T4731] ? __kmalloc_track_caller+0x193/0x310 [ 1201.929608][ T4731] ? memcpy+0x39/0x60 [ 1201.933612][ T4731] hwsim_new_radio_nl+0x9bc/0x1080 [ 1201.938747][ T4731] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1201.944672][ T4731] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1201.950938][ T4731] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1201.958331][ T4731] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1201.965644][ T4731] genl_family_rcv_msg_doit+0x228/0x320 [ 1201.971215][ T4731] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1201.978616][ T4731] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1201.984889][ T4731] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1201.991153][ T4731] ? ns_capable+0xd9/0x100 [ 1201.995590][ T4731] genl_rcv_msg+0x328/0x580 [ 1202.000116][ T4731] ? genl_get_cmd+0x480/0x480 [ 1202.004812][ T4731] ? rwsem_down_read_slowpath+0x2cc/0x990 [ 1202.010556][ T4731] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1202.016471][ T4731] ? down_write_killable_nested+0x180/0x180 [ 1202.022385][ T4731] ? lock_release+0x720/0x720 [ 1202.027082][ T4731] netlink_rcv_skb+0x153/0x420 [ 1202.031864][ T4731] ? genl_get_cmd+0x480/0x480 [ 1202.036555][ T4731] ? netlink_ack+0xa60/0xa60 [ 1202.041172][ T4731] ? netlink_deliver_tap+0x1b1/0xc30 [ 1202.046484][ T4731] genl_rcv+0x24/0x40 [ 1202.050488][ T4731] netlink_unicast+0x533/0x7d0 [ 1202.055274][ T4731] ? netlink_attachskb+0x890/0x890 [ 1202.060396][ T4731] ? __virt_addr_valid+0x5d/0x2d0 [ 1202.065440][ T4731] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1202.071703][ T4731] ? __phys_addr_symbol+0x2c/0x70 [ 1202.076748][ T4731] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1202.082486][ T4731] ? __check_object_size+0x16e/0x3f0 [ 1202.087794][ T4731] netlink_sendmsg+0x86d/0xdb0 [ 1202.092574][ T4731] ? netlink_unicast+0x7d0/0x7d0 [ 1202.097528][ T4731] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1202.103794][ T4731] ? netlink_unicast+0x7d0/0x7d0 [ 1202.108751][ T4731] sock_sendmsg+0xcf/0x120 [ 1202.113183][ T4731] ____sys_sendmsg+0x6e8/0x810 [ 1202.117969][ T4731] ? kernel_sendmsg+0x50/0x50 [ 1202.122654][ T4731] ? do_recvmmsg+0x6d0/0x6d0 [ 1202.127264][ T4731] ? lock_chain_count+0x20/0x20 [ 1202.132124][ T4731] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1202.138124][ T4731] ___sys_sendmsg+0xf3/0x170 [ 1202.142728][ T4731] ? sendmsg_copy_msghdr+0x160/0x160 [ 1202.148029][ T4731] ? __fget_files+0x21b/0x3e0 [ 1202.152719][ T4731] ? lock_downgrade+0x6e0/0x6e0 [ 1202.157596][ T4731] ? __fget_files+0x23d/0x3e0 [ 1202.162288][ T4731] ? __fget_light+0xea/0x280 [ 1202.166884][ T4731] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1202.173145][ T4731] __sys_sendmsg+0xe5/0x1b0 [ 1202.177666][ T4731] ? __sys_sendmsg_sock+0x30/0x30 [ 1202.182717][ T4731] ? syscall_enter_from_user_mode+0x21/0x70 [ 1202.188637][ T4731] do_syscall_64+0x35/0xb0 [ 1202.193080][ T4731] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1202.199174][ T4731] RIP: 0033:0x7f3e684f88d9 [ 1202.203615][ T4731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1202.223253][ T4731] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1202.231684][ T4731] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1202.239670][ T4731] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1202.247658][ T4731] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1202.255643][ T4731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1202.263627][ T4731] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:12 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000043582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:12 executing program 0: r0 = openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000380), 0x1, 0x0) write$khugepaged_scan(r0, 0x0, 0x0) 10:58:12 executing program 5: syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_mr_cache\x00') 10:58:12 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f00000001c0)={{0x2, 0x0, @local}, {0x1, @link_local}, 0x2, {0x2, 0x0, @multicast2}, 'lo\x00'}) 10:58:12 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1202.343555][ T4765] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1202.418713][ T4765] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1202.458763][ T4765] CPU: 1 PID: 4765 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1202.467660][ T4765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1202.477733][ T4765] Call Trace: [ 1202.481018][ T4765] dump_stack_lvl+0xcd/0x134 [ 1202.485628][ T4765] sysfs_warn_dup.cold+0x1c/0x29 [ 1202.490593][ T4765] sysfs_do_create_link_sd+0x11e/0x140 [ 1202.496078][ T4765] sysfs_create_link+0x5f/0xc0 [ 1202.500861][ T4765] device_add+0x78f/0x21b0 [ 1202.505294][ T4765] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1202.511468][ T4765] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1202.517723][ T4765] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1202.523990][ T4765] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1202.530251][ T4765] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1202.536253][ T4765] wiphy_register+0x1e8a/0x29b0 [ 1202.541127][ T4765] ? wiphy_unregister+0xbe0/0xbe0 [ 1202.546158][ T4765] ? minstrel_ht_alloc+0x531/0xa00 [ 1202.551296][ T4765] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1202.557392][ T4765] ieee80211_register_hw+0x1f18/0x3ed0 [ 1202.562888][ T4765] ? ieee80211_restart_hw+0x290/0x290 [ 1202.568281][ T4765] ? debug_object_destroy+0x210/0x210 [ 1202.573676][ T4765] ? memset+0x20/0x40 [ 1202.577672][ T4765] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1202.583932][ T4765] ? __hrtimer_init+0x136/0x280 [ 1202.588798][ T4765] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1202.594549][ T4765] ? hwsim_virtio_rx_work+0x350/0x350 [ 1202.599929][ T4765] ? __kmalloc_track_caller+0x193/0x310 [ 1202.605490][ T4765] ? memcpy+0x39/0x60 [ 1202.609490][ T4765] hwsim_new_radio_nl+0x9bc/0x1080 [ 1202.614624][ T4765] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1202.620535][ T4765] ? lockdep_hardirqs_on+0x79/0x100 [ 1202.625771][ T4765] genl_family_rcv_msg_doit+0x228/0x320 [ 1202.631329][ T4765] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1202.638712][ T4765] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1202.644988][ T4765] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1202.651245][ T4765] ? ns_capable+0xd9/0x100 [ 1202.655680][ T4765] genl_rcv_msg+0x328/0x580 [ 1202.660207][ T4765] ? genl_get_cmd+0x480/0x480 [ 1202.664900][ T4765] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1202.670822][ T4765] ? lock_release+0x720/0x720 [ 1202.675522][ T4765] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1202.681360][ T4765] netlink_rcv_skb+0x153/0x420 [ 1202.686147][ T4765] ? genl_get_cmd+0x480/0x480 [ 1202.690844][ T4765] ? netlink_ack+0xa60/0xa60 [ 1202.695455][ T4765] ? netlink_deliver_tap+0x1b1/0xc30 [ 1202.700756][ T4765] ? _copy_from_iter+0x12b/0x1320 [ 1202.705804][ T4765] genl_rcv+0x24/0x40 [ 1202.709795][ T4765] netlink_unicast+0x533/0x7d0 [ 1202.714574][ T4765] ? netlink_attachskb+0x890/0x890 [ 1202.719694][ T4765] ? __virt_addr_valid+0x5d/0x2d0 [ 1202.724746][ T4765] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1202.731000][ T4765] ? __phys_addr_symbol+0x2c/0x70 [ 1202.736043][ T4765] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1202.741781][ T4765] ? __check_object_size+0x16e/0x3f0 [ 1202.747086][ T4765] netlink_sendmsg+0x86d/0xdb0 [ 1202.751871][ T4765] ? netlink_unicast+0x7d0/0x7d0 [ 1202.756832][ T4765] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1202.763099][ T4765] ? netlink_unicast+0x7d0/0x7d0 [ 1202.768061][ T4765] sock_sendmsg+0xcf/0x120 [ 1202.772496][ T4765] ____sys_sendmsg+0x6e8/0x810 [ 1202.777279][ T4765] ? kernel_sendmsg+0x50/0x50 [ 1202.781968][ T4765] ? do_recvmmsg+0x6d0/0x6d0 [ 1202.786578][ T4765] ? lock_chain_count+0x20/0x20 [ 1202.791445][ T4765] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1202.797449][ T4765] ___sys_sendmsg+0xf3/0x170 [ 1202.802056][ T4765] ? sendmsg_copy_msghdr+0x160/0x160 [ 1202.807361][ T4765] ? __fget_files+0x21b/0x3e0 [ 1202.812051][ T4765] ? lock_downgrade+0x6e0/0x6e0 [ 1202.816916][ T4765] ? __fget_files+0x5d/0x3e0 [ 1202.821524][ T4765] ? __fget_files+0x23d/0x3e0 [ 1202.826212][ T4765] ? __fget_light+0xea/0x280 [ 1202.830805][ T4765] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1202.837063][ T4765] __sys_sendmsg+0xe5/0x1b0 [ 1202.841582][ T4765] ? __sys_sendmsg_sock+0x30/0x30 [ 1202.846619][ T4765] ? lockdep_hardirqs_on+0x79/0x100 [ 1202.851840][ T4765] ? trace_hardirqs_on+0x39/0x1c0 [ 1202.856883][ T4765] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1202.862800][ T4765] do_syscall_64+0x35/0xb0 [ 1202.867238][ T4765] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1202.873152][ T4765] RIP: 0033:0x7f4637cff8d9 [ 1202.877581][ T4765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1202.897206][ T4765] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1202.905637][ T4765] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 10:58:13 executing program 0: perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fork() 10:58:13 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904", 0x17}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1202.913619][ T4765] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1202.921590][ T4765] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1202.929732][ T4765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1202.937708][ T4765] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:58:13 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000000)=0x1, 0x4) [ 1202.992199][ T4800] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:58:13 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) [ 1203.045918][ T4800] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1203.105731][ T4800] CPU: 1 PID: 4800 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1203.114617][ T4800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1203.124671][ T4800] Call Trace: [ 1203.127937][ T4800] dump_stack_lvl+0xcd/0x134 [ 1203.132520][ T4800] sysfs_warn_dup.cold+0x1c/0x29 [ 1203.137447][ T4800] sysfs_do_create_link_sd+0x11e/0x140 [ 1203.142904][ T4800] sysfs_create_link+0x5f/0xc0 [ 1203.147682][ T4800] device_add+0x78f/0x21b0 [ 1203.152299][ T4800] ? wait_for_completion_io+0x280/0x280 [ 1203.157867][ T4800] ? lock_downgrade+0x6e0/0x6e0 [ 1203.162740][ T4800] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1203.168991][ T4800] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1203.175235][ T4800] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1203.181473][ T4800] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1203.187457][ T4800] wiphy_register+0x1e8a/0x29b0 [ 1203.192312][ T4800] ? wiphy_unregister+0xbe0/0xbe0 [ 1203.197327][ T4800] ? minstrel_ht_alloc+0x531/0xa00 [ 1203.202443][ T4800] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1203.208513][ T4800] ieee80211_register_hw+0x1f18/0x3ed0 [ 1203.213982][ T4800] ? ieee80211_restart_hw+0x290/0x290 [ 1203.219356][ T4800] ? debug_object_destroy+0x210/0x210 [ 1203.224728][ T4800] ? memset+0x20/0x40 [ 1203.228710][ T4800] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1203.234951][ T4800] ? __hrtimer_init+0x136/0x280 [ 1203.239796][ T4800] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1203.245525][ T4800] ? hwsim_virtio_rx_work+0x350/0x350 [ 1203.250887][ T4800] ? __kmalloc_track_caller+0x193/0x310 [ 1203.256431][ T4800] ? memcpy+0x39/0x60 [ 1203.260408][ T4800] hwsim_new_radio_nl+0x9bc/0x1080 [ 1203.265515][ T4800] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1203.271412][ T4800] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1203.277648][ T4800] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1203.285015][ T4800] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1203.292301][ T4800] genl_family_rcv_msg_doit+0x228/0x320 [ 1203.297849][ T4800] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1203.305215][ T4800] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1203.311464][ T4800] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1203.317704][ T4800] ? ns_capable+0xd9/0x100 [ 1203.322121][ T4800] genl_rcv_msg+0x328/0x580 [ 1203.326620][ T4800] ? genl_get_cmd+0x480/0x480 [ 1203.331287][ T4800] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1203.337174][ T4800] ? lock_release+0x720/0x720 [ 1203.341841][ T4800] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1203.347123][ T4800] netlink_rcv_skb+0x153/0x420 [ 1203.351879][ T4800] ? genl_get_cmd+0x480/0x480 [ 1203.356551][ T4800] ? netlink_ack+0xa60/0xa60 [ 1203.361135][ T4800] ? netlink_deliver_tap+0x1b1/0xc30 [ 1203.366418][ T4800] genl_rcv+0x24/0x40 [ 1203.370395][ T4800] netlink_unicast+0x533/0x7d0 [ 1203.375150][ T4800] ? netlink_attachskb+0x890/0x890 [ 1203.380253][ T4800] ? __virt_addr_valid+0x5d/0x2d0 [ 1203.385274][ T4800] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1203.391511][ T4800] ? __phys_addr_symbol+0x2c/0x70 [ 1203.396527][ T4800] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1203.402238][ T4800] ? __check_object_size+0x16e/0x3f0 [ 1203.407528][ T4800] netlink_sendmsg+0x86d/0xdb0 [ 1203.412297][ T4800] ? netlink_unicast+0x7d0/0x7d0 [ 1203.417229][ T4800] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1203.423465][ T4800] ? netlink_unicast+0x7d0/0x7d0 [ 1203.428398][ T4800] sock_sendmsg+0xcf/0x120 [ 1203.432812][ T4800] ____sys_sendmsg+0x6e8/0x810 [ 1203.437576][ T4800] ? kernel_sendmsg+0x50/0x50 [ 1203.442242][ T4800] ? do_recvmmsg+0x6d0/0x6d0 [ 1203.446830][ T4800] ? lock_chain_count+0x20/0x20 [ 1203.451674][ T4800] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1203.457655][ T4800] ___sys_sendmsg+0xf3/0x170 [ 1203.462248][ T4800] ? sendmsg_copy_msghdr+0x160/0x160 [ 1203.467534][ T4800] ? __fget_files+0x21b/0x3e0 [ 1203.472204][ T4800] ? lock_downgrade+0x6e0/0x6e0 [ 1203.477057][ T4800] ? __fget_files+0x23d/0x3e0 [ 1203.481730][ T4800] ? __fget_light+0xea/0x280 [ 1203.486317][ T4800] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1203.492553][ T4800] __sys_sendmsg+0xe5/0x1b0 [ 1203.497054][ T4800] ? __sys_sendmsg_sock+0x30/0x30 [ 1203.502082][ T4800] ? syscall_enter_from_user_mode+0x21/0x70 [ 1203.507975][ T4800] do_syscall_64+0x35/0xb0 [ 1203.512389][ T4800] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1203.518275][ T4800] RIP: 0033:0x7f3e684f88d9 [ 1203.522684][ T4800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1203.542293][ T4800] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1203.550705][ T4800] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1203.558674][ T4800] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1203.566899][ T4800] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1203.574865][ T4800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1203.582832][ T4800] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:14 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, 0x0, 0x0, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:14 executing program 5: socket$inet6_tcp(0xa, 0x1, 0x0) pselect6(0x40, &(0x7f0000005680), 0x0, &(0x7f0000008bc0)={0x8}, &(0x7f0000008c00)={0x0, 0x3938700}, 0x0) 10:58:14 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904", 0x17}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1203.800521][ T4803] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1203.836434][ T4803] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1203.844275][ T4803] CPU: 1 PID: 4803 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1203.852960][ T4803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1203.863021][ T4803] Call Trace: [ 1203.866487][ T4803] dump_stack_lvl+0xcd/0x134 [ 1203.871081][ T4803] sysfs_warn_dup.cold+0x1c/0x29 [ 1203.876011][ T4803] sysfs_do_create_link_sd+0x11e/0x140 [ 1203.881478][ T4803] sysfs_create_link+0x5f/0xc0 [ 1203.886238][ T4803] device_add+0x78f/0x21b0 [ 1203.890654][ T4803] ? wait_for_completion_io+0x280/0x280 [ 1203.896188][ T4803] ? lock_downgrade+0x6e0/0x6e0 [ 1203.901028][ T4803] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1203.907265][ T4803] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1203.913497][ T4803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1203.919726][ T4803] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1203.925704][ T4803] wiphy_register+0x1e8a/0x29b0 [ 1203.930551][ T4803] ? wiphy_unregister+0xbe0/0xbe0 [ 1203.935561][ T4803] ? minstrel_ht_alloc+0x531/0xa00 [ 1203.940671][ T4803] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1203.946737][ T4803] ieee80211_register_hw+0x1f18/0x3ed0 [ 1203.952201][ T4803] ? ieee80211_restart_hw+0x290/0x290 [ 1203.957567][ T4803] ? debug_object_destroy+0x210/0x210 [ 1203.962935][ T4803] ? memset+0x20/0x40 [ 1203.966906][ T4803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1203.973136][ T4803] ? __hrtimer_init+0x136/0x280 [ 1203.977978][ T4803] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1203.983702][ T4803] ? hwsim_virtio_rx_work+0x350/0x350 [ 1203.989065][ T4803] ? __kmalloc_track_caller+0x193/0x310 [ 1203.994607][ T4803] ? memcpy+0x39/0x60 [ 1203.998582][ T4803] hwsim_new_radio_nl+0x9bc/0x1080 [ 1204.003686][ T4803] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1204.009576][ T4803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1204.015827][ T4803] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1204.023189][ T4803] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1204.030469][ T4803] genl_family_rcv_msg_doit+0x228/0x320 [ 1204.036008][ T4803] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1204.043368][ T4803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1204.049611][ T4803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1204.055841][ T4803] ? ns_capable+0xd9/0x100 [ 1204.060682][ T4803] genl_rcv_msg+0x328/0x580 [ 1204.065196][ T4803] ? genl_get_cmd+0x480/0x480 [ 1204.069862][ T4803] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1204.075753][ T4803] ? lock_release+0x720/0x720 [ 1204.080418][ T4803] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1204.085699][ T4803] netlink_rcv_skb+0x153/0x420 [ 1204.090453][ T4803] ? genl_get_cmd+0x480/0x480 [ 1204.095120][ T4803] ? netlink_ack+0xa60/0xa60 [ 1204.099703][ T4803] ? netlink_deliver_tap+0x1b1/0xc30 [ 1204.104981][ T4803] genl_rcv+0x24/0x40 [ 1204.108951][ T4803] netlink_unicast+0x533/0x7d0 [ 1204.113708][ T4803] ? netlink_attachskb+0x890/0x890 [ 1204.118811][ T4803] ? __virt_addr_valid+0x5d/0x2d0 [ 1204.123827][ T4803] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1204.130059][ T4803] ? __phys_addr_symbol+0x2c/0x70 [ 1204.135071][ T4803] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1204.140780][ T4803] ? __check_object_size+0x16e/0x3f0 [ 1204.146065][ T4803] netlink_sendmsg+0x86d/0xdb0 [ 1204.150822][ T4803] ? netlink_unicast+0x7d0/0x7d0 [ 1204.155754][ T4803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1204.161987][ T4803] ? netlink_unicast+0x7d0/0x7d0 [ 1204.166910][ T4803] sock_sendmsg+0xcf/0x120 [ 1204.171520][ T4803] ____sys_sendmsg+0x6e8/0x810 [ 1204.176306][ T4803] ? kernel_sendmsg+0x50/0x50 [ 1204.180981][ T4803] ? do_recvmmsg+0x6d0/0x6d0 [ 1204.185571][ T4803] ? lock_chain_count+0x20/0x20 [ 1204.190418][ T4803] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1204.196400][ T4803] ___sys_sendmsg+0xf3/0x170 [ 1204.200990][ T4803] ? sendmsg_copy_msghdr+0x160/0x160 [ 1204.206272][ T4803] ? __fget_files+0x21b/0x3e0 [ 1204.210940][ T4803] ? lock_downgrade+0x6e0/0x6e0 [ 1204.215798][ T4803] ? __fget_files+0x23d/0x3e0 [ 1204.220475][ T4803] ? __fget_light+0xea/0x280 [ 1204.225057][ T4803] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1204.231301][ T4803] __sys_sendmsg+0xe5/0x1b0 [ 1204.235804][ T4803] ? __sys_sendmsg_sock+0x30/0x30 [ 1204.240839][ T4803] ? syscall_enter_from_user_mode+0x21/0x70 [ 1204.246735][ T4803] do_syscall_64+0x35/0xb0 [ 1204.251152][ T4803] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1204.257040][ T4803] RIP: 0033:0x7f3e684f88d9 [ 1204.261450][ T4803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1204.281055][ T4803] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1204.289468][ T4803] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1204.297437][ T4803] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1204.305401][ T4803] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1204.313364][ T4803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1204.321415][ T4803] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:58:15 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000053582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:15 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14, 0x4, 0x1, 0x201}, 0x14}}, 0x0) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x2, 0x7, 0x201}, 0x14}}, 0x0) 10:58:15 executing program 5: r0 = add_key$user(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, &(0x7f0000000280)=')', 0x1, 0xfffffffffffffffc) add_key$user(&(0x7f0000000000), 0x0, 0x0, 0x0, r0) 10:58:15 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904", 0x17}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:15 executing program 0: openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0) [ 1204.488087][ T4836] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1204.605004][ T4836] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1204.646426][ T4836] CPU: 1 PID: 4836 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1204.655318][ T4836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1204.665381][ T4836] Call Trace: [ 1204.668664][ T4836] dump_stack_lvl+0xcd/0x134 [ 1204.673267][ T4836] sysfs_warn_dup.cold+0x1c/0x29 [ 1204.678218][ T4836] sysfs_do_create_link_sd+0x11e/0x140 [ 1204.683703][ T4836] sysfs_create_link+0x5f/0xc0 [ 1204.688486][ T4836] device_add+0x78f/0x21b0 [ 1204.692917][ T4836] ? __sanitizer_cov_trace_switch+0xb8/0xf0 [ 1204.698826][ T4836] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1204.705074][ T4836] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1204.711320][ T4836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1204.717563][ T4836] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1204.723554][ T4836] wiphy_register+0x1e8a/0x29b0 [ 1204.728416][ T4836] ? wiphy_unregister+0xbe0/0xbe0 [ 1204.733443][ T4836] ? minstrel_ht_alloc+0x837/0xa00 [ 1204.738568][ T4836] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1204.744645][ T4836] ieee80211_register_hw+0x1f18/0x3ed0 [ 1204.750124][ T4836] ? ieee80211_restart_hw+0x290/0x290 [ 1204.755506][ T4836] ? debug_object_destroy+0x210/0x210 [ 1204.760893][ T4836] ? memset+0x20/0x40 [ 1204.764881][ T4836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1204.771130][ T4836] ? __hrtimer_init+0x136/0x280 [ 1204.775997][ T4836] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1204.781751][ T4836] ? hwsim_virtio_rx_work+0x350/0x350 [ 1204.787130][ T4836] ? __kmalloc_track_caller+0x193/0x310 [ 1204.792696][ T4836] ? memcpy+0x39/0x60 [ 1204.796686][ T4836] hwsim_new_radio_nl+0x9bc/0x1080 [ 1204.801814][ T4836] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1204.807734][ T4836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1204.813988][ T4836] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1204.821375][ T4836] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1204.828681][ T4836] genl_family_rcv_msg_doit+0x228/0x320 [ 1204.834250][ T4836] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1204.841642][ T4836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1204.847910][ T4836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1204.854167][ T4836] ? ns_capable+0xd9/0x100 [ 1204.858602][ T4836] genl_rcv_msg+0x328/0x580 [ 1204.863120][ T4836] ? genl_get_cmd+0x480/0x480 [ 1204.867804][ T4836] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1204.873708][ T4836] ? lock_release+0x720/0x720 [ 1204.878402][ T4836] netlink_rcv_skb+0x153/0x420 [ 1204.883184][ T4836] ? genl_get_cmd+0x480/0x480 [ 1204.887892][ T4836] ? netlink_ack+0xa60/0xa60 [ 1204.892503][ T4836] ? netlink_deliver_tap+0x1b1/0xc30 [ 1204.897798][ T4836] genl_rcv+0x24/0x40 [ 1204.901780][ T4836] netlink_unicast+0x533/0x7d0 [ 1204.906545][ T4836] ? netlink_attachskb+0x890/0x890 [ 1204.911656][ T4836] ? __virt_addr_valid+0x5d/0x2d0 [ 1204.916681][ T4836] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1204.922922][ T4836] ? __phys_addr_symbol+0x2c/0x70 [ 1204.927945][ T4836] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1204.933659][ T4836] ? __check_object_size+0x16e/0x3f0 [ 1204.938952][ T4836] netlink_sendmsg+0x86d/0xdb0 [ 1204.943719][ T4836] ? netlink_unicast+0x7d0/0x7d0 [ 1204.948653][ T4836] ? tomoyo_socket_sendmsg_permission+0x11d/0x3a0 [ 1204.955073][ T4836] ? security_socket_sendmsg+0x66/0xb0 [ 1204.960532][ T4836] ? security_socket_sendmsg+0x76/0xb0 [ 1204.965993][ T4836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1204.972233][ T4836] ? netlink_unicast+0x7d0/0x7d0 [ 1204.977173][ T4836] sock_sendmsg+0xcf/0x120 [ 1204.981593][ T4836] ____sys_sendmsg+0x6e8/0x810 [ 1204.986362][ T4836] ? kernel_sendmsg+0x50/0x50 [ 1204.991037][ T4836] ? do_recvmmsg+0x6d0/0x6d0 [ 1204.995629][ T4836] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1205.001788][ T4836] ? lockdep_hardirqs_on+0x79/0x100 [ 1205.006985][ T4836] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1205.013151][ T4836] ___sys_sendmsg+0xf3/0x170 [ 1205.017744][ T4836] ? sendmsg_copy_msghdr+0x160/0x160 [ 1205.023037][ T4836] ? __fget_files+0x21b/0x3e0 [ 1205.027714][ T4836] ? lock_downgrade+0x6e0/0x6e0 [ 1205.032572][ T4836] ? irqentry_enter+0x28/0x50 [ 1205.037260][ T4836] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1205.043418][ T4836] ? lockdep_hardirqs_on+0x79/0x100 [ 1205.048617][ T4836] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1205.054777][ T4836] ? sockfd_lookup_light+0x6d/0x180 [ 1205.059982][ T4836] __sys_sendmsg+0xe5/0x1b0 [ 1205.064488][ T4836] ? __sys_sendmsg_sock+0x30/0x30 [ 1205.069516][ T4836] ? lockdep_hardirqs_on+0x79/0x100 [ 1205.074718][ T4836] ? trace_hardirqs_on+0x39/0x1c0 [ 1205.079754][ T4836] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1205.085650][ T4836] do_syscall_64+0x35/0xb0 [ 1205.090070][ T4836] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1205.095963][ T4836] RIP: 0033:0x7f4637cff8d9 [ 1205.100376][ T4836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1205.119979][ T4836] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1205.128390][ T4836] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1205.136528][ T4836] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 10:58:15 executing program 5: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$UI_END_FF_ERASE(r0, 0x400c55cb, &(0x7f0000000040)) 10:58:15 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x40, 0x0, &(0x7f0000001a00)) 10:58:15 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)=@ipv6_newroute={0x30, 0x18, 0x1231, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x1}, [@RTA_ENCAP={0xc, 0x16, 0x0, 0x1, @LWTUNNEL_IP_DST={0x8}}, @RTA_EXPIRES={0x8}]}, 0x30}}, 0x0) [ 1205.144513][ T4836] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1205.152493][ T4836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1205.160472][ T4836] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:58:15 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d", 0x23}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1205.372469][ T4854] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1205.424799][ T4854] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1205.478602][ T4854] CPU: 1 PID: 4854 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1205.487394][ T4854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1205.497448][ T4854] Call Trace: [ 1205.500726][ T4854] dump_stack_lvl+0xcd/0x134 [ 1205.505326][ T4854] sysfs_warn_dup.cold+0x1c/0x29 [ 1205.510269][ T4854] sysfs_do_create_link_sd+0x11e/0x140 [ 1205.515737][ T4854] sysfs_create_link+0x5f/0xc0 [ 1205.520509][ T4854] device_add+0x78f/0x21b0 [ 1205.524929][ T4854] ? wait_for_completion_io+0x280/0x280 [ 1205.530476][ T4854] ? lock_downgrade+0x6e0/0x6e0 [ 1205.535331][ T4854] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1205.541573][ T4854] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1205.547815][ T4854] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1205.554060][ T4854] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1205.560051][ T4854] wiphy_register+0x1e8a/0x29b0 [ 1205.564912][ T4854] ? wiphy_unregister+0xbe0/0xbe0 [ 1205.569935][ T4854] ? minstrel_ht_alloc+0x531/0xa00 [ 1205.575063][ T4854] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1205.581139][ T4854] ieee80211_register_hw+0x1f18/0x3ed0 [ 1205.586622][ T4854] ? ieee80211_restart_hw+0x290/0x290 [ 1205.592007][ T4854] ? debug_object_destroy+0x210/0x210 [ 1205.597393][ T4854] ? memset+0x20/0x40 [ 1205.601381][ T4854] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1205.607626][ T4854] ? __hrtimer_init+0x136/0x280 [ 1205.612486][ T4854] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1205.618229][ T4854] ? hwsim_virtio_rx_work+0x350/0x350 [ 1205.623611][ T4854] ? __kmalloc_track_caller+0x193/0x310 [ 1205.629164][ T4854] ? memcpy+0x39/0x60 [ 1205.633153][ T4854] hwsim_new_radio_nl+0x9bc/0x1080 [ 1205.638269][ T4854] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1205.644178][ T4854] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1205.650421][ T4854] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1205.657798][ T4854] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1205.665094][ T4854] genl_family_rcv_msg_doit+0x228/0x320 [ 1205.670646][ T4854] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1205.678025][ T4854] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1205.684279][ T4854] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1205.690527][ T4854] ? ns_capable+0xd9/0x100 [ 1205.694953][ T4854] genl_rcv_msg+0x328/0x580 [ 1205.699461][ T4854] ? genl_get_cmd+0x480/0x480 [ 1205.704138][ T4854] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1205.710040][ T4854] ? lock_release+0x720/0x720 [ 1205.714723][ T4854] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1205.720538][ T4854] netlink_rcv_skb+0x153/0x420 [ 1205.725313][ T4854] ? genl_get_cmd+0x480/0x480 [ 1205.729993][ T4854] ? netlink_ack+0xa60/0xa60 [ 1205.734592][ T4854] ? netlink_deliver_tap+0x1b1/0xc30 [ 1205.739886][ T4854] genl_rcv+0x24/0x40 [ 1205.743869][ T4854] netlink_unicast+0x533/0x7d0 [ 1205.748639][ T4854] ? netlink_attachskb+0x890/0x890 [ 1205.753750][ T4854] ? __virt_addr_valid+0x5d/0x2d0 [ 1205.758778][ T4854] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1205.765025][ T4854] ? __phys_addr_symbol+0x2c/0x70 [ 1205.770050][ T4854] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1205.775773][ T4854] ? __check_object_size+0x16e/0x3f0 [ 1205.781071][ T4854] netlink_sendmsg+0x86d/0xdb0 [ 1205.785843][ T4854] ? netlink_unicast+0x7d0/0x7d0 [ 1205.790789][ T4854] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1205.797033][ T4854] ? netlink_unicast+0x7d0/0x7d0 [ 1205.801974][ T4854] sock_sendmsg+0xcf/0x120 [ 1205.806397][ T4854] ____sys_sendmsg+0x6e8/0x810 [ 1205.811165][ T4854] ? kernel_sendmsg+0x50/0x50 [ 1205.815844][ T4854] ? do_recvmmsg+0x6d0/0x6d0 [ 1205.820442][ T4854] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1205.826434][ T4854] ___sys_sendmsg+0xf3/0x170 [ 1205.831033][ T4854] ? sendmsg_copy_msghdr+0x160/0x160 [ 1205.836326][ T4854] ? __fget_files+0x21b/0x3e0 [ 1205.841438][ T4854] ? lock_downgrade+0x6e0/0x6e0 [ 1205.846302][ T4854] ? __fget_files+0x23d/0x3e0 [ 1205.850987][ T4854] ? __fget_light+0xea/0x280 [ 1205.855581][ T4854] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1205.861832][ T4854] __sys_sendmsg+0xe5/0x1b0 [ 1205.866343][ T4854] ? __sys_sendmsg_sock+0x30/0x30 [ 1205.871385][ T4854] ? syscall_enter_from_user_mode+0x21/0x70 [ 1205.877289][ T4854] do_syscall_64+0x35/0xb0 [ 1205.881712][ T4854] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1205.887607][ T4854] RIP: 0033:0x7f3e684f88d9 [ 1205.892020][ T4854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1205.911630][ T4854] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1205.920043][ T4854] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 10:58:16 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, 0x0, 0x0, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:16 executing program 5: add_key$user(&(0x7f0000000100), 0x0, 0x0, 0x1a, 0xfffffffffffffffe) 10:58:16 executing program 4: r0 = socket(0xf, 0x3, 0x2) getpeername(r0, 0x0, 0x0) [ 1205.928015][ T4854] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1205.935986][ T4854] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1205.943956][ T4854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1205.951926][ T4854] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:16 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000073582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000380)={@multicast2, @local, @private}, 0xc) 10:58:16 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d", 0x23}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:16 executing program 4: r0 = getpgid(0x0) r1 = getpgid(0x0) r2 = epoll_create(0x8) pipe2(&(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) kcmp$KCMP_EPOLL_TFD(r1, r0, 0x7, r3, &(0x7f0000000040)={r2}) 10:58:16 executing program 5: socket(0x2, 0x0, 0x80000001) [ 1206.094259][ T4884] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1206.179370][ T4884] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1206.240156][ T4884] CPU: 0 PID: 4884 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1206.248952][ T4884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1206.259001][ T4884] Call Trace: [ 1206.262266][ T4884] dump_stack_lvl+0xcd/0x134 [ 1206.266857][ T4884] sysfs_warn_dup.cold+0x1c/0x29 [ 1206.271784][ T4884] sysfs_do_create_link_sd+0x11e/0x140 [ 1206.277240][ T4884] sysfs_create_link+0x5f/0xc0 [ 1206.281998][ T4884] device_add+0x78f/0x21b0 [ 1206.286408][ T4884] ? wait_for_completion_io+0x280/0x280 [ 1206.291941][ T4884] ? minstrel_ht_alloc+0x837/0xa00 [ 1206.297045][ T4884] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1206.303275][ T4884] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1206.309504][ T4884] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1206.315735][ T4884] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1206.321720][ T4884] wiphy_register+0x1e8a/0x29b0 [ 1206.326570][ T4884] ? wiphy_unregister+0xbe0/0xbe0 [ 1206.331584][ T4884] ? minstrel_ht_alloc+0x531/0xa00 [ 1206.336697][ T4884] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1206.342770][ T4884] ieee80211_register_hw+0x1f18/0x3ed0 [ 1206.348232][ T4884] ? ieee80211_restart_hw+0x290/0x290 [ 1206.353598][ T4884] ? debug_object_destroy+0x210/0x210 [ 1206.358992][ T4884] ? memset+0x20/0x40 [ 1206.362965][ T4884] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1206.369194][ T4884] ? __hrtimer_init+0x136/0x280 [ 1206.374055][ T4884] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1206.379777][ T4884] ? hwsim_virtio_rx_work+0x350/0x350 [ 1206.385135][ T4884] ? __kmalloc_track_caller+0x193/0x310 [ 1206.390675][ T4884] ? memcpy+0x39/0x60 [ 1206.394649][ T4884] hwsim_new_radio_nl+0x9bc/0x1080 [ 1206.399776][ T4884] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1206.405668][ T4884] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1206.411899][ T4884] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1206.419258][ T4884] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1206.426538][ T4884] genl_family_rcv_msg_doit+0x228/0x320 [ 1206.432076][ T4884] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1206.439435][ T4884] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1206.445673][ T4884] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1206.451901][ T4884] ? ns_capable+0xd9/0x100 [ 1206.456308][ T4884] genl_rcv_msg+0x328/0x580 [ 1206.460802][ T4884] ? genl_get_cmd+0x480/0x480 [ 1206.465466][ T4884] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1206.471369][ T4884] ? lock_release+0x720/0x720 [ 1206.476043][ T4884] netlink_rcv_skb+0x153/0x420 [ 1206.480799][ T4884] ? genl_get_cmd+0x480/0x480 [ 1206.485466][ T4884] ? netlink_ack+0xa60/0xa60 [ 1206.490050][ T4884] ? netlink_deliver_tap+0x1b1/0xc30 [ 1206.495320][ T4884] ? _copy_from_iter+0x12b/0x1320 [ 1206.500360][ T4884] genl_rcv+0x24/0x40 [ 1206.504329][ T4884] netlink_unicast+0x533/0x7d0 [ 1206.509084][ T4884] ? netlink_attachskb+0x890/0x890 [ 1206.514182][ T4884] ? __virt_addr_valid+0x5d/0x2d0 [ 1206.519194][ T4884] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1206.525426][ T4884] ? __phys_addr_symbol+0x2c/0x70 [ 1206.530440][ T4884] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1206.536145][ T4884] ? __check_object_size+0x16e/0x3f0 [ 1206.541425][ T4884] netlink_sendmsg+0x86d/0xdb0 [ 1206.546180][ T4884] ? netlink_unicast+0x7d0/0x7d0 [ 1206.551109][ T4884] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1206.557341][ T4884] ? netlink_unicast+0x7d0/0x7d0 [ 1206.562267][ T4884] sock_sendmsg+0xcf/0x120 [ 1206.566674][ T4884] ____sys_sendmsg+0x6e8/0x810 [ 1206.571429][ T4884] ? kernel_sendmsg+0x50/0x50 [ 1206.576093][ T4884] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1206.582260][ T4884] ? __import_iovec+0x300/0x580 [ 1206.587107][ T4884] ___sys_sendmsg+0xf3/0x170 [ 1206.591690][ T4884] ? sendmsg_copy_msghdr+0x160/0x160 [ 1206.596969][ T4884] ? __fget_files+0x21b/0x3e0 [ 1206.601633][ T4884] ? lock_downgrade+0x6e0/0x6e0 [ 1206.606473][ T4884] ? __fget_files+0x1f9/0x3e0 [ 1206.611137][ T4884] ? __fget_files+0x203/0x3e0 [ 1206.615805][ T4884] ? __fget_files+0x23d/0x3e0 [ 1206.620472][ T4884] ? __fget_light+0xea/0x280 [ 1206.625048][ T4884] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1206.631282][ T4884] __sys_sendmsg+0xe5/0x1b0 [ 1206.635777][ T4884] ? __sys_sendmsg_sock+0x30/0x30 [ 1206.640803][ T4884] ? syscall_enter_from_user_mode+0x21/0x70 [ 1206.646692][ T4884] do_syscall_64+0x35/0xb0 [ 1206.651105][ T4884] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1206.656990][ T4884] RIP: 0033:0x7f4637cff8d9 [ 1206.661395][ T4884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1206.680987][ T4884] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1206.689389][ T4884] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1206.697522][ T4884] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1206.705480][ T4884] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1206.713438][ T4884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1206.721397][ T4884] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:58:17 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x40, &(0x7f0000001980)={'nat\x00'}, &(0x7f0000001a00)=0x54) 10:58:17 executing program 4: r0 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$clear(0x7, r0) 10:58:17 executing program 0: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGRS485(r0, 0x542e, &(0x7f00000000c0)) 10:58:17 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000000)="545e2949986de85bdf1895d7f954eb36", 0x10) [ 1207.579368][ T4902] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1207.601019][ T4902] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1207.623862][ T4902] CPU: 1 PID: 4902 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1207.632644][ T4902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1207.642698][ T4902] Call Trace: [ 1207.645982][ T4902] dump_stack_lvl+0xcd/0x134 [ 1207.650573][ T4902] sysfs_warn_dup.cold+0x1c/0x29 [ 1207.655503][ T4902] sysfs_do_create_link_sd+0x11e/0x140 [ 1207.660959][ T4902] sysfs_create_link+0x5f/0xc0 [ 1207.665722][ T4902] device_add+0x78f/0x21b0 [ 1207.670143][ T4902] ? wait_for_completion_io+0x280/0x280 [ 1207.675682][ T4902] ? lock_downgrade+0x6e0/0x6e0 [ 1207.680524][ T4902] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1207.686763][ T4902] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1207.693004][ T4902] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1207.699239][ T4902] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1207.705222][ T4902] wiphy_register+0x1e8a/0x29b0 [ 1207.710077][ T4902] ? wiphy_unregister+0xbe0/0xbe0 [ 1207.715089][ T4902] ? minstrel_ht_alloc+0x531/0xa00 [ 1207.720204][ T4902] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1207.726274][ T4902] ieee80211_register_hw+0x1f18/0x3ed0 [ 1207.731746][ T4902] ? ieee80211_restart_hw+0x290/0x290 [ 1207.737117][ T4902] ? debug_object_destroy+0x210/0x210 [ 1207.742490][ T4902] ? memset+0x20/0x40 [ 1207.746461][ T4902] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1207.752695][ T4902] ? __hrtimer_init+0x136/0x280 [ 1207.757545][ T4902] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1207.763278][ T4902] ? hwsim_virtio_rx_work+0x350/0x350 [ 1207.768637][ T4902] ? __kmalloc_track_caller+0x193/0x310 [ 1207.774184][ T4902] ? memcpy+0x39/0x60 [ 1207.778162][ T4902] hwsim_new_radio_nl+0x9bc/0x1080 [ 1207.783269][ T4902] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1207.789162][ T4902] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1207.795396][ T4902] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1207.802760][ T4902] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1207.810041][ T4902] genl_family_rcv_msg_doit+0x228/0x320 [ 1207.815580][ T4902] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1207.822942][ T4902] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1207.829359][ T4902] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1207.835591][ T4902] ? ns_capable+0xd9/0x100 [ 1207.840001][ T4902] genl_rcv_msg+0x328/0x580 [ 1207.844500][ T4902] ? genl_get_cmd+0x480/0x480 [ 1207.849166][ T4902] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1207.855057][ T4902] ? lock_release+0x720/0x720 [ 1207.859724][ T4902] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1207.865014][ T4902] netlink_rcv_skb+0x153/0x420 [ 1207.869775][ T4902] ? genl_get_cmd+0x480/0x480 [ 1207.874446][ T4902] ? netlink_ack+0xa60/0xa60 [ 1207.879034][ T4902] ? netlink_deliver_tap+0x1b1/0xc30 [ 1207.884316][ T4902] genl_rcv+0x24/0x40 [ 1207.888286][ T4902] netlink_unicast+0x533/0x7d0 [ 1207.893048][ T4902] ? netlink_attachskb+0x890/0x890 [ 1207.898146][ T4902] ? __virt_addr_valid+0x5d/0x2d0 [ 1207.903164][ T4902] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1207.909396][ T4902] ? __phys_addr_symbol+0x2c/0x70 [ 1207.914410][ T4902] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1207.920117][ T4902] ? __check_object_size+0x16e/0x3f0 [ 1207.925404][ T4902] netlink_sendmsg+0x86d/0xdb0 [ 1207.930167][ T4902] ? netlink_unicast+0x7d0/0x7d0 [ 1207.935100][ T4902] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1207.941335][ T4902] ? netlink_unicast+0x7d0/0x7d0 [ 1207.946266][ T4902] sock_sendmsg+0xcf/0x120 [ 1207.950679][ T4902] ____sys_sendmsg+0x6e8/0x810 [ 1207.955437][ T4902] ? kernel_sendmsg+0x50/0x50 [ 1207.960103][ T4902] ? do_recvmmsg+0x6d0/0x6d0 [ 1207.964687][ T4902] ? lock_chain_count+0x20/0x20 [ 1207.969529][ T4902] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1207.975510][ T4902] ___sys_sendmsg+0xf3/0x170 [ 1207.980095][ T4902] ? sendmsg_copy_msghdr+0x160/0x160 [ 1207.985379][ T4902] ? __fget_files+0x21b/0x3e0 [ 1207.990045][ T4902] ? lock_downgrade+0x6e0/0x6e0 [ 1207.994900][ T4902] ? __fget_files+0x23d/0x3e0 [ 1207.999574][ T4902] ? __fget_light+0xea/0x280 [ 1208.004156][ T4902] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1208.010391][ T4902] __sys_sendmsg+0xe5/0x1b0 [ 1208.014888][ T4902] ? __sys_sendmsg_sock+0x30/0x30 [ 1208.019919][ T4902] ? syscall_enter_from_user_mode+0x21/0x70 [ 1208.025810][ T4902] do_syscall_64+0x35/0xb0 [ 1208.030223][ T4902] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1208.036110][ T4902] RIP: 0033:0x7f3e684f88d9 [ 1208.040515][ T4902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1208.060109][ T4902] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1208.068511][ T4902] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1208.076471][ T4902] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1208.084430][ T4902] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1208.092389][ T4902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1208.100349][ T4902] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:18 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, 0x0, 0x0, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:18 executing program 5: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x0, {0x0, 0xffffffff, 0x0, 0x0, 0x5}}) 10:58:18 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x9) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000000)=0xf, 0x4) [ 1208.853408][ T4905] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1208.883544][ T4905] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1208.908223][ T4905] CPU: 0 PID: 4905 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1208.917095][ T4905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1208.927149][ T4905] Call Trace: [ 1208.930516][ T4905] dump_stack_lvl+0xcd/0x134 [ 1208.935115][ T4905] sysfs_warn_dup.cold+0x1c/0x29 [ 1208.940061][ T4905] sysfs_do_create_link_sd+0x11e/0x140 [ 1208.945537][ T4905] sysfs_create_link+0x5f/0xc0 [ 1208.950338][ T4905] device_add+0x78f/0x21b0 [ 1208.954768][ T4905] ? wait_for_completion_io+0x280/0x280 [ 1208.960319][ T4905] ? lock_downgrade+0x6e0/0x6e0 [ 1208.965178][ T4905] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1208.971423][ T4905] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1208.977663][ T4905] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1208.983896][ T4905] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1208.989877][ T4905] wiphy_register+0x1e8a/0x29b0 [ 1208.994727][ T4905] ? wiphy_unregister+0xbe0/0xbe0 [ 1208.999741][ T4905] ? minstrel_ht_alloc+0x531/0xa00 [ 1209.004856][ T4905] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1209.010925][ T4905] ieee80211_register_hw+0x1f18/0x3ed0 [ 1209.016392][ T4905] ? ieee80211_restart_hw+0x290/0x290 [ 1209.021764][ T4905] ? debug_object_destroy+0x210/0x210 [ 1209.027134][ T4905] ? memset+0x20/0x40 [ 1209.031108][ T4905] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1209.037446][ T4905] ? __hrtimer_init+0x136/0x280 [ 1209.042289][ T4905] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1209.048013][ T4905] ? hwsim_virtio_rx_work+0x350/0x350 [ 1209.053377][ T4905] ? __kmalloc_track_caller+0x193/0x310 [ 1209.058918][ T4905] ? memcpy+0x39/0x60 [ 1209.062892][ T4905] hwsim_new_radio_nl+0x9bc/0x1080 [ 1209.067996][ T4905] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1209.073892][ T4905] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1209.080122][ T4905] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1209.087486][ T4905] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1209.094766][ T4905] genl_family_rcv_msg_doit+0x228/0x320 [ 1209.100304][ T4905] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1209.107669][ T4905] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1209.113909][ T4905] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1209.120139][ T4905] ? ns_capable+0xd9/0x100 [ 1209.124549][ T4905] genl_rcv_msg+0x328/0x580 [ 1209.129045][ T4905] ? genl_get_cmd+0x480/0x480 [ 1209.133713][ T4905] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1209.139599][ T4905] ? lock_release+0x720/0x720 [ 1209.144267][ T4905] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1209.149547][ T4905] netlink_rcv_skb+0x153/0x420 [ 1209.154304][ T4905] ? genl_get_cmd+0x480/0x480 [ 1209.158972][ T4905] ? netlink_ack+0xa60/0xa60 [ 1209.163582][ T4905] ? netlink_deliver_tap+0x1b1/0xc30 [ 1209.169256][ T4905] genl_rcv+0x24/0x40 [ 1209.173247][ T4905] netlink_unicast+0x533/0x7d0 [ 1209.178017][ T4905] ? netlink_attachskb+0x890/0x890 [ 1209.183121][ T4905] ? __virt_addr_valid+0x5d/0x2d0 [ 1209.188144][ T4905] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1209.194382][ T4905] ? __phys_addr_symbol+0x2c/0x70 [ 1209.199401][ T4905] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1209.205116][ T4905] ? __check_object_size+0x16e/0x3f0 [ 1209.210409][ T4905] netlink_sendmsg+0x86d/0xdb0 [ 1209.215181][ T4905] ? netlink_unicast+0x7d0/0x7d0 [ 1209.220123][ T4905] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1209.226370][ T4905] ? netlink_unicast+0x7d0/0x7d0 [ 1209.231304][ T4905] sock_sendmsg+0xcf/0x120 [ 1209.235719][ T4905] ____sys_sendmsg+0x6e8/0x810 [ 1209.240480][ T4905] ? kernel_sendmsg+0x50/0x50 [ 1209.245148][ T4905] ? do_recvmmsg+0x6d0/0x6d0 [ 1209.249743][ T4905] ? lock_chain_count+0x20/0x20 [ 1209.254596][ T4905] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1209.260585][ T4905] ___sys_sendmsg+0xf3/0x170 [ 1209.265178][ T4905] ? sendmsg_copy_msghdr+0x160/0x160 [ 1209.270470][ T4905] ? __fget_files+0x21b/0x3e0 [ 1209.275143][ T4905] ? lock_downgrade+0x6e0/0x6e0 [ 1209.280005][ T4905] ? __fget_files+0x23d/0x3e0 [ 1209.284689][ T4905] ? __fget_light+0xea/0x280 [ 1209.289275][ T4905] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1209.295523][ T4905] __sys_sendmsg+0xe5/0x1b0 [ 1209.300114][ T4905] ? __sys_sendmsg_sock+0x30/0x30 [ 1209.305148][ T4905] ? syscall_enter_from_user_mode+0x21/0x70 [ 1209.311049][ T4905] do_syscall_64+0x35/0xb0 [ 1209.315470][ T4905] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1209.321363][ T4905] RIP: 0033:0x7f3e684f88d9 [ 1209.325771][ T4905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1209.345380][ T4905] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1209.353797][ T4905] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1209.361766][ T4905] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1209.369737][ T4905] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1209.377705][ T4905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1209.385671][ T4905] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1209.539508][ T4951] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. 10:58:20 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000083582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:20 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000300)={0x18, 0x0, 0x1, 0x201, 0x0, 0x0, {}, [@CTA_TUPLE_ORIG={0x4}]}, 0x18}}, 0x0) 10:58:20 executing program 4: getgroups(0x1, &(0x7f0000000200)=[0x0]) 10:58:20 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) pselect6(0x40, &(0x7f0000005680), 0x0, &(0x7f0000008bc0)={0x8}, &(0x7f0000008c00)={0x0, 0x3938700}, 0x0) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000020703"], 0xb8}}, 0x0) 10:58:20 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d", 0x23}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1209.584644][ T4951] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1209.630883][ T4951] CPU: 1 PID: 4951 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1209.639785][ T4951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1209.649856][ T4951] Call Trace: [ 1209.653146][ T4951] dump_stack_lvl+0xcd/0x134 [ 1209.657761][ T4951] sysfs_warn_dup.cold+0x1c/0x29 [ 1209.662729][ T4951] sysfs_do_create_link_sd+0x11e/0x140 [ 1209.668228][ T4951] sysfs_create_link+0x5f/0xc0 [ 1209.673129][ T4951] device_add+0x78f/0x21b0 [ 1209.677573][ T4951] ? wait_for_completion_io+0x280/0x280 [ 1209.683140][ T4951] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1209.689404][ T4951] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1209.694168][ T4980] netlink: 164 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1209.695664][ T4951] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1209.695701][ T4951] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1209.695741][ T4951] wiphy_register+0x1e8a/0x29b0 [ 1209.719748][ T4980] netlink: 164 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1209.722162][ T4951] ? wiphy_unregister+0xbe0/0xbe0 [ 1209.722194][ T4951] ? minstrel_ht_alloc+0x531/0xa00 [ 1209.722229][ T4951] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1209.747782][ T4951] ieee80211_register_hw+0x1f18/0x3ed0 [ 1209.753279][ T4951] ? ieee80211_restart_hw+0x290/0x290 [ 1209.758682][ T4951] ? debug_object_destroy+0x210/0x210 [ 1209.764094][ T4951] ? memset+0x20/0x40 [ 1209.768096][ T4951] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1209.774360][ T4951] ? __hrtimer_init+0x136/0x280 10:58:20 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, &(0x7f0000000080)) [ 1209.779233][ T4951] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1209.784992][ T4951] ? hwsim_virtio_rx_work+0x350/0x350 [ 1209.790385][ T4951] ? __kmalloc_track_caller+0x193/0x310 [ 1209.795965][ T4951] ? memcpy+0x39/0x60 [ 1209.799974][ T4951] hwsim_new_radio_nl+0x9bc/0x1080 [ 1209.805338][ T4951] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1209.811248][ T4951] ? __nla_validate_parse+0x323/0x2410 [ 1209.816719][ T4951] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1209.822968][ T4951] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1209.830347][ T4951] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1209.837645][ T4951] genl_family_rcv_msg_doit+0x228/0x320 [ 1209.843200][ T4951] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1209.850583][ T4951] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1209.856931][ T4951] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1209.863179][ T4951] ? ns_capable+0xd9/0x100 [ 1209.867606][ T4951] genl_rcv_msg+0x328/0x580 [ 1209.872120][ T4951] ? genl_get_cmd+0x480/0x480 10:58:20 executing program 5: open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) [ 1209.876802][ T4951] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1209.882709][ T4951] ? lock_release+0x720/0x720 [ 1209.887396][ T4951] netlink_rcv_skb+0x153/0x420 [ 1209.892167][ T4951] ? genl_get_cmd+0x480/0x480 [ 1209.896849][ T4951] ? netlink_ack+0xa60/0xa60 [ 1209.901449][ T4951] ? netlink_deliver_tap+0x1b1/0xc30 [ 1209.906738][ T4951] ? _copy_from_iter+0x12b/0x1320 [ 1209.911774][ T4951] genl_rcv+0x24/0x40 [ 1209.915761][ T4951] netlink_unicast+0x533/0x7d0 [ 1209.920531][ T4951] ? netlink_attachskb+0x890/0x890 [ 1209.925652][ T4951] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 10:58:20 executing program 5: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='sysfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000080), &(0x7f00000003c0)='./file0\x00', 0x0, 0x865410, 0x0) [ 1209.931903][ T4951] ? __phys_addr_symbol+0x2c/0x70 [ 1209.936935][ T4951] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1209.942658][ T4951] ? __check_object_size+0x16e/0x3f0 [ 1209.947956][ T4951] netlink_sendmsg+0x86d/0xdb0 [ 1209.952729][ T4951] ? netlink_unicast+0x7d0/0x7d0 [ 1209.957680][ T4951] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1209.963928][ T4951] ? netlink_unicast+0x7d0/0x7d0 [ 1209.968870][ T4951] sock_sendmsg+0xcf/0x120 [ 1209.973294][ T4951] ____sys_sendmsg+0x6e8/0x810 [ 1209.978065][ T4951] ? kernel_sendmsg+0x50/0x50 [ 1209.982748][ T4951] ? do_recvmmsg+0x6d0/0x6d0 [ 1209.987354][ T4951] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1209.993342][ T4951] ? __fget_light+0x89/0x280 [ 1209.997945][ T4951] ___sys_sendmsg+0xf3/0x170 [ 1210.002545][ T4951] ? sendmsg_copy_msghdr+0x160/0x160 [ 1210.007842][ T4951] ? __fget_files+0x21b/0x3e0 [ 1210.012522][ T4951] ? lock_downgrade+0x6e0/0x6e0 [ 1210.017389][ T4951] ? __fget_files+0x23d/0x3e0 [ 1210.022079][ T4951] ? __fget_light+0xea/0x280 [ 1210.026675][ T4951] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1210.032929][ T4951] __sys_sendmsg+0xe5/0x1b0 [ 1210.037441][ T4951] ? __sys_sendmsg_sock+0x30/0x30 [ 1210.042472][ T4951] ? lockdep_hardirqs_on+0x79/0x100 [ 1210.047682][ T4951] ? trace_hardirqs_on+0x39/0x1c0 [ 1210.052719][ T4951] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1210.058620][ T4951] do_syscall_64+0x35/0xb0 [ 1210.063051][ T4951] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1210.068952][ T4951] RIP: 0033:0x7f4637cff8d9 [ 1210.073366][ T4951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.092967][ T4951] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1210.101368][ T4951] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1210.109329][ T4951] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1210.117285][ T4951] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1210.125247][ T4951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 10:58:20 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_int(r0, 0x0, 0x22, 0x0, &(0x7f0000000000)) [ 1210.133211][ T4951] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1210.516607][ T4978] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1210.544021][ T4978] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1210.595708][ T4978] CPU: 1 PID: 4978 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1210.604483][ T4978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1210.614535][ T4978] Call Trace: [ 1210.617809][ T4978] dump_stack_lvl+0xcd/0x134 [ 1210.622405][ T4978] sysfs_warn_dup.cold+0x1c/0x29 [ 1210.627344][ T4978] sysfs_do_create_link_sd+0x11e/0x140 [ 1210.632816][ T4978] sysfs_create_link+0x5f/0xc0 [ 1210.637590][ T4978] device_add+0x78f/0x21b0 10:58:21 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}], 0x1, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:21 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [], {0x14}}, 0x28}}, 0x0) 10:58:21 executing program 5: socket(0xa, 0x0, 0x80000000) [ 1210.642019][ T4978] ? wait_for_completion_io+0x280/0x280 [ 1210.647568][ T4978] ? lock_downgrade+0x6e0/0x6e0 [ 1210.652420][ T4978] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1210.658662][ T4978] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1210.664908][ T4978] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1210.671152][ T4978] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1210.677145][ T4978] wiphy_register+0x1e8a/0x29b0 [ 1210.682010][ T4978] ? wiphy_unregister+0xbe0/0xbe0 [ 1210.687037][ T4978] ? minstrel_ht_alloc+0x531/0xa00 [ 1210.692165][ T4978] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1210.698254][ T4978] ieee80211_register_hw+0x1f18/0x3ed0 [ 1210.703737][ T4978] ? ieee80211_restart_hw+0x290/0x290 [ 1210.709120][ T4978] ? debug_object_destroy+0x210/0x210 [ 1210.714505][ T4978] ? memset+0x20/0x40 [ 1210.718488][ T4978] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1210.724732][ T4978] ? __hrtimer_init+0x136/0x280 [ 1210.729590][ T4978] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1210.735330][ T4978] ? hwsim_virtio_rx_work+0x350/0x350 [ 1210.740705][ T4978] ? __kmalloc_track_caller+0x193/0x310 [ 1210.746265][ T4978] ? memcpy+0x39/0x60 [ 1210.750259][ T4978] hwsim_new_radio_nl+0x9bc/0x1080 [ 1210.755379][ T4978] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1210.761286][ T4978] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1210.767544][ T4978] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1210.774943][ T4978] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1210.782264][ T4978] genl_family_rcv_msg_doit+0x228/0x320 [ 1210.787839][ T4978] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1210.795229][ T4978] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1210.801500][ T4978] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1210.807765][ T4978] ? ns_capable+0xd9/0x100 [ 1210.812201][ T4978] genl_rcv_msg+0x328/0x580 [ 1210.816721][ T4978] ? genl_get_cmd+0x480/0x480 [ 1210.821415][ T4978] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1210.827327][ T4978] ? lock_release+0x720/0x720 [ 1210.832013][ T4978] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1210.837318][ T4978] netlink_rcv_skb+0x153/0x420 [ 1210.842097][ T4978] ? genl_get_cmd+0x480/0x480 [ 1210.846789][ T4978] ? netlink_ack+0xa60/0xa60 [ 1210.851398][ T4978] ? netlink_deliver_tap+0x1b1/0xc30 [ 1210.856701][ T4978] genl_rcv+0x24/0x40 [ 1210.860702][ T4978] netlink_unicast+0x533/0x7d0 [ 1210.865494][ T4978] ? netlink_attachskb+0x890/0x890 [ 1210.870615][ T4978] ? __virt_addr_valid+0x5d/0x2d0 [ 1210.875657][ T4978] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1210.881917][ T4978] ? __phys_addr_symbol+0x2c/0x70 [ 1210.886960][ T4978] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1210.892702][ T4978] ? __check_object_size+0x16e/0x3f0 [ 1210.898027][ T4978] netlink_sendmsg+0x86d/0xdb0 [ 1210.902825][ T4978] ? netlink_unicast+0x7d0/0x7d0 [ 1210.907792][ T4978] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1210.914048][ T4978] ? netlink_unicast+0x7d0/0x7d0 [ 1210.918989][ T4978] sock_sendmsg+0xcf/0x120 [ 1210.923410][ T4978] ____sys_sendmsg+0x6e8/0x810 [ 1210.928184][ T4978] ? kernel_sendmsg+0x50/0x50 [ 1210.932868][ T4978] ? do_recvmmsg+0x6d0/0x6d0 [ 1210.937472][ T4978] ? lock_chain_count+0x20/0x20 [ 1210.942329][ T4978] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1210.948326][ T4978] ___sys_sendmsg+0xf3/0x170 [ 1210.952922][ T4978] ? sendmsg_copy_msghdr+0x160/0x160 [ 1210.958213][ T4978] ? __fget_files+0x21b/0x3e0 [ 1210.963005][ T4978] ? lock_downgrade+0x6e0/0x6e0 [ 1210.967956][ T4978] ? __fget_files+0x23d/0x3e0 [ 1210.972640][ T4978] ? __fget_light+0xea/0x280 [ 1210.977232][ T4978] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1210.983484][ T4978] __sys_sendmsg+0xe5/0x1b0 [ 1210.987995][ T4978] ? __sys_sendmsg_sock+0x30/0x30 [ 1210.993041][ T4978] ? syscall_enter_from_user_mode+0x21/0x70 [ 1210.998946][ T4978] do_syscall_64+0x35/0xb0 [ 1211.003372][ T4978] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1211.009271][ T4978] RIP: 0033:0x7f3e684f88d9 [ 1211.013861][ T4978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1211.033643][ T4978] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1211.042060][ T4978] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1211.050032][ T4978] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1211.058002][ T4978] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1211.065972][ T4978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1211.073944][ T4978] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1211.268528][ T4981] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1211.292733][ T4981] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1211.326747][ T4981] CPU: 0 PID: 4981 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1211.335534][ T4981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1211.345590][ T4981] Call Trace: [ 1211.348867][ T4981] dump_stack_lvl+0xcd/0x134 [ 1211.353465][ T4981] sysfs_warn_dup.cold+0x1c/0x29 [ 1211.358409][ T4981] sysfs_do_create_link_sd+0x11e/0x140 [ 1211.363885][ T4981] sysfs_create_link+0x5f/0xc0 [ 1211.368658][ T4981] device_add+0x78f/0x21b0 [ 1211.373084][ T4981] ? wait_for_completion_io+0x280/0x280 [ 1211.378639][ T4981] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1211.384884][ T4981] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1211.391132][ T4981] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1211.397376][ T4981] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1211.403371][ T4981] wiphy_register+0x1e8a/0x29b0 [ 1211.408232][ T4981] ? wiphy_unregister+0xbe0/0xbe0 [ 1211.413267][ T4981] ? minstrel_ht_alloc+0x531/0xa00 [ 1211.418390][ T4981] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1211.424459][ T4981] ieee80211_register_hw+0x1f18/0x3ed0 [ 1211.429922][ T4981] ? ieee80211_restart_hw+0x290/0x290 [ 1211.435292][ T4981] ? debug_object_destroy+0x210/0x210 [ 1211.440659][ T4981] ? memset+0x20/0x40 [ 1211.444627][ T4981] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1211.450857][ T4981] ? __hrtimer_init+0x136/0x280 [ 1211.455700][ T4981] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1211.461426][ T4981] ? hwsim_virtio_rx_work+0x350/0x350 [ 1211.466785][ T4981] ? __kmalloc_track_caller+0x193/0x310 [ 1211.472328][ T4981] ? memcpy+0x39/0x60 [ 1211.476299][ T4981] hwsim_new_radio_nl+0x9bc/0x1080 [ 1211.481406][ T4981] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1211.487298][ T4981] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1211.493527][ T4981] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1211.500887][ T4981] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1211.508164][ T4981] genl_family_rcv_msg_doit+0x228/0x320 [ 1211.513705][ T4981] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1211.521065][ T4981] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1211.527305][ T4981] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1211.533532][ T4981] ? ns_capable+0xd9/0x100 [ 1211.537943][ T4981] genl_rcv_msg+0x328/0x580 [ 1211.542437][ T4981] ? genl_get_cmd+0x480/0x480 [ 1211.547102][ T4981] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1211.552988][ T4981] ? lock_release+0x720/0x720 [ 1211.557651][ T4981] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1211.562929][ T4981] netlink_rcv_skb+0x153/0x420 [ 1211.567681][ T4981] ? genl_get_cmd+0x480/0x480 [ 1211.572346][ T4981] ? netlink_ack+0xa60/0xa60 [ 1211.576928][ T4981] ? netlink_deliver_tap+0x1b1/0xc30 [ 1211.582206][ T4981] genl_rcv+0x24/0x40 [ 1211.586176][ T4981] netlink_unicast+0x533/0x7d0 [ 1211.590932][ T4981] ? netlink_attachskb+0x890/0x890 [ 1211.596032][ T4981] ? __virt_addr_valid+0x5d/0x2d0 [ 1211.601045][ T4981] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1211.607276][ T4981] ? __phys_addr_symbol+0x2c/0x70 [ 1211.612290][ T4981] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1211.617999][ T4981] ? __check_object_size+0x16e/0x3f0 [ 1211.623279][ T4981] netlink_sendmsg+0x86d/0xdb0 [ 1211.628039][ T4981] ? netlink_unicast+0x7d0/0x7d0 [ 1211.632970][ T4981] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1211.639203][ T4981] ? netlink_unicast+0x7d0/0x7d0 [ 1211.644135][ T4981] sock_sendmsg+0xcf/0x120 [ 1211.648541][ T4981] ____sys_sendmsg+0x6e8/0x810 [ 1211.653299][ T4981] ? kernel_sendmsg+0x50/0x50 [ 1211.657961][ T4981] ? do_recvmmsg+0x6d0/0x6d0 [ 1211.662544][ T4981] ? lock_chain_count+0x20/0x20 [ 1211.667382][ T4981] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1211.673361][ T4981] ___sys_sendmsg+0xf3/0x170 [ 1211.677946][ T4981] ? sendmsg_copy_msghdr+0x160/0x160 [ 1211.683225][ T4981] ? __fget_files+0x21b/0x3e0 [ 1211.687894][ T4981] ? lock_downgrade+0x6e0/0x6e0 [ 1211.692749][ T4981] ? __fget_files+0x23d/0x3e0 [ 1211.697420][ T4981] ? __fget_light+0xea/0x280 [ 1211.701996][ T4981] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1211.708229][ T4981] __sys_sendmsg+0xe5/0x1b0 [ 1211.712729][ T4981] ? __sys_sendmsg_sock+0x30/0x30 [ 1211.717759][ T4981] ? syscall_enter_from_user_mode+0x21/0x70 [ 1211.723646][ T4981] do_syscall_64+0x35/0xb0 [ 1211.728053][ T4981] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1211.733939][ T4981] RIP: 0033:0x7f3e684f88d9 [ 1211.738337][ T4981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1211.757932][ T4981] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1211.766332][ T4981] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1211.774290][ T4981] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1211.782251][ T4981] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1211.790206][ T4981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1211.798169][ T4981] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1211.858827][ T5010] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. 10:58:22 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000353582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:22 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)) 10:58:22 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e", 0x29}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:22 executing program 5: add_key$keyring(&(0x7f0000000240), 0x0, 0x0, 0x0, 0xffffffffffffffff) request_key(&(0x7f00000000c0)='encrypted\x00', &(0x7f0000000100)={'syz', 0x3}, 0x0, 0xfffffffffffffffe) 10:58:22 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) recvmmsg(r0, 0x0, 0x0, 0x0, &(0x7f0000002bc0)={0x0, 0x989680}) [ 1211.904520][ T5010] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1211.963285][ T5010] CPU: 0 PID: 5010 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1211.972083][ T5010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1211.982137][ T5010] Call Trace: [ 1211.985414][ T5010] dump_stack_lvl+0xcd/0x134 [ 1211.990014][ T5010] sysfs_warn_dup.cold+0x1c/0x29 [ 1211.994958][ T5010] sysfs_do_create_link_sd+0x11e/0x140 [ 1212.000432][ T5010] sysfs_create_link+0x5f/0xc0 [ 1212.005208][ T5010] device_add+0x78f/0x21b0 10:58:22 executing program 0: request_key(&(0x7f00000000c0)='id_legacy\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000140)='\x00', 0x0) [ 1212.009637][ T5010] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1212.015805][ T5010] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1212.022056][ T5010] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1212.028303][ T5010] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1212.034548][ T5010] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1212.040541][ T5010] wiphy_register+0x1e8a/0x29b0 [ 1212.045403][ T5010] ? wiphy_unregister+0xbe0/0xbe0 [ 1212.050431][ T5010] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1212.056600][ T5010] ? ieee80211_register_hw+0x1edf/0x3ed0 [ 1212.062233][ T5010] ? ieee80211_register_hw+0x1eee/0x3ed0 [ 1212.067866][ T5010] ieee80211_register_hw+0x1f18/0x3ed0 [ 1212.073338][ T5010] ? ieee80211_restart_hw+0x290/0x290 [ 1212.078710][ T5010] ? debug_object_destroy+0x210/0x210 [ 1212.084078][ T5010] ? memset+0x20/0x40 [ 1212.088081][ T5010] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1212.094331][ T5010] ? __hrtimer_init+0x136/0x280 [ 1212.099172][ T5010] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1212.104895][ T5010] ? hwsim_virtio_rx_work+0x350/0x350 [ 1212.110255][ T5010] ? __kmalloc_track_caller+0x193/0x310 [ 1212.115795][ T5010] ? memcpy+0x39/0x60 [ 1212.119767][ T5010] hwsim_new_radio_nl+0x9bc/0x1080 [ 1212.124869][ T5010] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1212.130763][ T5010] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1212.136994][ T5010] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1212.144354][ T5010] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1212.151630][ T5010] genl_family_rcv_msg_doit+0x228/0x320 [ 1212.157166][ T5010] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1212.164526][ T5010] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1212.170762][ T5010] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1212.177420][ T5010] ? ns_capable+0xd9/0x100 [ 1212.181839][ T5010] genl_rcv_msg+0x328/0x580 [ 1212.186334][ T5010] ? genl_get_cmd+0x480/0x480 [ 1212.191004][ T5010] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1212.196890][ T5010] ? lock_release+0x720/0x720 [ 1212.201577][ T5010] netlink_rcv_skb+0x153/0x420 [ 1212.206333][ T5010] ? genl_get_cmd+0x480/0x480 [ 1212.211002][ T5010] ? netlink_ack+0xa60/0xa60 [ 1212.215587][ T5010] ? netlink_deliver_tap+0x1b1/0xc30 [ 1212.220862][ T5010] ? _copy_from_iter+0x12b/0x1320 [ 1212.225880][ T5010] genl_rcv+0x24/0x40 [ 1212.229852][ T5010] netlink_unicast+0x533/0x7d0 [ 1212.234609][ T5010] ? netlink_attachskb+0x890/0x890 [ 1212.239704][ T5010] ? __virt_addr_valid+0x5d/0x2d0 [ 1212.244722][ T5010] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1212.250955][ T5010] ? __phys_addr_symbol+0x2c/0x70 [ 1212.255972][ T5010] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1212.261680][ T5010] ? __check_object_size+0x16e/0x3f0 [ 1212.266959][ T5010] netlink_sendmsg+0x86d/0xdb0 [ 1212.271715][ T5010] ? netlink_unicast+0x7d0/0x7d0 [ 1212.276644][ T5010] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1212.282876][ T5010] ? netlink_unicast+0x7d0/0x7d0 [ 1212.287802][ T5010] sock_sendmsg+0xcf/0x120 [ 1212.292210][ T5010] ____sys_sendmsg+0x6e8/0x810 [ 1212.296970][ T5010] ? kernel_sendmsg+0x50/0x50 [ 1212.301633][ T5010] ? do_recvmmsg+0x6d0/0x6d0 [ 1212.306212][ T5010] ? lockdep_hardirqs_on+0x79/0x100 [ 1212.311413][ T5010] ___sys_sendmsg+0xf3/0x170 [ 1212.315998][ T5010] ? sendmsg_copy_msghdr+0x160/0x160 [ 1212.321277][ T5010] ? __fget_files+0x21b/0x3e0 [ 1212.326049][ T5010] ? lock_downgrade+0x6e0/0x6e0 [ 1212.330902][ T5010] ? __fget_files+0x23d/0x3e0 [ 1212.335570][ T5010] ? __fget_light+0xea/0x280 [ 1212.340239][ T5010] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1212.346474][ T5010] __sys_sendmsg+0xe5/0x1b0 [ 1212.350968][ T5010] ? __sys_sendmsg_sock+0x30/0x30 [ 1212.355981][ T5010] ? lockdep_hardirqs_on+0x79/0x100 [ 1212.361171][ T5010] ? trace_hardirqs_on+0x39/0x1c0 [ 1212.366189][ T5010] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1212.372077][ T5010] do_syscall_64+0x35/0xb0 [ 1212.376484][ T5010] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1212.382368][ T5010] RIP: 0033:0x7f4637cff8d9 [ 1212.386770][ T5010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1212.406368][ T5010] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1212.414772][ T5010] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1212.422735][ T5010] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1212.430699][ T5010] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1212.438656][ T5010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1212.446615][ T5010] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:58:23 executing program 4: syz_open_procfs(0x0, &(0x7f0000000280)='comm\x00') 10:58:23 executing program 5: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc) r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) r2 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, r0) keyctl$link(0x8, r1, r2) 10:58:23 executing program 0: ioctl$INCFS_IOC_CREATE_FILE(0xffffffffffffffff, 0xc058671e, &(0x7f00000003c0)={{}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x158}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) [ 1212.659588][ T5044] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1212.715007][ T5044] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1212.763191][ T5044] CPU: 0 PID: 5044 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1212.772012][ T5044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1212.782082][ T5044] Call Trace: [ 1212.785372][ T5044] dump_stack_lvl+0xcd/0x134 [ 1212.789978][ T5044] sysfs_warn_dup.cold+0x1c/0x29 [ 1212.794929][ T5044] sysfs_do_create_link_sd+0x11e/0x140 [ 1212.800413][ T5044] sysfs_create_link+0x5f/0xc0 [ 1212.805196][ T5044] device_add+0x78f/0x21b0 [ 1212.809637][ T5044] ? wait_for_completion_io+0x280/0x280 [ 1212.815198][ T5044] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1212.821470][ T5044] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1212.827734][ T5044] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1212.833997][ T5044] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1212.839996][ T5044] wiphy_register+0x1e8a/0x29b0 [ 1212.844855][ T5044] ? wiphy_unregister+0xbe0/0xbe0 [ 1212.849877][ T5044] ? minstrel_ht_alloc+0x531/0xa00 [ 1212.854992][ T5044] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1212.861066][ T5044] ieee80211_register_hw+0x1f18/0x3ed0 [ 1212.866538][ T5044] ? ieee80211_restart_hw+0x290/0x290 [ 1212.871909][ T5044] ? debug_object_destroy+0x210/0x210 [ 1212.877286][ T5044] ? memset+0x20/0x40 [ 1212.881267][ T5044] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1212.887507][ T5044] ? __hrtimer_init+0x136/0x280 [ 1212.892354][ T5044] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1212.898084][ T5044] ? hwsim_virtio_rx_work+0x350/0x350 [ 1212.903454][ T5044] ? __kmalloc_track_caller+0x193/0x310 [ 1212.908999][ T5044] ? memcpy+0x39/0x60 [ 1212.912978][ T5044] hwsim_new_radio_nl+0x9bc/0x1080 [ 1212.918087][ T5044] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1212.923985][ T5044] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1212.930224][ T5044] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1212.937596][ T5044] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1212.944887][ T5044] genl_family_rcv_msg_doit+0x228/0x320 [ 1212.950435][ T5044] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1212.957806][ T5044] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1212.964051][ T5044] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1212.970288][ T5044] ? ns_capable+0xd9/0x100 [ 1212.974707][ T5044] genl_rcv_msg+0x328/0x580 [ 1212.979208][ T5044] ? genl_get_cmd+0x480/0x480 [ 1212.983886][ T5044] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1212.989777][ T5044] ? lock_release+0x720/0x720 [ 1212.994449][ T5044] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1212.999735][ T5044] netlink_rcv_skb+0x153/0x420 [ 1213.004495][ T5044] ? genl_get_cmd+0x480/0x480 [ 1213.009171][ T5044] ? netlink_ack+0xa60/0xa60 [ 1213.013762][ T5044] ? netlink_deliver_tap+0x1b1/0xc30 [ 1213.019044][ T5044] genl_rcv+0x24/0x40 [ 1213.023020][ T5044] netlink_unicast+0x533/0x7d0 [ 1213.027782][ T5044] ? netlink_attachskb+0x890/0x890 [ 1213.032882][ T5044] ? __virt_addr_valid+0x5d/0x2d0 [ 1213.037899][ T5044] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1213.044134][ T5044] ? __phys_addr_symbol+0x2c/0x70 [ 1213.049152][ T5044] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1213.054867][ T5044] ? __check_object_size+0x16e/0x3f0 [ 1213.060154][ T5044] netlink_sendmsg+0x86d/0xdb0 [ 1213.065096][ T5044] ? netlink_unicast+0x7d0/0x7d0 [ 1213.070038][ T5044] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1213.076370][ T5044] ? netlink_unicast+0x7d0/0x7d0 [ 1213.081303][ T5044] sock_sendmsg+0xcf/0x120 [ 1213.085715][ T5044] ____sys_sendmsg+0x6e8/0x810 [ 1213.090474][ T5044] ? kernel_sendmsg+0x50/0x50 [ 1213.095143][ T5044] ? do_recvmmsg+0x6d0/0x6d0 [ 1213.099727][ T5044] ? lock_chain_count+0x20/0x20 [ 1213.104662][ T5044] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1213.110646][ T5044] ___sys_sendmsg+0xf3/0x170 [ 1213.115244][ T5044] ? sendmsg_copy_msghdr+0x160/0x160 [ 1213.120532][ T5044] ? __fget_files+0x21b/0x3e0 [ 1213.125200][ T5044] ? lock_downgrade+0x6e0/0x6e0 [ 1213.130057][ T5044] ? __fget_files+0x23d/0x3e0 [ 1213.134730][ T5044] ? __fget_light+0xea/0x280 [ 1213.139318][ T5044] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1213.145559][ T5044] __sys_sendmsg+0xe5/0x1b0 [ 1213.150059][ T5044] ? __sys_sendmsg_sock+0x30/0x30 [ 1213.155088][ T5044] ? syscall_enter_from_user_mode+0x21/0x70 [ 1213.160985][ T5044] do_syscall_64+0x35/0xb0 [ 1213.165406][ T5044] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1213.171298][ T5044] RIP: 0033:0x7f3e684f88d9 [ 1213.175705][ T5044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1213.195564][ T5044] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1213.204851][ T5044] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 10:58:23 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}], 0x1, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:23 executing program 4: r0 = memfd_create(&(0x7f0000000040)=':.\x00\xac/\x16\x10\x1793*\x05^\xc7\xb0\xd7\x84\r\xc1\xbc\xf5\x13\x17\x17\x00\x00\x00\x00\x00\x00\x00?=\xee\x9a\xe2\xb2\xe2#e\x18\xa9*\xcd\a\x97Z\x16\x80\x94\x1a\a>M\xe7\xaby\xdd\xfaMir\xd3\x03\x00\x00\x00\x00\x00\x00\x00:\x0fa{\r5\xa9\x1f\x0e\x93\x0e\xde\x80\xe8e\xb6\xe8\a\'\x15\xe0A\\1\xa3\x12\f\x00\x00\x00\x00\x00\x00\xa4\t\x97\x93X\xb8\x19}\xdd\x9e\xe9\xfd\xde\xa5\xa3\xa3@o\n\'\xf36p\xcf\xda\xf7\a\xa4\xc6JW\b+\xf6*\xfa\x95\x9bB\x7f\xec\x11f9<\x85 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1213.886941][ T5046] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1213.895358][ T5046] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1213.903329][ T5046] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1213.911303][ T5046] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1213.919275][ T5046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1213.927246][ T5046] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1213.958801][ T5075] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. 10:58:24 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000010282c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:24 executing program 0: socketpair(0x10, 0x3, 0x0, 0x0) 10:58:24 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000f40)=@nat={'nat\x00', 0x1b, 0x5, 0x338, 0xa8, 0xa8, 0xffffffff, 0x0, 0x0, 0x360, 0x360, 0xffffffff, 0x360, 0x360, 0x5, 0x0, {[{{@uncond, 0x0, 0x70, 0xa8}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @dev, @private}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x0, @multicast2, @rand_addr, @port, @gre_key}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x0, @empty, @private, @gre_key, @gre_key}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x0, @multicast1, @loopback, @port, @gre_key}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x398) 10:58:24 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e", 0x29}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:24 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="340000000906010200000000000000200000000005000100060000000c00078008000940000100000900020073797a30"], 0x34}}, 0x0) [ 1214.008894][ T5075] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1214.044456][ T5075] CPU: 0 PID: 5075 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1214.053349][ T5075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1214.063411][ T5075] Call Trace: [ 1214.066691][ T5075] dump_stack_lvl+0xcd/0x134 [ 1214.071302][ T5075] sysfs_warn_dup.cold+0x1c/0x29 [ 1214.076245][ T5075] sysfs_do_create_link_sd+0x11e/0x140 [ 1214.081721][ T5075] sysfs_create_link+0x5f/0xc0 [ 1214.086504][ T5075] device_add+0x78f/0x21b0 [ 1214.090929][ T5075] ? wait_for_completion_io+0x280/0x280 [ 1214.096492][ T5075] ? mark_held_locks+0x9f/0xe0 [ 1214.101274][ T5075] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1214.107537][ T5075] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1214.113804][ T5075] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1214.120068][ T5075] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1214.126076][ T5075] wiphy_register+0x1e8a/0x29b0 [ 1214.130956][ T5075] ? wiphy_unregister+0xbe0/0xbe0 [ 1214.136001][ T5075] ? minstrel_ht_alloc+0x837/0xa00 [ 1214.141146][ T5075] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1214.147250][ T5075] ieee80211_register_hw+0x1f18/0x3ed0 [ 1214.152755][ T5075] ? ieee80211_restart_hw+0x290/0x290 [ 1214.158159][ T5075] ? debug_object_destroy+0x210/0x210 [ 1214.163558][ T5075] ? memset+0x20/0x40 [ 1214.167554][ T5075] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1214.173811][ T5075] ? __hrtimer_init+0x136/0x280 [ 1214.178682][ T5075] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1214.184430][ T5075] ? hwsim_virtio_rx_work+0x350/0x350 [ 1214.189811][ T5075] ? __kmalloc_track_caller+0x193/0x310 [ 1214.195375][ T5075] ? memcpy+0x39/0x60 [ 1214.199374][ T5075] hwsim_new_radio_nl+0x9bc/0x1080 [ 1214.204502][ T5075] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1214.210418][ T5075] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1214.216670][ T5075] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1214.224061][ T5075] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1214.231368][ T5075] genl_family_rcv_msg_doit+0x228/0x320 [ 1214.236932][ T5075] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1214.244321][ T5075] ? lockdep_hardirqs_on+0x79/0x100 [ 1214.249534][ T5075] ? genl_rcv_msg+0x2f9/0x580 [ 1214.254229][ T5075] genl_rcv_msg+0x328/0x580 [ 1214.258750][ T5075] ? genl_get_cmd+0x480/0x480 [ 1214.263440][ T5075] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1214.269352][ T5075] ? lock_release+0x720/0x720 [ 1214.274045][ T5075] netlink_rcv_skb+0x153/0x420 [ 1214.278822][ T5075] ? genl_get_cmd+0x480/0x480 [ 1214.283511][ T5075] ? netlink_ack+0xa60/0xa60 [ 1214.288122][ T5075] ? netlink_deliver_tap+0x1b1/0xc30 [ 1214.293418][ T5075] ? _copy_from_iter+0x12b/0x1320 [ 1214.298460][ T5075] genl_rcv+0x24/0x40 [ 1214.302453][ T5075] netlink_unicast+0x533/0x7d0 [ 1214.307227][ T5075] ? netlink_attachskb+0x890/0x890 [ 1214.312342][ T5075] ? __virt_addr_valid+0x5d/0x2d0 [ 1214.317377][ T5075] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1214.323631][ T5075] ? __phys_addr_symbol+0x2c/0x70 [ 1214.328667][ T5075] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1214.334400][ T5075] ? __check_object_size+0x16e/0x3f0 [ 1214.339703][ T5075] netlink_sendmsg+0x86d/0xdb0 [ 1214.344489][ T5075] ? netlink_unicast+0x7d0/0x7d0 [ 1214.349441][ T5075] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1214.355695][ T5075] ? netlink_unicast+0x7d0/0x7d0 [ 1214.360654][ T5075] sock_sendmsg+0xcf/0x120 [ 1214.365090][ T5075] ____sys_sendmsg+0x6e8/0x810 [ 1214.369874][ T5075] ? kernel_sendmsg+0x50/0x50 [ 1214.374569][ T5075] ? do_recvmmsg+0x6d0/0x6d0 [ 1214.379182][ T5075] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1214.385177][ T5075] ? lock_chain_count+0x20/0x20 [ 1214.390048][ T5075] ___sys_sendmsg+0xf3/0x170 [ 1214.394655][ T5075] ? sendmsg_copy_msghdr+0x160/0x160 [ 1214.399960][ T5075] ? __fget_files+0x21b/0x3e0 [ 1214.404650][ T5075] ? lock_downgrade+0x6e0/0x6e0 [ 1214.409519][ T5075] ? __fget_files+0x1a8/0x3e0 [ 1214.414219][ T5075] ? __fget_files+0x23d/0x3e0 [ 1214.418913][ T5075] ? __fget_light+0xea/0x280 [ 1214.423515][ T5075] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1214.429776][ T5075] __sys_sendmsg+0xe5/0x1b0 [ 1214.434295][ T5075] ? __sys_sendmsg_sock+0x30/0x30 [ 1214.439330][ T5075] ? lockdep_hardirqs_on+0x79/0x100 [ 1214.444548][ T5075] ? trace_hardirqs_on+0x39/0x1c0 [ 1214.449599][ T5075] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1214.455523][ T5075] do_syscall_64+0x35/0xb0 [ 1214.459959][ T5075] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1214.465869][ T5075] RIP: 0033:0x7f4637cff8d9 [ 1214.470299][ T5075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1214.489923][ T5075] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1214.498354][ T5075] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 10:58:25 executing program 4: openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x800, 0x0) [ 1214.506338][ T5075] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1214.514318][ T5075] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1214.522308][ T5075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1214.530292][ T5075] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 10:58:25 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x15, &(0x7f0000000000)="b2a9f2804cce9824980502c520c91071350c81ff", 0x14) 10:58:25 executing program 5: renameat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00') 10:58:25 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e", 0x29}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1214.677128][ T5110] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1214.698110][ T5110] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1214.738274][ T5110] CPU: 1 PID: 5110 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1214.747988][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1214.758777][ T5110] Call Trace: [ 1214.762614][ T5110] dump_stack_lvl+0xcd/0x134 [ 1214.767231][ T5110] sysfs_warn_dup.cold+0x1c/0x29 [ 1214.772191][ T5110] sysfs_do_create_link_sd+0x11e/0x140 [ 1214.777675][ T5110] sysfs_create_link+0x5f/0xc0 [ 1214.782628][ T5110] device_add+0x78f/0x21b0 [ 1214.787064][ T5110] ? wait_for_completion_io+0x280/0x280 [ 1214.792628][ T5110] ? lock_downgrade+0x6e0/0x6e0 [ 1214.797733][ T5110] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1214.804007][ T5110] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1214.810271][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1214.816961][ T5110] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1214.822973][ T5110] wiphy_register+0x1e8a/0x29b0 [ 1214.827852][ T5110] ? wiphy_unregister+0xbe0/0xbe0 [ 1214.832890][ T5110] ? minstrel_ht_alloc+0x531/0xa00 [ 1214.838036][ T5110] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1214.844136][ T5110] ieee80211_register_hw+0x1f18/0x3ed0 [ 1214.849631][ T5110] ? ieee80211_restart_hw+0x290/0x290 [ 1214.855029][ T5110] ? debug_object_destroy+0x210/0x210 [ 1214.860434][ T5110] ? memset+0x20/0x40 [ 1214.864434][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1214.870700][ T5110] ? __hrtimer_init+0x136/0x280 [ 1214.875575][ T5110] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1214.881328][ T5110] ? hwsim_virtio_rx_work+0x350/0x350 [ 1214.886704][ T5110] ? __kmalloc_track_caller+0x193/0x310 [ 1214.892265][ T5110] ? memcpy+0x39/0x60 [ 1214.896260][ T5110] hwsim_new_radio_nl+0x9bc/0x1080 [ 1214.901384][ T5110] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1214.907301][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1214.913551][ T5110] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1214.920928][ T5110] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1214.928227][ T5110] genl_family_rcv_msg_doit+0x228/0x320 [ 1214.933925][ T5110] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1214.941308][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1214.947568][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1214.953815][ T5110] ? ns_capable+0xd9/0x100 [ 1214.958244][ T5110] genl_rcv_msg+0x328/0x580 [ 1214.962761][ T5110] ? genl_get_cmd+0x480/0x480 [ 1214.967443][ T5110] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1214.973349][ T5110] ? lock_release+0x720/0x720 [ 1214.978036][ T5110] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1214.983854][ T5110] netlink_rcv_skb+0x153/0x420 [ 1214.988626][ T5110] ? genl_get_cmd+0x480/0x480 [ 1214.993312][ T5110] ? netlink_ack+0xa60/0xa60 [ 1214.997912][ T5110] ? netlink_deliver_tap+0x1b1/0xc30 [ 1215.003207][ T5110] genl_rcv+0x24/0x40 [ 1215.007226][ T5110] netlink_unicast+0x533/0x7d0 [ 1215.012000][ T5110] ? netlink_attachskb+0x890/0x890 [ 1215.017118][ T5110] ? __virt_addr_valid+0x5d/0x2d0 [ 1215.022154][ T5110] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1215.028409][ T5110] ? __phys_addr_symbol+0x2c/0x70 [ 1215.033435][ T5110] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1215.039161][ T5110] ? __check_object_size+0x16e/0x3f0 [ 1215.044459][ T5110] netlink_sendmsg+0x86d/0xdb0 [ 1215.049235][ T5110] ? netlink_unicast+0x7d0/0x7d0 [ 1215.054564][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1215.060836][ T5110] ? netlink_unicast+0x7d0/0x7d0 [ 1215.065790][ T5110] sock_sendmsg+0xcf/0x120 [ 1215.070220][ T5110] ____sys_sendmsg+0x6e8/0x810 [ 1215.075006][ T5110] ? kernel_sendmsg+0x50/0x50 [ 1215.079691][ T5110] ? do_recvmmsg+0x6d0/0x6d0 [ 1215.084296][ T5110] ? lock_chain_count+0x20/0x20 [ 1215.089156][ T5110] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1215.095151][ T5110] ___sys_sendmsg+0xf3/0x170 [ 1215.099756][ T5110] ? sendmsg_copy_msghdr+0x160/0x160 [ 1215.105057][ T5110] ? __fget_files+0x21b/0x3e0 [ 1215.109743][ T5110] ? lock_downgrade+0x6e0/0x6e0 [ 1215.114622][ T5110] ? __fget_files+0x23d/0x3e0 [ 1215.119315][ T5110] ? __fget_light+0xea/0x280 [ 1215.123915][ T5110] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1215.130173][ T5110] __sys_sendmsg+0xe5/0x1b0 [ 1215.134698][ T5110] ? __sys_sendmsg_sock+0x30/0x30 [ 1215.139758][ T5110] ? syscall_enter_from_user_mode+0x21/0x70 [ 1215.145680][ T5110] do_syscall_64+0x35/0xb0 [ 1215.150124][ T5110] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1215.156040][ T5110] RIP: 0033:0x7f3e684f88d9 [ 1215.160461][ T5110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1215.180273][ T5110] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1215.188702][ T5110] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1215.196690][ T5110] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1215.204677][ T5110] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1215.212664][ T5110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1215.220651][ T5110] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1215.273874][ T5110] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1215.326507][ T5110] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1215.389419][ T5110] CPU: 1 PID: 5110 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1215.398319][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1215.408385][ T5110] Call Trace: [ 1215.411672][ T5110] dump_stack_lvl+0xcd/0x134 [ 1215.416278][ T5110] sysfs_warn_dup.cold+0x1c/0x29 [ 1215.421233][ T5110] sysfs_do_create_link_sd+0x11e/0x140 [ 1215.426733][ T5110] sysfs_create_link+0x5f/0xc0 [ 1215.431526][ T5110] device_add+0x78f/0x21b0 [ 1215.435964][ T5110] ? wait_for_completion_io+0x280/0x280 [ 1215.441529][ T5110] ? lock_downgrade+0x6e0/0x6e0 [ 1215.446405][ T5110] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1215.452666][ T5110] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1215.458933][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1215.465198][ T5110] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1215.471211][ T5110] wiphy_register+0x1e8a/0x29b0 [ 1215.476099][ T5110] ? wiphy_unregister+0xbe0/0xbe0 [ 1215.481139][ T5110] ? minstrel_ht_alloc+0x531/0xa00 [ 1215.486285][ T5110] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1215.492388][ T5110] ieee80211_register_hw+0x1f18/0x3ed0 [ 1215.497891][ T5110] ? ieee80211_restart_hw+0x290/0x290 [ 1215.503294][ T5110] ? debug_object_destroy+0x210/0x210 [ 1215.508700][ T5110] ? memset+0x20/0x40 [ 1215.512703][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1215.518970][ T5110] ? __hrtimer_init+0x136/0x280 [ 1215.523847][ T5110] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1215.529605][ T5110] ? hwsim_virtio_rx_work+0x350/0x350 [ 1215.535001][ T5110] ? __kmalloc_track_caller+0x193/0x310 [ 1215.540579][ T5110] ? memcpy+0x39/0x60 [ 1215.544580][ T5110] hwsim_new_radio_nl+0x9bc/0x1080 [ 1215.549712][ T5110] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1215.555639][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1215.561902][ T5110] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1215.569298][ T5110] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1215.576616][ T5110] genl_family_rcv_msg_doit+0x228/0x320 [ 1215.582187][ T5110] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1215.589591][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1215.595870][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1215.602133][ T5110] ? ns_capable+0xd9/0x100 [ 1215.606569][ T5110] genl_rcv_msg+0x328/0x580 [ 1215.611092][ T5110] ? genl_get_cmd+0x480/0x480 [ 1215.615786][ T5110] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1215.621707][ T5110] ? lock_release+0x720/0x720 [ 1215.626403][ T5110] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1215.631715][ T5110] netlink_rcv_skb+0x153/0x420 [ 1215.636500][ T5110] ? genl_get_cmd+0x480/0x480 [ 1215.641203][ T5110] ? netlink_ack+0xa60/0xa60 [ 1215.645828][ T5110] ? netlink_deliver_tap+0x1b1/0xc30 [ 1215.651142][ T5110] genl_rcv+0x24/0x40 [ 1215.655144][ T5110] netlink_unicast+0x533/0x7d0 [ 1215.659933][ T5110] ? netlink_attachskb+0x890/0x890 [ 1215.665059][ T5110] ? __virt_addr_valid+0x5d/0x2d0 [ 1215.670106][ T5110] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1215.676371][ T5110] ? __phys_addr_symbol+0x2c/0x70 [ 1215.681414][ T5110] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1215.687161][ T5110] ? __check_object_size+0x16e/0x3f0 [ 1215.692476][ T5110] netlink_sendmsg+0x86d/0xdb0 [ 1215.697272][ T5110] ? netlink_unicast+0x7d0/0x7d0 [ 1215.702247][ T5110] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1215.708516][ T5110] ? netlink_unicast+0x7d0/0x7d0 [ 1215.713476][ T5110] sock_sendmsg+0xcf/0x120 [ 1215.717918][ T5110] ____sys_sendmsg+0x6e8/0x810 [ 1215.722710][ T5110] ? kernel_sendmsg+0x50/0x50 [ 1215.727404][ T5110] ? do_recvmmsg+0x6d0/0x6d0 [ 1215.732020][ T5110] ? lock_chain_count+0x20/0x20 [ 1215.736890][ T5110] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1215.742905][ T5110] ___sys_sendmsg+0xf3/0x170 [ 1215.747518][ T5110] ? sendmsg_copy_msghdr+0x160/0x160 [ 1215.752834][ T5110] ? __fget_files+0x21b/0x3e0 [ 1215.757529][ T5110] ? lock_downgrade+0x6e0/0x6e0 [ 1215.762410][ T5110] ? __fget_files+0x23d/0x3e0 [ 1215.767102][ T5110] ? __fget_light+0xea/0x280 [ 1215.771708][ T5110] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1215.777972][ T5110] __sys_sendmsg+0xe5/0x1b0 [ 1215.782497][ T5110] ? __sys_sendmsg_sock+0x30/0x30 [ 1215.787552][ T5110] ? syscall_enter_from_user_mode+0x21/0x70 [ 1215.793470][ T5110] do_syscall_64+0x35/0xb0 [ 1215.797912][ T5110] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1215.803829][ T5110] RIP: 0033:0x7f3e684f88d9 [ 1215.808265][ T5110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1215.827976][ T5110] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1215.836407][ T5110] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1215.844395][ T5110] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1215.852381][ T5110] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1215.860367][ T5110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1215.868350][ T5110] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:26 executing program 5: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$UI_BEGIN_FF_ERASE(r0, 0xc00c55ca, &(0x7f0000000040)={0x4000000b}) 10:58:26 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000010c0)=@nat={'nat\x00', 0x1b, 0x5, 0x570, 0xf0, 0x0, 0xffffffff, 0x250, 0x0, 0x4a0, 0x4a0, 0xffffffff, 0x4a0, 0x4a0, 0x5, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x0, @ipv6=@loopback, @ipv6=@empty, @gre_key, @gre_key}}}, {{@uncond, 0x0, 0x118, 0x160, 0x0, {}, [@common=@hbh={{0x48}}, @common=@hl={{0x28}}]}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x0, @ipv4=@dev, @ipv6=@mcast2, @port, @icmp_id}}}, {{@ipv6={@rand_addr=' \x01\x00', @mcast2, [], [], 'veth0_to_team\x00', 'vxcan1\x00'}, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@icmp6={{0x28}, {0x0, 'X*'}}]}, @unspec=@DNAT1={0x48, 'DNAT\x00', 0x1, {0x0, @ipv6=@mcast1, @ipv6=@private1, @gre_key, @gre_key}}}, {{@ipv6={@private0, @mcast1, [], [], 'erspan0\x00', 'wg0\x00'}, 0x0, 0xf0, 0x138, 0x0, {}, [@common=@hbh={{0x48}}]}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x0, @ipv4=@empty, @ipv4=@loopback, @gre_key}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5d0) 10:58:26 executing program 0: modify_ldt$write2(0x11, &(0x7f0000000000)={0x200}, 0x10) modify_ldt$write2(0x11, &(0x7f0000000040), 0x10) 10:58:26 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000010382c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:26 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}], 0x1, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:26 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510bef", 0x2c}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:26 executing program 5: socket$inet(0x2, 0xa, 0x9a) [ 1216.138021][ T5149] x_tables: duplicate underflow at hook 1 10:58:26 executing program 0: bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f00000000c0)={0x80000000}, 0x8) 10:58:26 executing program 4: openat$bsg(0xffffffffffffff9c, &(0x7f0000000200), 0x1118a0, 0x0) [ 1216.218349][ T5155] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:58:26 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510bef", 0x2c}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1216.297495][ T5155] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1216.341959][ T5155] CPU: 0 PID: 5155 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1216.350775][ T5155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1216.360936][ T5155] Call Trace: [ 1216.364223][ T5155] dump_stack_lvl+0xcd/0x134 [ 1216.368835][ T5155] sysfs_warn_dup.cold+0x1c/0x29 [ 1216.373792][ T5155] sysfs_do_create_link_sd+0x11e/0x140 [ 1216.379284][ T5155] sysfs_create_link+0x5f/0xc0 [ 1216.384078][ T5155] device_add+0x78f/0x21b0 [ 1216.388513][ T5155] ? wait_for_completion_io+0x280/0x280 [ 1216.394075][ T5155] ? lock_downgrade+0x6e0/0x6e0 [ 1216.398944][ T5155] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1216.405207][ T5155] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1216.411460][ T5155] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1216.417713][ T5155] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1216.423709][ T5155] wiphy_register+0x1e8a/0x29b0 [ 1216.428565][ T5155] ? wiphy_unregister+0xbe0/0xbe0 [ 1216.433582][ T5155] ? minstrel_ht_alloc+0x531/0xa00 [ 1216.438698][ T5155] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1216.444945][ T5155] ieee80211_register_hw+0x1f18/0x3ed0 [ 1216.450413][ T5155] ? ieee80211_restart_hw+0x290/0x290 [ 1216.455789][ T5155] ? debug_object_destroy+0x210/0x210 [ 1216.461159][ T5155] ? memset+0x20/0x40 [ 1216.465132][ T5155] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1216.471370][ T5155] ? __hrtimer_init+0x136/0x280 [ 1216.476221][ T5155] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1216.481955][ T5155] ? hwsim_virtio_rx_work+0x350/0x350 [ 1216.487315][ T5155] ? __kmalloc_track_caller+0x193/0x310 [ 1216.492863][ T5155] ? memcpy+0x39/0x60 [ 1216.496838][ T5155] hwsim_new_radio_nl+0x9bc/0x1080 [ 1216.501945][ T5155] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1216.507839][ T5155] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1216.514074][ T5155] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1216.521441][ T5155] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1216.528729][ T5155] genl_family_rcv_msg_doit+0x228/0x320 [ 1216.534282][ T5155] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1216.541955][ T5155] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1216.548208][ T5155] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1216.554447][ T5155] ? ns_capable+0xd9/0x100 [ 1216.558861][ T5155] genl_rcv_msg+0x328/0x580 [ 1216.563361][ T5155] ? genl_get_cmd+0x480/0x480 [ 1216.568029][ T5155] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1216.573919][ T5155] ? lock_release+0x720/0x720 [ 1216.578588][ T5155] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1216.583872][ T5155] netlink_rcv_skb+0x153/0x420 [ 1216.588631][ T5155] ? genl_get_cmd+0x480/0x480 [ 1216.593301][ T5155] ? netlink_ack+0xa60/0xa60 [ 1216.597886][ T5155] ? netlink_deliver_tap+0x1b1/0xc30 [ 1216.603168][ T5155] genl_rcv+0x24/0x40 [ 1216.607142][ T5155] netlink_unicast+0x533/0x7d0 [ 1216.611901][ T5155] ? netlink_attachskb+0x890/0x890 [ 1216.616999][ T5155] ? __virt_addr_valid+0x5d/0x2d0 [ 1216.622018][ T5155] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1216.628253][ T5155] ? __phys_addr_symbol+0x2c/0x70 [ 1216.633271][ T5155] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1216.638983][ T5155] ? __check_object_size+0x16e/0x3f0 [ 1216.644268][ T5155] netlink_sendmsg+0x86d/0xdb0 [ 1216.649031][ T5155] ? netlink_unicast+0x7d0/0x7d0 [ 1216.653968][ T5155] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1216.660209][ T5155] ? netlink_unicast+0x7d0/0x7d0 [ 1216.665148][ T5155] sock_sendmsg+0xcf/0x120 [ 1216.669560][ T5155] ____sys_sendmsg+0x6e8/0x810 [ 1216.674323][ T5155] ? kernel_sendmsg+0x50/0x50 [ 1216.678996][ T5155] ? do_recvmmsg+0x6d0/0x6d0 [ 1216.683587][ T5155] ? lock_chain_count+0x20/0x20 [ 1216.688432][ T5155] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1216.694414][ T5155] ___sys_sendmsg+0xf3/0x170 [ 1216.699002][ T5155] ? sendmsg_copy_msghdr+0x160/0x160 [ 1216.704285][ T5155] ? __fget_files+0x21b/0x3e0 [ 1216.708953][ T5155] ? lock_downgrade+0x6e0/0x6e0 [ 1216.713810][ T5155] ? __fget_files+0x23d/0x3e0 [ 1216.718485][ T5155] ? __fget_light+0xea/0x280 [ 1216.723069][ T5155] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1216.729305][ T5155] __sys_sendmsg+0xe5/0x1b0 [ 1216.733803][ T5155] ? __sys_sendmsg_sock+0x30/0x30 [ 1216.738834][ T5155] ? syscall_enter_from_user_mode+0x21/0x70 [ 1216.744728][ T5155] do_syscall_64+0x35/0xb0 [ 1216.749145][ T5155] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1216.755035][ T5155] RIP: 0033:0x7f3e684f88d9 [ 1216.759441][ T5155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1216.779046][ T5155] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:58:27 executing program 4: capset(&(0x7f0000003440)={0x19980330}, &(0x7f0000003480)) [ 1216.787699][ T5155] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1216.795672][ T5155] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1216.803633][ T5155] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1216.811596][ T5155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1216.819560][ T5155] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:27 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sysvipc/msg\x00', 0x0, 0x0) fanotify_mark(r0, 0x75, 0x40000000, 0xffffffffffffff9c, 0x0) 10:58:27 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000005c40)={{0x2, 0x0, @dev}, {0x1, @broadcast}, 0x2, {0x2, 0x0, @private}, 'macvlan1\x00'}) [ 1217.004768][ T5178] capability: warning: `syz-executor.4' uses 32-bit capabilities (legacy support in use) 10:58:27 executing program 5: select(0x40, &(0x7f00000001c0), 0x0, 0x0, &(0x7f0000000280)={0x0, 0xea60}) 10:58:27 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000005c40)={{0x2, 0x0, @dev}, {0x1, @broadcast}, 0x2, {0x2, 0x0, @private}, 'macvlan1\x00'}) [ 1217.142517][ T5157] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1217.237328][ T5157] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1217.260846][ T5157] CPU: 1 PID: 5157 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1217.269663][ T5157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1217.279729][ T5157] Call Trace: [ 1217.283025][ T5157] dump_stack_lvl+0xcd/0x134 [ 1217.287630][ T5157] sysfs_warn_dup.cold+0x1c/0x29 [ 1217.292583][ T5157] sysfs_do_create_link_sd+0x11e/0x140 [ 1217.298062][ T5157] sysfs_create_link+0x5f/0xc0 [ 1217.302843][ T5157] device_add+0x78f/0x21b0 [ 1217.307277][ T5157] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 1217.313191][ T5157] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1217.319451][ T5157] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1217.325797][ T5157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1217.332143][ T5157] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1217.338148][ T5157] wiphy_register+0x1e8a/0x29b0 [ 1217.343022][ T5157] ? wiphy_unregister+0xbe0/0xbe0 [ 1217.348059][ T5157] ? minstrel_ht_alloc+0x531/0xa00 [ 1217.353196][ T5157] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1217.359288][ T5157] ieee80211_register_hw+0x1f18/0x3ed0 [ 1217.364783][ T5157] ? ieee80211_restart_hw+0x290/0x290 [ 1217.370182][ T5157] ? debug_object_destroy+0x210/0x210 [ 1217.375576][ T5157] ? memset+0x20/0x40 [ 1217.379568][ T5157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1217.385824][ T5157] ? __hrtimer_init+0x136/0x280 [ 1217.390690][ T5157] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1217.396450][ T5157] ? hwsim_virtio_rx_work+0x350/0x350 [ 1217.401840][ T5157] ? __kmalloc_track_caller+0x193/0x310 [ 1217.407411][ T5157] ? memcpy+0x39/0x60 [ 1217.411416][ T5157] hwsim_new_radio_nl+0x9bc/0x1080 [ 1217.416554][ T5157] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1217.422480][ T5157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1217.428750][ T5157] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1217.436141][ T5157] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1217.443458][ T5157] genl_family_rcv_msg_doit+0x228/0x320 [ 1217.449027][ T5157] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1217.456419][ T5157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1217.462688][ T5157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1217.468956][ T5157] ? ns_capable+0xd9/0x100 [ 1217.473387][ T5157] genl_rcv_msg+0x328/0x580 [ 1217.477908][ T5157] ? genl_get_cmd+0x480/0x480 [ 1217.482597][ T5157] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1217.488770][ T5157] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1217.494697][ T5157] netlink_rcv_skb+0x153/0x420 [ 1217.499486][ T5157] ? genl_get_cmd+0x480/0x480 [ 1217.504177][ T5157] ? netlink_ack+0xa60/0xa60 [ 1217.509078][ T5157] ? netlink_deliver_tap+0x1b1/0xc30 [ 1217.514381][ T5157] genl_rcv+0x24/0x40 [ 1217.518373][ T5157] netlink_unicast+0x533/0x7d0 [ 1217.523151][ T5157] ? netlink_attachskb+0x890/0x890 [ 1217.528275][ T5157] ? security_netlink_send+0x54/0xa0 [ 1217.533582][ T5157] netlink_sendmsg+0x86d/0xdb0 [ 1217.538367][ T5157] ? netlink_unicast+0x7d0/0x7d0 [ 1217.543324][ T5157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1217.549584][ T5157] ? netlink_unicast+0x7d0/0x7d0 [ 1217.554539][ T5157] sock_sendmsg+0xcf/0x120 [ 1217.558977][ T5157] ____sys_sendmsg+0x6e8/0x810 [ 1217.563769][ T5157] ? kernel_sendmsg+0x50/0x50 [ 1217.568463][ T5157] ? do_recvmmsg+0x6d0/0x6d0 [ 1217.573082][ T5157] ? finish_task_switch.isra.0+0x232/0xa50 [ 1217.578914][ T5157] ___sys_sendmsg+0xf3/0x170 [ 1217.583526][ T5157] ? sendmsg_copy_msghdr+0x160/0x160 [ 1217.588837][ T5157] ? io_schedule_timeout+0x140/0x140 [ 1217.594146][ T5157] ? preempt_schedule_irq+0x82/0x90 [ 1217.599374][ T5157] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1217.605554][ T5157] ? lockdep_hardirqs_on+0x79/0x100 [ 1217.610775][ T5157] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1217.616959][ T5157] ? sockfd_lookup_light+0x6d/0x180 [ 1217.622188][ T5157] __sys_sendmsg+0xe5/0x1b0 [ 1217.626716][ T5157] ? __sys_sendmsg_sock+0x30/0x30 [ 1217.631764][ T5157] ? lockdep_hardirqs_on+0x79/0x100 [ 1217.636987][ T5157] ? trace_hardirqs_on+0x39/0x1c0 [ 1217.642035][ T5157] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1217.647951][ T5157] do_syscall_64+0x35/0xb0 [ 1217.652389][ T5157] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1217.658381][ T5157] RIP: 0033:0x7f4637cff8d9 [ 1217.662895][ T5157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1217.682520][ T5157] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1217.690955][ T5157] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1217.698944][ T5157] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1217.706928][ T5157] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1217.714911][ T5157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1217.722897][ T5157] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1217.800181][ T5158] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1217.864837][ T5158] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1217.902808][ T5158] CPU: 0 PID: 5158 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1217.911690][ T5158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1217.921742][ T5158] Call Trace: [ 1217.925019][ T5158] dump_stack_lvl+0xcd/0x134 [ 1217.929826][ T5158] sysfs_warn_dup.cold+0x1c/0x29 [ 1217.934770][ T5158] sysfs_do_create_link_sd+0x11e/0x140 [ 1217.940241][ T5158] sysfs_create_link+0x5f/0xc0 [ 1217.945016][ T5158] device_add+0x78f/0x21b0 [ 1217.949443][ T5158] ? wait_for_completion_io+0x280/0x280 [ 1217.954997][ T5158] ? lock_downgrade+0x6e0/0x6e0 [ 1217.959856][ T5158] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1217.966101][ T5158] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1217.972433][ T5158] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1217.978769][ T5158] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1217.984766][ T5158] wiphy_register+0x1e8a/0x29b0 [ 1217.989629][ T5158] ? wiphy_unregister+0xbe0/0xbe0 [ 1217.994657][ T5158] ? minstrel_ht_alloc+0x531/0xa00 [ 1217.999784][ T5158] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1218.005867][ T5158] ieee80211_register_hw+0x1f18/0x3ed0 [ 1218.011347][ T5158] ? ieee80211_restart_hw+0x290/0x290 [ 1218.016738][ T5158] ? debug_object_destroy+0x210/0x210 [ 1218.022126][ T5158] ? memset+0x20/0x40 [ 1218.026115][ T5158] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1218.032361][ T5158] ? __hrtimer_init+0x136/0x280 [ 1218.037222][ T5158] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1218.042964][ T5158] ? hwsim_virtio_rx_work+0x350/0x350 [ 1218.048342][ T5158] ? __kmalloc_track_caller+0x193/0x310 [ 1218.053907][ T5158] ? memcpy+0x39/0x60 [ 1218.057898][ T5158] hwsim_new_radio_nl+0x9bc/0x1080 [ 1218.063288][ T5158] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1218.069214][ T5158] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1218.075469][ T5158] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1218.082850][ T5158] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1218.090149][ T5158] genl_family_rcv_msg_doit+0x228/0x320 [ 1218.095703][ T5158] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1218.103083][ T5158] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1218.109341][ T5158] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1218.115585][ T5158] ? ns_capable+0xd9/0x100 [ 1218.120010][ T5158] genl_rcv_msg+0x328/0x580 [ 1218.124524][ T5158] ? genl_get_cmd+0x480/0x480 [ 1218.129218][ T5158] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1218.135140][ T5158] ? lock_release+0x720/0x720 [ 1218.139825][ T5158] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1218.145122][ T5158] netlink_rcv_skb+0x153/0x420 [ 1218.149889][ T5158] ? genl_get_cmd+0x480/0x480 [ 1218.154570][ T5158] ? netlink_ack+0xa60/0xa60 [ 1218.159169][ T5158] ? netlink_deliver_tap+0x1b1/0xc30 [ 1218.164464][ T5158] genl_rcv+0x24/0x40 [ 1218.168447][ T5158] netlink_unicast+0x533/0x7d0 [ 1218.173224][ T5158] ? netlink_attachskb+0x890/0x890 [ 1218.178344][ T5158] ? __virt_addr_valid+0x5d/0x2d0 [ 1218.183379][ T5158] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1218.189629][ T5158] ? __phys_addr_symbol+0x2c/0x70 [ 1218.194658][ T5158] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1218.200383][ T5158] ? __check_object_size+0x16e/0x3f0 [ 1218.205683][ T5158] netlink_sendmsg+0x86d/0xdb0 [ 1218.210459][ T5158] ? netlink_unicast+0x7d0/0x7d0 [ 1218.215408][ T5158] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1218.221664][ T5158] ? netlink_unicast+0x7d0/0x7d0 [ 1218.226605][ T5158] sock_sendmsg+0xcf/0x120 [ 1218.231034][ T5158] ____sys_sendmsg+0x6e8/0x810 [ 1218.235808][ T5158] ? kernel_sendmsg+0x50/0x50 [ 1218.240490][ T5158] ? do_recvmmsg+0x6d0/0x6d0 [ 1218.245089][ T5158] ? lock_chain_count+0x20/0x20 [ 1218.249941][ T5158] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1218.256106][ T5158] ___sys_sendmsg+0xf3/0x170 [ 1218.260706][ T5158] ? sendmsg_copy_msghdr+0x160/0x160 [ 1218.265999][ T5158] ? __fget_files+0x21b/0x3e0 [ 1218.270677][ T5158] ? lock_downgrade+0x6e0/0x6e0 [ 1218.275542][ T5158] ? __fget_files+0x23d/0x3e0 [ 1218.280228][ T5158] ? __fget_light+0xea/0x280 [ 1218.284826][ T5158] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1218.291073][ T5158] __sys_sendmsg+0xe5/0x1b0 [ 1218.295582][ T5158] ? __sys_sendmsg_sock+0x30/0x30 [ 1218.300623][ T5158] ? syscall_enter_from_user_mode+0x21/0x70 [ 1218.306529][ T5158] do_syscall_64+0x35/0xb0 [ 1218.310950][ T5158] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1218.316848][ T5158] RIP: 0033:0x7f3e684f88d9 [ 1218.321268][ T5158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1218.340875][ T5158] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1218.349288][ T5158] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1218.357264][ T5158] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1218.365231][ T5158] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1218.373203][ T5158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1218.381179][ T5158] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:58:29 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000010482c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:29 executing program 4: select(0x40, &(0x7f0000000000), 0x0, &(0x7f0000000080)={0x1f}, 0x0) 10:58:29 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510bef", 0x2c}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:29 executing program 5: openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/stat\x00', 0x0, 0x0) 10:58:29 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000005c40)={{0x2, 0x0, @dev}, {0x1, @broadcast}, 0x2, {0x2, 0x0, @private}, 'macvlan1\x00'}) 10:58:29 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {0x0}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:29 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000005c40)={{0x2, 0x0, @dev}, {0x1, @broadcast}, 0x2, {0x2, 0x0, @private}, 'macvlan1\x00'}) 10:58:29 executing program 5: openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x214080, 0x0) 10:58:29 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$UI_BEGIN_FF_ERASE(r0, 0xc00c55ca, 0x0) [ 1218.591170][ T5222] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:58:29 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befcc", 0x2d}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1218.648395][ T5222] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1218.698904][ T5222] CPU: 1 PID: 5222 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1218.707787][ T5222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1218.717843][ T5222] Call Trace: [ 1218.721125][ T5222] dump_stack_lvl+0xcd/0x134 [ 1218.725730][ T5222] sysfs_warn_dup.cold+0x1c/0x29 [ 1218.730684][ T5222] sysfs_do_create_link_sd+0x11e/0x140 [ 1218.736163][ T5222] sysfs_create_link+0x5f/0xc0 [ 1218.740945][ T5222] device_add+0x78f/0x21b0 [ 1218.745373][ T5222] ? wait_for_completion_io+0x280/0x280 [ 1218.750926][ T5222] ? lock_downgrade+0x6e0/0x6e0 [ 1218.755960][ T5222] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1218.762208][ T5222] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1218.768703][ T5222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1218.774954][ T5222] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1218.780946][ T5222] wiphy_register+0x1e8a/0x29b0 [ 1218.785812][ T5222] ? wiphy_unregister+0xbe0/0xbe0 [ 1218.790845][ T5222] ? minstrel_ht_alloc+0x531/0xa00 [ 1218.795978][ T5222] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1218.802061][ T5222] ieee80211_register_hw+0x1f18/0x3ed0 [ 1218.807543][ T5222] ? ieee80211_restart_hw+0x290/0x290 [ 1218.812926][ T5222] ? debug_object_destroy+0x210/0x210 [ 1218.818314][ T5222] ? memset+0x20/0x40 [ 1218.822300][ T5222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1218.828546][ T5222] ? __hrtimer_init+0x136/0x280 [ 1218.833403][ T5222] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1218.839146][ T5222] ? hwsim_virtio_rx_work+0x350/0x350 [ 1218.844524][ T5222] ? __kmalloc_track_caller+0x193/0x310 [ 1218.850083][ T5222] ? memcpy+0x39/0x60 [ 1218.854073][ T5222] hwsim_new_radio_nl+0x9bc/0x1080 [ 1218.859197][ T5222] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1218.865104][ T5222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1218.871350][ T5222] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1218.878727][ T5222] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1218.886031][ T5222] genl_family_rcv_msg_doit+0x228/0x320 [ 1218.891585][ T5222] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1218.898963][ T5222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1218.905222][ T5222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1218.911473][ T5222] ? ns_capable+0xd9/0x100 [ 1218.915908][ T5222] genl_rcv_msg+0x328/0x580 [ 1218.920430][ T5222] ? genl_get_cmd+0x480/0x480 [ 1218.925122][ T5222] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1218.931039][ T5222] ? lock_release+0x720/0x720 [ 1218.935732][ T5222] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1218.941568][ T5222] netlink_rcv_skb+0x153/0x420 [ 1218.946348][ T5222] ? genl_get_cmd+0x480/0x480 [ 1218.951041][ T5222] ? netlink_ack+0xa60/0xa60 [ 1218.955655][ T5222] ? netlink_deliver_tap+0x1b1/0xc30 [ 1218.960957][ T5222] genl_rcv+0x24/0x40 [ 1218.964954][ T5222] netlink_unicast+0x533/0x7d0 [ 1218.969917][ T5222] ? netlink_attachskb+0x890/0x890 [ 1218.975044][ T5222] ? __virt_addr_valid+0x5d/0x2d0 [ 1218.980088][ T5222] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1218.986350][ T5222] ? __phys_addr_symbol+0x2c/0x70 [ 1218.991387][ T5222] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1218.997118][ T5222] ? __check_object_size+0x16e/0x3f0 [ 1219.002426][ T5222] netlink_sendmsg+0x86d/0xdb0 [ 1219.007210][ T5222] ? netlink_unicast+0x7d0/0x7d0 [ 1219.012164][ T5222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1219.018425][ T5222] ? netlink_unicast+0x7d0/0x7d0 [ 1219.023381][ T5222] sock_sendmsg+0xcf/0x120 [ 1219.027821][ T5222] ____sys_sendmsg+0x6e8/0x810 [ 1219.032608][ T5222] ? kernel_sendmsg+0x50/0x50 [ 1219.037295][ T5222] ? do_recvmmsg+0x6d0/0x6d0 [ 1219.041903][ T5222] ? lock_chain_count+0x20/0x20 [ 1219.046771][ T5222] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1219.052778][ T5222] ___sys_sendmsg+0xf3/0x170 [ 1219.057388][ T5222] ? sendmsg_copy_msghdr+0x160/0x160 [ 1219.062690][ T5222] ? __fget_files+0x21b/0x3e0 [ 1219.067389][ T5222] ? lock_downgrade+0x6e0/0x6e0 [ 1219.072267][ T5222] ? __fget_files+0x23d/0x3e0 [ 1219.076962][ T5222] ? __fget_light+0xea/0x280 [ 1219.081563][ T5222] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1219.087828][ T5222] __sys_sendmsg+0xe5/0x1b0 [ 1219.092352][ T5222] ? __sys_sendmsg_sock+0x30/0x30 [ 1219.097397][ T5222] ? syscall_enter_from_user_mode+0x21/0x70 [ 1219.103314][ T5222] do_syscall_64+0x35/0xb0 [ 1219.107757][ T5222] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1219.113664][ T5222] RIP: 0033:0x7f3e684f88d9 [ 1219.118090][ T5222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1219.137709][ T5222] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:58:29 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={0x0, @generic={0x2, "0f177c141da3e1e9717a3227de66"}, @rc={0x1f, @none}, @l2={0x1f, 0x0, @none}}) [ 1219.146141][ T5222] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1219.154129][ T5222] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1219.162116][ T5222] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1219.170094][ T5222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1219.178070][ T5222] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:29 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmmsg$sock(r0, &(0x7f0000005fc0)=[{{&(0x7f0000000040)=@ethernet={0x0, @random="58818fea50b0"}, 0x80, 0x0}}], 0x1, 0x0) [ 1219.314984][ T5223] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1219.383036][ T5223] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1219.406255][ T5223] CPU: 1 PID: 5223 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1219.414973][ T5223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1219.425028][ T5223] Call Trace: [ 1219.428307][ T5223] dump_stack_lvl+0xcd/0x134 [ 1219.432904][ T5223] sysfs_warn_dup.cold+0x1c/0x29 [ 1219.437845][ T5223] sysfs_do_create_link_sd+0x11e/0x140 [ 1219.443317][ T5223] sysfs_create_link+0x5f/0xc0 [ 1219.448090][ T5223] device_add+0x78f/0x21b0 [ 1219.452520][ T5223] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1219.458765][ T5223] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1219.465008][ T5223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1219.471250][ T5223] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1219.477244][ T5223] wiphy_register+0x1e8a/0x29b0 [ 1219.482104][ T5223] ? wiphy_unregister+0xbe0/0xbe0 [ 1219.487126][ T5223] ? minstrel_ht_alloc+0x531/0xa00 [ 1219.492248][ T5223] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1219.498332][ T5223] ieee80211_register_hw+0x1f18/0x3ed0 [ 1219.503815][ T5223] ? ieee80211_restart_hw+0x290/0x290 [ 1219.509195][ T5223] ? debug_object_destroy+0x210/0x210 [ 1219.514578][ T5223] ? memset+0x20/0x40 [ 1219.518563][ T5223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1219.524809][ T5223] ? __hrtimer_init+0x136/0x280 [ 1219.529666][ T5223] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1219.535411][ T5223] ? hwsim_virtio_rx_work+0x350/0x350 [ 1219.540788][ T5223] ? kstrndup+0xb3/0x100 [ 1219.545042][ T5223] hwsim_new_radio_nl+0x9bc/0x1080 [ 1219.550165][ T5223] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1219.556076][ T5223] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1219.563376][ T5223] genl_family_rcv_msg_doit+0x228/0x320 [ 1219.568939][ T5223] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1219.576323][ T5223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1219.582582][ T5223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1219.588829][ T5223] ? ns_capable+0xd9/0x100 [ 1219.593250][ T5223] genl_rcv_msg+0x328/0x580 [ 1219.597769][ T5223] ? genl_get_cmd+0x480/0x480 [ 1219.602448][ T5223] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1219.608351][ T5223] ? lock_release+0x720/0x720 [ 1219.613038][ T5223] netlink_rcv_skb+0x153/0x420 [ 1219.617806][ T5223] ? genl_get_cmd+0x480/0x480 [ 1219.622488][ T5223] ? netlink_ack+0xa60/0xa60 [ 1219.627090][ T5223] ? netlink_deliver_tap+0x1b1/0xc30 [ 1219.632379][ T5223] ? netlink_skb_set_owner_r+0x148/0x1f0 [ 1219.638027][ T5223] genl_rcv+0x24/0x40 [ 1219.642009][ T5223] netlink_unicast+0x533/0x7d0 [ 1219.646780][ T5223] ? netlink_attachskb+0x890/0x890 [ 1219.651893][ T5223] ? __virt_addr_valid+0x5d/0x2d0 [ 1219.656922][ T5223] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1219.663167][ T5223] ? __phys_addr_symbol+0x2c/0x70 [ 1219.668194][ T5223] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1219.673915][ T5223] ? __check_object_size+0x16e/0x3f0 [ 1219.679211][ T5223] netlink_sendmsg+0x86d/0xdb0 [ 1219.683982][ T5223] ? netlink_unicast+0x7d0/0x7d0 [ 1219.688927][ T5223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1219.695173][ T5223] ? netlink_unicast+0x7d0/0x7d0 [ 1219.700117][ T5223] sock_sendmsg+0xcf/0x120 [ 1219.704542][ T5223] ____sys_sendmsg+0x6e8/0x810 [ 1219.709316][ T5223] ? kernel_sendmsg+0x50/0x50 [ 1219.713994][ T5223] ? do_recvmmsg+0x6d0/0x6d0 [ 1219.718588][ T5223] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1219.724756][ T5223] ? lockdep_hardirqs_on+0x79/0x100 [ 1219.729960][ T5223] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1219.736131][ T5223] ___sys_sendmsg+0xf3/0x170 [ 1219.740728][ T5223] ? sendmsg_copy_msghdr+0x160/0x160 [ 1219.746033][ T5223] ? __fget_files+0x21b/0x3e0 [ 1219.750720][ T5223] ? irqentry_enter+0x28/0x50 [ 1219.755418][ T5223] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1219.761583][ T5223] ? lockdep_hardirqs_on+0x79/0x100 [ 1219.766787][ T5223] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1219.772952][ T5223] ? sockfd_lookup_light+0x6d/0x180 [ 1219.778165][ T5223] __sys_sendmsg+0xe5/0x1b0 [ 1219.782671][ T5223] ? __sys_sendmsg_sock+0x30/0x30 [ 1219.787723][ T5223] ? syscall_enter_from_user_mode+0x21/0x70 [ 1219.793633][ T5223] do_syscall_64+0x35/0xb0 [ 1219.798061][ T5223] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1219.803971][ T5223] RIP: 0033:0x7f4637cff8d9 [ 1219.808397][ T5223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1219.828014][ T5223] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1219.836430][ T5223] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1219.844402][ T5223] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1219.852372][ T5223] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1219.860352][ T5223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1219.868341][ T5223] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1220.245047][ T5225] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1220.281442][ T5225] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1220.337667][ T5225] CPU: 0 PID: 5225 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1220.346550][ T5225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1220.356599][ T5225] Call Trace: [ 1220.359879][ T5225] dump_stack_lvl+0xcd/0x134 [ 1220.364473][ T5225] sysfs_warn_dup.cold+0x1c/0x29 [ 1220.369413][ T5225] sysfs_do_create_link_sd+0x11e/0x140 [ 1220.374884][ T5225] sysfs_create_link+0x5f/0xc0 [ 1220.379656][ T5225] device_add+0x78f/0x21b0 [ 1220.384261][ T5225] ? wait_for_completion_io+0x280/0x280 [ 1220.389808][ T5225] ? lock_downgrade+0x6e0/0x6e0 [ 1220.394660][ T5225] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1220.400901][ T5225] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1220.407144][ T5225] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1220.413386][ T5225] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1220.419373][ T5225] wiphy_register+0x1e8a/0x29b0 [ 1220.424232][ T5225] ? wiphy_unregister+0xbe0/0xbe0 [ 1220.429258][ T5225] ? minstrel_ht_alloc+0x531/0xa00 [ 1220.434381][ T5225] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1220.440462][ T5225] ieee80211_register_hw+0x1f18/0x3ed0 [ 1220.445941][ T5225] ? ieee80211_restart_hw+0x290/0x290 [ 1220.451308][ T5225] ? debug_object_destroy+0x210/0x210 [ 1220.456678][ T5225] ? memset+0x20/0x40 [ 1220.460650][ T5225] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1220.466880][ T5225] ? __hrtimer_init+0x136/0x280 [ 1220.471729][ T5225] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1220.477451][ T5225] ? hwsim_virtio_rx_work+0x350/0x350 [ 1220.482812][ T5225] ? __kmalloc_track_caller+0x193/0x310 [ 1220.488349][ T5225] ? memcpy+0x39/0x60 [ 1220.492324][ T5225] hwsim_new_radio_nl+0x9bc/0x1080 [ 1220.497426][ T5225] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1220.503318][ T5225] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1220.509549][ T5225] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1220.516912][ T5225] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1220.524217][ T5225] genl_family_rcv_msg_doit+0x228/0x320 [ 1220.529758][ T5225] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1220.537119][ T5225] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1220.543359][ T5225] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1220.549698][ T5225] ? ns_capable+0xd9/0x100 [ 1220.554106][ T5225] genl_rcv_msg+0x328/0x580 [ 1220.558601][ T5225] ? genl_get_cmd+0x480/0x480 [ 1220.563283][ T5225] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1220.569170][ T5225] ? lock_release+0x720/0x720 [ 1220.573838][ T5225] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1220.579117][ T5225] netlink_rcv_skb+0x153/0x420 [ 1220.583870][ T5225] ? genl_get_cmd+0x480/0x480 [ 1220.588535][ T5225] ? netlink_ack+0xa60/0xa60 [ 1220.593116][ T5225] ? netlink_deliver_tap+0x1b1/0xc30 [ 1220.598395][ T5225] genl_rcv+0x24/0x40 [ 1220.602369][ T5225] netlink_unicast+0x533/0x7d0 [ 1220.607127][ T5225] ? netlink_attachskb+0x890/0x890 [ 1220.612222][ T5225] ? __virt_addr_valid+0x5d/0x2d0 [ 1220.617249][ T5225] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1220.623484][ T5225] ? __phys_addr_symbol+0x2c/0x70 [ 1220.628497][ T5225] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1220.634206][ T5225] ? __check_object_size+0x16e/0x3f0 [ 1220.639490][ T5225] netlink_sendmsg+0x86d/0xdb0 [ 1220.644253][ T5225] ? netlink_unicast+0x7d0/0x7d0 [ 1220.649183][ T5225] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1220.655418][ T5225] ? netlink_unicast+0x7d0/0x7d0 [ 1220.660346][ T5225] sock_sendmsg+0xcf/0x120 [ 1220.664758][ T5225] ____sys_sendmsg+0x6e8/0x810 [ 1220.669513][ T5225] ? kernel_sendmsg+0x50/0x50 [ 1220.674185][ T5225] ? do_recvmmsg+0x6d0/0x6d0 [ 1220.678772][ T5225] ? lock_chain_count+0x20/0x20 [ 1220.683616][ T5225] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1220.689592][ T5225] ___sys_sendmsg+0xf3/0x170 [ 1220.694182][ T5225] ? sendmsg_copy_msghdr+0x160/0x160 [ 1220.699461][ T5225] ? __fget_files+0x21b/0x3e0 [ 1220.704126][ T5225] ? lock_downgrade+0x6e0/0x6e0 [ 1220.708979][ T5225] ? __fget_files+0x23d/0x3e0 [ 1220.713648][ T5225] ? __fget_light+0xea/0x280 [ 1220.718225][ T5225] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1220.724464][ T5225] __sys_sendmsg+0xe5/0x1b0 [ 1220.728957][ T5225] ? __sys_sendmsg_sock+0x30/0x30 [ 1220.733985][ T5225] ? syscall_enter_from_user_mode+0x21/0x70 [ 1220.739873][ T5225] do_syscall_64+0x35/0xb0 [ 1220.744285][ T5225] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1220.750173][ T5225] RIP: 0033:0x7f3e684f88d9 [ 1220.754582][ T5225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1220.774178][ T5225] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1220.782580][ T5225] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1220.790539][ T5225] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1220.798497][ T5225] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1220.806454][ T5225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1220.814409][ T5225] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:58:31 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000010582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:31 executing program 0: shmget(0x3, 0x3000, 0x0, &(0x7f0000ffc000/0x3000)=nil) 10:58:31 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befcc", 0x2d}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:31 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/dev_snmp6\x00') openat$cgroup_ro(r0, &(0x7f00000000c0)='cpuacct.usage_sys\x00', 0x0, 0x0) 10:58:31 executing program 5: pipe2(&(0x7f0000000340), 0x0) bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) 10:58:31 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {0x0}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:31 executing program 3: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x10, 0x0, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa078b25db4cb904e473730e55cff26d1b0e001d005b0200005e510befcc", 0x2d}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 10:58:31 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000000)=@gcm_128={{}, "a2ee81a5b589c2e1", "3a8b73dde2ecb3c8a8969d704e45dbf6", "e8529dc0", "0a932c1fcbc9471d"}, 0x28) 10:58:31 executing program 0: r0 = socket(0x11, 0x2, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f00000001c0)) [ 1221.044674][ T5288] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:58:31 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f00000000c0)="05b3fd3f5b564c5445766892e628ef2a", 0x10) [ 1221.092571][ T5288] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1221.132853][ T5288] CPU: 0 PID: 5288 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1221.141837][ T5288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1221.151904][ T5288] Call Trace: [ 1221.155182][ T5288] dump_stack_lvl+0xcd/0x134 [ 1221.159776][ T5288] sysfs_warn_dup.cold+0x1c/0x29 [ 1221.164715][ T5288] sysfs_do_create_link_sd+0x11e/0x140 [ 1221.170176][ T5288] sysfs_create_link+0x5f/0xc0 [ 1221.174946][ T5288] device_add+0x78f/0x21b0 [ 1221.179367][ T5288] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1221.185535][ T5288] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1221.191785][ T5288] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1221.198260][ T5288] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1221.204505][ T5288] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1221.210485][ T5288] wiphy_register+0x1e8a/0x29b0 [ 1221.215357][ T5288] ? wiphy_unregister+0xbe0/0xbe0 [ 1221.220368][ T5288] ? minstrel_ht_alloc+0x531/0xa00 [ 1221.225482][ T5288] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1221.231549][ T5288] ieee80211_register_hw+0x1f18/0x3ed0 [ 1221.237012][ T5288] ? ieee80211_restart_hw+0x290/0x290 [ 1221.242378][ T5288] ? debug_object_destroy+0x210/0x210 [ 1221.247748][ T5288] ? memset+0x20/0x40 [ 1221.251719][ T5288] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1221.257949][ T5288] ? __hrtimer_init+0x136/0x280 [ 1221.262791][ T5288] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1221.268518][ T5288] ? hwsim_virtio_rx_work+0x350/0x350 [ 1221.273883][ T5288] ? __kmalloc_track_caller+0x193/0x310 [ 1221.279427][ T5288] ? memcpy+0x39/0x60 [ 1221.283402][ T5288] hwsim_new_radio_nl+0x9bc/0x1080 [ 1221.288507][ T5288] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1221.294399][ T5288] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1221.300628][ T5288] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1221.307992][ T5288] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1221.315272][ T5288] genl_family_rcv_msg_doit+0x228/0x320 [ 1221.320810][ T5288] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1221.328261][ T5288] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1221.334502][ T5288] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1221.340730][ T5288] ? ns_capable+0xd9/0x100 [ 1221.345139][ T5288] genl_rcv_msg+0x328/0x580 [ 1221.349631][ T5288] ? genl_get_cmd+0x480/0x480 [ 1221.354300][ T5288] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1221.360184][ T5288] ? lock_release+0x720/0x720 [ 1221.364849][ T5288] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1221.370129][ T5288] netlink_rcv_skb+0x153/0x420 [ 1221.374883][ T5288] ? genl_get_cmd+0x480/0x480 [ 1221.379551][ T5288] ? netlink_ack+0xa60/0xa60 [ 1221.384133][ T5288] ? netlink_deliver_tap+0x1b1/0xc30 [ 1221.389411][ T5288] genl_rcv+0x24/0x40 [ 1221.393379][ T5288] netlink_unicast+0x533/0x7d0 [ 1221.398140][ T5288] ? netlink_attachskb+0x890/0x890 [ 1221.403240][ T5288] ? __virt_addr_valid+0x5d/0x2d0 [ 1221.408264][ T5288] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1221.414492][ T5288] ? __phys_addr_symbol+0x2c/0x70 [ 1221.419504][ T5288] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1221.425218][ T5288] ? __check_object_size+0x16e/0x3f0 [ 1221.430507][ T5288] netlink_sendmsg+0x86d/0xdb0 [ 1221.435270][ T5288] ? netlink_unicast+0x7d0/0x7d0 [ 1221.440200][ T5288] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1221.446431][ T5288] ? netlink_unicast+0x7d0/0x7d0 [ 1221.451357][ T5288] sock_sendmsg+0xcf/0x120 [ 1221.455766][ T5288] ____sys_sendmsg+0x6e8/0x810 [ 1221.460522][ T5288] ? kernel_sendmsg+0x50/0x50 [ 1221.465191][ T5288] ? do_recvmmsg+0x6d0/0x6d0 [ 1221.469776][ T5288] ? lock_chain_count+0x20/0x20 [ 1221.474621][ T5288] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1221.480597][ T5288] ___sys_sendmsg+0xf3/0x170 [ 1221.485183][ T5288] ? sendmsg_copy_msghdr+0x160/0x160 [ 1221.490461][ T5288] ? __fget_files+0x21b/0x3e0 [ 1221.495125][ T5288] ? lock_downgrade+0x6e0/0x6e0 [ 1221.499978][ T5288] ? __fget_files+0x23d/0x3e0 [ 1221.504651][ T5288] ? __fget_light+0xea/0x280 [ 1221.509227][ T5288] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1221.515468][ T5288] __sys_sendmsg+0xe5/0x1b0 [ 1221.519963][ T5288] ? __sys_sendmsg_sock+0x30/0x30 [ 1221.524989][ T5288] ? syscall_enter_from_user_mode+0x21/0x70 [ 1221.530882][ T5288] do_syscall_64+0x35/0xb0 [ 1221.535294][ T5288] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1221.541180][ T5288] RIP: 0033:0x7f3e684f88d9 [ 1221.545584][ T5288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1221.565182][ T5288] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1221.573584][ T5288] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1221.581543][ T5288] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1221.589501][ T5288] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1221.597459][ T5288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1221.605421][ T5288] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:32 executing program 0: mq_open(&(0x7f0000000000)='!\x00', 0x0, 0x0, 0x0) 10:58:32 executing program 5: r0 = socket(0x2, 0x3, 0x20) recvmmsg$unix(r0, &(0x7f0000003b00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20000121, 0x0) [ 1222.400106][ T5289] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1222.453927][ T5289] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1222.481359][ T5289] CPU: 1 PID: 5289 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1222.490259][ T5289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1222.500321][ T5289] Call Trace: [ 1222.503610][ T5289] dump_stack_lvl+0xcd/0x134 [ 1222.508220][ T5289] sysfs_warn_dup.cold+0x1c/0x29 [ 1222.513184][ T5289] sysfs_do_create_link_sd+0x11e/0x140 [ 1222.518682][ T5289] sysfs_create_link+0x5f/0xc0 [ 1222.523466][ T5289] device_add+0x78f/0x21b0 [ 1222.527903][ T5289] ? wait_for_completion_io+0x280/0x280 [ 1222.533468][ T5289] ? lock_downgrade+0x6e0/0x6e0 [ 1222.538337][ T5289] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1222.544598][ T5289] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1222.550867][ T5289] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1222.557127][ T5289] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1222.563137][ T5289] wiphy_register+0x1e8a/0x29b0 [ 1222.568010][ T5289] ? wiphy_unregister+0xbe0/0xbe0 [ 1222.573038][ T5289] ? minstrel_ht_alloc+0x531/0xa00 [ 1222.578174][ T5289] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1222.584278][ T5289] ieee80211_register_hw+0x1f18/0x3ed0 [ 1222.589769][ T5289] ? ieee80211_restart_hw+0x290/0x290 [ 1222.595162][ T5289] ? debug_object_destroy+0x210/0x210 [ 1222.600564][ T5289] ? memset+0x20/0x40 [ 1222.604564][ T5289] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1222.610831][ T5289] ? __hrtimer_init+0x136/0x280 [ 1222.615706][ T5289] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1222.621467][ T5289] ? hwsim_virtio_rx_work+0x350/0x350 [ 1222.626866][ T5289] ? __kmalloc_track_caller+0x193/0x310 [ 1222.632436][ T5289] ? memcpy+0x39/0x60 [ 1222.636429][ T5289] hwsim_new_radio_nl+0x9bc/0x1080 [ 1222.641552][ T5289] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1222.647459][ T5289] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1222.653705][ T5289] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1222.661080][ T5289] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1222.668390][ T5289] genl_family_rcv_msg_doit+0x228/0x320 [ 1222.673962][ T5289] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1222.681346][ T5289] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1222.687610][ T5289] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1222.693867][ T5289] ? ns_capable+0xd9/0x100 [ 1222.698296][ T5289] genl_rcv_msg+0x328/0x580 [ 1222.702813][ T5289] ? genl_get_cmd+0x480/0x480 [ 1222.707502][ T5289] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1222.713418][ T5289] ? lock_release+0x720/0x720 [ 1222.718117][ T5289] netlink_rcv_skb+0x153/0x420 [ 1222.722891][ T5289] ? genl_get_cmd+0x480/0x480 [ 1222.727574][ T5289] ? netlink_ack+0xa60/0xa60 [ 1222.732172][ T5289] ? netlink_deliver_tap+0x1b1/0xc30 [ 1222.737460][ T5289] ? _copy_from_iter+0x12b/0x1320 [ 1222.742499][ T5289] genl_rcv+0x24/0x40 [ 1222.746484][ T5289] netlink_unicast+0x533/0x7d0 [ 1222.751263][ T5289] ? netlink_attachskb+0x890/0x890 [ 1222.756378][ T5289] ? __virt_addr_valid+0x5d/0x2d0 [ 1222.761409][ T5289] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1222.767655][ T5289] ? __phys_addr_symbol+0x2c/0x70 [ 1222.772680][ T5289] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1222.778403][ T5289] ? __check_object_size+0x16e/0x3f0 [ 1222.783707][ T5289] netlink_sendmsg+0x86d/0xdb0 [ 1222.788483][ T5289] ? netlink_unicast+0x7d0/0x7d0 [ 1222.793428][ T5289] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1222.799674][ T5289] ? netlink_unicast+0x7d0/0x7d0 [ 1222.804618][ T5289] sock_sendmsg+0xcf/0x120 [ 1222.809045][ T5289] ____sys_sendmsg+0x6e8/0x810 [ 1222.813828][ T5289] ? kernel_sendmsg+0x50/0x50 [ 1222.818512][ T5289] ? do_recvmmsg+0x6d0/0x6d0 [ 1222.823116][ T5289] ? lock_chain_count+0x20/0x20 [ 1222.827973][ T5289] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1222.833966][ T5289] ___sys_sendmsg+0xf3/0x170 [ 1222.838564][ T5289] ? sendmsg_copy_msghdr+0x160/0x160 [ 1222.843860][ T5289] ? __fget_files+0x21b/0x3e0 [ 1222.848537][ T5289] ? lock_downgrade+0x6e0/0x6e0 [ 1222.853394][ T5289] ? __fget_files+0xe8/0x3e0 [ 1222.857993][ T5289] ? __fget_files+0x23d/0x3e0 [ 1222.862683][ T5289] ? __fget_light+0xea/0x280 [ 1222.867278][ T5289] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1222.873537][ T5289] __sys_sendmsg+0xe5/0x1b0 [ 1222.878052][ T5289] ? __sys_sendmsg_sock+0x30/0x30 [ 1222.883083][ T5289] ? lockdep_hardirqs_on+0x79/0x100 [ 1222.888301][ T5289] ? trace_hardirqs_on+0x39/0x1c0 [ 1222.893352][ T5289] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1222.899275][ T5289] do_syscall_64+0x35/0xb0 [ 1222.903714][ T5289] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1222.909630][ T5289] RIP: 0033:0x7f4637cff8d9 [ 1222.914054][ T5289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1222.934023][ T5289] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1222.942456][ T5289] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1222.950699][ T5289] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1222.958680][ T5289] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1222.966666][ T5289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1222.974739][ T5289] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1223.013361][ T5294] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1223.053037][ T5294] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1223.105447][ T5294] CPU: 1 PID: 5294 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1223.114343][ T5294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1223.124396][ T5294] Call Trace: [ 1223.127669][ T5294] dump_stack_lvl+0xcd/0x134 [ 1223.132260][ T5294] sysfs_warn_dup.cold+0x1c/0x29 [ 1223.137188][ T5294] sysfs_do_create_link_sd+0x11e/0x140 [ 1223.142652][ T5294] sysfs_create_link+0x5f/0xc0 [ 1223.147413][ T5294] device_add+0x78f/0x21b0 [ 1223.151828][ T5294] ? wait_for_completion_io+0x280/0x280 [ 1223.157368][ T5294] ? lock_downgrade+0x6e0/0x6e0 [ 1223.162213][ T5294] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1223.168455][ T5294] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1223.174785][ T5294] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1223.181428][ T5294] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1223.187941][ T5294] wiphy_register+0x1e8a/0x29b0 [ 1223.192802][ T5294] ? wiphy_unregister+0xbe0/0xbe0 [ 1223.197819][ T5294] ? minstrel_ht_alloc+0x531/0xa00 [ 1223.202934][ T5294] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1223.209002][ T5294] ieee80211_register_hw+0x1f18/0x3ed0 [ 1223.214469][ T5294] ? ieee80211_restart_hw+0x290/0x290 [ 1223.219840][ T5294] ? debug_object_destroy+0x210/0x210 [ 1223.225217][ T5294] ? memset+0x20/0x40 [ 1223.229229][ T5294] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1223.235469][ T5294] ? __hrtimer_init+0x136/0x280 [ 1223.240317][ T5294] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1223.246044][ T5294] ? hwsim_virtio_rx_work+0x350/0x350 [ 1223.251405][ T5294] ? __kmalloc_track_caller+0x193/0x310 [ 1223.256949][ T5294] ? memcpy+0x39/0x60 [ 1223.260923][ T5294] hwsim_new_radio_nl+0x9bc/0x1080 [ 1223.266029][ T5294] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1223.271925][ T5294] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1223.278159][ T5294] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1223.285528][ T5294] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1223.292812][ T5294] genl_family_rcv_msg_doit+0x228/0x320 [ 1223.298353][ T5294] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1223.305718][ T5294] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1223.311964][ T5294] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1223.318228][ T5294] ? ns_capable+0xd9/0x100 [ 1223.322647][ T5294] genl_rcv_msg+0x328/0x580 [ 1223.327148][ T5294] ? genl_get_cmd+0x480/0x480 [ 1223.331813][ T5294] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1223.337703][ T5294] ? lock_release+0x720/0x720 [ 1223.342376][ T5294] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1223.347656][ T5294] netlink_rcv_skb+0x153/0x420 [ 1223.352411][ T5294] ? genl_get_cmd+0x480/0x480 [ 1223.357086][ T5294] ? netlink_ack+0xa60/0xa60 [ 1223.361671][ T5294] ? netlink_deliver_tap+0x1b1/0xc30 [ 1223.366952][ T5294] genl_rcv+0x24/0x40 [ 1223.370924][ T5294] netlink_unicast+0x533/0x7d0 [ 1223.375679][ T5294] ? netlink_attachskb+0x890/0x890 [ 1223.380780][ T5294] ? __virt_addr_valid+0x5d/0x2d0 [ 1223.385799][ T5294] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1223.392032][ T5294] ? __phys_addr_symbol+0x2c/0x70 [ 1223.397044][ T5294] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1223.402755][ T5294] ? __check_object_size+0x16e/0x3f0 [ 1223.408044][ T5294] netlink_sendmsg+0x86d/0xdb0 [ 1223.412809][ T5294] ? netlink_unicast+0x7d0/0x7d0 [ 1223.417739][ T5294] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1223.423980][ T5294] ? netlink_unicast+0x7d0/0x7d0 [ 1223.428909][ T5294] sock_sendmsg+0xcf/0x120 [ 1223.433319][ T5294] ____sys_sendmsg+0x6e8/0x810 [ 1223.438077][ T5294] ? kernel_sendmsg+0x50/0x50 [ 1223.442747][ T5294] ? do_recvmmsg+0x6d0/0x6d0 [ 1223.447333][ T5294] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1223.453312][ T5294] ___sys_sendmsg+0xf3/0x170 [ 1223.457898][ T5294] ? sendmsg_copy_msghdr+0x160/0x160 [ 1223.463179][ T5294] ? __fget_files+0x21b/0x3e0 [ 1223.467846][ T5294] ? lock_downgrade+0x6e0/0x6e0 [ 1223.472700][ T5294] ? __fget_files+0x23d/0x3e0 [ 1223.477373][ T5294] ? __fget_light+0xea/0x280 [ 1223.481954][ T5294] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1223.488191][ T5294] __sys_sendmsg+0xe5/0x1b0 [ 1223.492691][ T5294] ? __sys_sendmsg_sock+0x30/0x30 [ 1223.497715][ T5294] ? syscall_enter_from_user_mode+0x21/0x70 [ 1223.503607][ T5294] do_syscall_64+0x35/0xb0 [ 1223.508020][ T5294] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1223.513911][ T5294] RIP: 0033:0x7f3e684f88d9 [ 1223.518315][ T5294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1223.537918][ T5294] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1223.546325][ T5294] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1223.554286][ T5294] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1223.562252][ T5294] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1223.570219][ T5294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1223.578187][ T5294] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:58:34 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000010682c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:34 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x4800000}, 0x1c) 10:58:34 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000180), 0x4) 10:58:34 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x5, &(0x7f00000000c0), 0x4) 10:58:34 executing program 3: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='net/protocols\x00') 10:58:34 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {0x0}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:34 executing program 4: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/vlan/vlan1\x00') 10:58:34 executing program 3: openat$procfs(0xffffffffffffff9c, &(0x7f00000030c0)='/proc/consoles\x00', 0x0, 0x0) 10:58:34 executing program 0: socketpair(0xa, 0x1, 0x0, 0x0) 10:58:34 executing program 5: add_key$keyring(&(0x7f0000000240), 0x0, 0x0, 0x0, 0xffffffffffffffff) [ 1223.809587][ T5356] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. 10:58:34 executing program 0: openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x40043, 0x0) [ 1223.897974][ T5356] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1223.925364][ T5356] CPU: 1 PID: 5356 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1223.934274][ T5356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1223.944344][ T5356] Call Trace: [ 1223.947637][ T5356] dump_stack_lvl+0xcd/0x134 [ 1223.952256][ T5356] sysfs_warn_dup.cold+0x1c/0x29 [ 1223.957217][ T5356] sysfs_do_create_link_sd+0x11e/0x140 [ 1223.962717][ T5356] sysfs_create_link+0x5f/0xc0 [ 1223.967506][ T5356] device_add+0x78f/0x21b0 [ 1223.971947][ T5356] ? wait_for_completion_io+0x280/0x280 [ 1223.977509][ T5356] ? lock_downgrade+0x6e0/0x6e0 [ 1223.982376][ T5356] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1223.988624][ T5356] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 10:58:34 executing program 5: r0 = socket$netlink(0x10, 0x3, 0xa) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x28, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0) [ 1223.994878][ T5356] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1224.001126][ T5356] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1224.007119][ T5356] wiphy_register+0x1e8a/0x29b0 [ 1224.011988][ T5356] ? wiphy_unregister+0xbe0/0xbe0 [ 1224.017014][ T5356] ? minstrel_ht_alloc+0x531/0xa00 [ 1224.022145][ T5356] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1224.028228][ T5356] ieee80211_register_hw+0x1f18/0x3ed0 [ 1224.033717][ T5356] ? ieee80211_restart_hw+0x290/0x290 [ 1224.039103][ T5356] ? debug_object_destroy+0x210/0x210 [ 1224.044492][ T5356] ? memset+0x20/0x40 [ 1224.048479][ T5356] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1224.054728][ T5356] ? __hrtimer_init+0x136/0x280 [ 1224.059584][ T5356] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1224.065327][ T5356] ? hwsim_virtio_rx_work+0x350/0x350 [ 1224.070707][ T5356] ? __kmalloc_track_caller+0x193/0x310 [ 1224.076265][ T5356] ? memcpy+0x39/0x60 [ 1224.080257][ T5356] hwsim_new_radio_nl+0x9bc/0x1080 [ 1224.085376][ T5356] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1224.091286][ T5356] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1224.097535][ T5356] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1224.104912][ T5356] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1224.112207][ T5356] genl_family_rcv_msg_doit+0x228/0x320 [ 1224.117769][ T5356] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1224.125145][ T5356] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1224.131403][ T5356] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1224.137648][ T5356] ? ns_capable+0xd9/0x100 [ 1224.142079][ T5356] genl_rcv_msg+0x328/0x580 [ 1224.146604][ T5356] ? genl_get_cmd+0x480/0x480 [ 1224.151298][ T5356] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1224.157218][ T5356] ? lock_release+0x720/0x720 [ 1224.161924][ T5356] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 1224.167754][ T5356] netlink_rcv_skb+0x153/0x420 [ 1224.172536][ T5356] ? genl_get_cmd+0x480/0x480 [ 1224.177230][ T5356] ? netlink_ack+0xa60/0xa60 [ 1224.181850][ T5356] ? netlink_deliver_tap+0x1b1/0xc30 [ 1224.187157][ T5356] genl_rcv+0x24/0x40 [ 1224.191148][ T5356] netlink_unicast+0x533/0x7d0 [ 1224.195927][ T5356] ? netlink_attachskb+0x890/0x890 [ 1224.201049][ T5356] ? __virt_addr_valid+0x5d/0x2d0 [ 1224.206096][ T5356] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1224.212357][ T5356] ? __phys_addr_symbol+0x2c/0x70 [ 1224.217400][ T5356] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1224.223140][ T5356] ? __check_object_size+0x16e/0x3f0 [ 1224.228455][ T5356] netlink_sendmsg+0x86d/0xdb0 [ 1224.233251][ T5356] ? netlink_unicast+0x7d0/0x7d0 [ 1224.238210][ T5356] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1224.244478][ T5356] ? netlink_unicast+0x7d0/0x7d0 [ 1224.249435][ T5356] sock_sendmsg+0xcf/0x120 [ 1224.253874][ T5356] ____sys_sendmsg+0x6e8/0x810 [ 1224.258660][ T5356] ? kernel_sendmsg+0x50/0x50 [ 1224.263356][ T5356] ? do_recvmmsg+0x6d0/0x6d0 [ 1224.267969][ T5356] ? lock_chain_count+0x20/0x20 [ 1224.272838][ T5356] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1224.278846][ T5356] ___sys_sendmsg+0xf3/0x170 [ 1224.283461][ T5356] ? sendmsg_copy_msghdr+0x160/0x160 [ 1224.288772][ T5356] ? __fget_files+0x21b/0x3e0 [ 1224.293461][ T5356] ? lock_downgrade+0x6e0/0x6e0 [ 1224.298335][ T5356] ? __fget_files+0x23d/0x3e0 [ 1224.303027][ T5356] ? __fget_light+0xea/0x280 [ 1224.307632][ T5356] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1224.313897][ T5356] __sys_sendmsg+0xe5/0x1b0 [ 1224.318420][ T5356] ? __sys_sendmsg_sock+0x30/0x30 [ 1224.323486][ T5356] ? syscall_enter_from_user_mode+0x21/0x70 [ 1224.329403][ T5356] do_syscall_64+0x35/0xb0 [ 1224.333841][ T5356] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1224.339756][ T5356] RIP: 0033:0x7f3e684f88d9 [ 1224.344182][ T5356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1224.363806][ T5356] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1224.372239][ T5356] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1224.380233][ T5356] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1224.388222][ T5356] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1224.396210][ T5356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1224.404202][ T5356] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1224.885872][ T5370] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1224.919609][ T5370] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1224.941553][ T5370] CPU: 0 PID: 5370 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1224.950362][ T5370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1224.960430][ T5370] Call Trace: [ 1224.963719][ T5370] dump_stack_lvl+0xcd/0x134 [ 1224.968338][ T5370] sysfs_warn_dup.cold+0x1c/0x29 [ 1224.973291][ T5370] sysfs_do_create_link_sd+0x11e/0x140 [ 1224.978778][ T5370] sysfs_create_link+0x5f/0xc0 [ 1224.983568][ T5370] device_add+0x78f/0x21b0 [ 1224.988007][ T5370] ? __sanitizer_cov_trace_switch+0x5e/0xf0 [ 1224.993925][ T5370] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1225.000184][ T5370] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1225.006440][ T5370] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.012687][ T5370] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1225.018682][ T5370] wiphy_register+0x1e8a/0x29b0 [ 1225.023537][ T5370] ? wiphy_unregister+0xbe0/0xbe0 [ 1225.028553][ T5370] ? minstrel_ht_alloc+0x531/0xa00 [ 1225.033665][ T5370] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1225.039736][ T5370] ieee80211_register_hw+0x1f18/0x3ed0 [ 1225.045380][ T5370] ? ieee80211_restart_hw+0x290/0x290 [ 1225.050751][ T5370] ? debug_object_destroy+0x210/0x210 [ 1225.056125][ T5370] ? memset+0x20/0x40 [ 1225.060098][ T5370] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.066335][ T5370] ? __hrtimer_init+0x136/0x280 [ 1225.071180][ T5370] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1225.076911][ T5370] ? hwsim_virtio_rx_work+0x350/0x350 [ 1225.082279][ T5370] ? __kmalloc_track_caller+0x193/0x310 [ 1225.087824][ T5370] ? memcpy+0x39/0x60 [ 1225.091802][ T5370] hwsim_new_radio_nl+0x9bc/0x1080 [ 1225.096911][ T5370] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1225.102803][ T5370] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.109039][ T5370] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1225.116404][ T5370] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1225.123687][ T5370] genl_family_rcv_msg_doit+0x228/0x320 [ 1225.129235][ T5370] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1225.136611][ T5370] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.142855][ T5370] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.149092][ T5370] ? ns_capable+0xd9/0x100 [ 1225.153503][ T5370] genl_rcv_msg+0x328/0x580 [ 1225.158001][ T5370] ? genl_get_cmd+0x480/0x480 [ 1225.162665][ T5370] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1225.168566][ T5370] ? lock_release+0x720/0x720 [ 1225.173255][ T5370] netlink_rcv_skb+0x153/0x420 [ 1225.178015][ T5370] ? genl_get_cmd+0x480/0x480 [ 1225.182692][ T5370] ? netlink_ack+0xa60/0xa60 [ 1225.187280][ T5370] ? netlink_deliver_tap+0x1b1/0xc30 [ 1225.192558][ T5370] ? _copy_from_iter+0x12b/0x1320 [ 1225.197584][ T5370] genl_rcv+0x24/0x40 [ 1225.201560][ T5370] netlink_unicast+0x533/0x7d0 [ 1225.206320][ T5370] ? netlink_attachskb+0x890/0x890 [ 1225.211422][ T5370] ? __virt_addr_valid+0x5d/0x2d0 [ 1225.216440][ T5370] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1225.222678][ T5370] ? __phys_addr_symbol+0x2c/0x70 [ 1225.227696][ T5370] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1225.233416][ T5370] ? __check_object_size+0x16e/0x3f0 [ 1225.238704][ T5370] netlink_sendmsg+0x86d/0xdb0 [ 1225.243471][ T5370] ? netlink_unicast+0x7d0/0x7d0 [ 1225.248665][ T5370] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.254903][ T5370] ? netlink_unicast+0x7d0/0x7d0 [ 1225.259837][ T5370] sock_sendmsg+0xcf/0x120 [ 1225.264250][ T5370] ____sys_sendmsg+0x6e8/0x810 [ 1225.269011][ T5370] ? kernel_sendmsg+0x50/0x50 [ 1225.273679][ T5370] ? do_recvmmsg+0x6d0/0x6d0 [ 1225.278265][ T5370] ? lock_chain_count+0x20/0x20 [ 1225.283109][ T5370] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1225.289079][ T5370] ? lock_chain_count+0x20/0x20 [ 1225.293933][ T5370] ___sys_sendmsg+0xf3/0x170 [ 1225.298521][ T5370] ? sendmsg_copy_msghdr+0x160/0x160 [ 1225.303805][ T5370] ? __fget_files+0x21b/0x3e0 [ 1225.308472][ T5370] ? lock_downgrade+0x6e0/0x6e0 [ 1225.313327][ T5370] ? __fget_files+0x23d/0x3e0 [ 1225.317998][ T5370] ? __fget_light+0xea/0x280 [ 1225.322577][ T5370] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1225.328814][ T5370] __sys_sendmsg+0xe5/0x1b0 [ 1225.333315][ T5370] ? __sys_sendmsg_sock+0x30/0x30 [ 1225.338346][ T5370] ? syscall_enter_from_user_mode+0x21/0x70 [ 1225.344241][ T5370] do_syscall_64+0x35/0xb0 [ 1225.348660][ T5370] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1225.354549][ T5370] RIP: 0033:0x7f4637cff8d9 [ 1225.358958][ T5370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1225.378564][ T5370] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1225.386974][ T5370] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1225.394936][ T5370] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1225.402900][ T5370] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1225.410865][ T5370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1225.418832][ T5370] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1225.470644][ T5358] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1225.496417][ T5358] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1225.523134][ T5358] CPU: 1 PID: 5358 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1225.531944][ T5358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1225.542008][ T5358] Call Trace: [ 1225.545286][ T5358] dump_stack_lvl+0xcd/0x134 [ 1225.549881][ T5358] sysfs_warn_dup.cold+0x1c/0x29 [ 1225.554823][ T5358] sysfs_do_create_link_sd+0x11e/0x140 [ 1225.560292][ T5358] sysfs_create_link+0x5f/0xc0 [ 1225.565064][ T5358] device_add+0x78f/0x21b0 [ 1225.569485][ T5358] ? wait_for_completion_io+0x280/0x280 [ 1225.575031][ T5358] ? lock_downgrade+0x6e0/0x6e0 [ 1225.579885][ T5358] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1225.586137][ T5358] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1225.592383][ T5358] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.598623][ T5358] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1225.604612][ T5358] wiphy_register+0x1e8a/0x29b0 [ 1225.609471][ T5358] ? wiphy_unregister+0xbe0/0xbe0 [ 1225.614490][ T5358] ? minstrel_ht_alloc+0x531/0xa00 [ 1225.619611][ T5358] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1225.625691][ T5358] ieee80211_register_hw+0x1f18/0x3ed0 [ 1225.631170][ T5358] ? ieee80211_restart_hw+0x290/0x290 [ 1225.636546][ T5358] ? debug_object_destroy+0x210/0x210 [ 1225.642017][ T5358] ? memset+0x20/0x40 [ 1225.646000][ T5358] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.652240][ T5358] ? __hrtimer_init+0x136/0x280 [ 1225.657099][ T5358] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1225.662835][ T5358] ? hwsim_virtio_rx_work+0x350/0x350 [ 1225.668201][ T5358] ? __kmalloc_track_caller+0x193/0x310 [ 1225.673756][ T5358] ? memcpy+0x39/0x60 [ 1225.677741][ T5358] hwsim_new_radio_nl+0x9bc/0x1080 [ 1225.682856][ T5358] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1225.688759][ T5358] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.695004][ T5358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1225.702375][ T5358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1225.709665][ T5358] genl_family_rcv_msg_doit+0x228/0x320 [ 1225.715216][ T5358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1225.722592][ T5358] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.728847][ T5358] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.735087][ T5358] ? ns_capable+0xd9/0x100 [ 1225.739507][ T5358] genl_rcv_msg+0x328/0x580 [ 1225.744013][ T5358] ? genl_get_cmd+0x480/0x480 [ 1225.748690][ T5358] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1225.754588][ T5358] ? lock_release+0x720/0x720 [ 1225.759265][ T5358] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1225.764555][ T5358] netlink_rcv_skb+0x153/0x420 [ 1225.769319][ T5358] ? genl_get_cmd+0x480/0x480 [ 1225.773995][ T5358] ? netlink_ack+0xa60/0xa60 [ 1225.778595][ T5358] ? netlink_deliver_tap+0x1b1/0xc30 [ 1225.783883][ T5358] genl_rcv+0x24/0x40 [ 1225.787862][ T5358] netlink_unicast+0x533/0x7d0 [ 1225.792631][ T5358] ? netlink_attachskb+0x890/0x890 [ 1225.797742][ T5358] ? __virt_addr_valid+0x5d/0x2d0 [ 1225.802769][ T5358] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1225.809009][ T5358] ? __phys_addr_symbol+0x2c/0x70 [ 1225.814034][ T5358] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1225.819755][ T5358] ? __check_object_size+0x16e/0x3f0 [ 1225.825051][ T5358] netlink_sendmsg+0x86d/0xdb0 [ 1225.829820][ T5358] ? netlink_unicast+0x7d0/0x7d0 [ 1225.834762][ T5358] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1225.841012][ T5358] ? netlink_unicast+0x7d0/0x7d0 [ 1225.845948][ T5358] sock_sendmsg+0xcf/0x120 [ 1225.850368][ T5358] ____sys_sendmsg+0x6e8/0x810 [ 1225.855135][ T5358] ? kernel_sendmsg+0x50/0x50 [ 1225.859808][ T5358] ? do_recvmmsg+0x6d0/0x6d0 [ 1225.864578][ T5358] ? lock_chain_count+0x20/0x20 [ 1225.869428][ T5358] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1225.875419][ T5358] ___sys_sendmsg+0xf3/0x170 [ 1225.880012][ T5358] ? sendmsg_copy_msghdr+0x160/0x160 [ 1225.885305][ T5358] ? __fget_files+0x21b/0x3e0 [ 1225.889979][ T5358] ? lock_downgrade+0x6e0/0x6e0 [ 1225.894843][ T5358] ? __fget_files+0x23d/0x3e0 [ 1225.899525][ T5358] ? __fget_light+0xea/0x280 [ 1225.904115][ T5358] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1225.910359][ T5358] __sys_sendmsg+0xe5/0x1b0 [ 1225.914865][ T5358] ? __sys_sendmsg_sock+0x30/0x30 [ 1225.919903][ T5358] ? syscall_enter_from_user_mode+0x21/0x70 [ 1225.925803][ T5358] do_syscall_64+0x35/0xb0 [ 1225.930310][ T5358] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1225.936294][ T5358] RIP: 0033:0x7f3e684f88d9 [ 1225.940878][ T5358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1225.960484][ T5358] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1225.968898][ T5358] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1225.976863][ T5358] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1225.984830][ T5358] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1225.992794][ T5358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1226.000761][ T5358] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:58:36 executing program 5: syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter6\x00') 10:58:36 executing program 0: waitid(0x0, 0xffffffffffffffff, &(0x7f0000000040), 0xa1000012, &(0x7f00000000c0)) 10:58:36 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, 0xfffffffffffffffe) 10:58:36 executing program 3: pipe2(&(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000000)) 10:58:36 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000010782c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:36 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000280)=""/41, 0x29}], 0x1, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:36 executing program 4: perf_event_open(&(0x7f0000000000)={0x1000000002, 0x80, 0x800000000000013, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sysfs$3(0x3) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) 10:58:36 executing program 0: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='io\x00') 10:58:36 executing program 5: r0 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$search(0xa, r0, &(0x7f00000002c0)='user\x00', &(0x7f0000000300)={'syz', 0x1}, 0xfffffffffffffffa) 10:58:36 executing program 3: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000a00)='fd\x00') openat$cgroup_devices(r0, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0) [ 1226.227242][ T5426] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1226.312922][ T5426] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1226.349040][ T5426] CPU: 0 PID: 5426 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1226.357945][ T5426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1226.368001][ T5426] Call Trace: [ 1226.371275][ T5426] dump_stack_lvl+0xcd/0x134 [ 1226.375861][ T5426] sysfs_warn_dup.cold+0x1c/0x29 [ 1226.380793][ T5426] sysfs_do_create_link_sd+0x11e/0x140 [ 1226.386253][ T5426] sysfs_create_link+0x5f/0xc0 [ 1226.391018][ T5426] device_add+0x78f/0x21b0 [ 1226.395434][ T5426] ? wait_for_completion_io+0x280/0x280 [ 1226.400976][ T5426] ? lock_downgrade+0x6e0/0x6e0 [ 1226.405825][ T5426] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1226.412073][ T5426] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1226.418312][ T5426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1226.424550][ T5426] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1226.430535][ T5426] wiphy_register+0x1e8a/0x29b0 [ 1226.435392][ T5426] ? wiphy_unregister+0xbe0/0xbe0 [ 1226.440411][ T5426] ? minstrel_ht_alloc+0x531/0xa00 [ 1226.445523][ T5426] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1226.451592][ T5426] ieee80211_register_hw+0x1f18/0x3ed0 [ 1226.457061][ T5426] ? ieee80211_restart_hw+0x290/0x290 [ 1226.462432][ T5426] ? debug_object_destroy+0x210/0x210 [ 1226.467809][ T5426] ? memset+0x20/0x40 [ 1226.471788][ T5426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1226.478026][ T5426] ? __hrtimer_init+0x136/0x280 [ 1226.482878][ T5426] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1226.488609][ T5426] ? hwsim_virtio_rx_work+0x350/0x350 [ 1226.493979][ T5426] ? __kmalloc_track_caller+0x193/0x310 [ 1226.499525][ T5426] ? memcpy+0x39/0x60 [ 1226.503508][ T5426] hwsim_new_radio_nl+0x9bc/0x1080 [ 1226.508620][ T5426] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1226.514518][ T5426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1226.520765][ T5426] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1226.528138][ T5426] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1226.535425][ T5426] genl_family_rcv_msg_doit+0x228/0x320 [ 1226.540969][ T5426] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1226.548335][ T5426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1226.554581][ T5426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1226.560822][ T5426] ? ns_capable+0xd9/0x100 [ 1226.565239][ T5426] genl_rcv_msg+0x328/0x580 [ 1226.569747][ T5426] ? genl_get_cmd+0x480/0x480 [ 1226.574419][ T5426] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1226.580311][ T5426] ? lock_release+0x720/0x720 [ 1226.584984][ T5426] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1226.590273][ T5426] netlink_rcv_skb+0x153/0x420 [ 1226.595040][ T5426] ? genl_get_cmd+0x480/0x480 [ 1226.599711][ T5426] ? netlink_ack+0xa60/0xa60 [ 1226.604305][ T5426] ? netlink_deliver_tap+0x1b1/0xc30 [ 1226.609583][ T5426] genl_rcv+0x24/0x40 [ 1226.613558][ T5426] netlink_unicast+0x533/0x7d0 [ 1226.618318][ T5426] ? netlink_attachskb+0x890/0x890 [ 1226.623420][ T5426] ? __virt_addr_valid+0x5d/0x2d0 [ 1226.628444][ T5426] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1226.634683][ T5426] ? __phys_addr_symbol+0x2c/0x70 [ 1226.639708][ T5426] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1226.645434][ T5426] ? __check_object_size+0x16e/0x3f0 [ 1226.650722][ T5426] netlink_sendmsg+0x86d/0xdb0 [ 1226.655490][ T5426] ? netlink_unicast+0x7d0/0x7d0 [ 1226.660424][ T5426] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1226.666664][ T5426] ? netlink_unicast+0x7d0/0x7d0 [ 1226.671597][ T5426] sock_sendmsg+0xcf/0x120 [ 1226.676007][ T5426] ____sys_sendmsg+0x6e8/0x810 [ 1226.680764][ T5426] ? kernel_sendmsg+0x50/0x50 [ 1226.685433][ T5426] ? do_recvmmsg+0x6d0/0x6d0 [ 1226.690016][ T5426] ? lock_chain_count+0x20/0x20 [ 1226.694857][ T5426] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1226.700840][ T5426] ___sys_sendmsg+0xf3/0x170 [ 1226.705430][ T5426] ? sendmsg_copy_msghdr+0x160/0x160 [ 1226.710716][ T5426] ? __fget_files+0x21b/0x3e0 [ 1226.715398][ T5426] ? lock_downgrade+0x6e0/0x6e0 [ 1226.720252][ T5426] ? __fget_files+0x23d/0x3e0 [ 1226.724929][ T5426] ? __fget_light+0xea/0x280 [ 1226.729519][ T5426] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1226.735761][ T5426] __sys_sendmsg+0xe5/0x1b0 [ 1226.740260][ T5426] ? __sys_sendmsg_sock+0x30/0x30 [ 1226.745291][ T5426] ? syscall_enter_from_user_mode+0x21/0x70 [ 1226.751192][ T5426] do_syscall_64+0x35/0xb0 [ 1226.755610][ T5426] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1226.761501][ T5426] RIP: 0033:0x7f3e684f88d9 [ 1226.766304][ T5426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1226.785913][ T5426] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1226.794326][ T5426] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1226.802292][ T5426] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1226.810258][ T5426] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1226.818221][ T5426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1226.826181][ T5426] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:37 executing program 5: add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) getrusage(0x1, &(0x7f0000000180)) 10:58:37 executing program 3: r0 = socket$inet(0x2, 0x3, 0x80000000002) setsockopt$inet_int(r0, 0x0, 0xc8, &(0x7f0000000080), 0x4) 10:58:37 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, 0x0) 10:58:37 executing program 5: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x1d}, 0x20) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000200)=""/102400, 0x19000}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 10:58:37 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) recvmsg(r0, &(0x7f0000001480)={0x0, 0x0, 0x0}, 0x120) sendmsg$IPSET_CMD_GET_BYINDEX(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002680)=ANY=[@ANYBLOB="140000000f0601"], 0x14}}, 0x0) 10:58:37 executing program 0: timer_create(0x0, 0x0, &(0x7f0000000080)) timer_settime(0x0, 0x1, &(0x7f0000000200)={{0x77359400}, {0x77359400}}, 0x0) timer_gettime(0x0, &(0x7f0000000040)) [ 1227.208242][ T5427] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1227.260125][ T5427] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1227.300857][ T5427] CPU: 0 PID: 5427 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1227.309664][ T5427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1227.319735][ T5427] Call Trace: [ 1227.323022][ T5427] dump_stack_lvl+0xcd/0x134 [ 1227.327636][ T5427] sysfs_warn_dup.cold+0x1c/0x29 [ 1227.332594][ T5427] sysfs_do_create_link_sd+0x11e/0x140 [ 1227.338084][ T5427] sysfs_create_link+0x5f/0xc0 [ 1227.342875][ T5427] device_add+0x78f/0x21b0 [ 1227.347315][ T5427] ? wait_for_completion_io+0x280/0x280 [ 1227.352875][ T5427] ? lock_downgrade+0x6e0/0x6e0 [ 1227.357740][ T5427] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1227.363997][ T5427] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1227.370261][ T5427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1227.376523][ T5427] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1227.382529][ T5427] wiphy_register+0x1e8a/0x29b0 [ 1227.387407][ T5427] ? wiphy_unregister+0xbe0/0xbe0 [ 1227.392454][ T5427] ? minstrel_ht_alloc+0x531/0xa00 [ 1227.397592][ T5427] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1227.403672][ T5427] ieee80211_register_hw+0x1f18/0x3ed0 [ 1227.409142][ T5427] ? ieee80211_restart_hw+0x290/0x290 [ 1227.414512][ T5427] ? debug_object_destroy+0x210/0x210 [ 1227.419885][ T5427] ? memset+0x20/0x40 [ 1227.423862][ T5427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1227.430100][ T5427] ? __hrtimer_init+0x136/0x280 [ 1227.434958][ T5427] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1227.440691][ T5427] ? hwsim_virtio_rx_work+0x350/0x350 [ 1227.446064][ T5427] ? __kmalloc_track_caller+0x193/0x310 [ 1227.451610][ T5427] ? memcpy+0x39/0x60 [ 1227.455587][ T5427] hwsim_new_radio_nl+0x9bc/0x1080 [ 1227.460696][ T5427] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1227.466587][ T5427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1227.472824][ T5427] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1227.480194][ T5427] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1227.487490][ T5427] genl_family_rcv_msg_doit+0x228/0x320 [ 1227.493034][ T5427] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1227.500399][ T5427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1227.506645][ T5427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1227.512879][ T5427] ? ns_capable+0xd9/0x100 [ 1227.517290][ T5427] genl_rcv_msg+0x328/0x580 [ 1227.521787][ T5427] ? genl_get_cmd+0x480/0x480 [ 1227.526450][ T5427] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1227.532601][ T5427] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1227.538501][ T5427] netlink_rcv_skb+0x153/0x420 [ 1227.543264][ T5427] ? genl_get_cmd+0x480/0x480 [ 1227.547932][ T5427] ? netlink_ack+0xa60/0xa60 [ 1227.552518][ T5427] ? netlink_deliver_tap+0x1b1/0xc30 [ 1227.557791][ T5427] ? kcov_remote_stop+0x3a0/0x3a0 [ 1227.562809][ T5427] genl_rcv+0x24/0x40 [ 1227.566781][ T5427] netlink_unicast+0x533/0x7d0 [ 1227.571539][ T5427] ? netlink_attachskb+0x890/0x890 [ 1227.576638][ T5427] ? __virt_addr_valid+0x5d/0x2d0 [ 1227.581656][ T5427] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1227.587890][ T5427] ? __phys_addr_symbol+0x2c/0x70 [ 1227.592906][ T5427] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1227.598617][ T5427] ? __check_object_size+0x16e/0x3f0 [ 1227.603900][ T5427] netlink_sendmsg+0x86d/0xdb0 [ 1227.608664][ T5427] ? netlink_unicast+0x7d0/0x7d0 [ 1227.613602][ T5427] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1227.619841][ T5427] ? netlink_unicast+0x7d0/0x7d0 [ 1227.624774][ T5427] sock_sendmsg+0xcf/0x120 [ 1227.629187][ T5427] ____sys_sendmsg+0x6e8/0x810 [ 1227.633950][ T5427] ? kernel_sendmsg+0x50/0x50 [ 1227.638616][ T5427] ? do_recvmmsg+0x6d0/0x6d0 [ 1227.643202][ T5427] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1227.649181][ T5427] ? lock_chain_count+0x20/0x20 [ 1227.654036][ T5427] ___sys_sendmsg+0xf3/0x170 [ 1227.658625][ T5427] ? sendmsg_copy_msghdr+0x160/0x160 [ 1227.663912][ T5427] ? __fget_files+0x21b/0x3e0 [ 1227.668582][ T5427] ? lock_downgrade+0x6e0/0x6e0 [ 1227.673440][ T5427] ? __fget_files+0x23d/0x3e0 [ 1227.678117][ T5427] ? __fget_light+0xea/0x280 [ 1227.682701][ T5427] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1227.688940][ T5427] __sys_sendmsg+0xe5/0x1b0 [ 1227.693442][ T5427] ? __sys_sendmsg_sock+0x30/0x30 [ 1227.698474][ T5427] ? syscall_enter_from_user_mode+0x21/0x70 [ 1227.704455][ T5427] do_syscall_64+0x35/0xb0 [ 1227.708874][ T5427] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1227.714768][ T5427] RIP: 0033:0x7f4637cff8d9 [ 1227.719178][ T5427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1227.738783][ T5427] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1227.747195][ T5427] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1227.755160][ T5427] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1227.763124][ T5427] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1227.771089][ T5427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1227.779055][ T5427] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1228.468147][ T5431] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1228.491778][ T5431] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1228.516502][ T5431] CPU: 1 PID: 5431 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1228.525313][ T5431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1228.535381][ T5431] Call Trace: [ 1228.538671][ T5431] dump_stack_lvl+0xcd/0x134 [ 1228.543278][ T5431] sysfs_warn_dup.cold+0x1c/0x29 [ 1228.548230][ T5431] sysfs_do_create_link_sd+0x11e/0x140 [ 1228.553719][ T5431] sysfs_create_link+0x5f/0xc0 [ 1228.558511][ T5431] device_add+0x78f/0x21b0 [ 1228.562951][ T5431] ? wait_for_completion_io+0x280/0x280 [ 1228.568509][ T5431] ? lock_downgrade+0x6e0/0x6e0 [ 1228.573374][ T5431] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1228.579627][ T5431] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1228.585882][ T5431] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1228.592141][ T5431] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1228.598147][ T5431] wiphy_register+0x1e8a/0x29b0 [ 1228.603026][ T5431] ? wiphy_unregister+0xbe0/0xbe0 [ 1228.608060][ T5431] ? minstrel_ht_alloc+0x531/0xa00 [ 1228.613198][ T5431] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1228.619295][ T5431] ieee80211_register_hw+0x1f18/0x3ed0 [ 1228.624795][ T5431] ? ieee80211_restart_hw+0x290/0x290 [ 1228.630187][ T5431] ? debug_object_destroy+0x210/0x210 [ 1228.635584][ T5431] ? memset+0x20/0x40 [ 1228.639575][ T5431] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1228.645824][ T5431] ? __hrtimer_init+0x136/0x280 [ 1228.650684][ T5431] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1228.656440][ T5431] ? hwsim_virtio_rx_work+0x350/0x350 [ 1228.661830][ T5431] ? __kmalloc_track_caller+0x193/0x310 [ 1228.667400][ T5431] ? memcpy+0x39/0x60 [ 1228.671402][ T5431] hwsim_new_radio_nl+0x9bc/0x1080 [ 1228.676532][ T5431] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1228.682452][ T5431] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1228.688706][ T5431] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1228.696098][ T5431] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1228.703403][ T5431] genl_family_rcv_msg_doit+0x228/0x320 [ 1228.708966][ T5431] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1228.716354][ T5431] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1228.722627][ T5431] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1228.728883][ T5431] ? ns_capable+0xd9/0x100 [ 1228.733313][ T5431] genl_rcv_msg+0x328/0x580 [ 1228.737838][ T5431] ? genl_get_cmd+0x480/0x480 [ 1228.742525][ T5431] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1228.748436][ T5431] ? lock_release+0x720/0x720 [ 1228.753130][ T5431] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1228.758434][ T5431] netlink_rcv_skb+0x153/0x420 [ 1228.763219][ T5431] ? genl_get_cmd+0x480/0x480 [ 1228.767912][ T5431] ? netlink_ack+0xa60/0xa60 [ 1228.772520][ T5431] ? netlink_deliver_tap+0x1b1/0xc30 [ 1228.777825][ T5431] genl_rcv+0x24/0x40 [ 1228.781820][ T5431] netlink_unicast+0x533/0x7d0 [ 1228.786600][ T5431] ? netlink_attachskb+0x890/0x890 [ 1228.791718][ T5431] ? __virt_addr_valid+0x5d/0x2d0 [ 1228.796766][ T5431] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1228.803024][ T5431] ? __phys_addr_symbol+0x2c/0x70 [ 1228.808063][ T5431] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1228.814001][ T5431] ? __check_object_size+0x16e/0x3f0 [ 1228.819303][ T5431] netlink_sendmsg+0x86d/0xdb0 [ 1228.824078][ T5431] ? netlink_unicast+0x7d0/0x7d0 [ 1228.829026][ T5431] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1228.835275][ T5431] ? netlink_unicast+0x7d0/0x7d0 [ 1228.840212][ T5431] sock_sendmsg+0xcf/0x120 [ 1228.844632][ T5431] ____sys_sendmsg+0x6e8/0x810 [ 1228.849403][ T5431] ? kernel_sendmsg+0x50/0x50 [ 1228.854080][ T5431] ? do_recvmmsg+0x6d0/0x6d0 [ 1228.858675][ T5431] ? lock_chain_count+0x20/0x20 [ 1228.863532][ T5431] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1228.869526][ T5431] ___sys_sendmsg+0xf3/0x170 [ 1228.874121][ T5431] ? sendmsg_copy_msghdr+0x160/0x160 [ 1228.879417][ T5431] ? __fget_files+0x21b/0x3e0 [ 1228.884099][ T5431] ? lock_downgrade+0x6e0/0x6e0 [ 1228.888968][ T5431] ? __fget_files+0x23d/0x3e0 [ 1228.893652][ T5431] ? __fget_light+0xea/0x280 [ 1228.898245][ T5431] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1228.904494][ T5431] __sys_sendmsg+0xe5/0x1b0 [ 1228.909004][ T5431] ? __sys_sendmsg_sock+0x30/0x30 [ 1228.914047][ T5431] ? syscall_enter_from_user_mode+0x21/0x70 [ 1228.919952][ T5431] do_syscall_64+0x35/0xb0 [ 1228.924374][ T5431] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1228.930273][ T5431] RIP: 0033:0x7f3e684f88d9 [ 1228.934688][ T5431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1228.954305][ T5431] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1228.962720][ T5431] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 10:58:39 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000010882c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:39 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000280)=""/41, 0x29}], 0x1, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:39 executing program 3: openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x48001, 0x0) 10:58:39 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, 0x0, &(0x7f0000000000)) 10:58:39 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) pselect6(0x40, &(0x7f0000005680), 0x0, &(0x7f0000008bc0)={0x8}, 0x0, 0x0) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x2, 0x7, 0x201}, 0x14}}, 0x0) [ 1228.970697][ T5431] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1228.978673][ T5431] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1228.986644][ T5431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1228.994614][ T5431] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 10:58:39 executing program 3: r0 = gettid() prctl$PR_SET_PTRACER(0x59616d61, r0) clone(0x86a01780, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0, 0xa1}, 0x20) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b90cb6974f527cc14538d1efb1ffe03284f6d33265be9c604c893f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r0, 0x31) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r1, 0x0, 0x0) [ 1229.094265][ T5505] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1229.111480][ T5505] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1229.122135][ T5505] CPU: 0 PID: 5505 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1229.130824][ T5505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1229.140888][ T5505] Call Trace: [ 1229.144171][ T5505] dump_stack_lvl+0xcd/0x134 [ 1229.148867][ T5505] sysfs_warn_dup.cold+0x1c/0x29 [ 1229.153820][ T5505] sysfs_do_create_link_sd+0x11e/0x140 [ 1229.159303][ T5505] sysfs_create_link+0x5f/0xc0 [ 1229.164090][ T5505] device_add+0x78f/0x21b0 [ 1229.168528][ T5505] ? wait_for_completion_io+0x280/0x280 [ 1229.174088][ T5505] ? lock_downgrade+0x6e0/0x6e0 [ 1229.178959][ T5505] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1229.185223][ T5505] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1229.191491][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1229.198008][ T5505] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1229.204008][ T5505] wiphy_register+0x1e8a/0x29b0 [ 1229.208874][ T5505] ? wiphy_unregister+0xbe0/0xbe0 [ 1229.213904][ T5505] ? minstrel_ht_alloc+0x531/0xa00 [ 1229.219036][ T5505] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1229.225120][ T5505] ieee80211_register_hw+0x1f18/0x3ed0 [ 1229.230604][ T5505] ? ieee80211_restart_hw+0x290/0x290 [ 1229.235988][ T5505] ? debug_object_destroy+0x210/0x210 [ 1229.241376][ T5505] ? memset+0x20/0x40 [ 1229.245366][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1229.251888][ T5505] ? __hrtimer_init+0x136/0x280 [ 1229.256930][ T5505] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1229.262684][ T5505] ? hwsim_virtio_rx_work+0x350/0x350 [ 1229.268091][ T5505] ? __kmalloc_track_caller+0x193/0x310 [ 1229.273665][ T5505] ? memcpy+0x39/0x60 [ 1229.277672][ T5505] hwsim_new_radio_nl+0x9bc/0x1080 [ 1229.282814][ T5505] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1229.288742][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 10:58:39 executing program 0: r0 = socket(0x2, 0x2, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, 0x0, 0x0) 10:58:39 executing program 0: r0 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$restrict_keyring(0x1d, r0, &(0x7f0000000100)='id_resolver\x00', &(0x7f0000000140)='filter\x00') [ 1229.295012][ T5505] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1229.302407][ T5505] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1229.309725][ T5505] genl_family_rcv_msg_doit+0x228/0x320 [ 1229.315297][ T5505] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1229.322689][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1229.328946][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1229.335185][ T5505] ? ns_capable+0xd9/0x100 [ 1229.339603][ T5505] genl_rcv_msg+0x328/0x580 [ 1229.344112][ T5505] ? genl_get_cmd+0x480/0x480 [ 1229.348781][ T5505] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1229.354676][ T5505] ? lock_release+0x720/0x720 [ 1229.359347][ T5505] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1229.364632][ T5505] netlink_rcv_skb+0x153/0x420 [ 1229.369407][ T5505] ? genl_get_cmd+0x480/0x480 [ 1229.374081][ T5505] ? netlink_ack+0xa60/0xa60 [ 1229.378673][ T5505] ? netlink_deliver_tap+0x1b1/0xc30 [ 1229.383957][ T5505] genl_rcv+0x24/0x40 [ 1229.387928][ T5505] netlink_unicast+0x533/0x7d0 [ 1229.392686][ T5505] ? netlink_attachskb+0x890/0x890 [ 1229.397789][ T5505] ? __virt_addr_valid+0x5d/0x2d0 [ 1229.402810][ T5505] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1229.409047][ T5505] ? __phys_addr_symbol+0x2c/0x70 [ 1229.414066][ T5505] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1229.419781][ T5505] ? __check_object_size+0x16e/0x3f0 [ 1229.425063][ T5505] netlink_sendmsg+0x86d/0xdb0 [ 1229.429825][ T5505] ? netlink_unicast+0x7d0/0x7d0 [ 1229.434760][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1229.440999][ T5505] ? netlink_unicast+0x7d0/0x7d0 [ 1229.445928][ T5505] sock_sendmsg+0xcf/0x120 [ 1229.450338][ T5505] ____sys_sendmsg+0x6e8/0x810 [ 1229.455094][ T5505] ? kernel_sendmsg+0x50/0x50 [ 1229.459763][ T5505] ? do_recvmmsg+0x6d0/0x6d0 [ 1229.464349][ T5505] ? lock_chain_count+0x20/0x20 [ 1229.469195][ T5505] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1229.475179][ T5505] ___sys_sendmsg+0xf3/0x170 [ 1229.479767][ T5505] ? sendmsg_copy_msghdr+0x160/0x160 [ 1229.485055][ T5505] ? __fget_files+0x21b/0x3e0 [ 1229.489727][ T5505] ? lock_downgrade+0x6e0/0x6e0 [ 1229.494584][ T5505] ? __fget_files+0x23d/0x3e0 [ 1229.499268][ T5505] ? __fget_light+0xea/0x280 [ 1229.503858][ T5505] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1229.510100][ T5505] __sys_sendmsg+0xe5/0x1b0 [ 1229.514606][ T5505] ? __sys_sendmsg_sock+0x30/0x30 [ 1229.519641][ T5505] ? syscall_enter_from_user_mode+0x21/0x70 [ 1229.525537][ T5505] do_syscall_64+0x35/0xb0 [ 1229.529954][ T5505] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1229.535841][ T5505] RIP: 0033:0x7f3e684f88d9 [ 1229.540253][ T5505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1229.559858][ T5505] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1229.568270][ T5505] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1229.576232][ T5505] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1229.584198][ T5505] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1229.592161][ T5505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1229.600130][ T5505] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 [ 1229.670198][ T5505] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1229.698785][ T5505] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1229.735141][ T5505] CPU: 1 PID: 5505 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1229.744044][ T5505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1229.754112][ T5505] Call Trace: [ 1229.757401][ T5505] dump_stack_lvl+0xcd/0x134 [ 1229.762013][ T5505] sysfs_warn_dup.cold+0x1c/0x29 [ 1229.766973][ T5505] sysfs_do_create_link_sd+0x11e/0x140 [ 1229.772463][ T5505] sysfs_create_link+0x5f/0xc0 [ 1229.777250][ T5505] device_add+0x78f/0x21b0 [ 1229.781683][ T5505] ? wait_for_completion_io+0x280/0x280 [ 1229.787244][ T5505] ? lock_downgrade+0x6e0/0x6e0 [ 1229.792112][ T5505] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1229.798372][ T5505] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1229.804636][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1229.810899][ T5505] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1229.816909][ T5505] wiphy_register+0x1e8a/0x29b0 [ 1229.821791][ T5505] ? wiphy_unregister+0xbe0/0xbe0 [ 1229.826837][ T5505] ? minstrel_ht_alloc+0x531/0xa00 [ 1229.831980][ T5505] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1229.838075][ T5505] ieee80211_register_hw+0x1f18/0x3ed0 [ 1229.843570][ T5505] ? ieee80211_restart_hw+0x290/0x290 [ 1229.848965][ T5505] ? debug_object_destroy+0x210/0x210 [ 1229.854362][ T5505] ? memset+0x20/0x40 [ 1229.858358][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1229.864618][ T5505] ? __hrtimer_init+0x136/0x280 [ 1229.869487][ T5505] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1229.875242][ T5505] ? hwsim_virtio_rx_work+0x350/0x350 [ 1229.880628][ T5505] ? __kmalloc_track_caller+0x193/0x310 [ 1229.886206][ T5505] ? memcpy+0x39/0x60 [ 1229.890210][ T5505] hwsim_new_radio_nl+0x9bc/0x1080 [ 1229.895340][ T5505] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1229.901263][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1229.907529][ T5505] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1229.914928][ T5505] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1229.922245][ T5505] genl_family_rcv_msg_doit+0x228/0x320 [ 1229.927817][ T5505] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1229.935222][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1229.941496][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1229.947767][ T5505] ? ns_capable+0xd9/0x100 [ 1229.952204][ T5505] genl_rcv_msg+0x328/0x580 [ 1229.956729][ T5505] ? genl_get_cmd+0x480/0x480 [ 1229.961424][ T5505] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1229.967339][ T5505] ? lock_release+0x720/0x720 [ 1229.972031][ T5505] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1229.977336][ T5505] netlink_rcv_skb+0x153/0x420 [ 1229.982121][ T5505] ? genl_get_cmd+0x480/0x480 [ 1229.986818][ T5505] ? netlink_ack+0xa60/0xa60 [ 1229.991429][ T5505] ? netlink_deliver_tap+0x1b1/0xc30 [ 1229.996740][ T5505] genl_rcv+0x24/0x40 [ 1230.000750][ T5505] netlink_unicast+0x533/0x7d0 [ 1230.005532][ T5505] ? netlink_attachskb+0x890/0x890 [ 1230.010648][ T5505] ? __virt_addr_valid+0x5d/0x2d0 [ 1230.015689][ T5505] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1230.021952][ T5505] ? __phys_addr_symbol+0x2c/0x70 [ 1230.026991][ T5505] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1230.032730][ T5505] ? __check_object_size+0x16e/0x3f0 [ 1230.038046][ T5505] netlink_sendmsg+0x86d/0xdb0 [ 1230.042833][ T5505] ? netlink_unicast+0x7d0/0x7d0 [ 1230.047801][ T5505] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1230.054070][ T5505] ? netlink_unicast+0x7d0/0x7d0 [ 1230.059022][ T5505] sock_sendmsg+0xcf/0x120 [ 1230.063459][ T5505] ____sys_sendmsg+0x6e8/0x810 [ 1230.068246][ T5505] ? kernel_sendmsg+0x50/0x50 [ 1230.072933][ T5505] ? do_recvmmsg+0x6d0/0x6d0 [ 1230.077539][ T5505] ? lock_chain_count+0x20/0x20 [ 1230.082403][ T5505] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1230.088407][ T5505] ___sys_sendmsg+0xf3/0x170 [ 1230.093019][ T5505] ? sendmsg_copy_msghdr+0x160/0x160 [ 1230.098332][ T5505] ? __fget_files+0x21b/0x3e0 [ 1230.103025][ T5505] ? lock_downgrade+0x6e0/0x6e0 [ 1230.107906][ T5505] ? __fget_files+0x23d/0x3e0 [ 1230.112607][ T5505] ? __fget_light+0xea/0x280 [ 1230.117217][ T5505] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1230.123481][ T5505] __sys_sendmsg+0xe5/0x1b0 [ 1230.128007][ T5505] ? __sys_sendmsg_sock+0x30/0x30 [ 1230.133060][ T5505] ? syscall_enter_from_user_mode+0x21/0x70 [ 1230.138973][ T5505] do_syscall_64+0x35/0xb0 [ 1230.143406][ T5505] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1230.149321][ T5505] RIP: 0033:0x7f3e684f88d9 [ 1230.153742][ T5505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1230.173371][ T5505] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:58:40 executing program 5: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000003c0)) [ 1230.181803][ T5505] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1230.189791][ T5505] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1230.197775][ T5505] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1230.205764][ T5505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1230.213756][ T5505] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:40 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={0x0}}, 0x0) 10:58:40 executing program 3: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fdinfo/4\x00') 10:58:40 executing program 0: socket$inet_udplite(0x2, 0x2d, 0x88) [ 1230.278074][ T5530] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1230.327654][ T5530] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1230.358559][ T5530] CPU: 0 PID: 5530 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1230.367285][ T5530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 10:58:40 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000010982c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) [ 1230.377351][ T5530] Call Trace: [ 1230.380638][ T5530] dump_stack_lvl+0xcd/0x134 [ 1230.385254][ T5530] sysfs_warn_dup.cold+0x1c/0x29 [ 1230.390212][ T5530] sysfs_do_create_link_sd+0x11e/0x140 [ 1230.395711][ T5530] sysfs_create_link+0x5f/0xc0 [ 1230.400503][ T5530] device_add+0x78f/0x21b0 [ 1230.405034][ T5530] ? __sanitizer_cov_trace_switch+0x5e/0xf0 [ 1230.410951][ T5530] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1230.417213][ T5530] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1230.423483][ T5530] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1230.429747][ T5530] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1230.435743][ T5530] wiphy_register+0x1e8a/0x29b0 [ 1230.440616][ T5530] ? wiphy_unregister+0xbe0/0xbe0 [ 1230.445658][ T5530] ? minstrel_ht_alloc+0x531/0xa00 [ 1230.450795][ T5530] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1230.456872][ T5530] ieee80211_register_hw+0x1f18/0x3ed0 [ 1230.462343][ T5530] ? ieee80211_restart_hw+0x290/0x290 [ 1230.467712][ T5530] ? __hrtimer_init+0x48/0x280 [ 1230.472469][ T5530] ? memset+0x2e/0x40 [ 1230.476446][ T5530] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1230.482856][ T5530] ? __hrtimer_init+0x136/0x280 [ 1230.487701][ T5530] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1230.493426][ T5530] ? hwsim_virtio_rx_work+0x350/0x350 [ 1230.498792][ T5530] ? __kmalloc_track_caller+0x193/0x310 [ 1230.504349][ T5530] ? memcpy+0x39/0x60 [ 1230.508340][ T5530] hwsim_new_radio_nl+0x9bc/0x1080 [ 1230.513460][ T5530] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1230.519346][ T5530] ? lockdep_hardirqs_on+0x79/0x100 [ 1230.524733][ T5530] genl_family_rcv_msg_doit+0x228/0x320 [ 1230.530278][ T5530] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1230.537654][ T5530] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1230.543903][ T5530] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1230.550138][ T5530] ? ns_capable+0xd9/0x100 [ 1230.554551][ T5530] genl_rcv_msg+0x328/0x580 [ 1230.559054][ T5530] ? genl_get_cmd+0x480/0x480 [ 1230.563722][ T5530] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1230.569614][ T5530] ? lock_release+0x720/0x720 [ 1230.574379][ T5530] netlink_rcv_skb+0x153/0x420 [ 1230.579138][ T5530] ? genl_get_cmd+0x480/0x480 [ 1230.583815][ T5530] ? netlink_ack+0xa60/0xa60 [ 1230.588403][ T5530] ? netlink_deliver_tap+0x1b1/0xc30 [ 1230.593680][ T5530] ? _copy_from_iter+0x12b/0x1320 [ 1230.598706][ T5530] genl_rcv+0x24/0x40 [ 1230.602679][ T5530] netlink_unicast+0x533/0x7d0 [ 1230.607441][ T5530] ? netlink_attachskb+0x890/0x890 [ 1230.612541][ T5530] ? __virt_addr_valid+0x5d/0x2d0 [ 1230.617560][ T5530] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1230.623799][ T5530] ? __phys_addr_symbol+0x2c/0x70 [ 1230.628816][ T5530] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1230.634529][ T5530] ? __check_object_size+0x16e/0x3f0 [ 1230.639820][ T5530] netlink_sendmsg+0x86d/0xdb0 [ 1230.644586][ T5530] ? netlink_unicast+0x7d0/0x7d0 [ 1230.649519][ T5530] ? sock_sendmsg+0x4b/0x120 [ 1230.654108][ T5530] ? tomoyo_socket_sendmsg_permission+0x11d/0x3a0 [ 1230.660521][ T5530] ? sock_sendmsg+0x65/0x120 [ 1230.665112][ T5530] ? netlink_unicast+0x7d0/0x7d0 [ 1230.670045][ T5530] sock_sendmsg+0xcf/0x120 [ 1230.674461][ T5530] ____sys_sendmsg+0x6e8/0x810 [ 1230.679222][ T5530] ? kernel_sendmsg+0x50/0x50 [ 1230.683900][ T5530] ? do_recvmmsg+0x6d0/0x6d0 [ 1230.688490][ T5530] ? lock_chain_count+0x20/0x20 [ 1230.693336][ T5530] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1230.699315][ T5530] ? lock_chain_count+0x20/0x20 [ 1230.704169][ T5530] ___sys_sendmsg+0xf3/0x170 [ 1230.708760][ T5530] ? sendmsg_copy_msghdr+0x160/0x160 [ 1230.714046][ T5530] ? __fget_files+0x21b/0x3e0 [ 1230.718715][ T5530] ? lock_downgrade+0x6e0/0x6e0 [ 1230.723571][ T5530] ? __fget_files+0x23d/0x3e0 [ 1230.728242][ T5530] ? __fget_light+0xea/0x280 [ 1230.732828][ T5530] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1230.739068][ T5530] __sys_sendmsg+0xe5/0x1b0 [ 1230.743573][ T5530] ? __sys_sendmsg_sock+0x30/0x30 [ 1230.748593][ T5530] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1230.754744][ T5530] ? lockdep_hardirqs_on+0x79/0x100 [ 1230.759934][ T5530] ? syscall_return_via_sysret+0x2e/0x2e [ 1230.765577][ T5530] do_syscall_64+0x35/0xb0 [ 1230.769993][ T5530] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1230.775881][ T5530] RIP: 0033:0x7f4637cff8d9 [ 1230.780287][ T5530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1230.799897][ T5530] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1230.808312][ T5530] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1230.816282][ T5530] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1230.824251][ T5530] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1230.832220][ T5530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1230.840188][ T5530] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1231.530516][ T5558] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1231.564943][ T5558] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1231.600041][ T5558] CPU: 1 PID: 5558 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1231.609300][ T5558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1231.619367][ T5558] Call Trace: [ 1231.622656][ T5558] dump_stack_lvl+0xcd/0x134 [ 1231.627265][ T5558] sysfs_warn_dup.cold+0x1c/0x29 [ 1231.632216][ T5558] sysfs_do_create_link_sd+0x11e/0x140 [ 1231.637702][ T5558] sysfs_create_link+0x5f/0xc0 [ 1231.642482][ T5558] device_add+0x78f/0x21b0 [ 1231.646910][ T5558] ? wait_for_completion_io+0x280/0x280 [ 1231.652467][ T5558] ? lock_downgrade+0x6e0/0x6e0 [ 1231.657334][ T5558] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1231.663597][ T5558] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1231.669860][ T5558] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1231.676118][ T5558] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1231.682123][ T5558] wiphy_register+0x1e8a/0x29b0 [ 1231.687003][ T5558] ? wiphy_unregister+0xbe0/0xbe0 [ 1231.692040][ T5558] ? minstrel_ht_alloc+0x531/0xa00 [ 1231.697173][ T5558] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1231.703265][ T5558] ieee80211_register_hw+0x1f18/0x3ed0 [ 1231.708751][ T5558] ? ieee80211_restart_hw+0x290/0x290 [ 1231.714143][ T5558] ? debug_object_destroy+0x210/0x210 [ 1231.719538][ T5558] ? memset+0x20/0x40 [ 1231.723527][ T5558] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1231.729779][ T5558] ? __hrtimer_init+0x136/0x280 [ 1231.734647][ T5558] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1231.740399][ T5558] ? hwsim_virtio_rx_work+0x350/0x350 [ 1231.745791][ T5558] ? __kmalloc_track_caller+0x193/0x310 [ 1231.751359][ T5558] ? memcpy+0x39/0x60 [ 1231.755350][ T5558] hwsim_new_radio_nl+0x9bc/0x1080 [ 1231.760476][ T5558] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1231.766394][ T5558] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1231.772646][ T5558] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1231.780113][ T5558] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1231.787413][ T5558] genl_family_rcv_msg_doit+0x228/0x320 [ 1231.792970][ T5558] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1231.800525][ T5558] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1231.806792][ T5558] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1231.813045][ T5558] ? ns_capable+0xd9/0x100 [ 1231.817646][ T5558] genl_rcv_msg+0x328/0x580 [ 1231.822158][ T5558] ? genl_get_cmd+0x480/0x480 [ 1231.826838][ T5558] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1231.832743][ T5558] ? lock_release+0x720/0x720 [ 1231.837430][ T5558] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1231.842724][ T5558] netlink_rcv_skb+0x153/0x420 [ 1231.847577][ T5558] ? genl_get_cmd+0x480/0x480 [ 1231.852264][ T5558] ? netlink_ack+0xa60/0xa60 [ 1231.856952][ T5558] ? netlink_deliver_tap+0x1b1/0xc30 [ 1231.862252][ T5558] genl_rcv+0x24/0x40 [ 1231.866238][ T5558] netlink_unicast+0x533/0x7d0 [ 1231.871017][ T5558] ? netlink_attachskb+0x890/0x890 [ 1231.876129][ T5558] ? __virt_addr_valid+0x5d/0x2d0 [ 1231.881164][ T5558] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1231.887416][ T5558] ? __phys_addr_symbol+0x2c/0x70 [ 1231.892489][ T5558] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1231.898303][ T5558] ? __check_object_size+0x16e/0x3f0 [ 1231.903605][ T5558] netlink_sendmsg+0x86d/0xdb0 [ 1231.908383][ T5558] ? netlink_unicast+0x7d0/0x7d0 [ 1231.913337][ T5558] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1231.919594][ T5558] ? netlink_unicast+0x7d0/0x7d0 [ 1231.924541][ T5558] sock_sendmsg+0xcf/0x120 [ 1231.928969][ T5558] ____sys_sendmsg+0x6e8/0x810 [ 1231.933917][ T5558] ? kernel_sendmsg+0x50/0x50 [ 1231.938600][ T5558] ? do_recvmmsg+0x6d0/0x6d0 [ 1231.943203][ T5558] ? lock_chain_count+0x20/0x20 [ 1231.948061][ T5558] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1231.954057][ T5558] ___sys_sendmsg+0xf3/0x170 [ 1231.958659][ T5558] ? sendmsg_copy_msghdr+0x160/0x160 [ 1231.963957][ T5558] ? __fget_files+0x21b/0x3e0 [ 1231.968637][ T5558] ? lock_downgrade+0x6e0/0x6e0 [ 1231.973506][ T5558] ? __fget_files+0x23d/0x3e0 [ 1231.978192][ T5558] ? __fget_light+0xea/0x280 [ 1231.982786][ T5558] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1231.989040][ T5558] __sys_sendmsg+0xe5/0x1b0 [ 1231.993556][ T5558] ? __sys_sendmsg_sock+0x30/0x30 [ 1231.998604][ T5558] ? syscall_enter_from_user_mode+0x21/0x70 [ 1232.004513][ T5558] do_syscall_64+0x35/0xb0 [ 1232.008941][ T5558] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1232.014846][ T5558] RIP: 0033:0x7f3e684f88d9 [ 1232.019268][ T5558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1232.038891][ T5558] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 10:58:42 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000280)=""/41, 0x29}], 0x1, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:42 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) recvmsg$unix(r0, &(0x7f00000015c0)={0x0, 0x0, 0x0}, 0x121) 10:58:42 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) 10:58:42 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_ifreq(r0, 0x8923, &(0x7f0000000080)={'veth0_macvtap\x00', @ifru_data=0x0}) 10:58:42 executing program 5: syz_open_procfs(0x0, &(0x7f0000000040)='net/dev_snmp6\x00') [ 1232.047317][ T5558] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1232.055291][ T5558] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1232.063266][ T5558] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1232.071241][ T5558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1232.079222][ T5558] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:42 executing program 5: openat$pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) 10:58:42 executing program 4: openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/timer_list\x00', 0x0, 0x0) 10:58:42 executing program 3: r0 = socket$inet(0x2, 0x3, 0x4) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f00000003c0)={'filter\x00'}, &(0x7f0000000480)=0x78) 10:58:42 executing program 4: add_key$fscrypt_v1(&(0x7f0000000540), 0x0, 0x0, 0x0, 0xfffffffffffffffe) 10:58:42 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_group_source_req(r0, 0x0, 0x2d, &(0x7f00000000c0)={0x0, {{0x2, 0x0, @rand_addr=0x64010100}}, {{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x108) 10:58:42 executing program 3: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ip6_tables_names\x00') [ 1232.932847][ T5559] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1232.962388][ T5559] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1233.015858][ T5559] CPU: 1 PID: 5559 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1233.024767][ T5559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1233.034842][ T5559] Call Trace: [ 1233.038136][ T5559] dump_stack_lvl+0xcd/0x134 [ 1233.042755][ T5559] sysfs_warn_dup.cold+0x1c/0x29 [ 1233.047723][ T5559] sysfs_do_create_link_sd+0x11e/0x140 [ 1233.053228][ T5559] sysfs_create_link+0x5f/0xc0 [ 1233.058079][ T5559] device_add+0x78f/0x21b0 [ 1233.062526][ T5559] ? wait_for_completion_io+0x280/0x280 [ 1233.068091][ T5559] ? lock_downgrade+0x6e0/0x6e0 [ 1233.072965][ T5559] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1233.079547][ T5559] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1233.085816][ T5559] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1233.092082][ T5559] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1233.098093][ T5559] wiphy_register+0x1e8a/0x29b0 [ 1233.102981][ T5559] ? wiphy_unregister+0xbe0/0xbe0 [ 1233.108027][ T5559] ? minstrel_ht_alloc+0x531/0xa00 [ 1233.113170][ T5559] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1233.119277][ T5559] ieee80211_register_hw+0x1f18/0x3ed0 [ 1233.124777][ T5559] ? ieee80211_restart_hw+0x290/0x290 [ 1233.130178][ T5559] ? debug_object_destroy+0x210/0x210 [ 1233.135586][ T5559] ? memset+0x20/0x40 [ 1233.139585][ T5559] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1233.145842][ T5559] ? __hrtimer_init+0x136/0x280 [ 1233.150822][ T5559] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1233.156665][ T5559] ? hwsim_virtio_rx_work+0x350/0x350 [ 1233.162061][ T5559] ? __kmalloc_track_caller+0x193/0x310 [ 1233.167846][ T5559] ? memcpy+0x39/0x60 [ 1233.171849][ T5559] hwsim_new_radio_nl+0x9bc/0x1080 [ 1233.177065][ T5559] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1233.182979][ T5559] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1233.189489][ T5559] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1233.196871][ T5559] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1233.204172][ T5559] genl_family_rcv_msg_doit+0x228/0x320 [ 1233.209729][ T5559] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1233.217119][ T5559] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1233.223384][ T5559] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1233.229634][ T5559] ? ns_capable+0xd9/0x100 [ 1233.234062][ T5559] genl_rcv_msg+0x328/0x580 [ 1233.238580][ T5559] ? genl_get_cmd+0x480/0x480 [ 1233.243265][ T5559] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1233.249173][ T5559] ? lock_release+0x720/0x720 [ 1233.253858][ T5559] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1233.259160][ T5559] netlink_rcv_skb+0x153/0x420 [ 1233.263935][ T5559] ? genl_get_cmd+0x480/0x480 [ 1233.268623][ T5559] ? netlink_ack+0xa60/0xa60 [ 1233.273229][ T5559] ? netlink_deliver_tap+0x1b1/0xc30 [ 1233.278528][ T5559] genl_rcv+0x24/0x40 [ 1233.282514][ T5559] netlink_unicast+0x533/0x7d0 [ 1233.287288][ T5559] ? netlink_attachskb+0x890/0x890 [ 1233.292404][ T5559] ? __virt_addr_valid+0x5d/0x2d0 [ 1233.297437][ T5559] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1233.303689][ T5559] ? __phys_addr_symbol+0x2c/0x70 [ 1233.308726][ T5559] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1233.314462][ T5559] ? __check_object_size+0x16e/0x3f0 [ 1233.319770][ T5559] netlink_sendmsg+0x86d/0xdb0 [ 1233.324548][ T5559] ? netlink_unicast+0x7d0/0x7d0 [ 1233.329585][ T5559] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1233.335838][ T5559] ? netlink_unicast+0x7d0/0x7d0 [ 1233.340787][ T5559] sock_sendmsg+0xcf/0x120 [ 1233.345214][ T5559] ____sys_sendmsg+0x6e8/0x810 [ 1233.349987][ T5559] ? kernel_sendmsg+0x50/0x50 [ 1233.354672][ T5559] ? do_recvmmsg+0x6d0/0x6d0 [ 1233.359276][ T5559] ? lock_chain_count+0x20/0x20 [ 1233.364136][ T5559] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1233.370137][ T5559] ___sys_sendmsg+0xf3/0x170 [ 1233.374743][ T5559] ? sendmsg_copy_msghdr+0x160/0x160 [ 1233.380050][ T5559] ? __fget_files+0x21b/0x3e0 [ 1233.384733][ T5559] ? lock_downgrade+0x6e0/0x6e0 [ 1233.389609][ T5559] ? __fget_files+0x23d/0x3e0 [ 1233.394300][ T5559] ? __fget_light+0xea/0x280 [ 1233.398901][ T5559] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1233.405161][ T5559] __sys_sendmsg+0xe5/0x1b0 [ 1233.409675][ T5559] ? __sys_sendmsg_sock+0x30/0x30 [ 1233.414725][ T5559] ? syscall_enter_from_user_mode+0x21/0x70 [ 1233.420640][ T5559] do_syscall_64+0x35/0xb0 [ 1233.425074][ T5559] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1233.430984][ T5559] RIP: 0033:0x7f3e684f88d9 [ 1233.435404][ T5559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1233.455022][ T5559] RSP: 002b:00007f3e65a4e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1233.463441][ T5559] RAX: ffffffffffffffda RBX: 00007f3e685fd020 RCX: 00007f3e684f88d9 [ 1233.471417][ T5559] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1233.479481][ T5559] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1233.487459][ T5559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1233.495434][ T5559] R13: 00007ffed818e9ff R14: 00007f3e65a4e300 R15: 0000000000022000 [ 1233.517709][ T5593] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1233.549883][ T5593] sysfs: cannot create duplicate filename '/class/ieee80211/ !' 10:58:44 executing program 3: perf_event_open(&(0x7f0000000000)={0x1000000002, 0x80, 0x800000000000013, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sysfs$3(0x3) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x58, 0x2, 0x6, 0x801, 0x6c, 0x0, {0x0, 0xa}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x233c0000}]}]}, 0x58}}, 0x0) [ 1233.587618][ T5593] CPU: 1 PID: 5593 Comm: syz-executor.2 Not tainted 5.15.0-rc3-syzkaller #0 [ 1233.596519][ T5593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1233.606593][ T5593] Call Trace: [ 1233.609885][ T5593] dump_stack_lvl+0xcd/0x134 [ 1233.614673][ T5593] sysfs_warn_dup.cold+0x1c/0x29 [ 1233.619633][ T5593] sysfs_do_create_link_sd+0x11e/0x140 [ 1233.625126][ T5593] sysfs_create_link+0x5f/0xc0 [ 1233.629917][ T5593] device_add+0x78f/0x21b0 [ 1233.634355][ T5593] ? check_kcov_mode+0x2c/0x40 [ 1233.639145][ T5593] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1233.645413][ T5593] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1233.651682][ T5593] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1233.657960][ T5593] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1233.663980][ T5593] wiphy_register+0x1e8a/0x29b0 [ 1233.668865][ T5593] ? wiphy_unregister+0xbe0/0xbe0 [ 1233.673909][ T5593] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1233.680100][ T5593] ? ieee80211_register_hw+0x1cb4/0x3ed0 [ 1233.685775][ T5593] ieee80211_register_hw+0x1f18/0x3ed0 [ 1233.691278][ T5593] ? ieee80211_restart_hw+0x290/0x290 [ 1233.696675][ T5593] ? debug_object_destroy+0x210/0x210 [ 1233.702079][ T5593] ? memset+0x20/0x40 [ 1233.706073][ T5593] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1233.712327][ T5593] ? __hrtimer_init+0x136/0x280 [ 1233.717191][ T5593] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1233.722939][ T5593] ? hwsim_virtio_rx_work+0x350/0x350 [ 1233.728318][ T5593] ? __kmalloc_track_caller+0x193/0x310 [ 1233.733880][ T5593] ? memcpy+0x39/0x60 [ 1233.737871][ T5593] hwsim_new_radio_nl+0x9bc/0x1080 [ 1233.743000][ T5593] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1233.748916][ T5593] ? lockdep_hardirqs_on+0x79/0x100 [ 1233.754315][ T5593] ? genl_family_rcv_msg_doit+0xec/0x320 [ 1233.759974][ T5593] ? genl_family_rcv_msg_doit+0xfe/0x320 [ 1233.765640][ T5593] genl_family_rcv_msg_doit+0x228/0x320 [ 1233.771218][ T5593] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1233.778614][ T5593] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1233.784900][ T5593] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1233.791173][ T5593] ? ns_capable+0xd9/0x100 [ 1233.795615][ T5593] genl_rcv_msg+0x328/0x580 [ 1233.800141][ T5593] ? genl_get_cmd+0x480/0x480 [ 1233.804833][ T5593] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1233.811010][ T5593] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1233.816945][ T5593] netlink_rcv_skb+0x153/0x420 [ 1233.821732][ T5593] ? genl_get_cmd+0x480/0x480 [ 1233.826434][ T5593] ? netlink_ack+0xa60/0xa60 [ 1233.831051][ T5593] ? netlink_deliver_tap+0x1b1/0xc30 [ 1233.836361][ T5593] ? netlink_trim+0x37/0x240 [ 1233.840977][ T5593] genl_rcv+0x24/0x40 [ 1233.844976][ T5593] netlink_unicast+0x533/0x7d0 [ 1233.849776][ T5593] ? netlink_attachskb+0x890/0x890 [ 1233.854905][ T5593] ? __virt_addr_valid+0x5d/0x2d0 [ 1233.859958][ T5593] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1233.866226][ T5593] ? __phys_addr_symbol+0x2c/0x70 [ 1233.871286][ T5593] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1233.877035][ T5593] ? __check_object_size+0x16e/0x3f0 [ 1233.882357][ T5593] netlink_sendmsg+0x86d/0xdb0 [ 1233.887154][ T5593] ? netlink_unicast+0x7d0/0x7d0 [ 1233.892122][ T5593] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1233.898393][ T5593] ? netlink_unicast+0x7d0/0x7d0 [ 1233.903352][ T5593] sock_sendmsg+0xcf/0x120 [ 1233.907793][ T5593] ____sys_sendmsg+0x6e8/0x810 [ 1233.912576][ T5593] ? kernel_sendmsg+0x50/0x50 [ 1233.917399][ T5593] ? do_recvmmsg+0x6d0/0x6d0 [ 1233.922013][ T5593] ? lock_chain_count+0x20/0x20 [ 1233.926878][ T5593] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1233.932882][ T5593] ? do_futex+0x1ee/0x1770 [ 1233.937328][ T5593] ___sys_sendmsg+0xf3/0x170 [ 1233.941944][ T5593] ? sendmsg_copy_msghdr+0x160/0x160 [ 1233.947254][ T5593] ? __fget_files+0x21b/0x3e0 [ 1233.951955][ T5593] ? lock_downgrade+0x6e0/0x6e0 [ 1233.956849][ T5593] ? __fget_files+0x23d/0x3e0 [ 1233.961558][ T5593] ? __fget_light+0xea/0x280 [ 1233.966170][ T5593] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1233.972438][ T5593] __sys_sendmsg+0xe5/0x1b0 [ 1233.976965][ T5593] ? __sys_sendmsg_sock+0x30/0x30 [ 1233.982011][ T5593] ? lockdep_hardirqs_on+0x79/0x100 [ 1233.987237][ T5593] ? trace_hardirqs_on+0x39/0x1c0 [ 1233.992291][ T5593] ? syscall_enter_from_user_mode+0x2b/0x70 [ 1233.998221][ T5593] do_syscall_64+0x35/0xb0 [ 1234.002662][ T5593] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1234.008578][ T5593] RIP: 0033:0x7f4637cff8d9 [ 1234.013011][ T5593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1234.032639][ T5593] RSP: 002b:00007f4635255188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1234.041074][ T5593] RAX: ffffffffffffffda RBX: 00007f4637e04020 RCX: 00007f4637cff8d9 [ 1234.049062][ T5593] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1234.057049][ T5593] RBP: 00007f4637d59cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1234.065034][ T5593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1234.073022][ T5593] R13: 00007ffc0b22030f R14: 00007f4635255300 R15: 0000000000022000 [ 1234.126378][ T5627] ------------[ cut here ]------------ [ 1234.143853][ T5627] WARNING: CPU: 0 PID: 5627 at mm/util.c:597 kvmalloc_node+0x111/0x120 [ 1234.172787][ T5627] Modules linked in: [ 1234.191832][ T5627] CPU: 0 PID: 5627 Comm: syz-executor.3 Not tainted 5.15.0-rc3-syzkaller #0 [ 1234.219264][ T5627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 10:58:44 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, r1, 0x4, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207280902"], 0x10}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000013582c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x10000, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x1fd}}, 0xe8) sendmmsg(r0, 0x0, 0x0, 0x0) r4 = socket$nl_crypto(0x10, 0x3, 0x15) recvmmsg(r4, &(0x7f0000001d40)=[{{&(0x7f00000001c0)=@isdn, 0x80, &(0x7f00000002c0)=[{0x0}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/58, 0x3a}, 0x527}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/241, 0xf1}, {&(0x7f00000003c0)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/170, 0xaa}, 0x401}, {{&(0x7f0000000680)=@nl, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/9, 0x9}, 0xdc}, {{&(0x7f0000001800)=@nl=@unspec, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/208, 0xd0}], 0x1, &(0x7f00000019c0)=""/173, 0xad}, 0x4}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001a80)=""/211, 0xd3}], 0x1, &(0x7f0000001cc0)=""/70, 0x46}}], 0x5, 0x2000, &(0x7f0000001e80)={0x0, 0x989680}) fork() splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap$perf(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x412, r5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 10:58:44 executing program 4: r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$RNDADDTOENTCNT(r0, 0x40045201, 0x0) 10:58:44 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$sock(r0, &(0x7f0000000500)={&(0x7f00000000c0)=@in={0x2, 0x4e21, @remote}, 0x80, &(0x7f0000000440)=[{0x0}, {0x0}], 0x2, &(0x7f00000005c0)=[@timestamping={{0x14}}, @mark={{0x14}}], 0x30}, 0x489c) 10:58:44 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) getpgid(0x0) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030029000b05d25a80648c63940d0424fc60100011400c2f0000010a82c137153e3708483c8000f01700d1bd", 0x33fe0}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x2496, 0x4) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) 10:58:44 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000280), 0x4) [ 1234.248743][ T5627] RIP: 0010:kvmalloc_node+0x111/0x120 [ 1234.261238][ T5627] Code: 01 00 00 00 4c 89 e7 e8 ad 18 0d 00 49 89 c5 e9 69 ff ff ff e8 f0 98 d0 ff 41 89 ed 41 81 cd 00 20 01 00 eb 95 e8 df 98 d0 ff <0f> 0b e9 4c ff ff ff 0f 1f 84 00 00 00 00 00 55 48 89 fd 53 e8 c6 [ 1234.314899][ T5627] RSP: 0018:ffffc9001770f280 EFLAGS: 00010212 [ 1234.344461][ T5627] RAX: 0000000000003cf9 RBX: ffffc9001770f3a0 RCX: ffffc9000f749000 10:58:44 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0x0, &(0x7f0000000000), 0x4) 10:58:45 executing program 0: r0 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000040)=0x0) r2 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) fork() keyctl$search(0xa, 0x0, &(0x7f00000002c0)='user\x00', &(0x7f0000000300)={'syz', 0x1}, 0xfffffffffffffffa) keyctl$get_persistent(0x16, r1, r2) keyctl$restrict_keyring(0x1d, r0, 0x0, &(0x7f0000000000)='filter\x00') [ 1234.368724][ T5638] netlink: 194484 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1234.385342][ T5627] RDX: 0000000000040000 RSI: ffffffff81a56291 RDI: 0000000000000003 [ 1234.393872][ T5627] RBP: 0000000000400dc0 R08: 000000007fffffff R09: ffff8880b9c32a0b 10:58:45 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x16, &(0x7f0000000000), 0x4) [ 1234.440044][ T5627] R10: ffffffff81a5624e R11: 000000000000001f R12: 0000000200000018 [ 1234.468506][ T5638] sysfs: cannot create duplicate filename '/class/ieee80211/ !' [ 1234.472701][ T5627] R13: 0000000000000000 R14: 00000000ffffffff R15: ffff888077d00800 [ 1234.513470][ T5638] CPU: 0 PID: 5638 Comm: syz-executor.1 Not tainted 5.15.0-rc3-syzkaller #0 [ 1234.522374][ T5638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1234.531520][ T5627] FS: 00007fc5b2140700(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 1234.532430][ T5638] Call Trace: [ 1234.532442][ T5638] dump_stack_lvl+0xcd/0x134 [ 1234.549202][ T5638] sysfs_warn_dup.cold+0x1c/0x29 [ 1234.554160][ T5638] sysfs_do_create_link_sd+0x11e/0x140 [ 1234.559646][ T5638] sysfs_create_link+0x5f/0xc0 [ 1234.564429][ T5638] device_add+0x78f/0x21b0 [ 1234.568864][ T5638] ? wait_for_completion_io+0x280/0x280 [ 1234.574418][ T5638] ? lock_downgrade+0x6e0/0x6e0 [ 1234.579110][ T5627] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1234.579282][ T5638] ? __fw_devlink_link_to_suppliers+0x5e0/0x5e0 [ 1234.592075][ T5638] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1234.595132][ T5627] CR2: 0000560912224080 CR3: 000000007cfc6000 CR4: 0000000000350ee0 [ 1234.598327][ T5638] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1234.598356][ T5638] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 1234.598391][ T5638] wiphy_register+0x1e8a/0x29b0 [ 1234.598422][ T5638] ? wiphy_unregister+0xbe0/0xbe0 [ 1234.598441][ T5638] ? minstrel_ht_alloc+0x531/0xa00 [ 1234.598470][ T5638] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1234.598497][ T5638] ieee80211_register_hw+0x1f18/0x3ed0 [ 1234.598537][ T5638] ? ieee80211_restart_hw+0x290/0x290 [ 1234.598565][ T5638] ? debug_object_destroy+0x210/0x210 [ 1234.598599][ T5638] ? memset+0x20/0x40 [ 1234.598621][ T5638] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1234.598647][ T5638] ? __hrtimer_init+0x136/0x280 [ 1234.598672][ T5638] mac80211_hwsim_new_radio+0x20ce/0x4990 [ 1234.598714][ T5638] ? hwsim_virtio_rx_work+0x350/0x350 [ 1234.598736][ T5638] ? __kmalloc_track_caller+0x193/0x310 [ 1234.598765][ T5638] ? memcpy+0x39/0x60 [ 1234.662797][ T5627] Call Trace: [ 1234.666206][ T5638] hwsim_new_radio_nl+0x9bc/0x1080 [ 1234.666244][ T5638] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1234.666284][ T5638] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1234.705100][ T5627] hash_ipmark_create+0x4bd/0x1370 [ 1234.705913][ T5638] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 1234.705945][ T5638] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 1234.705977][ T5638] genl_family_rcv_msg_doit+0x228/0x320 [ 1234.706002][ T5638] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 1234.706027][ T5638] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1234.730133][ T5627] ? __nla_parse+0x3d/0x50 [ 1234.731963][ T5638] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1234.761703][ T5638] ? ns_capable+0xd9/0x100 [ 1234.766304][ T5638] genl_rcv_msg+0x328/0x580 [ 1234.770824][ T5638] ? genl_get_cmd+0x480/0x480 [ 1234.775515][ T5638] ? mac80211_hwsim_new_radio+0x4990/0x4990 [ 1234.781426][ T5638] ? lock_release+0x720/0x720 [ 1234.786113][ T5638] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 1234.791416][ T5638] netlink_rcv_skb+0x153/0x420 [ 1234.796191][ T5638] ? genl_get_cmd+0x480/0x480 [ 1234.797633][ T5627] ? hash_ipmark4_head+0xf60/0xf60 [ 1234.800880][ T5638] ? netlink_ack+0xa60/0xa60 [ 1234.800913][ T5638] ? netlink_deliver_tap+0x1b1/0xc30 [ 1234.800938][ T5638] genl_rcv+0x24/0x40 [ 1234.800958][ T5638] netlink_unicast+0x533/0x7d0 [ 1234.800978][ T5638] ? netlink_attachskb+0x890/0x890 [ 1234.800995][ T5638] ? __virt_addr_valid+0x5d/0x2d0 [ 1234.801020][ T5638] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1234.801046][ T5638] ? __phys_addr_symbol+0x2c/0x70 [ 1234.801068][ T5638] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1234.801092][ T5638] ? __check_object_size+0x16e/0x3f0 [ 1234.801123][ T5638] netlink_sendmsg+0x86d/0xdb0 [ 1234.801151][ T5638] ? netlink_unicast+0x7d0/0x7d0 [ 1234.801180][ T5638] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1234.801207][ T5638] ? netlink_unicast+0x7d0/0x7d0 [ 1234.801230][ T5638] sock_sendmsg+0xcf/0x120 [ 1234.801262][ T5638] ____sys_sendmsg+0x6e8/0x810 [ 1234.835020][ T5627] ip_set_create+0x782/0x15a0 [ 1234.841210][ T5638] ? kernel_sendmsg+0x50/0x50 [ 1234.841237][ T5638] ? do_recvmmsg+0x6d0/0x6d0 [ 1234.841272][ T5638] ? lock_chain_count+0x20/0x20 [ 1234.841295][ T5638] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1234.841325][ T5638] ___sys_sendmsg+0xf3/0x170 [ 1234.884578][ T5627] ? ip_set_sockfn_get+0xe60/0xe60 [ 1234.887406][ T5638] ? sendmsg_copy_msghdr+0x160/0x160 [ 1234.887441][ T5638] ? __fget_files+0x21b/0x3e0 [ 1234.887464][ T5638] ? lock_downgrade+0x6e0/0x6e0 [ 1234.887500][ T5638] ? __fget_files+0x23d/0x3e0 [ 1234.887524][ T5638] ? __fget_light+0xea/0x280 [ 1234.905156][ T5627] nfnetlink_rcv_msg+0xbc9/0x13f0 [ 1234.906263][ T5638] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1234.906295][ T5638] __sys_sendmsg+0xe5/0x1b0 10:58:45 executing program 4: syz_open_dev$evdev(0x0, 0x0, 0x0) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000200)={0x0, 0x0, 0x0}) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x2) prlimit64(0x0, 0xe, &(0x7f0000000280)={0xe, 0x5ee}, 0x0) sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x0, 0x0, 0x3, 0x0, 0x3}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0) shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffdfff) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) [ 1234.906321][ T5638] ? __sys_sendmsg_sock+0x30/0x30 [ 1234.906358][ T5638] ? syscall_enter_from_user_mode+0x21/0x70 [ 1234.906387][ T5638] do_syscall_64+0x35/0xb0 [ 1234.906413][ T5638] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1234.920234][ T5627] ? nfnetlink_net_init+0x380/0x380 [ 1234.922028][ T5638] RIP: 0033:0x7f3e684f88d9 [ 1234.922048][ T5638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1234.922069][ T5638] RSP: 002b:00007f3e65a6f188 EFLAGS: 00000246 [ 1234.952879][ T5627] ? find_held_lock+0x2d/0x110 [ 1234.957435][ T5638] ORIG_RAX: 000000000000002e [ 1234.957447][ T5638] RAX: ffffffffffffffda RBX: 00007f3e685fcf60 RCX: 00007f3e684f88d9 [ 1234.957464][ T5638] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1234.957477][ T5638] RBP: 00007f3e68552cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1234.957491][ T5638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 10:58:45 executing program 0: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x100002, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40286608, &(0x7f00000005c0)=0x3fffffffe) [ 1234.957505][ T5638] R13: 00007ffed818e9ff R14: 00007f3e65a6f300 R15: 0000000000022000 10:58:45 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x3) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010400)="02000000030000000400000019000f000300040000000000", 0x18}, {&(0x7f0000010500), 0x0, 0x2000}, {0x0}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(0x0) r1 = creat(0x0, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, 0x0) preadv(r2, &(0x7f00000017c0), 0xab, 0x0, 0x0) ioctl$BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f0000000580)={{r2}, "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"}) fcntl$setstatus(r1, 0x4, 0x46802) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VT_WAITACTIVE(r0, 0x5607) io_submit(0x0, 0x0, &(0x7f0000000540)) pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)='./file0\x00') r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x2e, &(0x7f0000000340)={0x2, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @remote}}}, 0x108) getsockopt$inet_buf(r3, 0x0, 0x30, &(0x7f0000000340)=""/225, &(0x7f0000000140)=0xe1) [ 1235.658806][ T5685] EXT4-fs warning (device sda1): verify_group_input:136: Cannot add at group 4294967294 (only 16 groups) [ 1235.672418][ T5627] ? __dev_queue_xmit+0x1b54/0x36e0 [ 1235.678819][ T5627] ? lock_downgrade+0x6e0/0x6e0 [ 1235.683707][ T5627] ? __local_bh_enable_ip+0xa0/0x120 [ 1235.690043][ T5627] ? lockdep_hardirqs_on+0x79/0x100 [ 1235.695423][ T5627] ? __dev_queue_xmit+0x1b54/0x36e0 [ 1235.701367][ T5627] ? __local_bh_enable_ip+0xa0/0x120 [ 1235.706822][ T5627] netlink_rcv_skb+0x153/0x420 [ 1235.711614][ T5627] ? nfnetlink_net_init+0x380/0x380 [ 1235.716918][ T5627] ? netlink_ack+0xa60/0xa60 [ 1235.721534][ T5627] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1235.728206][ T5627] ? ns_capable+0xd9/0x100 [ 1235.732662][ T5627] nfnetlink_rcv+0x1ac/0x420 [ 1235.737446][ T5627] ? nfnetlink_rcv_batch+0x25f0/0x25f0 [ 1235.742926][ T5627] ? netlink_deliver_tap+0x1b1/0xc30 [ 1235.759519][ T5627] netlink_unicast+0x533/0x7d0 [ 1235.764522][ T5627] ? netlink_attachskb+0x890/0x890 [ 1235.770963][ T5627] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1235.785371][ T5627] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1235.791849][ T5627] ? __phys_addr_symbol+0x2c/0x70 [ 1235.815352][ T5627] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1235.821216][ T5627] ? __check_object_size+0x16e/0x3f0 [ 1235.835346][ T5627] netlink_sendmsg+0x86d/0xdb0 [ 1235.840165][ T5627] ? netlink_unicast+0x7d0/0x7d0 [ 1235.845125][ T5627] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1235.875372][ T5627] ? netlink_unicast+0x7d0/0x7d0 [ 1235.880462][ T5627] sock_sendmsg+0xcf/0x120 [ 1235.884908][ T5627] ____sys_sendmsg+0x6e8/0x810 [ 1235.905348][ T5627] ? kernel_sendmsg+0x50/0x50 [ 1235.910259][ T5627] ? do_recvmmsg+0x6d0/0x6d0 [ 1235.914879][ T5627] ? lock_chain_count+0x20/0x20 [ 1235.935480][ T5627] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1235.941705][ T5627] ___sys_sendmsg+0xf3/0x170 [ 1235.955332][ T5627] ? sendmsg_copy_msghdr+0x160/0x160 [ 1235.960854][ T5627] ? __fget_files+0x21b/0x3e0 [ 1235.975327][ T5627] ? lock_downgrade+0x6e0/0x6e0 [ 1235.980599][ T5627] ? __fget_files+0x23d/0x3e0 [ 1236.005467][ T5627] ? __fget_light+0xea/0x280 [ 1236.010283][ T5627] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1236.035328][ T5627] __sys_sendmsg+0xe5/0x1b0 [ 1236.040067][ T5627] ? __sys_sendmsg_sock+0x30/0x30 [ 1236.045131][ T5627] ? syscall_enter_from_user_mode+0x21/0x70 [ 1236.055389][ T5627] do_syscall_64+0x35/0xb0 [ 1236.065963][ T5627] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1236.071979][ T5627] RIP: 0033:0x7fc5b4bc98d9 [ 1236.077907][ T5627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1236.099793][ T5627] RSP: 002b:00007fc5b2140188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1236.115118][ T5627] RAX: ffffffffffffffda RBX: 00007fc5b4ccdf60 RCX: 00007fc5b4bc98d9 [ 1236.141360][ T5627] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004 [ 1236.152237][ T5627] RBP: 00007fc5b4c23cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1236.160983][ T5627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1236.170184][ T5627] R13: 00007ffe99fb507f R14: 00007fc5b2140300 R15: 0000000000022000 [ 1236.179298][ T5627] Kernel panic - not syncing: panic_on_warn set ... [ 1236.185896][ T5627] CPU: 0 PID: 5627 Comm: syz-executor.3 Not tainted 5.15.0-rc3-syzkaller #0 [ 1236.194589][ T5627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1236.204662][ T5627] Call Trace: [ 1236.207948][ T5627] dump_stack_lvl+0xcd/0x134 [ 1236.212555][ T5627] panic+0x2b0/0x6dd [ 1236.216461][ T5627] ? __warn_printk+0xf3/0xf3 [ 1236.221059][ T5627] ? __warn.cold+0x1a/0x44 [ 1236.225473][ T5627] ? kvmalloc_node+0x111/0x120 [ 1236.230235][ T5627] __warn.cold+0x35/0x44 [ 1236.234479][ T5627] ? kvmalloc_node+0x111/0x120 [ 1236.239265][ T5627] report_bug+0x1bd/0x210 [ 1236.243610][ T5627] handle_bug+0x3c/0x60 [ 1236.247767][ T5627] exc_invalid_op+0x14/0x40 [ 1236.252266][ T5627] asm_exc_invalid_op+0x12/0x20 [ 1236.257113][ T5627] RIP: 0010:kvmalloc_node+0x111/0x120 [ 1236.262484][ T5627] Code: 01 00 00 00 4c 89 e7 e8 ad 18 0d 00 49 89 c5 e9 69 ff ff ff e8 f0 98 d0 ff 41 89 ed 41 81 cd 00 20 01 00 eb 95 e8 df 98 d0 ff <0f> 0b e9 4c ff ff ff 0f 1f 84 00 00 00 00 00 55 48 89 fd 53 e8 c6 [ 1236.282093][ T5627] RSP: 0018:ffffc9001770f280 EFLAGS: 00010212 [ 1236.288163][ T5627] RAX: 0000000000003cf9 RBX: ffffc9001770f3a0 RCX: ffffc9000f749000 [ 1236.296131][ T5627] RDX: 0000000000040000 RSI: ffffffff81a56291 RDI: 0000000000000003 [ 1236.304100][ T5627] RBP: 0000000000400dc0 R08: 000000007fffffff R09: ffff8880b9c32a0b [ 1236.312066][ T5627] R10: ffffffff81a5624e R11: 000000000000001f R12: 0000000200000018 [ 1236.320034][ T5627] R13: 0000000000000000 R14: 00000000ffffffff R15: ffff888077d00800 [ 1236.328008][ T5627] ? kvmalloc_node+0xce/0x120 [ 1236.332690][ T5627] ? kvmalloc_node+0x111/0x120 [ 1236.337455][ T5627] hash_ipmark_create+0x4bd/0x1370 [ 1236.342565][ T5627] ? __nla_parse+0x3d/0x50 [ 1236.346980][ T5627] ? hash_ipmark4_head+0xf60/0xf60 [ 1236.352087][ T5627] ip_set_create+0x782/0x15a0 [ 1236.356768][ T5627] ? ip_set_sockfn_get+0xe60/0xe60 [ 1236.362073][ T5627] nfnetlink_rcv_msg+0xbc9/0x13f0 [ 1236.367106][ T5627] ? nfnetlink_net_init+0x380/0x380 [ 1236.372311][ T5627] ? find_held_lock+0x2d/0x110 [ 1236.377072][ T5627] ? __dev_queue_xmit+0x1b54/0x36e0 [ 1236.382266][ T5627] ? lock_downgrade+0x6e0/0x6e0 [ 1236.387115][ T5627] ? __local_bh_enable_ip+0xa0/0x120 [ 1236.392398][ T5627] ? lockdep_hardirqs_on+0x79/0x100 [ 1236.397590][ T5627] ? __dev_queue_xmit+0x1b54/0x36e0 [ 1236.402782][ T5627] ? __local_bh_enable_ip+0xa0/0x120 [ 1236.408064][ T5627] netlink_rcv_skb+0x153/0x420 [ 1236.412822][ T5627] ? nfnetlink_net_init+0x380/0x380 [ 1236.418020][ T5627] ? netlink_ack+0xa60/0xa60 [ 1236.422610][ T5627] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1236.428857][ T5627] ? ns_capable+0xd9/0x100 [ 1236.433277][ T5627] nfnetlink_rcv+0x1ac/0x420 [ 1236.437865][ T5627] ? nfnetlink_rcv_batch+0x25f0/0x25f0 [ 1236.443323][ T5627] ? netlink_deliver_tap+0x1b1/0xc30 [ 1236.448606][ T5627] netlink_unicast+0x533/0x7d0 [ 1236.453370][ T5627] ? netlink_attachskb+0x890/0x890 [ 1236.458474][ T5627] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1236.464715][ T5627] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1236.470946][ T5627] ? __phys_addr_symbol+0x2c/0x70 [ 1236.475967][ T5627] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1236.481678][ T5627] ? __check_object_size+0x16e/0x3f0 [ 1236.486965][ T5627] netlink_sendmsg+0x86d/0xdb0 [ 1236.491728][ T5627] ? netlink_unicast+0x7d0/0x7d0 [ 1236.496663][ T5627] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1236.502901][ T5627] ? netlink_unicast+0x7d0/0x7d0 [ 1236.507834][ T5627] sock_sendmsg+0xcf/0x120 [ 1236.512248][ T5627] ____sys_sendmsg+0x6e8/0x810 [ 1236.517011][ T5627] ? kernel_sendmsg+0x50/0x50 [ 1236.521680][ T5627] ? do_recvmmsg+0x6d0/0x6d0 [ 1236.526266][ T5627] ? lock_chain_count+0x20/0x20 [ 1236.531109][ T5627] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1236.537088][ T5627] ___sys_sendmsg+0xf3/0x170 [ 1236.541675][ T5627] ? sendmsg_copy_msghdr+0x160/0x160 [ 1236.546960][ T5627] ? __fget_files+0x21b/0x3e0 [ 1236.551629][ T5627] ? lock_downgrade+0x6e0/0x6e0 [ 1236.556486][ T5627] ? __fget_files+0x23d/0x3e0 [ 1236.561159][ T5627] ? __fget_light+0xea/0x280 [ 1236.565740][ T5627] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1236.571980][ T5627] __sys_sendmsg+0xe5/0x1b0 [ 1236.576478][ T5627] ? __sys_sendmsg_sock+0x30/0x30 [ 1236.581505][ T5627] ? syscall_enter_from_user_mode+0x21/0x70 [ 1236.587394][ T5627] do_syscall_64+0x35/0xb0 [ 1236.591807][ T5627] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1236.597695][ T5627] RIP: 0033:0x7fc5b4bc98d9 [ 1236.602099][ T5627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1236.621880][ T5627] RSP: 002b:00007fc5b2140188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1236.630294][ T5627] RAX: ffffffffffffffda RBX: 00007fc5b4ccdf60 RCX: 00007fc5b4bc98d9 [ 1236.638262][ T5627] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004 [ 1236.646225][ T5627] RBP: 00007fc5b4c23cb4 R08: 0000000000000000 R09: 0000000000000000 [ 1236.654196][ T5627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1236.662164][ T5627] R13: 00007ffe99fb507f R14: 00007fc5b2140300 R15: 0000000000022000 [ 1236.671313][ T5627] Kernel Offset: disabled [ 1236.675894][ T5627] Rebooting in 86400 seconds..