0x10c}]}, 0x15c}}, 0x0) [ 909.218987] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 909.224546] ? ieee80211_cs_list_valid+0x7c/0x440 [ 909.229406] ? ieee80211_register_hw+0xce9/0x3f10 [ 909.234274] ieee80211_register_hw+0x159b/0x3f10 [ 909.239065] ? ieee80211_ifa_changed+0xed0/0xed0 [ 909.243879] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 909.248918] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 909.255090] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 909.260686] ? vsnprintf+0x20d/0x1b60 [ 909.264536] ? pointer+0x900/0x900 01:08:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x1000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 909.268116] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 909.273166] ? kvasprintf+0xee/0x150 [ 909.276907] ? bust_spinlocks+0xe0/0xe0 [ 909.280911] ? validate_nla+0x29a/0x1650 [ 909.284986] ? kasprintf+0xab/0xe0 [ 909.288550] ? kvasprintf_const+0x190/0x190 [ 909.292903] ? cap_capable+0x1f9/0x260 [ 909.296807] hwsim_new_radio_nl+0x7dc/0xb20 [ 909.301146] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 909.306383] ? __nla_parse+0x12c/0x3e0 [ 909.310308] genl_family_rcv_msg+0x8a7/0x11a0 [ 909.314910] ? genl_unregister_family+0x8a0/0x8a0 01:08:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x1100]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x10]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 909.319757] ? lock_downgrade+0x900/0x900 [ 909.323909] ? check_preemption_disabled+0x48/0x280 [ 909.328947] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 909.333902] ? kasan_check_read+0x11/0x20 [ 909.338060] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 909.343349] ? rcu_softirq_qs+0x20/0x20 [ 909.347372] genl_rcv_msg+0xc6/0x168 [ 909.351135] netlink_rcv_skb+0x172/0x440 [ 909.355215] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 909.359978] ? netlink_ack+0xb80/0xb80 [ 909.363889] ? down_read+0x8d/0x120 [ 909.367540] genl_rcv+0x28/0x40 [ 909.370834] netlink_unicast+0x5a5/0x760 [ 909.374912] ? netlink_attachskb+0x9a0/0x9a0 [ 909.379335] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 909.384913] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 909.389957] netlink_sendmsg+0xa18/0xfc0 [ 909.394039] ? netlink_unicast+0x760/0x760 [ 909.398291] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 909.403243] ? apparmor_socket_sendmsg+0x29/0x30 [ 909.408004] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 909.413544] ? security_socket_sendmsg+0x94/0xc0 [ 909.418308] ? netlink_unicast+0x760/0x760 [ 909.422563] sock_sendmsg+0xd5/0x120 [ 909.426291] ___sys_sendmsg+0x7fd/0x930 [ 909.430271] ? find_held_lock+0x36/0x1c0 [ 909.430293] ? copy_msghdr_from_user+0x580/0x580 [ 909.430310] ? __fd_install+0x2b5/0x8f0 [ 909.430335] ? __fget_light+0x2e9/0x430 [ 909.447127] ? fget_raw+0x20/0x20 [ 909.450606] ? __might_fault+0x12b/0x1e0 [ 909.454695] ? lock_downgrade+0x900/0x900 [ 909.458865] ? lock_release+0xa00/0xa00 [ 909.462851] ? perf_trace_sched_process_exec+0x860/0x860 [ 909.468313] ? posix_ktime_get_ts+0x15/0x20 [ 909.472649] ? trace_hardirqs_off_caller+0x310/0x310 [ 909.477776] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 909.483332] ? sockfd_lookup_light+0xc5/0x160 [ 909.487844] __sys_sendmsg+0x11d/0x280 [ 909.491764] ? __ia32_sys_shutdown+0x80/0x80 [ 909.496175] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 909.501715] ? put_timespec64+0x10f/0x1b0 [ 909.505870] ? do_syscall_64+0x9a/0x820 [ 909.509855] ? do_syscall_64+0x9a/0x820 [ 909.513840] ? trace_hardirqs_off_caller+0x310/0x310 [ 909.518962] __x64_sys_sendmsg+0x78/0xb0 [ 909.523019] do_syscall_64+0x1b9/0x820 [ 909.526994] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 909.532359] ? syscall_return_slowpath+0x5e0/0x5e0 [ 909.537276] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 909.542106] ? trace_hardirqs_on_caller+0x310/0x310 [ 909.547117] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 909.552149] ? prepare_exit_to_usermode+0x291/0x3b0 [ 909.557183] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 909.562014] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 909.567188] RIP: 0033:0x457569 [ 909.570370] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 909.589262] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 909.596965] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 909.604223] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 909.611493] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:08:32 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x9) 01:08:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xf000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 909.618783] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 909.626036] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:32 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x4000000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:32 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000480000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:32 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7000000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:32 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000]}, 0x2c) 01:08:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x9effffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:32 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xe803000000000000) 01:08:32 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400000000000000]}, 0x2c) [ 909.860170] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 909.890585] CPU: 0 PID: 8005 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 909.897924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 909.907298] Call Trace: 01:08:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x3f00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 909.909903] dump_stack+0x244/0x39d [ 909.913561] ? dump_stack_print_info.cold.1+0x20/0x20 [ 909.918779] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 909.923916] sysfs_warn_dup.cold.3+0x1c/0x2b [ 909.928343] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 909.933733] sysfs_create_link+0x65/0xc0 [ 909.937823] device_add+0x64a/0x18e0 [ 909.941566] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 909.946249] ? genl_rcv_msg+0xc6/0x168 [ 909.950176] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 909.955394] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 909.960776] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 909.965983] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 909.971544] wiphy_register+0x1a5b/0x2770 [ 909.975723] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 909.980678] ? rcu_read_lock_sched_held+0x14f/0x180 [ 909.980697] ? __kmalloc+0x5ee/0x760 [ 909.980717] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 909.980734] ? ieee80211_cs_list_valid+0x7c/0x440 [ 909.980753] ? ieee80211_register_hw+0xce9/0x3f10 [ 909.980777] ieee80211_register_hw+0x159b/0x3f10 [ 909.980809] ? ieee80211_ifa_changed+0xed0/0xed0 [ 909.980841] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 909.980872] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 909.989588] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 909.989606] ? vsnprintf+0x20d/0x1b60 [ 909.989631] ? pointer+0x900/0x900 [ 909.989659] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 909.989675] ? kvasprintf+0xee/0x150 [ 909.989693] ? bust_spinlocks+0xe0/0xe0 [ 909.989714] ? validate_nla+0x29a/0x1650 [ 909.989736] ? kasprintf+0xab/0xe0 [ 909.989752] ? kvasprintf_const+0x190/0x190 [ 909.989774] ? cap_capable+0x1f9/0x260 [ 909.989800] hwsim_new_radio_nl+0x7dc/0xb20 [ 909.989823] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 910.000226] ? __nla_parse+0x12c/0x3e0 [ 910.000260] genl_family_rcv_msg+0x8a7/0x11a0 [ 910.000288] ? genl_unregister_family+0x8a0/0x8a0 [ 910.000307] ? lock_downgrade+0x900/0x900 [ 910.000326] ? check_preemption_disabled+0x48/0x280 [ 910.000346] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 910.000362] ? kasan_check_read+0x11/0x20 01:08:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x1300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 910.000381] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 910.009960] ? rcu_softirq_qs+0x20/0x20 [ 910.010001] genl_rcv_msg+0xc6/0x168 [ 910.010022] netlink_rcv_skb+0x172/0x440 [ 910.010041] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 910.010060] ? netlink_ack+0xb80/0xb80 [ 910.010077] ? down_read+0x8d/0x120 [ 910.010106] genl_rcv+0x28/0x40 [ 910.010122] netlink_unicast+0x5a5/0x760 [ 910.010144] ? netlink_attachskb+0x9a0/0x9a0 [ 910.010178] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 910.010198] ? __sanitizer_cov_trace_cmp4+0x16/0x20 01:08:33 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xa]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 910.130044] netlink_sendmsg+0xa18/0xfc0 [ 910.130071] ? netlink_unicast+0x760/0x760 [ 910.130087] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 910.130107] ? apparmor_socket_sendmsg+0x29/0x30 [ 910.130124] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 910.130143] ? security_socket_sendmsg+0x94/0xc0 [ 910.130201] ? netlink_unicast+0x760/0x760 [ 910.130222] sock_sendmsg+0xd5/0x120 [ 910.130241] ___sys_sendmsg+0x7fd/0x930 [ 910.130257] ? find_held_lock+0x36/0x1c0 [ 910.130279] ? copy_msghdr_from_user+0x580/0x580 01:08:33 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xf]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 910.130296] ? __fd_install+0x2b5/0x8f0 [ 910.130321] ? __fget_light+0x2e9/0x430 [ 910.137836] ? fget_raw+0x20/0x20 [ 910.220499] ? __might_fault+0x12b/0x1e0 [ 910.224591] ? lock_downgrade+0x900/0x900 [ 910.228788] ? lock_release+0xa00/0xa00 [ 910.232770] ? perf_trace_sched_process_exec+0x860/0x860 [ 910.238221] ? posix_ktime_get_ts+0x15/0x20 [ 910.242555] ? trace_hardirqs_off_caller+0x310/0x310 [ 910.247677] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 910.253226] ? sockfd_lookup_light+0xc5/0x160 [ 910.257741] __sys_sendmsg+0x11d/0x280 [ 910.261649] ? __ia32_sys_shutdown+0x80/0x80 [ 910.266070] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 910.271639] ? put_timespec64+0x10f/0x1b0 [ 910.275806] ? do_syscall_64+0x9a/0x820 [ 910.279795] ? do_syscall_64+0x9a/0x820 [ 910.283791] ? trace_hardirqs_off_caller+0x310/0x310 [ 910.288916] __x64_sys_sendmsg+0x78/0xb0 [ 910.292992] do_syscall_64+0x1b9/0x820 [ 910.296894] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 910.302277] ? syscall_return_slowpath+0x5e0/0x5e0 [ 910.307244] ? trace_hardirqs_off_thunk+0x1a/0x1c 01:08:33 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x1100000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 910.312095] ? trace_hardirqs_on_caller+0x310/0x310 [ 910.317136] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 910.322191] ? prepare_exit_to_usermode+0x291/0x3b0 [ 910.327226] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 910.332089] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 910.332102] RIP: 0033:0x457569 [ 910.332121] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 910.340478] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 910.340494] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 910.340503] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 910.340517] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 910.340527] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 910.340536] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 910.475092] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 910.489636] CPU: 1 PID: 8005 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 910.496943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 910.506325] Call Trace: [ 910.508974] dump_stack+0x244/0x39d [ 910.512602] ? dump_stack_print_info.cold.1+0x20/0x20 [ 910.517782] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 910.522872] sysfs_warn_dup.cold.3+0x1c/0x2b [ 910.527276] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 910.532625] sysfs_create_link+0x65/0xc0 [ 910.536674] device_add+0x64a/0x18e0 [ 910.540373] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 910.545023] ? genl_rcv_msg+0xc6/0x168 [ 910.548894] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 910.553981] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 910.559347] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 910.564536] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 910.570067] wiphy_register+0x1a5b/0x2770 [ 910.574221] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 910.579175] ? rcu_read_lock_sched_held+0x14f/0x180 [ 910.584192] ? __kmalloc+0x5ee/0x760 [ 910.587889] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 910.593413] ? ieee80211_cs_list_valid+0x7c/0x440 [ 910.598275] ? ieee80211_register_hw+0xce9/0x3f10 [ 910.603107] ieee80211_register_hw+0x159b/0x3f10 [ 910.607852] ? ieee80211_ifa_changed+0xed0/0xed0 [ 910.612602] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 910.617615] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 910.623748] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 910.629271] ? vsnprintf+0x20d/0x1b60 [ 910.633086] ? pointer+0x900/0x900 [ 910.636615] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 910.641626] ? kvasprintf+0xee/0x150 [ 910.645342] ? bust_spinlocks+0xe0/0xe0 [ 910.649303] ? validate_nla+0x29a/0x1650 [ 910.653350] ? kasprintf+0xab/0xe0 [ 910.656891] ? kvasprintf_const+0x190/0x190 [ 910.661204] ? cap_capable+0x1f9/0x260 [ 910.665079] hwsim_new_radio_nl+0x7dc/0xb20 [ 910.669402] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 910.674573] ? __nla_parse+0x12c/0x3e0 [ 910.678448] genl_family_rcv_msg+0x8a7/0x11a0 [ 910.682929] ? genl_unregister_family+0x8a0/0x8a0 [ 910.687758] ? lock_downgrade+0x900/0x900 [ 910.691890] ? check_preemption_disabled+0x48/0x280 [ 910.696887] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 910.701797] ? kasan_check_read+0x11/0x20 [ 910.705943] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 910.711202] ? rcu_softirq_qs+0x20/0x20 [ 910.715212] genl_rcv_msg+0xc6/0x168 [ 910.718913] netlink_rcv_skb+0x172/0x440 [ 910.722999] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 910.727740] ? netlink_ack+0xb80/0xb80 [ 910.731626] ? down_read+0x8d/0x120 [ 910.735241] genl_rcv+0x28/0x40 [ 910.738510] netlink_unicast+0x5a5/0x760 [ 910.742558] ? netlink_attachskb+0x9a0/0x9a0 [ 910.746964] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 910.752490] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 910.757496] netlink_sendmsg+0xa18/0xfc0 [ 910.761566] ? netlink_unicast+0x760/0x760 [ 910.765802] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 910.770731] ? apparmor_socket_sendmsg+0x29/0x30 [ 910.775471] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 910.781100] ? security_socket_sendmsg+0x94/0xc0 [ 910.785855] ? netlink_unicast+0x760/0x760 [ 910.790096] sock_sendmsg+0xd5/0x120 [ 910.793794] ___sys_sendmsg+0x7fd/0x930 [ 910.797750] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 910.802666] ? kasan_check_read+0x11/0x20 [ 910.806827] ? copy_msghdr_from_user+0x580/0x580 [ 910.811576] ? __fget_light+0x2e9/0x430 [ 910.815538] ? fget_raw+0x20/0x20 [ 910.818984] ? __might_fault+0x12b/0x1e0 [ 910.823034] ? lock_downgrade+0x900/0x900 [ 910.827173] ? lock_release+0xa00/0xa00 [ 910.831134] ? perf_trace_sched_process_exec+0x860/0x860 [ 910.836575] ? posix_ktime_get_ts+0x15/0x20 [ 910.840882] ? trace_hardirqs_off_caller+0x310/0x310 [ 910.845969] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 910.851510] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 910.857029] ? sockfd_lookup_light+0xc5/0x160 [ 910.861529] __sys_sendmsg+0x11d/0x280 [ 910.865402] ? __ia32_sys_shutdown+0x80/0x80 [ 910.869794] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 910.875313] ? put_timespec64+0x10f/0x1b0 [ 910.879449] ? do_syscall_64+0x9a/0x820 [ 910.883418] ? do_syscall_64+0x9a/0x820 [ 910.887379] ? trace_hardirqs_off_caller+0x310/0x310 [ 910.892470] __x64_sys_sendmsg+0x78/0xb0 [ 910.896529] do_syscall_64+0x1b9/0x820 [ 910.900398] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 910.905744] ? syscall_return_slowpath+0x5e0/0x5e0 [ 910.910658] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 910.915654] ? trace_hardirqs_on_caller+0x310/0x310 [ 910.920657] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 910.925661] ? prepare_exit_to_usermode+0x291/0x3b0 [ 910.930698] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 910.935529] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 910.940718] RIP: 0033:0x457569 [ 910.943896] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 910.962786] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:08:33 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xac0d020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:33 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x1000000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:33 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x700000000000000) 01:08:33 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300000000000000]}, 0x2c) 01:08:33 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:33 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000100000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 910.970477] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 910.977731] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 910.984995] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 910.992246] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 910.999515] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x4000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 911.182681] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 911.197907] CPU: 0 PID: 8066 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 911.205197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 911.214549] Call Trace: [ 911.214577] dump_stack+0x244/0x39d [ 911.214602] ? dump_stack_print_info.cold.1+0x20/0x20 [ 911.214622] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 01:08:34 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18]}, 0x2c) [ 911.214665] sysfs_warn_dup.cold.3+0x1c/0x2b [ 911.235566] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 911.240945] sysfs_create_link+0x65/0xc0 [ 911.245020] device_add+0x64a/0x18e0 [ 911.248747] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 911.253429] ? genl_rcv_msg+0xc6/0x168 [ 911.257338] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 911.262451] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 911.267830] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 911.273035] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 911.278591] wiphy_register+0x1a5b/0x2770 01:08:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xf0ffffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 911.282761] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 911.287718] ? rcu_read_lock_sched_held+0x14f/0x180 [ 911.292745] ? __kmalloc+0x5ee/0x760 [ 911.296476] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 911.302038] ? ieee80211_cs_list_valid+0x7c/0x440 [ 911.306890] ? ieee80211_register_hw+0xce9/0x3f10 [ 911.311836] ieee80211_register_hw+0x159b/0x3f10 [ 911.316621] ? ieee80211_ifa_changed+0xed0/0xed0 [ 911.321408] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 911.321458] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 01:08:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xa000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 911.321476] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 911.321496] ? vsnprintf+0x20d/0x1b60 [ 911.338225] ? pointer+0x900/0x900 [ 911.338252] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 911.338271] ? kvasprintf+0xee/0x150 [ 911.354317] ? bust_spinlocks+0xe0/0xe0 [ 911.358314] ? validate_nla+0x29a/0x1650 [ 911.362415] ? kasprintf+0xab/0xe0 [ 911.365987] ? kvasprintf_const+0x190/0x190 [ 911.370355] ? cap_capable+0x1f9/0x260 [ 911.374267] hwsim_new_radio_nl+0x7dc/0xb20 [ 911.378631] ? mac80211_hwsim_new_radio+0x3460/0x3460 01:08:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x34000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 911.383855] ? __nla_parse+0x12c/0x3e0 [ 911.387806] genl_family_rcv_msg+0x8a7/0x11a0 [ 911.392360] ? genl_unregister_family+0x8a0/0x8a0 [ 911.397263] ? lock_downgrade+0x900/0x900 [ 911.401428] ? check_preemption_disabled+0x48/0x280 [ 911.406475] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 911.411414] ? kasan_check_read+0x11/0x20 [ 911.415573] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 911.420858] ? rcu_softirq_qs+0x20/0x20 [ 911.424865] genl_rcv_msg+0xc6/0x168 [ 911.428609] netlink_rcv_skb+0x172/0x440 01:08:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x300000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 911.432685] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 911.437460] ? netlink_ack+0xb80/0xb80 [ 911.441363] ? down_read+0x8d/0x120 [ 911.445010] genl_rcv+0x28/0x40 [ 911.448323] netlink_unicast+0x5a5/0x760 [ 911.452416] ? netlink_attachskb+0x9a0/0x9a0 [ 911.456842] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 911.462395] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 911.467442] netlink_sendmsg+0xa18/0xfc0 [ 911.471552] ? netlink_unicast+0x760/0x760 [ 911.475798] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 911.480739] ? apparmor_socket_sendmsg+0x29/0x30 [ 911.485563] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 911.491137] ? security_socket_sendmsg+0x94/0xc0 [ 911.495914] ? netlink_unicast+0x760/0x760 [ 911.500176] sock_sendmsg+0xd5/0x120 [ 911.503907] ___sys_sendmsg+0x7fd/0x930 [ 911.507891] ? find_held_lock+0x36/0x1c0 [ 911.507915] ? copy_msghdr_from_user+0x580/0x580 [ 911.507932] ? __fd_install+0x2b5/0x8f0 [ 911.507957] ? __fget_light+0x2e9/0x430 [ 911.516754] ? fget_raw+0x20/0x20 [ 911.516774] ? __might_fault+0x12b/0x1e0 [ 911.516792] ? lock_downgrade+0x900/0x900 [ 911.516811] ? lock_release+0xa00/0xa00 [ 911.540373] ? perf_trace_sched_process_exec+0x860/0x860 [ 911.545838] ? posix_ktime_get_ts+0x15/0x20 [ 911.550178] ? trace_hardirqs_off_caller+0x310/0x310 [ 911.555280] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 911.560819] ? sockfd_lookup_light+0xc5/0x160 [ 911.565305] __sys_sendmsg+0x11d/0x280 [ 911.569208] ? __ia32_sys_shutdown+0x80/0x80 [ 911.573617] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 911.579172] ? put_timespec64+0x10f/0x1b0 [ 911.583328] ? do_syscall_64+0x9a/0x820 [ 911.587289] ? do_syscall_64+0x9a/0x820 [ 911.591286] ? trace_hardirqs_off_caller+0x310/0x310 [ 911.596382] __x64_sys_sendmsg+0x78/0xb0 [ 911.600446] do_syscall_64+0x1b9/0x820 [ 911.604325] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 911.609680] ? syscall_return_slowpath+0x5e0/0x5e0 [ 911.614648] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 911.619481] ? trace_hardirqs_on_caller+0x310/0x310 [ 911.624495] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 911.629514] ? prepare_exit_to_usermode+0x291/0x3b0 [ 911.634522] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 911.639357] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 911.644545] RIP: 0033:0x457569 [ 911.647723] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 911.666608] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 911.674302] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 911.681578] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 911.688849] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 911.696118] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 911.703373] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:34 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x6c, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x13000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:34 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:34 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x400000000000000) 01:08:34 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000]}, 0x2c) 01:08:34 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000048000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xc310]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:34 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600000000000000]}, 0x2c) [ 911.903221] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 911.973267] CPU: 1 PID: 8111 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 911.980598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 911.989992] Call Trace: [ 911.992594] dump_stack+0x244/0x39d [ 911.996241] ? dump_stack_print_info.cold.1+0x20/0x20 [ 912.001444] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 912.006589] sysfs_warn_dup.cold.3+0x1c/0x2b [ 912.011024] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 912.016409] sysfs_create_link+0x65/0xc0 01:08:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xffffff9e]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xf00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 912.020495] device_add+0x64a/0x18e0 [ 912.024228] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 912.028923] ? genl_rcv_msg+0xc6/0x168 [ 912.032827] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 912.038136] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 912.043528] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 912.048738] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 912.054298] wiphy_register+0x1a5b/0x2770 [ 912.058471] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 912.063427] ? rcu_read_lock_sched_held+0x14f/0x180 [ 912.068457] ? __kmalloc+0x5ee/0x760 [ 912.072186] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 912.072203] ? ieee80211_cs_list_valid+0x7c/0x440 [ 912.072221] ? ieee80211_register_hw+0xce9/0x3f10 [ 912.072243] ieee80211_register_hw+0x159b/0x3f10 [ 912.072271] ? ieee80211_ifa_changed+0xed0/0xed0 [ 912.097019] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 912.102068] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 912.108234] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 912.113783] ? vsnprintf+0x20d/0x1b60 [ 912.117629] ? pointer+0x900/0x900 01:08:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xffffffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:35 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x3000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 912.121224] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 912.126255] ? kvasprintf+0xee/0x150 [ 912.130003] ? bust_spinlocks+0xe0/0xe0 [ 912.134030] ? validate_nla+0x29a/0x1650 [ 912.138103] ? kasprintf+0xab/0xe0 [ 912.141650] ? kvasprintf_const+0x190/0x190 [ 912.145999] ? cap_capable+0x1f9/0x260 [ 912.149935] hwsim_new_radio_nl+0x7dc/0xb20 [ 912.154299] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 912.159517] ? __nla_parse+0x12c/0x3e0 [ 912.163428] genl_family_rcv_msg+0x8a7/0x11a0 [ 912.167959] ? genl_unregister_family+0x8a0/0x8a0 [ 912.172862] ? lock_downgrade+0x900/0x900 [ 912.177027] ? check_preemption_disabled+0x48/0x280 [ 912.182057] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 912.187001] ? kasan_check_read+0x11/0x20 [ 912.191173] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 912.196475] ? rcu_softirq_qs+0x20/0x20 [ 912.200488] genl_rcv_msg+0xc6/0x168 [ 912.204219] netlink_rcv_skb+0x172/0x440 [ 912.208290] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 912.213070] ? netlink_ack+0xb80/0xb80 [ 912.217010] ? down_read+0x8d/0x120 [ 912.220660] genl_rcv+0x28/0x40 [ 912.223960] netlink_unicast+0x5a5/0x760 [ 912.228035] ? netlink_attachskb+0x9a0/0x9a0 [ 912.232454] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 912.238015] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 912.243059] netlink_sendmsg+0xa18/0xfc0 [ 912.247136] ? netlink_unicast+0x760/0x760 [ 912.251393] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 912.256337] ? apparmor_socket_sendmsg+0x29/0x30 [ 912.261110] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 912.266686] ? security_socket_sendmsg+0x94/0xc0 [ 912.271455] ? netlink_unicast+0x760/0x760 [ 912.275711] sock_sendmsg+0xd5/0x120 [ 912.279414] ___sys_sendmsg+0x7fd/0x930 [ 912.283395] ? find_held_lock+0x36/0x1c0 [ 912.287467] ? copy_msghdr_from_user+0x580/0x580 [ 912.292226] ? __fd_install+0x2b5/0x8f0 [ 912.296222] ? __fget_light+0x2e9/0x430 [ 912.300198] ? fget_raw+0x20/0x20 [ 912.303661] ? __might_fault+0x12b/0x1e0 [ 912.307735] ? lock_downgrade+0x900/0x900 [ 912.311887] ? lock_release+0xa00/0xa00 [ 912.315867] ? perf_trace_sched_process_exec+0x860/0x860 [ 912.321303] ? posix_ktime_get_ts+0x15/0x20 [ 912.325614] ? trace_hardirqs_off_caller+0x310/0x310 [ 912.330726] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 912.336266] ? sockfd_lookup_light+0xc5/0x160 [ 912.340840] __sys_sendmsg+0x11d/0x280 [ 912.344716] ? __ia32_sys_shutdown+0x80/0x80 [ 912.349127] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 912.354649] ? put_timespec64+0x10f/0x1b0 [ 912.358806] ? do_syscall_64+0x9a/0x820 [ 912.362778] ? do_syscall_64+0x9a/0x820 [ 912.366792] ? trace_hardirqs_off_caller+0x310/0x310 [ 912.371911] __x64_sys_sendmsg+0x78/0xb0 [ 912.375986] do_syscall_64+0x1b9/0x820 [ 912.379874] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 912.385238] ? syscall_return_slowpath+0x5e0/0x5e0 [ 912.390168] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 912.395001] ? trace_hardirqs_on_caller+0x310/0x310 [ 912.400017] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 912.405044] ? prepare_exit_to_usermode+0x291/0x3b0 [ 912.410065] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 912.414918] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 912.420092] RIP: 0033:0x457569 [ 912.423284] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 912.442186] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 912.449882] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 912.457136] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 912.464401] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 912.471689] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 912.478980] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:35 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xfffffffffffff000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:35 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x500]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:35 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1500000000000000]}, 0x2c) 01:08:35 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xa000000) 01:08:35 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a000000007fffffff000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:35 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x20a6a, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:35 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}, 0x2c) 01:08:35 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x600]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:35 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xfffffff5) 01:08:35 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000010000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:35 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5b00000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:35 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18000000]}, 0x2c) [ 912.830286] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 912.880308] CPU: 0 PID: 8180 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 912.887617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 912.897015] Call Trace: [ 912.899638] dump_stack+0x244/0x39d [ 912.903331] ? dump_stack_print_info.cold.1+0x20/0x20 [ 912.908546] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 912.913883] sysfs_warn_dup.cold.3+0x1c/0x2b [ 912.918308] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 912.923691] sysfs_create_link+0x65/0xc0 [ 912.927769] device_add+0x64a/0x18e0 [ 912.931502] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 912.936228] ? genl_rcv_msg+0xc6/0x168 [ 912.940137] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 912.945268] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 912.950648] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 912.955855] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 912.961406] wiphy_register+0x1a5b/0x2770 [ 912.965585] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 912.970541] ? rcu_read_lock_sched_held+0x14f/0x180 [ 912.975546] ? __kmalloc+0x5ee/0x760 [ 912.979251] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 912.984809] ? ieee80211_cs_list_valid+0x7c/0x440 [ 912.989677] ? ieee80211_register_hw+0xce9/0x3f10 [ 912.994528] ieee80211_register_hw+0x159b/0x3f10 [ 912.999319] ? ieee80211_ifa_changed+0xed0/0xed0 [ 913.004083] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 913.009126] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 913.015289] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 913.020824] ? vsnprintf+0x20d/0x1b60 [ 913.024625] ? pointer+0x900/0x900 [ 913.028171] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 913.033199] ? kvasprintf+0xee/0x150 [ 913.036918] ? bust_spinlocks+0xe0/0xe0 [ 913.040882] ? validate_nla+0x29a/0x1650 [ 913.044975] ? kasprintf+0xab/0xe0 [ 913.048502] ? kvasprintf_const+0x190/0x190 [ 913.052818] ? cap_capable+0x1f9/0x260 [ 913.056697] hwsim_new_radio_nl+0x7dc/0xb20 [ 913.061007] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 913.066212] ? __nla_parse+0x12c/0x3e0 [ 913.070130] genl_family_rcv_msg+0x8a7/0x11a0 [ 913.074640] ? genl_unregister_family+0x8a0/0x8a0 [ 913.079484] ? lock_downgrade+0x900/0x900 [ 913.083645] ? check_preemption_disabled+0x48/0x280 [ 913.088664] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 913.093591] ? kasan_check_read+0x11/0x20 [ 913.097736] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 913.103016] ? rcu_softirq_qs+0x20/0x20 [ 913.106989] genl_rcv_msg+0xc6/0x168 [ 913.110692] netlink_rcv_skb+0x172/0x440 [ 913.114742] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 913.119505] ? netlink_ack+0xb80/0xb80 [ 913.123386] ? down_read+0x8d/0x120 [ 913.127053] genl_rcv+0x28/0x40 [ 913.130322] netlink_unicast+0x5a5/0x760 [ 913.134374] ? netlink_attachskb+0x9a0/0x9a0 [ 913.138770] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 913.144296] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 913.149303] netlink_sendmsg+0xa18/0xfc0 [ 913.153385] ? netlink_unicast+0x760/0x760 [ 913.157619] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 913.162537] ? apparmor_socket_sendmsg+0x29/0x30 [ 913.167277] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 913.172803] ? security_socket_sendmsg+0x94/0xc0 [ 913.177550] ? netlink_unicast+0x760/0x760 [ 913.181823] sock_sendmsg+0xd5/0x120 [ 913.185525] ___sys_sendmsg+0x7fd/0x930 [ 913.189486] ? find_held_lock+0x36/0x1c0 [ 913.193538] ? copy_msghdr_from_user+0x580/0x580 [ 913.198294] ? __fd_install+0x2b5/0x8f0 [ 913.202294] ? __fget_light+0x2e9/0x430 [ 913.206252] ? fget_raw+0x20/0x20 [ 913.209716] ? __might_fault+0x12b/0x1e0 [ 913.213762] ? lock_downgrade+0x900/0x900 [ 913.217901] ? lock_release+0xa00/0xa00 [ 913.221871] ? perf_trace_sched_process_exec+0x860/0x860 [ 913.227316] ? posix_ktime_get_ts+0x15/0x20 [ 913.231625] ? trace_hardirqs_off_caller+0x310/0x310 [ 913.236751] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 913.242292] ? sockfd_lookup_light+0xc5/0x160 [ 913.246806] __sys_sendmsg+0x11d/0x280 [ 913.250683] ? __ia32_sys_shutdown+0x80/0x80 [ 913.255079] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 913.260608] ? put_timespec64+0x10f/0x1b0 [ 913.264752] ? do_syscall_64+0x9a/0x820 [ 913.268722] ? do_syscall_64+0x9a/0x820 [ 913.272699] ? trace_hardirqs_off_caller+0x310/0x310 [ 913.277792] __x64_sys_sendmsg+0x78/0xb0 [ 913.281847] do_syscall_64+0x1b9/0x820 [ 913.285739] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 913.291098] ? syscall_return_slowpath+0x5e0/0x5e0 [ 913.296013] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 913.300843] ? trace_hardirqs_on_caller+0x310/0x310 [ 913.305844] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 913.310880] ? prepare_exit_to_usermode+0x291/0x3b0 [ 913.315903] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 913.320750] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 913.325940] RIP: 0033:0x457569 [ 913.329136] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 913.348042] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 913.355734] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 913.362988] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 913.370255] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 913.377531] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 913.384788] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 913.455772] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 913.471736] CPU: 0 PID: 8180 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 913.479023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 913.488373] Call Trace: [ 913.488398] dump_stack+0x244/0x39d [ 913.488423] ? dump_stack_print_info.cold.1+0x20/0x20 [ 913.488443] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 913.494655] sysfs_warn_dup.cold.3+0x1c/0x2b [ 913.494676] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 913.494710] sysfs_create_link+0x65/0xc0 [ 913.494745] device_add+0x64a/0x18e0 [ 913.522509] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 913.527187] ? genl_rcv_msg+0xc6/0x168 [ 913.531097] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 913.536200] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 913.541578] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 913.546781] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 913.552336] wiphy_register+0x1a5b/0x2770 [ 913.556505] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 913.561459] ? rcu_read_lock_sched_held+0x14f/0x180 [ 913.566496] ? __kmalloc+0x5ee/0x760 [ 913.570223] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 913.575767] ? ieee80211_cs_list_valid+0x7c/0x440 [ 913.580625] ? ieee80211_register_hw+0xce9/0x3f10 [ 913.585518] ieee80211_register_hw+0x159b/0x3f10 [ 913.590305] ? ieee80211_ifa_changed+0xed0/0xed0 [ 913.595074] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 913.600098] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 913.606244] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 913.611766] ? vsnprintf+0x20d/0x1b60 [ 913.615555] ? pointer+0x900/0x900 [ 913.619091] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 913.624109] ? kvasprintf+0xee/0x150 [ 913.627807] ? bust_spinlocks+0xe0/0xe0 [ 913.631770] ? validate_nla+0x29a/0x1650 [ 913.635866] ? kasprintf+0xab/0xe0 [ 913.639401] ? kvasprintf_const+0x190/0x190 [ 913.643731] ? cap_capable+0x1f9/0x260 [ 913.647613] hwsim_new_radio_nl+0x7dc/0xb20 [ 913.651940] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 913.657122] ? __nla_parse+0x12c/0x3e0 [ 913.661020] genl_family_rcv_msg+0x8a7/0x11a0 [ 913.665506] ? genl_unregister_family+0x8a0/0x8a0 [ 913.670336] ? lock_downgrade+0x900/0x900 [ 913.674472] ? check_preemption_disabled+0x48/0x280 [ 913.679475] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 913.684403] ? kasan_check_read+0x11/0x20 [ 913.688569] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 913.693833] ? rcu_softirq_qs+0x20/0x20 [ 913.697804] genl_rcv_msg+0xc6/0x168 [ 913.701523] netlink_rcv_skb+0x172/0x440 [ 913.705586] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 913.710328] ? netlink_ack+0xb80/0xb80 [ 913.714200] ? down_read+0x8d/0x120 [ 913.717816] genl_rcv+0x28/0x40 [ 913.721082] netlink_unicast+0x5a5/0x760 [ 913.725132] ? netlink_attachskb+0x9a0/0x9a0 [ 913.729561] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 913.735084] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 913.740107] netlink_sendmsg+0xa18/0xfc0 [ 913.744183] ? netlink_unicast+0x760/0x760 [ 913.748407] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 913.753325] ? apparmor_socket_sendmsg+0x29/0x30 [ 913.758083] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 913.763607] ? security_socket_sendmsg+0x94/0xc0 [ 913.768350] ? netlink_unicast+0x760/0x760 [ 913.772576] sock_sendmsg+0xd5/0x120 [ 913.776297] ___sys_sendmsg+0x7fd/0x930 [ 913.780256] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 913.785179] ? kasan_check_read+0x11/0x20 [ 913.789332] ? copy_msghdr_from_user+0x580/0x580 [ 913.794096] ? __fget_light+0x2e9/0x430 [ 913.798056] ? fget_raw+0x20/0x20 [ 913.801511] ? __might_fault+0x12b/0x1e0 [ 913.805569] ? lock_downgrade+0x900/0x900 [ 913.809739] ? lock_release+0xa00/0xa00 [ 913.813704] ? perf_trace_sched_process_exec+0x860/0x860 [ 913.819143] ? posix_ktime_get_ts+0x15/0x20 [ 913.823528] ? trace_hardirqs_off_caller+0x310/0x310 [ 913.828617] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 913.834140] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 913.839687] ? sockfd_lookup_light+0xc5/0x160 [ 913.844179] __sys_sendmsg+0x11d/0x280 [ 913.848070] ? __ia32_sys_shutdown+0x80/0x80 [ 913.852482] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 913.858018] ? put_timespec64+0x10f/0x1b0 [ 913.862181] ? do_syscall_64+0x9a/0x820 [ 913.866142] ? do_syscall_64+0x9a/0x820 [ 913.870117] ? trace_hardirqs_off_caller+0x310/0x310 [ 913.875209] __x64_sys_sendmsg+0x78/0xb0 [ 913.879289] do_syscall_64+0x1b9/0x820 [ 913.883178] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 913.888529] ? syscall_return_slowpath+0x5e0/0x5e0 [ 913.893510] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 913.898340] ? trace_hardirqs_on_caller+0x310/0x310 [ 913.903341] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 913.908356] ? prepare_exit_to_usermode+0x291/0x3b0 [ 913.913384] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 913.918233] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 913.923423] RIP: 0033:0x457569 [ 913.926605] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 913.945519] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:08:36 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x7a000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:36 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x400000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:36 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe4ffffff]}, 0x2c) 01:08:36 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000002000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:36 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xa00000000000000) [ 913.953211] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 913.960467] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 913.967719] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 913.974970] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 913.982225] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:36 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf]}, 0x2c) 01:08:36 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x400300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 914.105116] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 914.156546] CPU: 0 PID: 8216 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 914.163847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 914.173204] Call Trace: [ 914.175814] dump_stack+0x244/0x39d [ 914.179460] ? dump_stack_print_info.cold.1+0x20/0x20 [ 914.184664] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 914.189789] sysfs_warn_dup.cold.3+0x1c/0x2b [ 914.194220] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 914.199629] sysfs_create_link+0x65/0xc0 01:08:37 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x23000000) 01:08:37 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6200000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:37 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x9000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 914.203706] device_add+0x64a/0x18e0 [ 914.207435] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 914.212129] ? genl_rcv_msg+0xc6/0x168 [ 914.216044] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 914.221173] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 914.226562] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 914.231779] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 914.237344] wiphy_register+0x1a5b/0x2770 [ 914.241514] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 914.246462] ? rcu_read_lock_sched_held+0x14f/0x180 [ 914.251493] ? __kmalloc+0x5ee/0x760 [ 914.255227] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 914.260792] ? ieee80211_cs_list_valid+0x7c/0x440 [ 914.265641] ? ieee80211_register_hw+0xce9/0x3f10 [ 914.265664] ieee80211_register_hw+0x159b/0x3f10 [ 914.265692] ? ieee80211_ifa_changed+0xed0/0xed0 [ 914.280035] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 914.285081] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 914.291245] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 914.296791] ? vsnprintf+0x20d/0x1b60 [ 914.296815] ? pointer+0x900/0x900 [ 914.296841] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 914.296862] ? kvasprintf+0xee/0x150 [ 914.312923] ? bust_spinlocks+0xe0/0xe0 [ 914.316955] ? validate_nla+0x29a/0x1650 [ 914.316978] ? kasprintf+0xab/0xe0 [ 914.316994] ? kvasprintf_const+0x190/0x190 [ 914.317018] ? cap_capable+0x1f9/0x260 [ 914.317042] hwsim_new_radio_nl+0x7dc/0xb20 [ 914.332917] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 914.332933] ? __nla_parse+0x12c/0x3e0 [ 914.332980] genl_family_rcv_msg+0x8a7/0x11a0 [ 914.333007] ? genl_unregister_family+0x8a0/0x8a0 [ 914.333028] ? lock_downgrade+0x900/0x900 [ 914.346545] ? check_preemption_disabled+0x48/0x280 [ 914.346565] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 914.346585] ? kasan_check_read+0x11/0x20 [ 914.374131] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 914.379469] ? rcu_softirq_qs+0x20/0x20 [ 914.383475] genl_rcv_msg+0xc6/0x168 [ 914.387216] netlink_rcv_skb+0x172/0x440 [ 914.391298] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 914.396079] ? netlink_ack+0xb80/0xb80 [ 914.399981] ? down_read+0x8d/0x120 [ 914.403632] genl_rcv+0x28/0x40 01:08:37 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x13]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:37 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x200000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 914.406922] netlink_unicast+0x5a5/0x760 [ 914.411002] ? netlink_attachskb+0x9a0/0x9a0 [ 914.415433] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 914.421001] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 914.426059] netlink_sendmsg+0xa18/0xfc0 [ 914.430181] ? netlink_unicast+0x760/0x760 [ 914.434436] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 914.439384] ? apparmor_socket_sendmsg+0x29/0x30 [ 914.444182] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 914.449739] ? security_socket_sendmsg+0x94/0xc0 [ 914.454505] ? netlink_unicast+0x760/0x760 [ 914.458752] sock_sendmsg+0xd5/0x120 [ 914.462485] ___sys_sendmsg+0x7fd/0x930 [ 914.466487] ? find_held_lock+0x36/0x1c0 [ 914.470567] ? copy_msghdr_from_user+0x580/0x580 [ 914.475341] ? __fd_install+0x2b5/0x8f0 [ 914.479341] ? __fget_light+0x2e9/0x430 [ 914.483329] ? fget_raw+0x20/0x20 [ 914.486801] ? __might_fault+0x12b/0x1e0 [ 914.490875] ? lock_downgrade+0x900/0x900 [ 914.495043] ? lock_release+0xa00/0xa00 [ 914.499030] ? perf_trace_sched_process_exec+0x860/0x860 [ 914.504487] ? posix_ktime_get_ts+0x15/0x20 [ 914.508824] ? trace_hardirqs_off_caller+0x310/0x310 [ 914.513945] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 914.519492] ? sockfd_lookup_light+0xc5/0x160 [ 914.524018] __sys_sendmsg+0x11d/0x280 [ 914.527919] ? __ia32_sys_shutdown+0x80/0x80 [ 914.532343] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 914.537892] ? put_timespec64+0x10f/0x1b0 [ 914.542061] ? do_syscall_64+0x9a/0x820 [ 914.546050] ? do_syscall_64+0x9a/0x820 [ 914.550043] ? trace_hardirqs_off_caller+0x310/0x310 [ 914.555249] __x64_sys_sendmsg+0x78/0xb0 [ 914.559344] do_syscall_64+0x1b9/0x820 [ 914.563255] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 914.568611] ? syscall_return_slowpath+0x5e0/0x5e0 [ 914.573527] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 914.578374] ? trace_hardirqs_on_caller+0x310/0x310 [ 914.583381] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 914.588421] ? prepare_exit_to_usermode+0x291/0x3b0 [ 914.593426] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 914.598287] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 914.603458] RIP: 0033:0x457569 [ 914.606637] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 914.625519] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 914.633230] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 914.640488] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 914.647745] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 914.655009] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 914.662290] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:37 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x2c) 01:08:37 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xfffffff0]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:37 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a00000000fffffffd000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:37 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x1000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:37 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xf5ffffff) 01:08:37 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x5]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:37 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x2c) 01:08:37 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x60000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 914.854738] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 914.904254] CPU: 0 PID: 8269 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 914.911670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 914.921027] Call Trace: [ 914.923645] dump_stack+0x244/0x39d [ 914.927294] ? dump_stack_print_info.cold.1+0x20/0x20 [ 914.932498] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 914.937622] sysfs_warn_dup.cold.3+0x1c/0x2b [ 914.942057] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 914.947459] sysfs_create_link+0x65/0xc0 01:08:37 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x9effffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 914.951539] device_add+0x64a/0x18e0 [ 914.955284] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 914.959995] ? genl_rcv_msg+0xc6/0x168 [ 914.963900] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 914.969009] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 914.974415] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 914.979618] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 914.985219] wiphy_register+0x1a5b/0x2770 [ 914.989399] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 914.994352] ? rcu_read_lock_sched_held+0x14f/0x180 [ 914.999380] ? __kmalloc+0x5ee/0x760 01:08:37 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x200000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 915.003113] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 915.008672] ? ieee80211_cs_list_valid+0x7c/0x440 [ 915.013531] ? ieee80211_register_hw+0xce9/0x3f10 [ 915.018392] ieee80211_register_hw+0x159b/0x3f10 [ 915.023192] ? ieee80211_ifa_changed+0xed0/0xed0 [ 915.027990] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 915.033037] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 915.039213] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 915.044759] ? vsnprintf+0x20d/0x1b60 [ 915.048570] ? pointer+0x900/0x900 01:08:37 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x11000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 915.052146] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 915.057227] ? kvasprintf+0xee/0x150 [ 915.060959] ? bust_spinlocks+0xe0/0xe0 [ 915.064979] ? validate_nla+0x29a/0x1650 [ 915.069056] ? kasprintf+0xab/0xe0 [ 915.072615] ? kvasprintf_const+0x190/0x190 [ 915.076964] ? cap_capable+0x1f9/0x260 [ 915.080876] hwsim_new_radio_nl+0x7dc/0xb20 [ 915.085222] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 915.090422] ? __nla_parse+0x12c/0x3e0 [ 915.094361] genl_family_rcv_msg+0x8a7/0x11a0 [ 915.098884] ? genl_unregister_family+0x8a0/0x8a0 [ 915.103742] ? lock_downgrade+0x900/0x900 [ 915.107914] ? check_preemption_disabled+0x48/0x280 [ 915.112948] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 915.117890] ? kasan_check_read+0x11/0x20 [ 915.122047] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 915.127365] ? rcu_softirq_qs+0x20/0x20 [ 915.131374] genl_rcv_msg+0xc6/0x168 [ 915.135115] netlink_rcv_skb+0x172/0x440 [ 915.139226] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 915.143992] ? netlink_ack+0xb80/0xb80 [ 915.147901] ? down_read+0x8d/0x120 [ 915.151553] genl_rcv+0x28/0x40 01:08:37 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xffffff7f]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:38 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x42000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 915.154845] netlink_unicast+0x5a5/0x760 [ 915.158953] ? netlink_attachskb+0x9a0/0x9a0 [ 915.163379] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 915.168933] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 915.173970] netlink_sendmsg+0xa18/0xfc0 [ 915.178090] ? netlink_unicast+0x760/0x760 [ 915.182365] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 915.187307] ? apparmor_socket_sendmsg+0x29/0x30 [ 915.192099] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 915.197660] ? security_socket_sendmsg+0x94/0xc0 [ 915.197674] ? netlink_unicast+0x760/0x760 [ 915.197694] sock_sendmsg+0xd5/0x120 [ 915.197711] ___sys_sendmsg+0x7fd/0x930 [ 915.197729] ? find_held_lock+0x36/0x1c0 [ 915.210435] ? copy_msghdr_from_user+0x580/0x580 [ 915.210469] ? __fd_install+0x2b5/0x8f0 [ 915.210497] ? __fget_light+0x2e9/0x430 [ 915.210513] ? fget_raw+0x20/0x20 [ 915.210530] ? __might_fault+0x12b/0x1e0 [ 915.210547] ? lock_downgrade+0x900/0x900 [ 915.210567] ? lock_release+0xa00/0xa00 [ 915.210586] ? perf_trace_sched_process_exec+0x860/0x860 01:08:38 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xa00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 915.252494] ? posix_ktime_get_ts+0x15/0x20 [ 915.256840] ? trace_hardirqs_off_caller+0x310/0x310 [ 915.261963] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 915.267542] ? sockfd_lookup_light+0xc5/0x160 [ 915.272091] __sys_sendmsg+0x11d/0x280 [ 915.275999] ? __ia32_sys_shutdown+0x80/0x80 [ 915.280446] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 915.285996] ? put_timespec64+0x10f/0x1b0 [ 915.290183] ? do_syscall_64+0x9a/0x820 [ 915.294187] ? do_syscall_64+0x9a/0x820 [ 915.298203] ? trace_hardirqs_off_caller+0x310/0x310 [ 915.303325] __x64_sys_sendmsg+0x78/0xb0 [ 915.307408] do_syscall_64+0x1b9/0x820 [ 915.311343] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 915.316723] ? syscall_return_slowpath+0x5e0/0x5e0 [ 915.321677] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 915.326533] ? trace_hardirqs_on_caller+0x310/0x310 [ 915.331566] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 915.336627] ? prepare_exit_to_usermode+0x291/0x3b0 [ 915.341664] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 915.346527] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 915.351729] RIP: 0033:0x457569 [ 915.354934] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 915.373846] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 915.381551] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 915.388852] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 915.396123] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 915.403377] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 915.410632] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:38 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xc310000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:38 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000030000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:38 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x100000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:38 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x100000) 01:08:38 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10]}, 0x2c) [ 915.554944] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 915.569128] CPU: 0 PID: 8316 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 915.576438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 915.585799] Call Trace: [ 915.588403] dump_stack+0x244/0x39d [ 915.592058] ? dump_stack_print_info.cold.1+0x20/0x20 [ 915.597286] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 915.602410] sysfs_warn_dup.cold.3+0x1c/0x2b [ 915.606841] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 915.612225] sysfs_create_link+0x65/0xc0 [ 915.616301] device_add+0x64a/0x18e0 [ 915.620046] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 915.624746] ? genl_rcv_msg+0xc6/0x168 [ 915.628638] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 915.633735] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 915.639091] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 915.644271] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 915.649818] wiphy_register+0x1a5b/0x2770 [ 915.653988] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 915.658944] ? rcu_read_lock_sched_held+0x14f/0x180 [ 915.663975] ? __kmalloc+0x5ee/0x760 [ 915.667749] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 915.673307] ? ieee80211_cs_list_valid+0x7c/0x440 [ 915.678194] ? ieee80211_register_hw+0xce9/0x3f10 [ 915.678219] ieee80211_register_hw+0x159b/0x3f10 [ 915.678247] ? ieee80211_ifa_changed+0xed0/0xed0 [ 915.692613] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 915.697669] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 01:08:38 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xa00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:38 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2a00, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 915.697689] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 915.697707] ? vsnprintf+0x20d/0x1b60 [ 915.697731] ? pointer+0x900/0x900 [ 915.697756] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 915.721898] ? kvasprintf+0xee/0x150 [ 915.725632] ? bust_spinlocks+0xe0/0xe0 [ 915.729640] ? validate_nla+0x29a/0x1650 [ 915.733720] ? kasprintf+0xab/0xe0 [ 915.737273] ? kvasprintf_const+0x190/0x190 [ 915.741629] ? cap_capable+0x1f9/0x260 [ 915.745556] hwsim_new_radio_nl+0x7dc/0xb20 [ 915.749911] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 915.755112] ? __nla_parse+0x12c/0x3e0 [ 915.759030] genl_family_rcv_msg+0x8a7/0x11a0 [ 915.763563] ? genl_unregister_family+0x8a0/0x8a0 [ 915.768433] ? lock_downgrade+0x900/0x900 [ 915.772632] ? check_preemption_disabled+0x48/0x280 [ 915.777663] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 915.782620] ? kasan_check_read+0x11/0x20 [ 915.786780] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 915.792085] ? rcu_softirq_qs+0x20/0x20 [ 915.796096] genl_rcv_msg+0xc6/0x168 [ 915.799802] netlink_rcv_skb+0x172/0x440 01:08:38 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x6000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 915.803862] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 915.808640] ? netlink_ack+0xb80/0xb80 [ 915.812526] ? down_read+0x8d/0x120 [ 915.816194] genl_rcv+0x28/0x40 [ 915.819509] netlink_unicast+0x5a5/0x760 [ 915.823588] ? netlink_attachskb+0x9a0/0x9a0 [ 915.828012] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 915.833588] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 915.838616] netlink_sendmsg+0xa18/0xfc0 [ 915.838657] ? netlink_unicast+0x760/0x760 [ 915.838672] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 915.838705] ? apparmor_socket_sendmsg+0x29/0x30 [ 915.838720] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 915.838736] ? security_socket_sendmsg+0x94/0xc0 [ 915.838753] ? netlink_unicast+0x760/0x760 [ 915.847049] sock_sendmsg+0xd5/0x120 [ 915.847069] ___sys_sendmsg+0x7fd/0x930 [ 915.847084] ? find_held_lock+0x36/0x1c0 [ 915.847105] ? copy_msghdr_from_user+0x580/0x580 [ 915.847120] ? __fd_install+0x2b5/0x8f0 [ 915.847144] ? __fget_light+0x2e9/0x430 [ 915.895817] ? fget_raw+0x20/0x20 [ 915.899284] ? __might_fault+0x12b/0x1e0 01:08:38 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3b00000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 915.903362] ? lock_downgrade+0x900/0x900 [ 915.907514] ? lock_release+0xa00/0xa00 [ 915.911498] ? perf_trace_sched_process_exec+0x860/0x860 [ 915.916994] ? posix_ktime_get_ts+0x15/0x20 [ 915.921355] ? trace_hardirqs_off_caller+0x310/0x310 [ 915.926480] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 915.932069] ? sockfd_lookup_light+0xc5/0x160 [ 915.936606] __sys_sendmsg+0x11d/0x280 [ 915.940519] ? __ia32_sys_shutdown+0x80/0x80 [ 915.944959] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 915.950503] ? put_timespec64+0x10f/0x1b0 [ 915.950527] ? do_syscall_64+0x9a/0x820 [ 915.950543] ? do_syscall_64+0x9a/0x820 [ 915.950570] ? trace_hardirqs_off_caller+0x310/0x310 [ 915.950594] __x64_sys_sendmsg+0x78/0xb0 [ 915.950617] do_syscall_64+0x1b9/0x820 [ 915.975714] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 915.981228] ? syscall_return_slowpath+0x5e0/0x5e0 [ 915.986188] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 915.991080] ? trace_hardirqs_on_caller+0x310/0x310 [ 915.996102] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 916.001127] ? prepare_exit_to_usermode+0x291/0x3b0 01:08:38 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xf000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 916.006193] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 916.011233] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 916.016432] RIP: 0033:0x457569 [ 916.019634] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 916.019643] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 916.019659] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 01:08:38 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x5000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 916.019681] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 916.060817] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 916.060828] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 916.060838] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:39 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, 0x2c) 01:08:39 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x2) 01:08:39 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000074000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:39 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xae0d020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:39 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x10c3]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:39 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5c00000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 916.310755] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 916.368697] CPU: 1 PID: 8365 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 916.376002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 916.385383] Call Trace: [ 916.387988] dump_stack+0x244/0x39d [ 916.391644] ? dump_stack_print_info.cold.1+0x20/0x20 [ 916.396869] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 916.402000] sysfs_warn_dup.cold.3+0x1c/0x2b [ 916.406438] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 916.411847] sysfs_create_link+0x65/0xc0 [ 916.415920] device_add+0x64a/0x18e0 [ 916.419644] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 916.424323] ? genl_rcv_msg+0xc6/0x168 [ 916.424348] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 916.424362] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 916.424382] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 916.433372] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 916.433397] wiphy_register+0x1a5b/0x2770 [ 916.433424] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 916.458622] ? rcu_read_lock_sched_held+0x14f/0x180 [ 916.463684] ? __kmalloc+0x5ee/0x760 [ 916.467415] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 916.472970] ? ieee80211_cs_list_valid+0x7c/0x440 [ 916.477845] ? ieee80211_register_hw+0xce9/0x3f10 [ 916.482718] ieee80211_register_hw+0x159b/0x3f10 [ 916.487520] ? ieee80211_ifa_changed+0xed0/0xed0 [ 916.492312] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 916.497365] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 916.503526] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 916.509080] ? vsnprintf+0x20d/0x1b60 [ 916.513248] ? pointer+0x900/0x900 [ 916.516817] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 916.521844] ? kvasprintf+0xee/0x150 [ 916.525574] ? bust_spinlocks+0xe0/0xe0 [ 916.529571] ? validate_nla+0x29a/0x1650 [ 916.533649] ? kasprintf+0xab/0xe0 [ 916.537212] ? kvasprintf_const+0x190/0x190 [ 916.541544] ? cap_capable+0x1f9/0x260 [ 916.541586] hwsim_new_radio_nl+0x7dc/0xb20 [ 916.541607] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 916.554980] ? __nla_parse+0x12c/0x3e0 [ 916.558899] genl_family_rcv_msg+0x8a7/0x11a0 [ 916.563418] ? genl_unregister_family+0x8a0/0x8a0 [ 916.568279] ? lock_downgrade+0x900/0x900 [ 916.572442] ? check_preemption_disabled+0x48/0x280 [ 916.577479] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 916.582426] ? kasan_check_read+0x11/0x20 [ 916.586588] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 916.591882] ? rcu_softirq_qs+0x20/0x20 [ 916.595892] genl_rcv_msg+0xc6/0x168 [ 916.599636] netlink_rcv_skb+0x172/0x440 [ 916.603729] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 916.608501] ? netlink_ack+0xb80/0xb80 [ 916.612404] ? down_read+0x8d/0x120 [ 916.616081] genl_rcv+0x28/0x40 [ 916.616098] netlink_unicast+0x5a5/0x760 [ 916.616121] ? netlink_attachskb+0x9a0/0x9a0 [ 916.616139] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 916.616182] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 916.616205] netlink_sendmsg+0xa18/0xfc0 [ 916.616227] ? netlink_unicast+0x760/0x760 [ 916.623550] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 916.623571] ? apparmor_socket_sendmsg+0x29/0x30 [ 916.623588] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 916.623621] ? security_socket_sendmsg+0x94/0xc0 [ 916.623636] ? netlink_unicast+0x760/0x760 [ 916.623678] sock_sendmsg+0xd5/0x120 [ 916.623697] ___sys_sendmsg+0x7fd/0x930 [ 916.678769] ? find_held_lock+0x36/0x1c0 [ 916.682866] ? copy_msghdr_from_user+0x580/0x580 [ 916.687645] ? __fd_install+0x2b5/0x8f0 [ 916.691684] ? __fget_light+0x2e9/0x430 [ 916.695676] ? fget_raw+0x20/0x20 [ 916.699142] ? __might_fault+0x12b/0x1e0 [ 916.699171] ? lock_downgrade+0x900/0x900 [ 916.699191] ? lock_release+0xa00/0xa00 [ 916.699205] ? perf_trace_sched_process_exec+0x860/0x860 [ 916.699218] ? posix_ktime_get_ts+0x15/0x20 [ 916.699237] ? trace_hardirqs_off_caller+0x310/0x310 [ 916.699264] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 916.699280] ? sockfd_lookup_light+0xc5/0x160 [ 916.699301] __sys_sendmsg+0x11d/0x280 [ 916.699320] ? __ia32_sys_shutdown+0x80/0x80 [ 916.699338] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 916.699359] ? put_timespec64+0x10f/0x1b0 [ 916.707566] ? do_syscall_64+0x9a/0x820 [ 916.707583] ? do_syscall_64+0x9a/0x820 [ 916.707611] ? trace_hardirqs_off_caller+0x310/0x310 [ 916.707636] __x64_sys_sendmsg+0x78/0xb0 [ 916.707655] do_syscall_64+0x1b9/0x820 [ 916.707681] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 916.781279] ? syscall_return_slowpath+0x5e0/0x5e0 [ 916.786223] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 916.786258] ? trace_hardirqs_on_caller+0x310/0x310 [ 916.796100] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 916.796134] ? prepare_exit_to_usermode+0x291/0x3b0 [ 916.796167] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 916.796191] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 916.796204] RIP: 0033:0x457569 [ 916.796220] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 916.796233] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 916.846070] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 916.853456] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 916.860730] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:08:39 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13000000]}, 0x2c) 01:08:39 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x6]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:39 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x11]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:39 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x40030000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:39 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x3f00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:39 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xfffff000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:39 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x2000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:39 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x3) [ 916.868001] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 916.875275] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:39 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000090000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:39 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe00]}, 0x2c) 01:08:39 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x9effffff00000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:39 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x530a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:39 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 917.091952] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 917.133821] CPU: 1 PID: 8427 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 917.141167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 917.150548] Call Trace: [ 917.153169] dump_stack+0x244/0x39d [ 917.156832] ? dump_stack_print_info.cold.1+0x20/0x20 [ 917.162042] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 917.167180] sysfs_warn_dup.cold.3+0x1c/0x2b [ 917.171607] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 917.176989] sysfs_create_link+0x65/0xc0 [ 917.181092] device_add+0x64a/0x18e0 [ 917.181109] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 917.181121] ? genl_rcv_msg+0xc6/0x168 [ 917.181140] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 917.189565] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 917.189616] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 917.189633] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 917.189657] wiphy_register+0x1a5b/0x2770 [ 917.218921] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 917.223873] ? rcu_read_lock_sched_held+0x14f/0x180 [ 917.228899] ? __kmalloc+0x5ee/0x760 01:08:40 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xf0]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:40 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0xb00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:40 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3401]}, 0x2c) [ 917.232642] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 917.238218] ? ieee80211_cs_list_valid+0x7c/0x440 [ 917.243077] ? ieee80211_register_hw+0xce9/0x3f10 [ 917.247937] ieee80211_register_hw+0x159b/0x3f10 [ 917.252729] ? ieee80211_ifa_changed+0xed0/0xed0 [ 917.257542] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 917.262640] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 917.268819] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 917.274408] ? vsnprintf+0x20d/0x1b60 [ 917.274433] ? pointer+0x900/0x900 [ 917.274460] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 917.281808] ? kvasprintf+0xee/0x150 [ 917.290520] ? bust_spinlocks+0xe0/0xe0 [ 917.294525] ? validate_nla+0x29a/0x1650 [ 917.298608] ? kasprintf+0xab/0xe0 [ 917.302169] ? kvasprintf_const+0x190/0x190 [ 917.306577] ? cap_capable+0x1f9/0x260 [ 917.310494] hwsim_new_radio_nl+0x7dc/0xb20 [ 917.314836] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 917.320042] ? __nla_parse+0x12c/0x3e0 [ 917.323995] genl_family_rcv_msg+0x8a7/0x11a0 [ 917.328527] ? genl_unregister_family+0x8a0/0x8a0 01:08:40 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x900]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 917.333446] ? lock_downgrade+0x900/0x900 [ 917.337619] ? check_preemption_disabled+0x48/0x280 [ 917.342649] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 917.347602] ? kasan_check_read+0x11/0x20 [ 917.351761] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 917.357058] ? rcu_softirq_qs+0x20/0x20 [ 917.361066] genl_rcv_msg+0xc6/0x168 [ 917.364800] netlink_rcv_skb+0x172/0x440 [ 917.368879] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 917.373661] ? netlink_ack+0xb80/0xb80 [ 917.377584] ? down_read+0x8d/0x120 [ 917.381251] genl_rcv+0x28/0x40 01:08:40 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x800000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:40 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x1000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 917.384540] netlink_unicast+0x5a5/0x760 [ 917.388622] ? netlink_attachskb+0x9a0/0x9a0 [ 917.393046] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 917.398615] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 917.403652] netlink_sendmsg+0xa18/0xfc0 [ 917.408114] ? netlink_unicast+0x760/0x760 [ 917.412370] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 917.417328] ? apparmor_socket_sendmsg+0x29/0x30 [ 917.422093] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 917.427642] ? security_socket_sendmsg+0x94/0xc0 [ 917.432427] ? netlink_unicast+0x760/0x760 [ 917.436688] sock_sendmsg+0xd5/0x120 [ 917.440420] ___sys_sendmsg+0x7fd/0x930 [ 917.444413] ? find_held_lock+0x36/0x1c0 [ 917.448495] ? copy_msghdr_from_user+0x580/0x580 [ 917.453267] ? __fd_install+0x2b5/0x8f0 [ 917.457279] ? __fget_light+0x2e9/0x430 [ 917.461265] ? fget_raw+0x20/0x20 [ 917.464734] ? __might_fault+0x12b/0x1e0 [ 917.468807] ? lock_downgrade+0x900/0x900 [ 917.472971] ? lock_release+0xa00/0xa00 [ 917.476956] ? perf_trace_sched_process_exec+0x860/0x860 [ 917.482424] ? posix_ktime_get_ts+0x15/0x20 [ 917.482445] ? trace_hardirqs_off_caller+0x310/0x310 [ 917.482477] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 917.482493] ? sockfd_lookup_light+0xc5/0x160 [ 917.482516] __sys_sendmsg+0x11d/0x280 [ 917.491966] ? __ia32_sys_shutdown+0x80/0x80 [ 917.491986] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 917.492004] ? put_timespec64+0x10f/0x1b0 [ 917.492027] ? do_syscall_64+0x9a/0x820 [ 917.492042] ? do_syscall_64+0x9a/0x820 [ 917.492068] ? trace_hardirqs_off_caller+0x310/0x310 [ 917.533206] __x64_sys_sendmsg+0x78/0xb0 [ 917.537286] do_syscall_64+0x1b9/0x820 [ 917.541195] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 917.546574] ? syscall_return_slowpath+0x5e0/0x5e0 [ 917.551515] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 917.556390] ? trace_hardirqs_on_caller+0x310/0x310 [ 917.561425] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 917.566430] ? prepare_exit_to_usermode+0x291/0x3b0 [ 917.571436] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 917.576285] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 917.581470] RIP: 0033:0x457569 [ 917.584690] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 917.603578] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 917.611280] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 917.618555] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 917.625807] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:08:40 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x20000000) [ 917.633065] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 917.640320] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 917.715508] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 917.733317] CPU: 0 PID: 8427 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 917.740654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 917.750011] Call Trace: [ 917.752617] dump_stack+0x244/0x39d [ 917.756255] ? dump_stack_print_info.cold.1+0x20/0x20 [ 917.761447] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 917.766564] sysfs_warn_dup.cold.3+0x1c/0x2b [ 917.770991] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 917.776377] sysfs_create_link+0x65/0xc0 [ 917.780449] device_add+0x64a/0x18e0 [ 917.784177] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 917.788859] ? genl_rcv_msg+0xc6/0x168 [ 917.792767] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 917.797867] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 917.803266] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 917.808445] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 917.813973] wiphy_register+0x1a5b/0x2770 [ 917.818125] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 917.823077] ? rcu_read_lock_sched_held+0x14f/0x180 [ 917.828079] ? __kmalloc+0x5ee/0x760 [ 917.831786] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 917.837326] ? ieee80211_cs_list_valid+0x7c/0x440 [ 917.842163] ? ieee80211_register_hw+0xce9/0x3f10 [ 917.847016] ieee80211_register_hw+0x159b/0x3f10 [ 917.851778] ? ieee80211_ifa_changed+0xed0/0xed0 [ 917.856541] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 917.861552] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 917.867683] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 917.873227] ? vsnprintf+0x20d/0x1b60 [ 917.877027] ? pointer+0x900/0x900 [ 917.880555] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 917.885559] ? kvasprintf+0xee/0x150 [ 917.889261] ? bust_spinlocks+0xe0/0xe0 [ 917.893236] ? validate_nla+0x29a/0x1650 [ 917.897311] ? kasprintf+0xab/0xe0 [ 917.900852] ? kvasprintf_const+0x190/0x190 [ 917.905171] ? cap_capable+0x1f9/0x260 [ 917.909061] hwsim_new_radio_nl+0x7dc/0xb20 [ 917.913371] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 917.918571] ? __nla_parse+0x12c/0x3e0 [ 917.922493] genl_family_rcv_msg+0x8a7/0x11a0 [ 917.927012] ? genl_unregister_family+0x8a0/0x8a0 [ 917.931856] ? lock_downgrade+0x900/0x900 [ 917.935994] ? check_preemption_disabled+0x48/0x280 [ 917.941011] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 917.945943] ? kasan_check_read+0x11/0x20 [ 917.950078] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 917.955359] ? rcu_softirq_qs+0x20/0x20 [ 917.959359] genl_rcv_msg+0xc6/0x168 [ 917.963065] netlink_rcv_skb+0x172/0x440 [ 917.967121] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 917.971867] ? netlink_ack+0xb80/0xb80 [ 917.975742] ? down_read+0x8d/0x120 [ 917.979414] genl_rcv+0x28/0x40 [ 917.982702] netlink_unicast+0x5a5/0x760 [ 917.986758] ? netlink_attachskb+0x9a0/0x9a0 [ 917.991162] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 917.996691] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 918.001723] netlink_sendmsg+0xa18/0xfc0 [ 918.005791] ? netlink_unicast+0x760/0x760 [ 918.010029] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 918.014948] ? apparmor_socket_sendmsg+0x29/0x30 [ 918.019693] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 918.025242] ? security_socket_sendmsg+0x94/0xc0 [ 918.030017] ? netlink_unicast+0x760/0x760 [ 918.034260] sock_sendmsg+0xd5/0x120 [ 918.038001] ___sys_sendmsg+0x7fd/0x930 [ 918.041978] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 918.046893] ? kasan_check_read+0x11/0x20 [ 918.051046] ? copy_msghdr_from_user+0x580/0x580 [ 918.055803] ? __fget_light+0x2e9/0x430 [ 918.059782] ? fget_raw+0x20/0x20 [ 918.063241] ? __might_fault+0x12b/0x1e0 [ 918.067305] ? lock_downgrade+0x900/0x900 [ 918.071466] ? lock_release+0xa00/0xa00 [ 918.075437] ? perf_trace_sched_process_exec+0x860/0x860 [ 918.080895] ? posix_ktime_get_ts+0x15/0x20 [ 918.085228] ? trace_hardirqs_off_caller+0x310/0x310 [ 918.090321] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 918.095862] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 918.101399] ? sockfd_lookup_light+0xc5/0x160 [ 918.105882] __sys_sendmsg+0x11d/0x280 [ 918.109757] ? __ia32_sys_shutdown+0x80/0x80 [ 918.114162] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 918.119702] ? put_timespec64+0x10f/0x1b0 [ 918.123858] ? do_syscall_64+0x9a/0x820 [ 918.127821] ? do_syscall_64+0x9a/0x820 [ 918.131786] ? trace_hardirqs_off_caller+0x310/0x310 [ 918.136898] __x64_sys_sendmsg+0x78/0xb0 [ 918.140952] do_syscall_64+0x1b9/0x820 [ 918.144843] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 918.150210] ? syscall_return_slowpath+0x5e0/0x5e0 [ 918.155124] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 918.159990] ? trace_hardirqs_on_caller+0x310/0x310 [ 918.164994] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 918.170002] ? prepare_exit_to_usermode+0x291/0x3b0 [ 918.175036] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 918.179886] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 918.185063] RIP: 0033:0x457569 [ 918.188244] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 918.207132] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:08:41 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a000000006c000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:41 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x9effffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 918.215216] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 918.222516] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 918.229786] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 918.237037] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 918.244292] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:41 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x5000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:41 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}, 0x2c) 01:08:41 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:41 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x900) 01:08:41 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x1300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:41 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf00]}, 0x2c) 01:08:41 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a00000000fbffffff000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 918.484725] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 918.528013] CPU: 1 PID: 8484 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 918.535652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 918.545042] Call Trace: [ 918.547648] dump_stack+0x244/0x39d [ 918.551310] ? dump_stack_print_info.cold.1+0x20/0x20 [ 918.556522] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 918.561651] sysfs_warn_dup.cold.3+0x1c/0x2b [ 918.566086] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 918.571464] sysfs_create_link+0x65/0xc0 01:08:41 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x670a0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:41 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x11]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 918.575638] device_add+0x64a/0x18e0 [ 918.579372] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 918.584043] ? genl_rcv_msg+0xc6/0x168 [ 918.587946] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 918.593060] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 918.598452] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 918.603660] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 918.609265] wiphy_register+0x1a5b/0x2770 [ 918.613454] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 918.618410] ? rcu_read_lock_sched_held+0x14f/0x180 [ 918.623439] ? __kmalloc+0x5ee/0x760 [ 918.627175] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 918.632728] ? ieee80211_cs_list_valid+0x7c/0x440 [ 918.637582] ? ieee80211_register_hw+0xce9/0x3f10 [ 918.642443] ieee80211_register_hw+0x159b/0x3f10 [ 918.642477] ? ieee80211_ifa_changed+0xed0/0xed0 [ 918.642522] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 918.652033] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 918.652051] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 918.652067] ? vsnprintf+0x20d/0x1b60 [ 918.652090] ? pointer+0x900/0x900 [ 918.652128] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 918.652173] ? kvasprintf+0xee/0x150 [ 918.668860] ? bust_spinlocks+0xe0/0xe0 [ 918.668881] ? validate_nla+0x29a/0x1650 [ 918.668902] ? kasprintf+0xab/0xe0 [ 918.668918] ? kvasprintf_const+0x190/0x190 [ 918.668940] ? cap_capable+0x1f9/0x260 [ 918.668966] hwsim_new_radio_nl+0x7dc/0xb20 [ 918.668990] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 918.676308] ? __nla_parse+0x12c/0x3e0 [ 918.676341] genl_family_rcv_msg+0x8a7/0x11a0 [ 918.676369] ? genl_unregister_family+0x8a0/0x8a0 [ 918.676388] ? lock_downgrade+0x900/0x900 [ 918.676406] ? check_preemption_disabled+0x48/0x280 [ 918.676425] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 918.741699] ? kasan_check_read+0x11/0x20 [ 918.745856] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 918.751169] ? rcu_softirq_qs+0x20/0x20 [ 918.755182] genl_rcv_msg+0xc6/0x168 [ 918.759032] netlink_rcv_skb+0x172/0x440 [ 918.763098] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 918.767841] ? netlink_ack+0xb80/0xb80 [ 918.771715] ? down_read+0x8d/0x120 [ 918.775354] genl_rcv+0x28/0x40 [ 918.778645] netlink_unicast+0x5a5/0x760 [ 918.782997] ? netlink_attachskb+0x9a0/0x9a0 [ 918.787398] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 918.792934] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 918.797966] netlink_sendmsg+0xa18/0xfc0 [ 918.802030] ? netlink_unicast+0x760/0x760 [ 918.806260] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 918.811213] ? apparmor_socket_sendmsg+0x29/0x30 [ 918.815978] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 918.821525] ? security_socket_sendmsg+0x94/0xc0 [ 918.826303] ? netlink_unicast+0x760/0x760 [ 918.830550] sock_sendmsg+0xd5/0x120 [ 918.834281] ___sys_sendmsg+0x7fd/0x930 [ 918.838253] ? find_held_lock+0x36/0x1c0 [ 918.842306] ? copy_msghdr_from_user+0x580/0x580 [ 918.847064] ? __fd_install+0x2b5/0x8f0 [ 918.851045] ? __fget_light+0x2e9/0x430 [ 918.855021] ? fget_raw+0x20/0x20 [ 918.858486] ? __might_fault+0x12b/0x1e0 [ 918.862589] ? lock_downgrade+0x900/0x900 [ 918.866740] ? lock_release+0xa00/0xa00 [ 918.870709] ? perf_trace_sched_process_exec+0x860/0x860 [ 918.876211] ? posix_ktime_get_ts+0x15/0x20 [ 918.880550] ? trace_hardirqs_off_caller+0x310/0x310 [ 918.885658] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 918.891254] ? sockfd_lookup_light+0xc5/0x160 [ 918.895791] __sys_sendmsg+0x11d/0x280 [ 918.899685] ? __ia32_sys_shutdown+0x80/0x80 [ 918.904094] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 918.909686] ? put_timespec64+0x10f/0x1b0 [ 918.914114] ? do_syscall_64+0x9a/0x820 [ 918.918111] ? do_syscall_64+0x9a/0x820 [ 918.922095] ? trace_hardirqs_off_caller+0x310/0x310 [ 918.927231] __x64_sys_sendmsg+0x78/0xb0 [ 918.931318] do_syscall_64+0x1b9/0x820 [ 918.935193] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 918.940561] ? syscall_return_slowpath+0x5e0/0x5e0 [ 918.945493] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 918.950340] ? trace_hardirqs_on_caller+0x310/0x310 [ 918.955358] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 918.960396] ? prepare_exit_to_usermode+0x291/0x3b0 [ 918.965427] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 918.970286] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 918.975510] RIP: 0033:0x457569 [ 918.978725] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 918.997626] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 919.005350] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 919.012621] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 919.019907] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 919.027198] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 919.034484] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:41 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xe000) 01:08:41 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x30000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:41 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe]}, 0x2c) 01:08:41 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xfffffffffffff000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:42 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a000000004c000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:42 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x20a6c, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 919.209936] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:08:42 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x900000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 919.251308] CPU: 1 PID: 8522 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 919.258626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 919.268003] Call Trace: [ 919.270622] dump_stack+0x244/0x39d [ 919.274337] ? dump_stack_print_info.cold.1+0x20/0x20 [ 919.279549] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 919.284694] sysfs_warn_dup.cold.3+0x1c/0x2b [ 919.289118] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 919.294504] sysfs_create_link+0x65/0xc0 [ 919.298587] device_add+0x64a/0x18e0 [ 919.302317] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 919.306986] ? genl_rcv_msg+0xc6/0x168 [ 919.307008] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 919.307027] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 919.321375] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 919.326582] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 919.332146] wiphy_register+0x1a5b/0x2770 [ 919.336345] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 919.341310] ? rcu_read_lock_sched_held+0x14f/0x180 [ 919.346344] ? __kmalloc+0x5ee/0x760 01:08:42 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x400000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 919.350079] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 919.355630] ? ieee80211_cs_list_valid+0x7c/0x440 [ 919.360486] ? ieee80211_register_hw+0xce9/0x3f10 [ 919.365347] ieee80211_register_hw+0x159b/0x3f10 [ 919.370128] ? ieee80211_ifa_changed+0xed0/0xed0 [ 919.374917] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 919.379964] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 919.386124] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 919.391681] ? vsnprintf+0x20d/0x1b60 [ 919.391706] ? pointer+0x900/0x900 [ 919.391732] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 919.391748] ? kvasprintf+0xee/0x150 [ 919.391766] ? bust_spinlocks+0xe0/0xe0 [ 919.411821] ? validate_nla+0x29a/0x1650 [ 919.415902] ? kasprintf+0xab/0xe0 [ 919.419455] ? kvasprintf_const+0x190/0x190 [ 919.423797] ? cap_capable+0x1f9/0x260 [ 919.427715] hwsim_new_radio_nl+0x7dc/0xb20 [ 919.432070] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 919.437272] ? __nla_parse+0x12c/0x3e0 [ 919.441210] genl_family_rcv_msg+0x8a7/0x11a0 [ 919.445727] ? genl_unregister_family+0x8a0/0x8a0 01:08:42 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x5000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 919.450584] ? lock_downgrade+0x900/0x900 [ 919.454748] ? check_preemption_disabled+0x48/0x280 [ 919.460043] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 919.464988] ? kasan_check_read+0x11/0x20 [ 919.469175] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 919.474478] ? rcu_softirq_qs+0x20/0x20 [ 919.478487] genl_rcv_msg+0xc6/0x168 [ 919.482221] netlink_rcv_skb+0x172/0x440 [ 919.486294] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 919.491080] ? netlink_ack+0xb80/0xb80 [ 919.494984] ? down_read+0x8d/0x120 [ 919.498636] genl_rcv+0x28/0x40 01:08:42 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x400300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 919.501933] netlink_unicast+0x5a5/0x760 [ 919.506035] ? netlink_attachskb+0x9a0/0x9a0 [ 919.510460] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 919.516010] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 919.521064] netlink_sendmsg+0xa18/0xfc0 [ 919.525177] ? netlink_unicast+0x760/0x760 [ 919.529427] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 919.529447] ? apparmor_socket_sendmsg+0x29/0x30 [ 919.529464] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 919.529485] ? security_socket_sendmsg+0x94/0xc0 01:08:42 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x11000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 919.539173] ? netlink_unicast+0x760/0x760 [ 919.553717] sock_sendmsg+0xd5/0x120 [ 919.557442] ___sys_sendmsg+0x7fd/0x930 [ 919.561446] ? find_held_lock+0x36/0x1c0 [ 919.565523] ? copy_msghdr_from_user+0x580/0x580 [ 919.570348] ? __fd_install+0x2b5/0x8f0 [ 919.574348] ? __fget_light+0x2e9/0x430 [ 919.578328] ? fget_raw+0x20/0x20 [ 919.581797] ? __might_fault+0x12b/0x1e0 [ 919.585875] ? lock_downgrade+0x900/0x900 [ 919.590039] ? lock_release+0xa00/0xa00 [ 919.594023] ? perf_trace_sched_process_exec+0x860/0x860 [ 919.599478] ? posix_ktime_get_ts+0x15/0x20 [ 919.603811] ? trace_hardirqs_off_caller+0x310/0x310 [ 919.608956] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 919.614504] ? sockfd_lookup_light+0xc5/0x160 [ 919.619019] __sys_sendmsg+0x11d/0x280 [ 919.622934] ? __ia32_sys_shutdown+0x80/0x80 [ 919.627358] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 919.632912] ? put_timespec64+0x10f/0x1b0 [ 919.637088] ? do_syscall_64+0x9a/0x820 [ 919.641078] ? do_syscall_64+0x9a/0x820 [ 919.645086] ? trace_hardirqs_off_caller+0x310/0x310 01:08:42 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x500]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 919.650218] __x64_sys_sendmsg+0x78/0xb0 [ 919.654288] do_syscall_64+0x1b9/0x820 [ 919.658208] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 919.663585] ? syscall_return_slowpath+0x5e0/0x5e0 [ 919.668526] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 919.673410] ? trace_hardirqs_on_caller+0x310/0x310 [ 919.673428] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 919.673446] ? prepare_exit_to_usermode+0x291/0x3b0 [ 919.673468] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 919.673489] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 919.683514] RIP: 0033:0x457569 [ 919.683531] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 919.683540] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 919.683556] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 919.683565] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 919.683575] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 919.683585] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 919.683595] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:42 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xe8030000) 01:08:42 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xb]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:42 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000000]}, 0x2c) 01:08:42 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000050000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:42 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xf0ffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:42 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2a00000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:42 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc00000000000000]}, 0x2c) 01:08:42 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x5]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 920.017767] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 920.070495] CPU: 1 PID: 8589 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 920.077796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 920.087169] Call Trace: [ 920.089782] dump_stack+0x244/0x39d [ 920.093449] ? dump_stack_print_info.cold.1+0x20/0x20 [ 920.098694] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 920.103848] sysfs_warn_dup.cold.3+0x1c/0x2b [ 920.108304] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 920.113681] sysfs_create_link+0x65/0xc0 01:08:42 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x2300) 01:08:42 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a00000000003f0000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 920.117761] device_add+0x64a/0x18e0 [ 920.121487] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 920.126189] ? genl_rcv_msg+0xc6/0x168 [ 920.130101] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 920.135218] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 920.140595] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 920.140616] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 920.140682] wiphy_register+0x1a5b/0x2770 [ 920.140729] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 920.140753] ? rcu_read_lock_sched_held+0x14f/0x180 [ 920.151463] ? __kmalloc+0x5ee/0x760 [ 920.151482] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 920.151499] ? ieee80211_cs_list_valid+0x7c/0x440 [ 920.151518] ? ieee80211_register_hw+0xce9/0x3f10 [ 920.151540] ieee80211_register_hw+0x159b/0x3f10 [ 920.151571] ? ieee80211_ifa_changed+0xed0/0xed0 [ 920.151600] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 920.174940] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 920.174960] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 920.174987] ? vsnprintf+0x20d/0x1b60 [ 920.175010] ? pointer+0x900/0x900 [ 920.194206] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 920.223267] ? kvasprintf+0xee/0x150 [ 920.226997] ? bust_spinlocks+0xe0/0xe0 [ 920.231006] ? validate_nla+0x29a/0x1650 [ 920.235088] ? kasprintf+0xab/0xe0 [ 920.238676] ? kvasprintf_const+0x190/0x190 [ 920.243023] ? cap_capable+0x1f9/0x260 [ 920.246932] hwsim_new_radio_nl+0x7dc/0xb20 [ 920.251280] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 920.256483] ? __nla_parse+0x12c/0x3e0 [ 920.260402] genl_family_rcv_msg+0x8a7/0x11a0 [ 920.264927] ? genl_unregister_family+0x8a0/0x8a0 [ 920.269816] ? lock_downgrade+0x900/0x900 [ 920.273984] ? check_preemption_disabled+0x48/0x280 [ 920.279018] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 920.283993] ? kasan_check_read+0x11/0x20 [ 920.288167] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 920.293465] ? rcu_softirq_qs+0x20/0x20 [ 920.297470] genl_rcv_msg+0xc6/0x168 [ 920.301219] netlink_rcv_skb+0x172/0x440 [ 920.305282] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 920.310027] ? netlink_ack+0xb80/0xb80 [ 920.313908] ? down_read+0x8d/0x120 [ 920.317532] genl_rcv+0x28/0x40 [ 920.320805] netlink_unicast+0x5a5/0x760 [ 920.324888] ? netlink_attachskb+0x9a0/0x9a0 [ 920.329303] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 920.334869] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 920.339954] netlink_sendmsg+0xa18/0xfc0 [ 920.344026] ? netlink_unicast+0x760/0x760 [ 920.348248] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 920.353191] ? apparmor_socket_sendmsg+0x29/0x30 [ 920.357953] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 920.363486] ? security_socket_sendmsg+0x94/0xc0 [ 920.368244] ? netlink_unicast+0x760/0x760 [ 920.372470] sock_sendmsg+0xd5/0x120 [ 920.376213] ___sys_sendmsg+0x7fd/0x930 [ 920.380213] ? find_held_lock+0x36/0x1c0 [ 920.384266] ? copy_msghdr_from_user+0x580/0x580 [ 920.389031] ? __fd_install+0x2b5/0x8f0 [ 920.393015] ? __fget_light+0x2e9/0x430 [ 920.396988] ? fget_raw+0x20/0x20 [ 920.400457] ? __might_fault+0x12b/0x1e0 [ 920.404562] ? lock_downgrade+0x900/0x900 [ 920.408742] ? lock_release+0xa00/0xa00 [ 920.412711] ? perf_trace_sched_process_exec+0x860/0x860 [ 920.418166] ? posix_ktime_get_ts+0x15/0x20 [ 920.422478] ? trace_hardirqs_off_caller+0x310/0x310 [ 920.427579] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 920.433128] ? sockfd_lookup_light+0xc5/0x160 [ 920.437631] __sys_sendmsg+0x11d/0x280 [ 920.441525] ? __ia32_sys_shutdown+0x80/0x80 [ 920.445920] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 920.451465] ? put_timespec64+0x10f/0x1b0 [ 920.455625] ? do_syscall_64+0x9a/0x820 [ 920.459621] ? do_syscall_64+0x9a/0x820 [ 920.463613] ? trace_hardirqs_off_caller+0x310/0x310 [ 920.468720] __x64_sys_sendmsg+0x78/0xb0 [ 920.472768] do_syscall_64+0x1b9/0x820 [ 920.476695] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 920.482064] ? syscall_return_slowpath+0x5e0/0x5e0 [ 920.486997] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 920.491872] ? trace_hardirqs_on_caller+0x310/0x310 [ 920.496889] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 920.501915] ? prepare_exit_to_usermode+0x291/0x3b0 [ 920.507002] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 920.511930] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 920.517127] RIP: 0033:0x457569 [ 920.520348] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 920.539242] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 920.546949] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 920.554209] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 920.561494] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:08:43 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x300000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 920.568757] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 920.576071] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:43 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x6c00, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:43 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5300000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:43 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}, 0x2c) 01:08:43 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xa) 01:08:43 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a00000000fffffffb000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:43 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x2000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:43 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500]}, 0x2c) [ 920.872568] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 920.902454] CPU: 0 PID: 8624 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 920.909754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 920.919331] Call Trace: [ 920.921937] dump_stack+0x244/0x39d [ 920.925580] ? dump_stack_print_info.cold.1+0x20/0x20 [ 920.930787] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 920.935915] sysfs_warn_dup.cold.3+0x1c/0x2b [ 920.940345] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 920.945727] sysfs_create_link+0x65/0xc0 [ 920.949816] device_add+0x64a/0x18e0 [ 920.953541] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 920.958220] ? genl_rcv_msg+0xc6/0x168 [ 920.958245] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 920.958259] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 920.958281] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 920.967278] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 920.967305] wiphy_register+0x1a5b/0x2770 [ 920.967335] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 920.992475] ? rcu_read_lock_sched_held+0x14f/0x180 [ 920.997512] ? __kmalloc+0x5ee/0x760 [ 921.001240] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 921.006806] ? ieee80211_cs_list_valid+0x7c/0x440 [ 921.011668] ? ieee80211_register_hw+0xce9/0x3f10 [ 921.016530] ieee80211_register_hw+0x159b/0x3f10 01:08:43 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x590a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:43 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x3]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 921.021339] ? ieee80211_ifa_changed+0xed0/0xed0 [ 921.026179] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 921.031234] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 921.037399] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 921.042968] ? vsnprintf+0x20d/0x1b60 [ 921.046815] ? pointer+0x900/0x900 [ 921.050390] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 921.055420] ? kvasprintf+0xee/0x150 [ 921.059143] ? bust_spinlocks+0xe0/0xe0 [ 921.063163] ? validate_nla+0x29a/0x1650 [ 921.067251] ? kasprintf+0xab/0xe0 01:08:43 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x4]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 921.070806] ? kvasprintf_const+0x190/0x190 [ 921.075150] ? cap_capable+0x1f9/0x260 [ 921.079078] hwsim_new_radio_nl+0x7dc/0xb20 [ 921.083424] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 921.088622] ? __nla_parse+0x12c/0x3e0 [ 921.092539] genl_family_rcv_msg+0x8a7/0x11a0 [ 921.097059] ? genl_unregister_family+0x8a0/0x8a0 [ 921.101944] ? lock_downgrade+0x900/0x900 [ 921.101964] ? check_preemption_disabled+0x48/0x280 [ 921.101985] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 921.102001] ? kasan_check_read+0x11/0x20 01:08:44 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700]}, 0x2c) [ 921.102017] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 921.102031] ? rcu_softirq_qs+0x20/0x20 [ 921.102068] genl_rcv_msg+0xc6/0x168 [ 921.111235] netlink_rcv_skb+0x172/0x440 [ 921.111254] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 921.111273] ? netlink_ack+0xb80/0xb80 [ 921.111289] ? down_read+0x8d/0x120 [ 921.111319] genl_rcv+0x28/0x40 [ 921.111335] netlink_unicast+0x5a5/0x760 [ 921.111358] ? netlink_attachskb+0x9a0/0x9a0 [ 921.111378] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 921.166948] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 921.171981] netlink_sendmsg+0xa18/0xfc0 [ 921.176075] ? netlink_unicast+0x760/0x760 [ 921.176092] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 921.176112] ? apparmor_socket_sendmsg+0x29/0x30 [ 921.176129] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 921.176197] ? security_socket_sendmsg+0x94/0xc0 [ 921.185367] ? netlink_unicast+0x760/0x760 [ 921.185388] sock_sendmsg+0xd5/0x120 [ 921.185409] ___sys_sendmsg+0x7fd/0x930 [ 921.185425] ? find_held_lock+0x36/0x1c0 [ 921.185451] ? copy_msghdr_from_user+0x580/0x580 [ 921.221187] ? __fd_install+0x2b5/0x8f0 [ 921.225200] ? __fget_light+0x2e9/0x430 [ 921.229222] ? fget_raw+0x20/0x20 [ 921.232709] ? __might_fault+0x12b/0x1e0 [ 921.236784] ? lock_downgrade+0x900/0x900 [ 921.240965] ? lock_release+0xa00/0xa00 [ 921.244952] ? perf_trace_sched_process_exec+0x860/0x860 [ 921.250406] ? posix_ktime_get_ts+0x15/0x20 [ 921.254760] ? trace_hardirqs_off_caller+0x310/0x310 [ 921.259886] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 921.265456] ? sockfd_lookup_light+0xc5/0x160 [ 921.269969] __sys_sendmsg+0x11d/0x280 01:08:44 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x10c3]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 921.273873] ? __ia32_sys_shutdown+0x80/0x80 [ 921.278315] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 921.283868] ? put_timespec64+0x10f/0x1b0 [ 921.288036] ? do_syscall_64+0x9a/0x820 [ 921.292021] ? do_syscall_64+0x9a/0x820 [ 921.296027] ? trace_hardirqs_off_caller+0x310/0x310 [ 921.301150] __x64_sys_sendmsg+0x78/0xb0 [ 921.301186] do_syscall_64+0x1b9/0x820 [ 921.301203] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 921.301223] ? syscall_return_slowpath+0x5e0/0x5e0 [ 921.301239] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 921.301259] ? trace_hardirqs_on_caller+0x310/0x310 [ 921.309225] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 921.309245] ? prepare_exit_to_usermode+0x291/0x3b0 [ 921.309269] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 921.309294] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 921.309307] RIP: 0033:0x457569 [ 921.309324] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 921.309333] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 921.309347] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 921.309357] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 921.309371] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 921.401343] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 921.408624] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 921.495988] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 921.511821] CPU: 0 PID: 8669 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 921.519177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 921.528539] Call Trace: [ 921.531195] dump_stack+0x244/0x39d [ 921.534853] ? dump_stack_print_info.cold.1+0x20/0x20 [ 921.540058] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 921.545198] sysfs_warn_dup.cold.3+0x1c/0x2b [ 921.549608] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 921.554970] sysfs_create_link+0x65/0xc0 [ 921.559031] device_add+0x64a/0x18e0 [ 921.562741] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 921.567390] ? genl_rcv_msg+0xc6/0x168 [ 921.571264] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 921.576350] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 921.581713] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 921.586889] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 921.592419] wiphy_register+0x1a5b/0x2770 [ 921.596573] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 921.601510] ? rcu_read_lock_sched_held+0x14f/0x180 [ 921.606525] ? __kmalloc+0x5ee/0x760 [ 921.610241] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 921.615766] ? ieee80211_cs_list_valid+0x7c/0x440 [ 921.620600] ? ieee80211_register_hw+0xce9/0x3f10 [ 921.625448] ieee80211_register_hw+0x159b/0x3f10 [ 921.630233] ? ieee80211_ifa_changed+0xed0/0xed0 [ 921.634983] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 921.640015] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 921.646163] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 921.651697] ? vsnprintf+0x20d/0x1b60 [ 921.655491] ? pointer+0x900/0x900 [ 921.659040] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 921.664055] ? kvasprintf+0xee/0x150 [ 921.667752] ? bust_spinlocks+0xe0/0xe0 [ 921.671741] ? validate_nla+0x29a/0x1650 [ 921.675790] ? kasprintf+0xab/0xe0 [ 921.679340] ? kvasprintf_const+0x190/0x190 [ 921.683652] ? cap_capable+0x1f9/0x260 [ 921.687529] hwsim_new_radio_nl+0x7dc/0xb20 [ 921.691877] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 921.697055] ? __nla_parse+0x12c/0x3e0 [ 921.700937] genl_family_rcv_msg+0x8a7/0x11a0 [ 921.705423] ? genl_unregister_family+0x8a0/0x8a0 [ 921.710254] ? lock_downgrade+0x900/0x900 [ 921.714390] ? check_preemption_disabled+0x48/0x280 [ 921.719439] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 921.724387] ? kasan_check_read+0x11/0x20 [ 921.728535] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 921.733797] ? rcu_softirq_qs+0x20/0x20 [ 921.737767] genl_rcv_msg+0xc6/0x168 [ 921.741529] netlink_rcv_skb+0x172/0x440 [ 921.745590] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 921.750332] ? netlink_ack+0xb80/0xb80 [ 921.754205] ? down_read+0x8d/0x120 [ 921.757824] genl_rcv+0x28/0x40 [ 921.761120] netlink_unicast+0x5a5/0x760 [ 921.765182] ? netlink_attachskb+0x9a0/0x9a0 [ 921.769578] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 921.775117] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 921.780121] netlink_sendmsg+0xa18/0xfc0 [ 921.784210] ? netlink_unicast+0x760/0x760 [ 921.788455] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 921.793393] ? apparmor_socket_sendmsg+0x29/0x30 [ 921.798162] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 921.803704] ? security_socket_sendmsg+0x94/0xc0 [ 921.808458] ? netlink_unicast+0x760/0x760 [ 921.812687] sock_sendmsg+0xd5/0x120 [ 921.816405] ___sys_sendmsg+0x7fd/0x930 [ 921.820364] ? find_held_lock+0x36/0x1c0 [ 921.824414] ? copy_msghdr_from_user+0x580/0x580 [ 921.829182] ? __fd_install+0x2b5/0x8f0 [ 921.833147] ? __fget_light+0x2e9/0x430 [ 921.837145] ? fget_raw+0x20/0x20 [ 921.840618] ? __might_fault+0x12b/0x1e0 [ 921.844671] ? lock_downgrade+0x900/0x900 [ 921.848809] ? lock_release+0xa00/0xa00 [ 921.852770] ? perf_trace_sched_process_exec+0x860/0x860 [ 921.858219] ? posix_ktime_get_ts+0x15/0x20 [ 921.862545] ? trace_hardirqs_off_caller+0x310/0x310 [ 921.867648] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 921.873216] ? sockfd_lookup_light+0xc5/0x160 [ 921.877705] __sys_sendmsg+0x11d/0x280 [ 921.881595] ? __ia32_sys_shutdown+0x80/0x80 [ 921.885991] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 921.891514] ? put_timespec64+0x10f/0x1b0 [ 921.895650] ? do_syscall_64+0x9a/0x820 [ 921.899612] ? do_syscall_64+0x9a/0x820 [ 921.903602] ? trace_hardirqs_off_caller+0x310/0x310 [ 921.908696] __x64_sys_sendmsg+0x78/0xb0 [ 921.912743] do_syscall_64+0x1b9/0x820 [ 921.916617] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 921.921967] ? syscall_return_slowpath+0x5e0/0x5e0 [ 921.926900] ? trace_hardirqs_on_caller+0x310/0x310 [ 921.931908] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 921.936958] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 921.943655] ? __switch_to_asm+0x40/0x70 [ 921.947721] ? __switch_to_asm+0x34/0x70 [ 921.951771] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 921.956623] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 921.961804] RIP: 0033:0x457569 [ 921.964982] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 921.983871] RSP: 002b:00007fef3bf50c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:08:44 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x20da7, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:44 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xf0ffffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:44 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x600000000000000) 01:08:44 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000]}, 0x2c) 01:08:44 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000680000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:44 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6b0a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 921.991563] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 921.998832] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 922.006086] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 922.013342] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf516d4 [ 922.020598] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:45 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, 0x2c) 01:08:45 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x3000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 922.183807] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 922.217445] CPU: 0 PID: 8680 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 922.224748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 01:08:45 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6000000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 922.234128] Call Trace: [ 922.234163] dump_stack+0x244/0x39d [ 922.240388] ? dump_stack_print_info.cold.1+0x20/0x20 [ 922.240407] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 922.240431] sysfs_warn_dup.cold.3+0x1c/0x2b [ 922.240452] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 922.260517] sysfs_create_link+0x65/0xc0 [ 922.264629] device_add+0x64a/0x18e0 [ 922.268352] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 922.273038] ? genl_rcv_msg+0xc6/0x168 [ 922.276942] ? get_device_parent.isra.25+0x5a0/0x5a0 01:08:45 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x7000000) [ 922.282048] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 922.282066] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 922.282085] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 922.282111] wiphy_register+0x1a5b/0x2770 [ 922.282138] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 922.307321] ? rcu_read_lock_sched_held+0x14f/0x180 [ 922.312352] ? __kmalloc+0x5ee/0x760 [ 922.316082] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 922.321636] ? ieee80211_cs_list_valid+0x7c/0x440 [ 922.326495] ? ieee80211_register_hw+0xce9/0x3f10 [ 922.331357] ieee80211_register_hw+0x159b/0x3f10 [ 922.336145] ? ieee80211_ifa_changed+0xed0/0xed0 [ 922.340946] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 922.340980] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 922.352129] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 922.352147] ? vsnprintf+0x20d/0x1b60 [ 922.352187] ? pointer+0x900/0x900 [ 922.352213] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 922.352228] ? kvasprintf+0xee/0x150 [ 922.352244] ? bust_spinlocks+0xe0/0xe0 [ 922.352265] ? validate_nla+0x29a/0x1650 [ 922.381950] ? kasprintf+0xab/0xe0 [ 922.385501] ? kvasprintf_const+0x190/0x190 [ 922.389838] ? cap_capable+0x1f9/0x260 [ 922.393755] hwsim_new_radio_nl+0x7dc/0xb20 [ 922.398107] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 922.403315] ? __nla_parse+0x12c/0x3e0 [ 922.407230] genl_family_rcv_msg+0x8a7/0x11a0 [ 922.411752] ? genl_unregister_family+0x8a0/0x8a0 [ 922.416623] ? lock_downgrade+0x900/0x900 [ 922.420812] ? check_preemption_disabled+0x48/0x280 [ 922.425843] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 922.430785] ? kasan_check_read+0x11/0x20 01:08:45 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x2]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 922.434959] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 922.440248] ? rcu_softirq_qs+0x20/0x20 [ 922.444282] genl_rcv_msg+0xc6/0x168 [ 922.448042] netlink_rcv_skb+0x172/0x440 [ 922.452140] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 922.456971] ? netlink_ack+0xb80/0xb80 [ 922.460869] ? down_read+0x8d/0x120 [ 922.464516] genl_rcv+0x28/0x40 [ 922.464534] netlink_unicast+0x5a5/0x760 [ 922.464557] ? netlink_attachskb+0x9a0/0x9a0 [ 922.464576] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 922.464593] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 922.464619] netlink_sendmsg+0xa18/0xfc0 [ 922.471954] ? netlink_unicast+0x760/0x760 [ 922.471970] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 922.471989] ? apparmor_socket_sendmsg+0x29/0x30 [ 922.472006] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 922.472023] ? security_socket_sendmsg+0x94/0xc0 [ 922.472038] ? netlink_unicast+0x760/0x760 [ 922.472058] sock_sendmsg+0xd5/0x120 [ 922.472076] ___sys_sendmsg+0x7fd/0x930 [ 922.472092] ? find_held_lock+0x36/0x1c0 01:08:45 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xc310000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 922.472112] ? copy_msghdr_from_user+0x580/0x580 [ 922.535999] ? __fd_install+0x2b5/0x8f0 [ 922.540003] ? __fget_light+0x2e9/0x430 [ 922.544010] ? fget_raw+0x20/0x20 [ 922.547495] ? __might_fault+0x12b/0x1e0 [ 922.551574] ? lock_downgrade+0x900/0x900 [ 922.555739] ? lock_release+0xa00/0xa00 [ 922.559728] ? perf_trace_sched_process_exec+0x860/0x860 [ 922.565216] ? posix_ktime_get_ts+0x15/0x20 [ 922.569550] ? trace_hardirqs_off_caller+0x310/0x310 [ 922.574669] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 922.580219] ? sockfd_lookup_light+0xc5/0x160 [ 922.584729] __sys_sendmsg+0x11d/0x280 [ 922.584751] ? __ia32_sys_shutdown+0x80/0x80 [ 922.584771] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 922.584788] ? put_timespec64+0x10f/0x1b0 [ 922.584812] ? do_syscall_64+0x9a/0x820 [ 922.584828] ? do_syscall_64+0x9a/0x820 [ 922.584852] ? trace_hardirqs_off_caller+0x310/0x310 [ 922.593151] __x64_sys_sendmsg+0x78/0xb0 [ 922.593187] do_syscall_64+0x1b9/0x820 [ 922.593202] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 922.593223] ? syscall_return_slowpath+0x5e0/0x5e0 [ 922.634203] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 922.639059] ? trace_hardirqs_on_caller+0x310/0x310 [ 922.644239] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 922.649289] ? prepare_exit_to_usermode+0x291/0x3b0 [ 922.654325] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 922.659197] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 922.664411] RIP: 0033:0x457569 [ 922.667615] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 922.686520] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 922.694270] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 922.694309] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 922.694319] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 922.694339] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 922.694358] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:45 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x68, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:45 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x13000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:45 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000005000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:45 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00]}, 0x2c) 01:08:45 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x11000000) 01:08:45 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xa000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 922.938683] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 922.959277] CPU: 0 PID: 8735 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 922.966577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 922.975938] Call Trace: [ 922.978545] dump_stack+0x244/0x39d [ 922.982230] ? dump_stack_print_info.cold.1+0x20/0x20 01:08:45 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1800]}, 0x2c) [ 922.987457] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 922.992603] sysfs_warn_dup.cold.3+0x1c/0x2b [ 922.997034] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 923.002424] sysfs_create_link+0x65/0xc0 [ 923.006508] device_add+0x64a/0x18e0 [ 923.010237] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 923.014913] ? genl_rcv_msg+0xc6/0x168 [ 923.018824] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 923.023938] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 923.029313] ? __sanitizer_cov_trace_switch+0x53/0x90 01:08:45 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xffffffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 923.034520] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 923.040082] wiphy_register+0x1a5b/0x2770 [ 923.044257] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 923.049222] ? rcu_read_lock_sched_held+0x14f/0x180 [ 923.054253] ? __kmalloc+0x5ee/0x760 [ 923.057981] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 923.063536] ? ieee80211_cs_list_valid+0x7c/0x440 [ 923.068400] ? ieee80211_register_hw+0xce9/0x3f10 [ 923.073278] ieee80211_register_hw+0x159b/0x3f10 [ 923.078079] ? ieee80211_ifa_changed+0xed0/0xed0 [ 923.082894] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 923.087940] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 923.094107] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 923.099659] ? vsnprintf+0x20d/0x1b60 [ 923.103484] ? pointer+0x900/0x900 [ 923.107049] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 923.112080] ? kvasprintf+0xee/0x150 [ 923.115812] ? bust_spinlocks+0xe0/0xe0 [ 923.119804] ? validate_nla+0x29a/0x1650 [ 923.123893] ? kasprintf+0xab/0xe0 [ 923.127437] ? kvasprintf_const+0x190/0x190 [ 923.131791] ? cap_capable+0x1f9/0x260 [ 923.135694] hwsim_new_radio_nl+0x7dc/0xb20 [ 923.140029] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 923.145249] ? __nla_parse+0x12c/0x3e0 [ 923.149176] genl_family_rcv_msg+0x8a7/0x11a0 [ 923.153693] ? genl_unregister_family+0x8a0/0x8a0 [ 923.158554] ? lock_downgrade+0x900/0x900 [ 923.162714] ? check_preemption_disabled+0x48/0x280 [ 923.167742] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 923.172703] ? kasan_check_read+0x11/0x20 [ 923.176895] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 923.182193] ? rcu_softirq_qs+0x20/0x20 [ 923.186265] genl_rcv_msg+0xc6/0x168 [ 923.190009] netlink_rcv_skb+0x172/0x440 [ 923.194063] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 923.198822] ? netlink_ack+0xb80/0xb80 [ 923.202700] ? down_read+0x8d/0x120 [ 923.206319] genl_rcv+0x28/0x40 [ 923.209604] netlink_unicast+0x5a5/0x760 [ 923.213672] ? netlink_attachskb+0x9a0/0x9a0 [ 923.218093] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 923.223632] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 923.228645] netlink_sendmsg+0xa18/0xfc0 [ 923.232723] ? netlink_unicast+0x760/0x760 [ 923.236975] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 923.241901] ? apparmor_socket_sendmsg+0x29/0x30 [ 923.246658] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 923.252202] ? security_socket_sendmsg+0x94/0xc0 [ 923.256946] ? netlink_unicast+0x760/0x760 [ 923.261184] sock_sendmsg+0xd5/0x120 [ 923.264892] ___sys_sendmsg+0x7fd/0x930 [ 923.268853] ? find_held_lock+0x36/0x1c0 [ 923.272910] ? copy_msghdr_from_user+0x580/0x580 [ 923.277655] ? __fd_install+0x2b5/0x8f0 [ 923.281686] ? __fget_light+0x2e9/0x430 [ 923.285676] ? fget_raw+0x20/0x20 [ 923.289131] ? __might_fault+0x12b/0x1e0 [ 923.293213] ? lock_downgrade+0x900/0x900 [ 923.297471] ? lock_release+0xa00/0xa00 [ 923.301435] ? perf_trace_sched_process_exec+0x860/0x860 [ 923.306911] ? posix_ktime_get_ts+0x15/0x20 [ 923.311261] ? trace_hardirqs_off_caller+0x310/0x310 [ 923.316383] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 923.321909] ? sockfd_lookup_light+0xc5/0x160 [ 923.326405] __sys_sendmsg+0x11d/0x280 [ 923.330296] ? __ia32_sys_shutdown+0x80/0x80 [ 923.334709] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 923.340251] ? put_timespec64+0x10f/0x1b0 [ 923.344402] ? do_syscall_64+0x9a/0x820 [ 923.348370] ? do_syscall_64+0x9a/0x820 [ 923.352355] ? trace_hardirqs_off_caller+0x310/0x310 [ 923.357464] __x64_sys_sendmsg+0x78/0xb0 [ 923.361519] do_syscall_64+0x1b9/0x820 [ 923.365427] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 923.370887] ? syscall_return_slowpath+0x5e0/0x5e0 [ 923.375802] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 923.380639] ? trace_hardirqs_on_caller+0x310/0x310 [ 923.385643] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 923.390662] ? prepare_exit_to_usermode+0x291/0x3b0 [ 923.395737] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 923.400629] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 923.405818] RIP: 0033:0x457569 [ 923.409002] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 923.427891] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:08:46 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x560a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:46 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x1300000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 923.435588] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 923.442850] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 923.450140] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 923.457455] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 923.464736] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:46 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000002000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:46 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x10000000) [ 923.606586] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 923.648696] CPU: 0 PID: 8762 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 923.655996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 923.665355] Call Trace: [ 923.667955] dump_stack+0x244/0x39d [ 923.671610] ? dump_stack_print_info.cold.1+0x20/0x20 [ 923.676820] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 923.681953] sysfs_warn_dup.cold.3+0x1c/0x2b [ 923.686400] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 923.691807] sysfs_create_link+0x65/0xc0 [ 923.695889] device_add+0x64a/0x18e0 [ 923.699620] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 923.704298] ? genl_rcv_msg+0xc6/0x168 [ 923.708218] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 923.713335] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 923.718711] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 923.723912] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 923.729457] wiphy_register+0x1a5b/0x2770 [ 923.733602] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 923.738528] ? rcu_read_lock_sched_held+0x14f/0x180 [ 923.743537] ? __kmalloc+0x5ee/0x760 [ 923.747241] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 923.752770] ? ieee80211_cs_list_valid+0x7c/0x440 [ 923.757615] ? ieee80211_register_hw+0xce9/0x3f10 [ 923.762456] ieee80211_register_hw+0x159b/0x3f10 [ 923.767207] ? ieee80211_ifa_changed+0xed0/0xed0 [ 923.771961] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 923.776976] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 923.783109] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 923.788650] ? vsnprintf+0x20d/0x1b60 [ 923.792458] ? pointer+0x900/0x900 [ 923.795991] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 923.801046] ? kvasprintf+0xee/0x150 [ 923.804768] ? bust_spinlocks+0xe0/0xe0 [ 923.808733] ? validate_nla+0x29a/0x1650 [ 923.812801] ? kasprintf+0xab/0xe0 [ 923.816332] ? kvasprintf_const+0x190/0x190 [ 923.820651] ? cap_capable+0x1f9/0x260 [ 923.824546] hwsim_new_radio_nl+0x7dc/0xb20 [ 923.828862] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 923.834059] ? __nla_parse+0x12c/0x3e0 [ 923.837951] genl_family_rcv_msg+0x8a7/0x11a0 [ 923.842481] ? genl_unregister_family+0x8a0/0x8a0 [ 923.847348] ? lock_downgrade+0x900/0x900 [ 923.851498] ? check_preemption_disabled+0x48/0x280 [ 923.856502] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 923.861419] ? kasan_check_read+0x11/0x20 [ 923.865558] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 923.870837] ? rcu_softirq_qs+0x20/0x20 [ 923.874809] genl_rcv_msg+0xc6/0x168 [ 923.878512] netlink_rcv_skb+0x172/0x440 [ 923.882565] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 923.887335] ? netlink_ack+0xb80/0xb80 [ 923.891210] ? down_read+0x8d/0x120 [ 923.894860] genl_rcv+0x28/0x40 [ 923.898143] netlink_unicast+0x5a5/0x760 [ 923.902220] ? netlink_attachskb+0x9a0/0x9a0 [ 923.906615] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 923.912138] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 923.917169] netlink_sendmsg+0xa18/0xfc0 [ 923.921241] ? netlink_unicast+0x760/0x760 [ 923.925499] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 923.930435] ? apparmor_socket_sendmsg+0x29/0x30 [ 923.935193] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 923.940731] ? security_socket_sendmsg+0x94/0xc0 [ 923.945474] ? netlink_unicast+0x760/0x760 [ 923.949707] sock_sendmsg+0xd5/0x120 [ 923.953410] ___sys_sendmsg+0x7fd/0x930 [ 923.957369] ? find_held_lock+0x36/0x1c0 [ 923.961423] ? copy_msghdr_from_user+0x580/0x580 [ 923.966177] ? __fd_install+0x2b5/0x8f0 [ 923.970148] ? __fget_light+0x2e9/0x430 [ 923.974121] ? fget_raw+0x20/0x20 [ 923.977561] ? __might_fault+0x12b/0x1e0 [ 923.981623] ? lock_downgrade+0x900/0x900 [ 923.985762] ? lock_release+0xa00/0xa00 [ 923.989721] ? perf_trace_sched_process_exec+0x860/0x860 [ 923.995164] ? posix_ktime_get_ts+0x15/0x20 [ 923.999496] ? trace_hardirqs_off_caller+0x310/0x310 [ 924.004642] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 924.010235] ? sockfd_lookup_light+0xc5/0x160 [ 924.014748] __sys_sendmsg+0x11d/0x280 [ 924.018653] ? __ia32_sys_shutdown+0x80/0x80 [ 924.023051] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 924.028584] ? put_timespec64+0x10f/0x1b0 [ 924.032737] ? do_syscall_64+0x9a/0x820 [ 924.036698] ? do_syscall_64+0x9a/0x820 [ 924.040664] ? trace_hardirqs_off_caller+0x310/0x310 [ 924.045761] __x64_sys_sendmsg+0x78/0xb0 [ 924.049812] do_syscall_64+0x1b9/0x820 [ 924.053688] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 924.059047] ? syscall_return_slowpath+0x5e0/0x5e0 [ 924.063968] ? trace_hardirqs_on_caller+0x310/0x310 [ 924.068982] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 924.074012] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 924.080663] ? __switch_to_asm+0x40/0x70 [ 924.084713] ? __switch_to_asm+0x34/0x70 [ 924.088760] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 924.093590] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 924.098780] RIP: 0033:0x457569 [ 924.102068] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 924.120956] RSP: 002b:00007fef3bf50c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 924.128660] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 924.135925] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 924.143208] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 01:08:47 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x6800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:47 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500000000000000]}, 0x2c) 01:08:47 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x3f000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:47 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1000000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 924.150472] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf516d4 [ 924.157748] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:47 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000030000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 924.306583] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 924.315508] CPU: 1 PID: 8787 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 924.322800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 924.332172] Call Trace: [ 924.334787] dump_stack+0x244/0x39d [ 924.338445] ? dump_stack_print_info.cold.1+0x20/0x20 [ 924.343658] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 924.348797] sysfs_warn_dup.cold.3+0x1c/0x2b [ 924.353216] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 924.358653] sysfs_create_link+0x65/0xc0 [ 924.362734] device_add+0x64a/0x18e0 [ 924.366468] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 924.371189] ? genl_rcv_msg+0xc6/0x168 [ 924.375107] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 924.380239] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 924.385619] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 924.390812] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 924.396346] wiphy_register+0x1a5b/0x2770 [ 924.400505] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 924.405427] ? rcu_read_lock_sched_held+0x14f/0x180 [ 924.410517] ? __kmalloc+0x5ee/0x760 [ 924.414222] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 924.419769] ? ieee80211_cs_list_valid+0x7c/0x440 [ 924.424607] ? ieee80211_register_hw+0xce9/0x3f10 [ 924.429442] ieee80211_register_hw+0x159b/0x3f10 [ 924.434197] ? ieee80211_ifa_changed+0xed0/0xed0 [ 924.438964] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 924.443988] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 924.450137] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 924.455674] ? vsnprintf+0x20d/0x1b60 [ 924.459499] ? pointer+0x900/0x900 [ 924.463042] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 924.468065] ? kvasprintf+0xee/0x150 [ 924.471765] ? bust_spinlocks+0xe0/0xe0 [ 924.475727] ? validate_nla+0x29a/0x1650 [ 924.479955] ? kasprintf+0xab/0xe0 [ 924.483496] ? kvasprintf_const+0x190/0x190 [ 924.487807] ? cap_capable+0x1f9/0x260 [ 924.491734] hwsim_new_radio_nl+0x7dc/0xb20 [ 924.496058] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 924.501232] ? __nla_parse+0x12c/0x3e0 [ 924.505114] genl_family_rcv_msg+0x8a7/0x11a0 [ 924.509608] ? genl_unregister_family+0x8a0/0x8a0 [ 924.514439] ? lock_downgrade+0x900/0x900 [ 924.518578] ? check_preemption_disabled+0x48/0x280 [ 924.523585] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 924.528518] ? kasan_check_read+0x11/0x20 [ 924.532652] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 924.537970] ? rcu_softirq_qs+0x20/0x20 [ 924.541955] genl_rcv_msg+0xc6/0x168 [ 924.545689] netlink_rcv_skb+0x172/0x440 [ 924.549771] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 924.554515] ? netlink_ack+0xb80/0xb80 [ 924.558399] ? down_read+0x8d/0x120 [ 924.562051] genl_rcv+0x28/0x40 [ 924.565317] netlink_unicast+0x5a5/0x760 [ 924.569367] ? netlink_attachskb+0x9a0/0x9a0 [ 924.573762] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 924.579301] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 924.584321] netlink_sendmsg+0xa18/0xfc0 [ 924.588392] ? netlink_unicast+0x760/0x760 [ 924.592612] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 924.597542] ? apparmor_socket_sendmsg+0x29/0x30 [ 924.602312] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 924.607876] ? security_socket_sendmsg+0x94/0xc0 [ 924.612633] ? netlink_unicast+0x760/0x760 [ 924.616866] sock_sendmsg+0xd5/0x120 [ 924.620579] ___sys_sendmsg+0x7fd/0x930 [ 924.624538] ? find_held_lock+0x36/0x1c0 [ 924.628602] ? copy_msghdr_from_user+0x580/0x580 [ 924.633375] ? __fd_install+0x2b5/0x8f0 [ 924.637359] ? __fget_light+0x2e9/0x430 [ 924.641336] ? fget_raw+0x20/0x20 [ 924.644775] ? __might_fault+0x12b/0x1e0 [ 924.648821] ? lock_downgrade+0x900/0x900 [ 924.652956] ? lock_release+0xa00/0xa00 [ 924.656931] ? perf_trace_sched_process_exec+0x860/0x860 [ 924.662367] ? posix_ktime_get_ts+0x15/0x20 [ 924.666690] ? trace_hardirqs_off_caller+0x310/0x310 [ 924.671788] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 924.677323] ? sockfd_lookup_light+0xc5/0x160 [ 924.681857] __sys_sendmsg+0x11d/0x280 [ 924.685762] ? __ia32_sys_shutdown+0x80/0x80 [ 924.690180] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 924.695711] ? put_timespec64+0x10f/0x1b0 [ 924.699870] ? do_syscall_64+0x9a/0x820 [ 924.703860] ? do_syscall_64+0x9a/0x820 [ 924.707854] ? trace_hardirqs_off_caller+0x310/0x310 [ 924.712958] __x64_sys_sendmsg+0x78/0xb0 [ 924.717037] do_syscall_64+0x1b9/0x820 [ 924.720950] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 924.726313] ? syscall_return_slowpath+0x5e0/0x5e0 [ 924.731228] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 924.736059] ? trace_hardirqs_on_caller+0x310/0x310 [ 924.741063] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 924.746085] ? prepare_exit_to_usermode+0x291/0x3b0 [ 924.751095] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 924.755946] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 924.761171] RIP: 0033:0x457569 [ 924.764363] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 924.783359] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 924.791082] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 924.798363] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 01:08:47 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf00000000000000]}, 0x2c) 01:08:47 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x40030000000000) 01:08:47 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:47 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6f, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 924.805632] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 924.812900] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 924.820176] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 924.927125] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 924.949316] CPU: 1 PID: 8787 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 924.956629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 924.965995] Call Trace: [ 924.966020] dump_stack+0x244/0x39d [ 924.966045] ? dump_stack_print_info.cold.1+0x20/0x20 [ 924.966074] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 924.982569] sysfs_warn_dup.cold.3+0x1c/0x2b [ 924.982590] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 924.982611] sysfs_create_link+0x65/0xc0 [ 924.982632] device_add+0x64a/0x18e0 [ 924.982649] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 924.982691] ? genl_rcv_msg+0xc6/0x168 [ 925.008799] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 925.013920] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 925.019299] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 925.024507] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 925.030068] wiphy_register+0x1a5b/0x2770 [ 925.034243] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 925.039217] ? rcu_read_lock_sched_held+0x14f/0x180 [ 925.039236] ? __kmalloc+0x5ee/0x760 [ 925.039256] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 925.039273] ? ieee80211_cs_list_valid+0x7c/0x440 [ 925.039292] ? ieee80211_register_hw+0xce9/0x3f10 [ 925.039315] ieee80211_register_hw+0x159b/0x3f10 [ 925.039344] ? ieee80211_ifa_changed+0xed0/0xed0 [ 925.048067] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 925.077786] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 925.083980] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 925.089530] ? vsnprintf+0x20d/0x1b60 [ 925.093407] ? pointer+0x900/0x900 [ 925.096968] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 925.102002] ? kvasprintf+0xee/0x150 [ 925.105731] ? bust_spinlocks+0xe0/0xe0 [ 925.109738] ? validate_nla+0x29a/0x1650 [ 925.113839] ? kasprintf+0xab/0xe0 [ 925.117415] ? kvasprintf_const+0x190/0x190 [ 925.121759] ? cap_capable+0x1f9/0x260 [ 925.125679] hwsim_new_radio_nl+0x7dc/0xb20 [ 925.125703] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 925.135201] ? __nla_parse+0x12c/0x3e0 [ 925.135235] genl_family_rcv_msg+0x8a7/0x11a0 [ 925.135263] ? genl_unregister_family+0x8a0/0x8a0 [ 925.135283] ? lock_downgrade+0x900/0x900 [ 925.135301] ? check_preemption_disabled+0x48/0x280 [ 925.135320] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 925.162764] ? kasan_check_read+0x11/0x20 [ 925.166924] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 925.172220] ? rcu_softirq_qs+0x20/0x20 [ 925.176251] genl_rcv_msg+0xc6/0x168 [ 925.179982] netlink_rcv_skb+0x172/0x440 [ 925.184082] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 925.188867] ? netlink_ack+0xb80/0xb80 [ 925.192763] ? down_read+0x8d/0x120 [ 925.196442] genl_rcv+0x28/0x40 [ 925.199735] netlink_unicast+0x5a5/0x760 [ 925.203829] ? netlink_attachskb+0x9a0/0x9a0 [ 925.208254] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 925.213813] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 925.218840] netlink_sendmsg+0xa18/0xfc0 [ 925.222914] ? netlink_unicast+0x760/0x760 [ 925.222929] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 925.222947] ? apparmor_socket_sendmsg+0x29/0x30 [ 925.222966] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 925.242419] ? security_socket_sendmsg+0x94/0xc0 [ 925.247196] ? netlink_unicast+0x760/0x760 [ 925.251449] sock_sendmsg+0xd5/0x120 [ 925.255190] ___sys_sendmsg+0x7fd/0x930 [ 925.259196] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 925.264142] ? kasan_check_read+0x11/0x20 [ 925.268327] ? copy_msghdr_from_user+0x580/0x580 [ 925.273130] ? __fget_light+0x2e9/0x430 [ 925.277132] ? fget_raw+0x20/0x20 [ 925.280601] ? __might_fault+0x12b/0x1e0 [ 925.284709] ? lock_downgrade+0x900/0x900 [ 925.288891] ? lock_release+0xa00/0xa00 [ 925.293006] ? perf_trace_sched_process_exec+0x860/0x860 [ 925.298506] ? posix_ktime_get_ts+0x15/0x20 [ 925.302854] ? trace_hardirqs_off_caller+0x310/0x310 [ 925.307972] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 925.313531] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 925.319081] ? sockfd_lookup_light+0xc5/0x160 [ 925.323655] __sys_sendmsg+0x11d/0x280 01:08:47 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000020000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:47 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xf00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:47 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xc3100000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 925.327555] ? __ia32_sys_shutdown+0x80/0x80 [ 925.331980] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 925.337536] ? put_timespec64+0x10f/0x1b0 [ 925.341708] ? do_syscall_64+0x9a/0x820 [ 925.345703] ? do_syscall_64+0x9a/0x820 [ 925.349719] ? trace_hardirqs_off_caller+0x310/0x310 [ 925.354847] __x64_sys_sendmsg+0x78/0xb0 [ 925.358921] do_syscall_64+0x1b9/0x820 [ 925.362817] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 925.368214] ? syscall_return_slowpath+0x5e0/0x5e0 [ 925.373202] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 925.378035] ? trace_hardirqs_on_caller+0x310/0x310 [ 925.383041] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 925.388069] ? prepare_exit_to_usermode+0x291/0x3b0 [ 925.393080] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 925.397914] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 925.403136] RIP: 0033:0x457569 [ 925.406336] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 925.425220] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 925.432912] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 925.440180] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 925.447448] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 925.454704] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 925.461962] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:48 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x20db5, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:48 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x6000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:48 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900000000000000]}, 0x2c) 01:08:48 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x2000) 01:08:48 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000090000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 925.631021] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 925.645634] CPU: 0 PID: 8839 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 925.652947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 925.662305] Call Trace: [ 925.664933] dump_stack+0x244/0x39d [ 925.668583] ? dump_stack_print_info.cold.1+0x20/0x20 [ 925.673799] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 01:08:48 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000000]}, 0x2c) [ 925.678925] sysfs_warn_dup.cold.3+0x1c/0x2b [ 925.683363] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 925.688762] sysfs_create_link+0x65/0xc0 [ 925.692857] device_add+0x64a/0x18e0 [ 925.696584] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 925.701267] ? genl_rcv_msg+0xc6/0x168 [ 925.705189] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 925.710325] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 925.715718] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 925.720924] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 925.726484] wiphy_register+0x1a5b/0x2770 01:08:48 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x1100) [ 925.730674] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 925.735729] ? rcu_read_lock_sched_held+0x14f/0x180 [ 925.740761] ? __kmalloc+0x5ee/0x760 [ 925.744507] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 925.750055] ? ieee80211_cs_list_valid+0x7c/0x440 [ 925.754909] ? ieee80211_register_hw+0xce9/0x3f10 [ 925.759771] ieee80211_register_hw+0x159b/0x3f10 [ 925.764556] ? ieee80211_ifa_changed+0xed0/0xed0 [ 925.769346] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 925.774415] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 925.780578] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 925.780596] ? vsnprintf+0x20d/0x1b60 [ 925.780621] ? pointer+0x900/0x900 [ 925.780649] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 925.780665] ? kvasprintf+0xee/0x150 [ 925.780681] ? bust_spinlocks+0xe0/0xe0 [ 925.780703] ? validate_nla+0x29a/0x1650 [ 925.780722] ? kasprintf+0xab/0xe0 [ 925.813892] ? kvasprintf_const+0x190/0x190 [ 925.818232] ? cap_capable+0x1f9/0x260 [ 925.822142] hwsim_new_radio_nl+0x7dc/0xb20 [ 925.826496] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 925.831727] ? __nla_parse+0x12c/0x3e0 [ 925.835650] genl_family_rcv_msg+0x8a7/0x11a0 [ 925.840153] ? genl_unregister_family+0x8a0/0x8a0 [ 925.845006] ? lock_downgrade+0x900/0x900 [ 925.849178] ? check_preemption_disabled+0x48/0x280 [ 925.854195] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 925.859134] ? kasan_check_read+0x11/0x20 [ 925.863319] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 925.868596] ? rcu_softirq_qs+0x20/0x20 [ 925.872609] genl_rcv_msg+0xc6/0x168 [ 925.876351] netlink_rcv_skb+0x172/0x440 [ 925.880425] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 925.885223] ? netlink_ack+0xb80/0xb80 [ 925.889116] ? down_read+0x8d/0x120 [ 925.892734] genl_rcv+0x28/0x40 [ 925.896008] netlink_unicast+0x5a5/0x760 [ 925.900072] ? netlink_attachskb+0x9a0/0x9a0 [ 925.904496] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 925.910045] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 925.915085] netlink_sendmsg+0xa18/0xfc0 [ 925.919179] ? netlink_unicast+0x760/0x760 [ 925.923404] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 925.928332] ? apparmor_socket_sendmsg+0x29/0x30 [ 925.933085] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 925.938626] ? security_socket_sendmsg+0x94/0xc0 [ 925.943459] ? netlink_unicast+0x760/0x760 [ 925.947695] sock_sendmsg+0xd5/0x120 [ 925.951411] ___sys_sendmsg+0x7fd/0x930 [ 925.955374] ? find_held_lock+0x36/0x1c0 [ 925.959443] ? copy_msghdr_from_user+0x580/0x580 [ 925.964205] ? __fd_install+0x2b5/0x8f0 [ 925.968205] ? __fget_light+0x2e9/0x430 [ 925.972195] ? fget_raw+0x20/0x20 [ 925.975637] ? __might_fault+0x12b/0x1e0 [ 925.979700] ? lock_downgrade+0x900/0x900 [ 925.983836] ? lock_release+0xa00/0xa00 [ 925.987810] ? perf_trace_sched_process_exec+0x860/0x860 [ 925.993288] ? posix_ktime_get_ts+0x15/0x20 [ 925.997617] ? trace_hardirqs_off_caller+0x310/0x310 [ 926.002753] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 926.008310] ? sockfd_lookup_light+0xc5/0x160 [ 926.012852] __sys_sendmsg+0x11d/0x280 [ 926.016751] ? __ia32_sys_shutdown+0x80/0x80 [ 926.021151] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 926.026722] ? put_timespec64+0x10f/0x1b0 [ 926.030921] ? do_syscall_64+0x9a/0x820 [ 926.034906] ? do_syscall_64+0x9a/0x820 [ 926.038892] ? trace_hardirqs_off_caller+0x310/0x310 [ 926.044012] __x64_sys_sendmsg+0x78/0xb0 [ 926.048087] do_syscall_64+0x1b9/0x820 [ 926.051982] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 926.057336] ? syscall_return_slowpath+0x5e0/0x5e0 [ 926.062252] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 926.067100] ? trace_hardirqs_on_caller+0x310/0x310 [ 926.072119] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 926.077152] ? prepare_exit_to_usermode+0x291/0x3b0 [ 926.082203] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 926.087064] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 926.092256] RIP: 0033:0x457569 [ 926.095448] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 926.114352] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 926.122049] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 01:08:49 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6600, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:49 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x12000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 926.129312] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 926.136581] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 926.143859] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 926.151129] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 926.194044] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:08:49 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe000000]}, 0x2c) [ 926.234596] CPU: 0 PID: 8839 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 926.241902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 926.251280] Call Trace: [ 926.253874] dump_stack+0x244/0x39d [ 926.257518] ? dump_stack_print_info.cold.1+0x20/0x20 [ 926.262722] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 926.267844] sysfs_warn_dup.cold.3+0x1c/0x2b [ 926.267864] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 926.267882] sysfs_create_link+0x65/0xc0 01:08:49 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x8]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 926.281770] device_add+0x64a/0x18e0 [ 926.285522] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 926.290229] ? genl_rcv_msg+0xc6/0x168 [ 926.294143] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 926.299346] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 926.304748] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 926.309957] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 926.315525] wiphy_register+0x1a5b/0x2770 [ 926.320174] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 926.325132] ? rcu_read_lock_sched_held+0x14f/0x180 [ 926.330224] ? __kmalloc+0x5ee/0x760 [ 926.333989] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 926.339546] ? ieee80211_cs_list_valid+0x7c/0x440 [ 926.339565] ? ieee80211_register_hw+0xce9/0x3f10 [ 926.339588] ieee80211_register_hw+0x159b/0x3f10 [ 926.339619] ? ieee80211_ifa_changed+0xed0/0xed0 [ 926.349305] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 926.349341] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 926.349359] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 926.349375] ? vsnprintf+0x20d/0x1b60 [ 926.349399] ? pointer+0x900/0x900 01:08:49 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xfffffff0]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 926.349429] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 926.387974] ? kvasprintf+0xee/0x150 [ 926.391699] ? bust_spinlocks+0xe0/0xe0 [ 926.395701] ? validate_nla+0x29a/0x1650 [ 926.399786] ? kasprintf+0xab/0xe0 [ 926.403341] ? kvasprintf_const+0x190/0x190 [ 926.407704] ? cap_capable+0x1f9/0x260 [ 926.411643] hwsim_new_radio_nl+0x7dc/0xb20 [ 926.415988] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 926.421205] ? __nla_parse+0x12c/0x3e0 [ 926.425135] genl_family_rcv_msg+0x8a7/0x11a0 [ 926.429683] ? genl_unregister_family+0x8a0/0x8a0 [ 926.434551] ? lock_downgrade+0x900/0x900 [ 926.438726] ? check_preemption_disabled+0x48/0x280 [ 926.443751] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 926.448705] ? kasan_check_read+0x11/0x20 [ 926.452867] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 926.458196] ? rcu_softirq_qs+0x20/0x20 [ 926.462215] genl_rcv_msg+0xc6/0x168 [ 926.465958] netlink_rcv_skb+0x172/0x440 [ 926.470034] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 926.474802] ? netlink_ack+0xb80/0xb80 [ 926.478691] ? down_read+0x8d/0x120 [ 926.482364] genl_rcv+0x28/0x40 [ 926.482381] netlink_unicast+0x5a5/0x760 [ 926.482404] ? netlink_attachskb+0x9a0/0x9a0 [ 926.482422] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 926.482444] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 926.504738] netlink_sendmsg+0xa18/0xfc0 [ 926.508825] ? netlink_unicast+0x760/0x760 [ 926.513085] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 926.518027] ? apparmor_socket_sendmsg+0x29/0x30 [ 926.522813] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 926.528384] ? security_socket_sendmsg+0x94/0xc0 [ 926.533178] ? netlink_unicast+0x760/0x760 [ 926.537403] sock_sendmsg+0xd5/0x120 [ 926.541105] ___sys_sendmsg+0x7fd/0x930 [ 926.545105] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 926.550078] ? kasan_check_read+0x11/0x20 [ 926.554237] ? copy_msghdr_from_user+0x580/0x580 [ 926.559013] ? __fget_light+0x2e9/0x430 [ 926.562991] ? fget_raw+0x20/0x20 [ 926.566458] ? __might_fault+0x12b/0x1e0 [ 926.570547] ? lock_downgrade+0x900/0x900 [ 926.574688] ? lock_release+0xa00/0xa00 [ 926.578646] ? perf_trace_sched_process_exec+0x860/0x860 [ 926.584101] ? posix_ktime_get_ts+0x15/0x20 [ 926.588409] ? trace_hardirqs_off_caller+0x310/0x310 [ 926.593502] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 926.599034] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 926.604557] ? sockfd_lookup_light+0xc5/0x160 [ 926.609067] __sys_sendmsg+0x11d/0x280 [ 926.612947] ? __ia32_sys_shutdown+0x80/0x80 [ 926.617359] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 926.622908] ? put_timespec64+0x10f/0x1b0 [ 926.627090] ? do_syscall_64+0x9a/0x820 [ 926.631071] ? do_syscall_64+0x9a/0x820 [ 926.635040] ? trace_hardirqs_off_caller+0x310/0x310 [ 926.640149] __x64_sys_sendmsg+0x78/0xb0 [ 926.644253] do_syscall_64+0x1b9/0x820 [ 926.648166] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 926.653541] ? syscall_return_slowpath+0x5e0/0x5e0 [ 926.658456] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 926.663313] ? trace_hardirqs_on_caller+0x310/0x310 [ 926.668340] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 926.673345] ? prepare_exit_to_usermode+0x291/0x3b0 [ 926.678374] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 926.683209] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 926.688389] RIP: 0033:0x457569 [ 926.691583] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 926.710468] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 926.718182] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 926.725471] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 01:08:49 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xff0f0000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:49 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x9effffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:49 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15]}, 0x2c) [ 926.732729] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 926.739991] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 926.747263] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:49 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000740000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:49 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x700) 01:08:49 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xf0ffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 926.877620] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:08:49 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5900000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 926.920849] CPU: 0 PID: 8886 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 926.928181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 926.937556] Call Trace: [ 926.940181] dump_stack+0x244/0x39d [ 926.943835] ? dump_stack_print_info.cold.1+0x20/0x20 [ 926.949045] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 926.954184] sysfs_warn_dup.cold.3+0x1c/0x2b [ 926.954206] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 926.954225] sysfs_create_link+0x65/0xc0 01:08:49 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14]}, 0x2c) [ 926.963994] device_add+0x64a/0x18e0 [ 926.964010] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 926.964025] ? genl_rcv_msg+0xc6/0x168 [ 926.964047] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 926.964062] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 926.964083] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 926.996022] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 927.001596] wiphy_register+0x1a5b/0x2770 [ 927.005790] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 927.010743] ? rcu_read_lock_sched_held+0x14f/0x180 [ 927.015769] ? __kmalloc+0x5ee/0x760 [ 927.019497] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 927.019524] ? ieee80211_cs_list_valid+0x7c/0x440 [ 927.019543] ? ieee80211_register_hw+0xce9/0x3f10 [ 927.019566] ieee80211_register_hw+0x159b/0x3f10 [ 927.019595] ? ieee80211_ifa_changed+0xed0/0xed0 [ 927.044400] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 927.049470] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 927.055628] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 927.061209] ? vsnprintf+0x20d/0x1b60 [ 927.065037] ? pointer+0x900/0x900 01:08:49 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xb000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 927.068607] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 927.073684] ? kvasprintf+0xee/0x150 [ 927.077415] ? bust_spinlocks+0xe0/0xe0 [ 927.081419] ? validate_nla+0x29a/0x1650 [ 927.085502] ? kasprintf+0xab/0xe0 [ 927.089095] ? kvasprintf_const+0x190/0x190 [ 927.093435] ? cap_capable+0x1f9/0x260 [ 927.097351] hwsim_new_radio_nl+0x7dc/0xb20 [ 927.101695] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 927.106939] ? __nla_parse+0x12c/0x3e0 [ 927.106987] genl_family_rcv_msg+0x8a7/0x11a0 [ 927.107029] ? genl_unregister_family+0x8a0/0x8a0 [ 927.107048] ? lock_downgrade+0x900/0x900 [ 927.107072] ? check_preemption_disabled+0x48/0x280 [ 927.115442] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 927.115459] ? kasan_check_read+0x11/0x20 [ 927.115475] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 927.115491] ? rcu_softirq_qs+0x20/0x20 [ 927.115549] genl_rcv_msg+0xc6/0x168 [ 927.151645] netlink_rcv_skb+0x172/0x440 [ 927.155733] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 927.160500] ? netlink_ack+0xb80/0xb80 [ 927.164417] ? down_read+0x8d/0x120 [ 927.168070] genl_rcv+0x28/0x40 01:08:50 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xf000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 927.171363] netlink_unicast+0x5a5/0x760 [ 927.175438] ? netlink_attachskb+0x9a0/0x9a0 [ 927.179875] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 927.185537] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 927.190572] netlink_sendmsg+0xa18/0xfc0 [ 927.194654] ? netlink_unicast+0x760/0x760 [ 927.194670] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 927.194689] ? apparmor_socket_sendmsg+0x29/0x30 [ 927.194705] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 927.194726] ? security_socket_sendmsg+0x94/0xc0 01:08:50 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000]}, 0x2c) [ 927.203880] ? netlink_unicast+0x760/0x760 [ 927.203900] sock_sendmsg+0xd5/0x120 [ 927.203919] ___sys_sendmsg+0x7fd/0x930 [ 927.203935] ? find_held_lock+0x36/0x1c0 [ 927.203956] ? copy_msghdr_from_user+0x580/0x580 [ 927.203989] ? __fd_install+0x2b5/0x8f0 [ 927.243670] ? __fget_light+0x2e9/0x430 [ 927.247658] ? fget_raw+0x20/0x20 [ 927.251127] ? __might_fault+0x12b/0x1e0 [ 927.251147] ? lock_downgrade+0x900/0x900 [ 927.251183] ? lock_release+0xa00/0xa00 [ 927.251203] ? perf_trace_sched_process_exec+0x860/0x860 [ 927.259482] ? posix_ktime_get_ts+0x15/0x20 [ 927.259501] ? trace_hardirqs_off_caller+0x310/0x310 [ 927.259526] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 927.259541] ? sockfd_lookup_light+0xc5/0x160 [ 927.259561] __sys_sendmsg+0x11d/0x280 [ 927.259580] ? __ia32_sys_shutdown+0x80/0x80 [ 927.296786] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 927.302360] ? put_timespec64+0x10f/0x1b0 [ 927.306533] ? do_syscall_64+0x9a/0x820 [ 927.310516] ? do_syscall_64+0x9a/0x820 [ 927.314519] ? trace_hardirqs_off_caller+0x310/0x310 01:08:50 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xa]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 927.319652] __x64_sys_sendmsg+0x78/0xb0 [ 927.323725] do_syscall_64+0x1b9/0x820 [ 927.327624] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 927.333018] ? syscall_return_slowpath+0x5e0/0x5e0 [ 927.337959] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 927.342812] ? trace_hardirqs_on_caller+0x310/0x310 [ 927.347840] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 927.352888] ? prepare_exit_to_usermode+0x291/0x3b0 [ 927.357948] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 927.362810] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 927.368005] RIP: 0033:0x457569 [ 927.371222] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 927.390173] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 927.397894] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 927.405190] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 927.412460] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 927.419735] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 927.427028] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:50 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x2088, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:50 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x13]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:50 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400]}, 0x2c) 01:08:50 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000060000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:50 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x6) 01:08:50 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:50 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x500000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:50 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x134]}, 0x2c) [ 927.610627] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 927.618410] CPU: 1 PID: 8941 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 927.625694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 927.635074] Call Trace: [ 927.637703] dump_stack+0x244/0x39d [ 927.641359] ? dump_stack_print_info.cold.1+0x20/0x20 [ 927.646570] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 927.651739] sysfs_warn_dup.cold.3+0x1c/0x2b [ 927.656186] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 927.661568] sysfs_create_link+0x65/0xc0 [ 927.665649] device_add+0x64a/0x18e0 [ 927.669388] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 927.674067] ? genl_rcv_msg+0xc6/0x168 [ 927.678005] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 927.683138] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 927.688527] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 927.693730] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 927.699295] wiphy_register+0x1a5b/0x2770 [ 927.703484] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 01:08:50 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x100000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 927.708435] ? rcu_read_lock_sched_held+0x14f/0x180 [ 927.713470] ? __kmalloc+0x5ee/0x760 [ 927.717221] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 927.722770] ? ieee80211_cs_list_valid+0x7c/0x440 [ 927.727689] ? ieee80211_register_hw+0xce9/0x3f10 [ 927.732557] ieee80211_register_hw+0x159b/0x3f10 [ 927.737378] ? ieee80211_ifa_changed+0xed0/0xed0 [ 927.742170] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 927.747225] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 927.753385] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 01:08:50 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x1200000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 927.758939] ? vsnprintf+0x20d/0x1b60 [ 927.762784] ? pointer+0x900/0x900 [ 927.766344] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 927.771374] ? kvasprintf+0xee/0x150 [ 927.775113] ? bust_spinlocks+0xe0/0xe0 [ 927.779104] ? validate_nla+0x29a/0x1650 [ 927.783208] ? kasprintf+0xab/0xe0 [ 927.786780] ? kvasprintf_const+0x190/0x190 [ 927.791121] ? cap_capable+0x1f9/0x260 [ 927.795167] hwsim_new_radio_nl+0x7dc/0xb20 [ 927.799509] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 927.804710] ? __nla_parse+0x12c/0x3e0 01:08:50 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xfffff000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 927.808620] genl_family_rcv_msg+0x8a7/0x11a0 [ 927.813136] ? genl_unregister_family+0x8a0/0x8a0 [ 927.818013] ? lock_downgrade+0x900/0x900 [ 927.822187] ? check_preemption_disabled+0x48/0x280 [ 927.827248] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 927.832200] ? kasan_check_read+0x11/0x20 [ 927.836360] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 927.841652] ? rcu_softirq_qs+0x20/0x20 [ 927.845675] genl_rcv_msg+0xc6/0x168 [ 927.849413] netlink_rcv_skb+0x172/0x440 [ 927.853486] ? genl_family_rcv_msg+0x11a0/0x11a0 01:08:50 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x8000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 927.858253] ? netlink_ack+0xb80/0xb80 [ 927.862154] ? down_read+0x8d/0x120 [ 927.865813] genl_rcv+0x28/0x40 [ 927.869139] netlink_unicast+0x5a5/0x760 [ 927.873231] ? netlink_attachskb+0x9a0/0x9a0 [ 927.877652] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 927.883226] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 927.888267] netlink_sendmsg+0xa18/0xfc0 [ 927.892359] ? netlink_unicast+0x760/0x760 [ 927.896611] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 927.901555] ? apparmor_socket_sendmsg+0x29/0x30 [ 927.906320] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 927.911878] ? security_socket_sendmsg+0x94/0xc0 [ 927.916648] ? netlink_unicast+0x760/0x760 [ 927.920918] sock_sendmsg+0xd5/0x120 [ 927.924659] ___sys_sendmsg+0x7fd/0x930 [ 927.928646] ? find_held_lock+0x36/0x1c0 [ 927.932727] ? copy_msghdr_from_user+0x580/0x580 [ 927.937492] ? __fd_install+0x2b5/0x8f0 [ 927.937537] ? __fget_light+0x2e9/0x430 [ 927.937553] ? fget_raw+0x20/0x20 [ 927.937572] ? __might_fault+0x12b/0x1e0 [ 927.937590] ? lock_downgrade+0x900/0x900 [ 927.937610] ? lock_release+0xa00/0xa00 [ 927.937625] ? perf_trace_sched_process_exec+0x860/0x860 [ 927.937642] ? posix_ktime_get_ts+0x15/0x20 [ 927.945589] ? trace_hardirqs_off_caller+0x310/0x310 [ 927.945617] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 927.945634] ? sockfd_lookup_light+0xc5/0x160 [ 927.945655] __sys_sendmsg+0x11d/0x280 [ 927.945682] ? __ia32_sys_shutdown+0x80/0x80 [ 927.945701] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 927.945721] ? put_timespec64+0x10f/0x1b0 [ 927.953233] ? do_syscall_64+0x9a/0x820 [ 927.953250] ? do_syscall_64+0x9a/0x820 [ 927.953278] ? trace_hardirqs_off_caller+0x310/0x310 [ 927.953303] __x64_sys_sendmsg+0x78/0xb0 [ 927.953323] do_syscall_64+0x1b9/0x820 [ 927.953339] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 927.953358] ? syscall_return_slowpath+0x5e0/0x5e0 [ 927.953377] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 927.961485] ? trace_hardirqs_on_caller+0x310/0x310 [ 927.961504] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 927.961524] ? prepare_exit_to_usermode+0x291/0x3b0 [ 927.961548] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 927.961601] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 927.961613] RIP: 0033:0x457569 [ 927.961628] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 927.961637] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 927.961651] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 927.961659] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 927.961678] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 927.971422] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 927.971432] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:51 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x74000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:51 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x9000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:51 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffe4]}, 0x2c) 01:08:51 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a000000000000004c000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:51 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x80fe) [ 928.325968] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 928.377763] CPU: 1 PID: 8992 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 928.385061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 928.394428] Call Trace: [ 928.397042] dump_stack+0x244/0x39d [ 928.400723] ? dump_stack_print_info.cold.1+0x20/0x20 [ 928.405949] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 928.411093] sysfs_warn_dup.cold.3+0x1c/0x2b [ 928.415514] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 928.420890] sysfs_create_link+0x65/0xc0 01:08:51 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6100000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:51 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x34000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:51 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700000000000000]}, 0x2c) [ 928.420911] device_add+0x64a/0x18e0 [ 928.420928] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 928.420946] ? genl_rcv_msg+0xc6/0x168 [ 928.428716] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 928.428731] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 928.428749] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 928.428767] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 928.458481] wiphy_register+0x1a5b/0x2770 [ 928.462692] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 928.467645] ? rcu_read_lock_sched_held+0x14f/0x180 [ 928.472703] ? __kmalloc+0x5ee/0x760 01:08:51 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x6]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 928.476434] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 928.481990] ? ieee80211_cs_list_valid+0x7c/0x440 [ 928.486861] ? ieee80211_register_hw+0xce9/0x3f10 [ 928.491734] ieee80211_register_hw+0x159b/0x3f10 [ 928.496522] ? ieee80211_ifa_changed+0xed0/0xed0 [ 928.501308] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 928.506356] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 928.512512] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 928.518056] ? vsnprintf+0x20d/0x1b60 [ 928.521873] ? pointer+0x900/0x900 [ 928.525452] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 928.525469] ? kvasprintf+0xee/0x150 [ 928.525502] ? bust_spinlocks+0xe0/0xe0 [ 928.534229] ? validate_nla+0x29a/0x1650 [ 928.534252] ? kasprintf+0xab/0xe0 [ 928.534270] ? kvasprintf_const+0x190/0x190 [ 928.534294] ? cap_capable+0x1f9/0x260 [ 928.534321] hwsim_new_radio_nl+0x7dc/0xb20 [ 928.558418] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 928.563636] ? __nla_parse+0x12c/0x3e0 [ 928.567567] genl_family_rcv_msg+0x8a7/0x11a0 [ 928.572082] ? genl_unregister_family+0x8a0/0x8a0 01:08:51 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xc310]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:51 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x3f00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 928.576933] ? lock_downgrade+0x900/0x900 [ 928.581100] ? check_preemption_disabled+0x48/0x280 [ 928.586180] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 928.591126] ? kasan_check_read+0x11/0x20 [ 928.595295] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 928.600585] ? rcu_softirq_qs+0x20/0x20 [ 928.604612] genl_rcv_msg+0xc6/0x168 [ 928.608344] netlink_rcv_skb+0x172/0x440 [ 928.612418] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 928.617226] ? netlink_ack+0xb80/0xb80 [ 928.621141] ? down_read+0x8d/0x120 [ 928.624832] genl_rcv+0x28/0x40 01:08:51 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xf]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 928.628170] netlink_unicast+0x5a5/0x760 [ 928.632269] ? netlink_attachskb+0x9a0/0x9a0 [ 928.636701] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 928.642247] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 928.647284] netlink_sendmsg+0xa18/0xfc0 [ 928.651378] ? netlink_unicast+0x760/0x760 [ 928.655637] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 928.660582] ? apparmor_socket_sendmsg+0x29/0x30 [ 928.665363] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 928.670942] ? security_socket_sendmsg+0x94/0xc0 [ 928.675705] ? netlink_unicast+0x760/0x760 [ 928.679976] sock_sendmsg+0xd5/0x120 [ 928.683716] ___sys_sendmsg+0x7fd/0x930 [ 928.687713] ? find_held_lock+0x36/0x1c0 [ 928.691793] ? copy_msghdr_from_user+0x580/0x580 [ 928.696564] ? __fd_install+0x2b5/0x8f0 [ 928.700557] ? __fget_light+0x2e9/0x430 [ 928.704539] ? fget_raw+0x20/0x20 [ 928.708011] ? __might_fault+0x12b/0x1e0 [ 928.712076] ? lock_downgrade+0x900/0x900 [ 928.716221] ? lock_release+0xa00/0xa00 [ 928.720221] ? perf_trace_sched_process_exec+0x860/0x860 [ 928.725683] ? posix_ktime_get_ts+0x15/0x20 [ 928.730008] ? trace_hardirqs_off_caller+0x310/0x310 [ 928.735107] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 928.740641] ? sockfd_lookup_light+0xc5/0x160 [ 928.745189] __sys_sendmsg+0x11d/0x280 [ 928.749097] ? __ia32_sys_shutdown+0x80/0x80 [ 928.753528] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 928.759092] ? put_timespec64+0x10f/0x1b0 [ 928.763275] ? do_syscall_64+0x9a/0x820 [ 928.767262] ? do_syscall_64+0x9a/0x820 [ 928.771297] ? trace_hardirqs_off_caller+0x310/0x310 [ 928.776408] __x64_sys_sendmsg+0x78/0xb0 [ 928.780700] do_syscall_64+0x1b9/0x820 [ 928.784577] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 928.789932] ? syscall_return_slowpath+0x5e0/0x5e0 [ 928.794864] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 928.799709] ? trace_hardirqs_on_caller+0x310/0x310 [ 928.804723] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 928.809728] ? prepare_exit_to_usermode+0x291/0x3b0 [ 928.814747] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 928.819591] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 928.824767] RIP: 0033:0x457569 [ 928.827946] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 928.846848] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 928.854539] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 928.861796] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 928.869055] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 928.876321] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 928.883588] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:51 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xb50d0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:51 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x1000000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:51 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5b0a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:51 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000004000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:51 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xa00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:51 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xe000000000000000) 01:08:51 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}, 0x2c) 01:08:51 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xa00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:51 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000]}, 0x2c) [ 929.160540] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 929.197859] CPU: 0 PID: 9035 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 929.205193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 929.214561] Call Trace: [ 929.217202] dump_stack+0x244/0x39d [ 929.220866] ? dump_stack_print_info.cold.1+0x20/0x20 [ 929.226094] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 929.231236] sysfs_warn_dup.cold.3+0x1c/0x2b [ 929.235669] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 929.241061] sysfs_create_link+0x65/0xc0 [ 929.245152] device_add+0x64a/0x18e0 [ 929.248904] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 929.253587] ? genl_rcv_msg+0xc6/0x168 01:08:52 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4400000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 929.257500] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 929.262617] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 929.268003] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 929.273231] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 929.278796] wiphy_register+0x1a5b/0x2770 [ 929.282979] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 929.287942] ? rcu_read_lock_sched_held+0x14f/0x180 [ 929.292977] ? __kmalloc+0x5ee/0x760 [ 929.296707] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 929.302266] ? ieee80211_cs_list_valid+0x7c/0x440 01:08:52 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x1100]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 929.307125] ? ieee80211_register_hw+0xce9/0x3f10 [ 929.312011] ieee80211_register_hw+0x159b/0x3f10 [ 929.316802] ? ieee80211_ifa_changed+0xed0/0xed0 [ 929.321596] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 929.326654] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 929.332818] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 929.332836] ? vsnprintf+0x20d/0x1b60 [ 929.332861] ? pointer+0x900/0x900 [ 929.332888] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 929.332904] ? kvasprintf+0xee/0x150 [ 929.332920] ? bust_spinlocks+0xe0/0xe0 01:08:52 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x10]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 929.332941] ? validate_nla+0x29a/0x1650 [ 929.332961] ? kasprintf+0xab/0xe0 [ 929.342306] ? kvasprintf_const+0x190/0x190 [ 929.342329] ? cap_capable+0x1f9/0x260 [ 929.342356] hwsim_new_radio_nl+0x7dc/0xb20 [ 929.342380] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 929.342396] ? __nla_parse+0x12c/0x3e0 [ 929.342426] genl_family_rcv_msg+0x8a7/0x11a0 [ 929.342451] ? genl_unregister_family+0x8a0/0x8a0 [ 929.397218] ? lock_downgrade+0x900/0x900 [ 929.401389] ? check_preemption_disabled+0x48/0x280 [ 929.406425] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 929.411373] ? kasan_check_read+0x11/0x20 [ 929.415540] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 929.420841] ? rcu_softirq_qs+0x20/0x20 [ 929.424858] genl_rcv_msg+0xc6/0x168 [ 929.428600] netlink_rcv_skb+0x172/0x440 [ 929.432683] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 929.437468] ? netlink_ack+0xb80/0xb80 [ 929.441378] ? down_read+0x8d/0x120 [ 929.445035] genl_rcv+0x28/0x40 [ 929.448333] netlink_unicast+0x5a5/0x760 [ 929.452418] ? netlink_attachskb+0x9a0/0x9a0 [ 929.456850] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 929.462412] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 929.467455] netlink_sendmsg+0xa18/0xfc0 [ 929.471548] ? netlink_unicast+0x760/0x760 [ 929.475804] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 929.480753] ? apparmor_socket_sendmsg+0x29/0x30 [ 929.485546] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 929.491094] ? security_socket_sendmsg+0x94/0xc0 [ 929.495846] ? netlink_unicast+0x760/0x760 [ 929.500080] sock_sendmsg+0xd5/0x120 [ 929.503791] ___sys_sendmsg+0x7fd/0x930 [ 929.507762] ? find_held_lock+0x36/0x1c0 [ 929.511823] ? copy_msghdr_from_user+0x580/0x580 [ 929.516575] ? __fd_install+0x2b5/0x8f0 [ 929.520557] ? __fget_light+0x2e9/0x430 [ 929.524527] ? fget_raw+0x20/0x20 [ 929.527978] ? __might_fault+0x12b/0x1e0 [ 929.532035] ? lock_downgrade+0x900/0x900 [ 929.536200] ? lock_release+0xa00/0xa00 [ 929.540189] ? perf_trace_sched_process_exec+0x860/0x860 [ 929.545635] ? posix_ktime_get_ts+0x15/0x20 [ 929.549959] ? trace_hardirqs_off_caller+0x310/0x310 [ 929.555082] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 929.560628] ? sockfd_lookup_light+0xc5/0x160 [ 929.565120] __sys_sendmsg+0x11d/0x280 [ 929.569016] ? __ia32_sys_shutdown+0x80/0x80 [ 929.573447] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 929.578999] ? put_timespec64+0x10f/0x1b0 [ 929.583181] ? do_syscall_64+0x9a/0x820 [ 929.587155] ? do_syscall_64+0x9a/0x820 [ 929.591186] ? trace_hardirqs_off_caller+0x310/0x310 [ 929.596294] __x64_sys_sendmsg+0x78/0xb0 [ 929.600355] do_syscall_64+0x1b9/0x820 [ 929.604240] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 929.609600] ? syscall_return_slowpath+0x5e0/0x5e0 [ 929.614527] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 929.619368] ? trace_hardirqs_on_caller+0x310/0x310 [ 929.624392] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 929.629419] ? prepare_exit_to_usermode+0x291/0x3b0 [ 929.634436] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 929.639277] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 929.644463] RIP: 0033:0x457569 [ 929.647703] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 929.666614] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 929.674355] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 929.681629] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 929.688908] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 929.696196] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 929.703460] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:52 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xb40d0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:52 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3800, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:52 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x12]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:52 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000400000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:52 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xf401000000000000) 01:08:52 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00]}, 0x2c) 01:08:52 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x900]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 929.858690] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 929.880299] CPU: 0 PID: 9082 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 929.887611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 929.896983] Call Trace: [ 929.899602] dump_stack+0x244/0x39d [ 929.903261] ? dump_stack_print_info.cold.1+0x20/0x20 [ 929.908483] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 929.913628] sysfs_warn_dup.cold.3+0x1c/0x2b [ 929.918080] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 929.923483] sysfs_create_link+0x65/0xc0 [ 929.927570] device_add+0x64a/0x18e0 [ 929.931319] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 929.936022] ? genl_rcv_msg+0xc6/0x168 [ 929.939939] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 929.945060] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 929.950444] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 929.955658] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 929.961221] wiphy_register+0x1a5b/0x2770 [ 929.961252] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 929.961283] ? rcu_read_lock_sched_held+0x14f/0x180 [ 929.975385] ? __kmalloc+0x5ee/0x760 [ 929.979125] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 929.984707] ? ieee80211_cs_list_valid+0x7c/0x440 [ 929.989576] ? ieee80211_register_hw+0xce9/0x3f10 [ 929.994446] ieee80211_register_hw+0x159b/0x3f10 [ 929.999243] ? ieee80211_ifa_changed+0xed0/0xed0 [ 930.004032] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 930.009086] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 930.015343] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 930.020901] ? vsnprintf+0x20d/0x1b60 [ 930.024736] ? pointer+0x900/0x900 [ 930.028318] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 930.033356] ? kvasprintf+0xee/0x150 [ 930.037099] ? bust_spinlocks+0xe0/0xe0 [ 930.041112] ? validate_nla+0x29a/0x1650 [ 930.045221] ? kasprintf+0xab/0xe0 [ 930.048777] ? kvasprintf_const+0x190/0x190 [ 930.053123] ? cap_capable+0x1f9/0x260 [ 930.057064] hwsim_new_radio_nl+0x7dc/0xb20 [ 930.061411] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 930.066620] ? __nla_parse+0x12c/0x3e0 [ 930.070546] genl_family_rcv_msg+0x8a7/0x11a0 [ 930.075075] ? genl_unregister_family+0x8a0/0x8a0 [ 930.079942] ? lock_downgrade+0x900/0x900 [ 930.084119] ? check_preemption_disabled+0x48/0x280 [ 930.089204] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 930.094155] ? kasan_check_read+0x11/0x20 [ 930.098452] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 930.103761] ? rcu_softirq_qs+0x20/0x20 [ 930.107771] genl_rcv_msg+0xc6/0x168 [ 930.111551] netlink_rcv_skb+0x172/0x440 [ 930.111570] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 930.111588] ? netlink_ack+0xb80/0xb80 [ 930.111603] ? down_read+0x8d/0x120 [ 930.111632] genl_rcv+0x28/0x40 [ 930.111648] netlink_unicast+0x5a5/0x760 [ 930.111669] ? netlink_attachskb+0x9a0/0x9a0 [ 930.139730] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 930.145291] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 930.150331] netlink_sendmsg+0xa18/0xfc0 [ 930.154422] ? netlink_unicast+0x760/0x760 01:08:52 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xb00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:52 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x600000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:52 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x1100000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:53 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xf0ffffffffffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 930.158677] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 930.163632] ? apparmor_socket_sendmsg+0x29/0x30 [ 930.168413] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 930.173969] ? security_socket_sendmsg+0x94/0xc0 [ 930.178739] ? netlink_unicast+0x760/0x760 [ 930.183001] sock_sendmsg+0xd5/0x120 [ 930.186738] ___sys_sendmsg+0x7fd/0x930 [ 930.190737] ? find_held_lock+0x36/0x1c0 [ 930.194856] ? copy_msghdr_from_user+0x580/0x580 [ 930.199643] ? __fd_install+0x2b5/0x8f0 [ 930.203647] ? __fget_light+0x2e9/0x430 [ 930.207641] ? fget_raw+0x20/0x20 [ 930.207660] ? __might_fault+0x12b/0x1e0 [ 930.207677] ? lock_downgrade+0x900/0x900 [ 930.207697] ? lock_release+0xa00/0xa00 [ 930.207717] ? perf_trace_sched_process_exec+0x860/0x860 [ 930.215259] ? posix_ktime_get_ts+0x15/0x20 [ 930.215279] ? trace_hardirqs_off_caller+0x310/0x310 [ 930.215306] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 930.215322] ? sockfd_lookup_light+0xc5/0x160 [ 930.215342] __sys_sendmsg+0x11d/0x280 [ 930.252245] ? __ia32_sys_shutdown+0x80/0x80 01:08:53 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x4000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 930.256745] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 930.262302] ? put_timespec64+0x10f/0x1b0 [ 930.266478] ? do_syscall_64+0x9a/0x820 [ 930.270482] ? do_syscall_64+0x9a/0x820 [ 930.274493] ? trace_hardirqs_off_caller+0x310/0x310 [ 930.279631] __x64_sys_sendmsg+0x78/0xb0 [ 930.283722] do_syscall_64+0x1b9/0x820 [ 930.287632] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 930.293045] ? syscall_return_slowpath+0x5e0/0x5e0 [ 930.298007] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 930.302871] ? trace_hardirqs_on_caller+0x310/0x310 [ 930.307913] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 930.312954] ? prepare_exit_to_usermode+0x291/0x3b0 [ 930.318003] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 930.322876] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 930.328086] RIP: 0033:0x457569 [ 930.331303] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 930.350222] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 930.357952] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 930.365245] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 930.372525] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 930.379790] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 930.387065] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:53 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x74, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:53 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3200, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:53 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xffffff9e]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:53 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xf4010000) 01:08:53 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000]}, 0x2c) 01:08:53 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a000000007a000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 930.514071] ieee80211 phy320: Failed to add default virtual iface [ 930.523769] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 930.539072] CPU: 1 PID: 9129 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 930.546377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 930.555745] Call Trace: [ 930.558354] dump_stack+0x244/0x39d [ 930.562007] ? dump_stack_print_info.cold.1+0x20/0x20 [ 930.567227] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 930.572360] sysfs_warn_dup.cold.3+0x1c/0x2b [ 930.576792] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 930.582198] sysfs_create_link+0x65/0xc0 [ 930.586291] device_add+0x64a/0x18e0 [ 930.590027] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 930.594719] ? genl_rcv_msg+0xc6/0x168 [ 930.598637] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 930.603796] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 930.609205] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 930.614427] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 930.620003] wiphy_register+0x1a5b/0x2770 [ 930.624212] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 930.629198] ? rcu_read_lock_sched_held+0x14f/0x180 [ 930.634239] ? __kmalloc+0x5ee/0x760 [ 930.637976] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 930.643535] ? ieee80211_cs_list_valid+0x7c/0x440 [ 930.648403] ? ieee80211_register_hw+0xce9/0x3f10 [ 930.653281] ieee80211_register_hw+0x159b/0x3f10 [ 930.658075] ? ieee80211_ifa_changed+0xed0/0xed0 01:08:53 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x40030000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 930.662873] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 930.667936] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 930.674111] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 930.679678] ? vsnprintf+0x20d/0x1b60 [ 930.683503] ? pointer+0x900/0x900 [ 930.687079] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 930.692117] ? kvasprintf+0xee/0x150 [ 930.695856] ? bust_spinlocks+0xe0/0xe0 [ 930.699853] ? validate_nla+0x29a/0x1650 [ 930.703939] ? kasprintf+0xab/0xe0 [ 930.707504] ? kvasprintf_const+0x190/0x190 [ 930.707529] ? cap_capable+0x1f9/0x260 [ 930.707556] hwsim_new_radio_nl+0x7dc/0xb20 [ 930.707580] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 930.707596] ? __nla_parse+0x12c/0x3e0 [ 930.707628] genl_family_rcv_msg+0x8a7/0x11a0 [ 930.707655] ? genl_unregister_family+0x8a0/0x8a0 [ 930.715876] ? lock_downgrade+0x900/0x900 [ 930.715894] ? check_preemption_disabled+0x48/0x280 [ 930.715915] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 930.715933] ? kasan_check_read+0x11/0x20 [ 930.715948] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 01:08:53 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xf0]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 930.715965] ? rcu_softirq_qs+0x20/0x20 [ 930.716004] genl_rcv_msg+0xc6/0x168 [ 930.716023] netlink_rcv_skb+0x172/0x440 [ 930.774075] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 930.778881] ? netlink_ack+0xb80/0xb80 [ 930.782779] ? down_read+0x8d/0x120 [ 930.786445] genl_rcv+0x28/0x40 [ 930.789752] netlink_unicast+0x5a5/0x760 [ 930.793841] ? netlink_attachskb+0x9a0/0x9a0 [ 930.798273] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 930.803833] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 930.808874] netlink_sendmsg+0xa18/0xfc0 [ 930.812966] ? netlink_unicast+0x760/0x760 [ 930.817225] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 930.817246] ? apparmor_socket_sendmsg+0x29/0x30 [ 930.817263] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 930.817282] ? security_socket_sendmsg+0x94/0xc0 [ 930.817298] ? netlink_unicast+0x760/0x760 [ 930.817319] sock_sendmsg+0xd5/0x120 [ 930.817339] ___sys_sendmsg+0x7fd/0x930 [ 930.817356] ? find_held_lock+0x36/0x1c0 [ 930.817379] ? copy_msghdr_from_user+0x580/0x580 [ 930.827070] ? __fd_install+0x2b5/0x8f0 01:08:53 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x200000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 930.827101] ? __fget_light+0x2e9/0x430 [ 930.827118] ? fget_raw+0x20/0x20 [ 930.827137] ? __might_fault+0x12b/0x1e0 [ 930.827177] ? lock_downgrade+0x900/0x900 [ 930.827199] ? lock_release+0xa00/0xa00 [ 930.827215] ? perf_trace_sched_process_exec+0x860/0x860 [ 930.827233] ? posix_ktime_get_ts+0x15/0x20 [ 930.891627] ? trace_hardirqs_off_caller+0x310/0x310 [ 930.896766] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 930.902324] ? sockfd_lookup_light+0xc5/0x160 [ 930.906846] __sys_sendmsg+0x11d/0x280 [ 930.911291] ? __ia32_sys_shutdown+0x80/0x80 01:08:53 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffff]}, 0x2c) [ 930.915719] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 930.921292] ? put_timespec64+0x10f/0x1b0 [ 930.925471] ? do_syscall_64+0x9a/0x820 [ 930.929467] ? do_syscall_64+0x9a/0x820 [ 930.933475] ? trace_hardirqs_off_caller+0x310/0x310 [ 930.938609] __x64_sys_sendmsg+0x78/0xb0 [ 930.938630] do_syscall_64+0x1b9/0x820 [ 930.938646] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 930.938666] ? syscall_return_slowpath+0x5e0/0x5e0 [ 930.938689] ? trace_hardirqs_off_thunk+0x1a/0x1c 01:08:53 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x600]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 930.938710] ? trace_hardirqs_on_caller+0x310/0x310 [ 930.946677] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 930.971840] ? prepare_exit_to_usermode+0x291/0x3b0 [ 930.976886] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 930.981760] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 930.986969] RIP: 0033:0x457569 [ 930.990200] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 01:08:53 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xf0ffffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 931.009117] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 931.016864] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 931.024146] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 931.031455] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 931.038743] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 931.046026] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 931.146040] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 931.186800] CPU: 1 PID: 9169 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 931.194110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 931.203482] Call Trace: [ 931.206102] dump_stack+0x244/0x39d [ 931.209762] ? dump_stack_print_info.cold.1+0x20/0x20 [ 931.215007] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 931.220135] sysfs_warn_dup.cold.3+0x1c/0x2b [ 931.220156] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 931.220201] sysfs_create_link+0x65/0xc0 [ 931.229983] device_add+0x64a/0x18e0 [ 931.230000] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 931.230015] ? genl_rcv_msg+0xc6/0x168 [ 931.230037] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 931.246360] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 931.246380] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 931.246402] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 931.256884] wiphy_register+0x1a5b/0x2770 [ 931.256913] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 931.267650] ? rcu_read_lock_sched_held+0x14f/0x180 [ 931.267674] ? __kmalloc+0x5ee/0x760 [ 931.267695] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 931.276774] ? ieee80211_cs_list_valid+0x7c/0x440 [ 931.276793] ? ieee80211_register_hw+0xce9/0x3f10 [ 931.276815] ieee80211_register_hw+0x159b/0x3f10 [ 931.305544] ? ieee80211_ifa_changed+0xed0/0xed0 [ 931.310338] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 931.315394] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 931.321570] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 931.327131] ? vsnprintf+0x20d/0x1b60 [ 931.330971] ? pointer+0x900/0x900 [ 931.334515] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 931.339537] ? kvasprintf+0xee/0x150 [ 931.343267] ? bust_spinlocks+0xe0/0xe0 [ 931.347242] ? validate_nla+0x29a/0x1650 [ 931.351302] ? kasprintf+0xab/0xe0 [ 931.354836] ? kvasprintf_const+0x190/0x190 [ 931.359176] ? cap_capable+0x1f9/0x260 [ 931.363068] hwsim_new_radio_nl+0x7dc/0xb20 [ 931.367386] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 931.372578] ? __nla_parse+0x12c/0x3e0 [ 931.376472] genl_family_rcv_msg+0x8a7/0x11a0 [ 931.380970] ? genl_unregister_family+0x8a0/0x8a0 [ 931.385812] ? lock_downgrade+0x900/0x900 [ 931.389958] ? check_preemption_disabled+0x48/0x280 [ 931.394973] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 931.399897] ? kasan_check_read+0x11/0x20 [ 931.404038] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 931.409317] ? rcu_softirq_qs+0x20/0x20 [ 931.413336] genl_rcv_msg+0xc6/0x168 [ 931.417047] netlink_rcv_skb+0x172/0x440 [ 931.421143] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 931.425924] ? netlink_ack+0xb80/0xb80 [ 931.429820] ? down_read+0x8d/0x120 [ 931.433448] genl_rcv+0x28/0x40 [ 931.436722] netlink_unicast+0x5a5/0x760 [ 931.440797] ? netlink_attachskb+0x9a0/0x9a0 [ 931.445231] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 931.450777] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 931.455795] netlink_sendmsg+0xa18/0xfc0 [ 931.459858] ? netlink_unicast+0x760/0x760 [ 931.464088] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 931.469017] ? apparmor_socket_sendmsg+0x29/0x30 [ 931.473773] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 931.479313] ? security_socket_sendmsg+0x94/0xc0 [ 931.484075] ? netlink_unicast+0x760/0x760 [ 931.488314] sock_sendmsg+0xd5/0x120 [ 931.492024] ___sys_sendmsg+0x7fd/0x930 [ 931.495995] ? find_held_lock+0x36/0x1c0 [ 931.500102] ? copy_msghdr_from_user+0x580/0x580 [ 931.504855] ? __fd_install+0x2b5/0x8f0 [ 931.508830] ? __fget_light+0x2e9/0x430 [ 931.512801] ? fget_raw+0x20/0x20 [ 931.516253] ? __might_fault+0x12b/0x1e0 [ 931.520334] ? lock_downgrade+0x900/0x900 [ 931.524495] ? lock_release+0xa00/0xa00 [ 931.528463] ? perf_trace_sched_process_exec+0x860/0x860 [ 931.533922] ? posix_ktime_get_ts+0x15/0x20 [ 931.538257] ? trace_hardirqs_off_caller+0x310/0x310 [ 931.543366] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 931.548897] ? sockfd_lookup_light+0xc5/0x160 [ 931.553388] __sys_sendmsg+0x11d/0x280 [ 931.557281] ? __ia32_sys_shutdown+0x80/0x80 [ 931.561690] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 931.567226] ? put_timespec64+0x10f/0x1b0 [ 931.571377] ? do_syscall_64+0x9a/0x820 [ 931.575399] ? do_syscall_64+0x9a/0x820 [ 931.579388] ? trace_hardirqs_off_caller+0x310/0x310 [ 931.584504] __x64_sys_sendmsg+0x78/0xb0 [ 931.588568] do_syscall_64+0x1b9/0x820 [ 931.592451] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 931.597813] ? syscall_return_slowpath+0x5e0/0x5e0 [ 931.602738] ? trace_hardirqs_on_caller+0x310/0x310 [ 931.607748] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 931.612772] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 931.619432] ? __switch_to_asm+0x40/0x70 [ 931.623484] ? __switch_to_asm+0x34/0x70 [ 931.627546] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 931.632387] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 931.637572] RIP: 0033:0x457569 [ 931.640768] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 931.659681] RSP: 002b:00007fef3bf50c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 931.667385] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 931.674649] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 01:08:54 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x20db3, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:54 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000]}, 0x2c) 01:08:54 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xffffff7f]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:54 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000480000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:54 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x5000000) 01:08:54 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x600000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 931.681915] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 931.689460] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf516d4 [ 931.696723] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:54 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xb00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:54 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000]}, 0x2c) [ 931.862958] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 931.890952] CPU: 1 PID: 9194 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 931.898272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 931.907642] Call Trace: 01:08:54 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000040000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 931.910272] dump_stack+0x244/0x39d [ 931.913929] ? dump_stack_print_info.cold.1+0x20/0x20 [ 931.919149] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 931.924306] sysfs_warn_dup.cold.3+0x1c/0x2b [ 931.928758] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 931.934143] sysfs_create_link+0x65/0xc0 [ 931.938247] device_add+0x64a/0x18e0 [ 931.941979] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 931.946665] ? genl_rcv_msg+0xc6/0x168 [ 931.946697] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 931.946712] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 931.946737] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 931.955740] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 931.955768] wiphy_register+0x1a5b/0x2770 [ 931.955798] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 931.980972] ? rcu_read_lock_sched_held+0x14f/0x180 [ 931.986018] ? __kmalloc+0x5ee/0x760 [ 931.989759] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 931.995319] ? ieee80211_cs_list_valid+0x7c/0x440 [ 932.000206] ? ieee80211_register_hw+0xce9/0x3f10 [ 932.005080] ieee80211_register_hw+0x159b/0x3f10 01:08:54 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xffffff7f00000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 932.009875] ? ieee80211_ifa_changed+0xed0/0xed0 [ 932.014675] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 932.019753] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 932.025923] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 932.031488] ? vsnprintf+0x20d/0x1b60 [ 932.035320] ? pointer+0x900/0x900 [ 932.038889] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 932.043930] ? kvasprintf+0xee/0x150 [ 932.047664] ? bust_spinlocks+0xe0/0xe0 [ 932.051673] ? validate_nla+0x29a/0x1650 [ 932.055755] ? kasprintf+0xab/0xe0 [ 932.059314] ? kvasprintf_const+0x190/0x190 [ 932.063662] ? cap_capable+0x1f9/0x260 [ 932.063697] hwsim_new_radio_nl+0x7dc/0xb20 [ 932.063725] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 932.071933] ? __nla_parse+0x12c/0x3e0 [ 932.071967] genl_family_rcv_msg+0x8a7/0x11a0 [ 932.071993] ? genl_unregister_family+0x8a0/0x8a0 [ 932.072013] ? lock_downgrade+0x900/0x900 [ 932.072030] ? check_preemption_disabled+0x48/0x280 [ 932.072049] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 932.105272] ? kasan_check_read+0x11/0x20 [ 932.109476] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 932.114756] ? rcu_softirq_qs+0x20/0x20 [ 932.118742] genl_rcv_msg+0xc6/0x168 [ 932.122508] netlink_rcv_skb+0x172/0x440 [ 932.126567] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 932.131330] ? netlink_ack+0xb80/0xb80 [ 932.135230] ? down_read+0x8d/0x120 [ 932.138859] genl_rcv+0x28/0x40 [ 932.142135] netlink_unicast+0x5a5/0x760 [ 932.146218] ? netlink_attachskb+0x9a0/0x9a0 [ 932.150649] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 932.156219] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 932.161236] netlink_sendmsg+0xa18/0xfc0 [ 932.165299] ? netlink_unicast+0x760/0x760 [ 932.169531] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 932.174458] ? apparmor_socket_sendmsg+0x29/0x30 [ 932.179253] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 932.184787] ? security_socket_sendmsg+0x94/0xc0 [ 932.189538] ? netlink_unicast+0x760/0x760 [ 932.193782] sock_sendmsg+0xd5/0x120 [ 932.197507] ___sys_sendmsg+0x7fd/0x930 [ 932.201481] ? find_held_lock+0x36/0x1c0 [ 932.205554] ? copy_msghdr_from_user+0x580/0x580 [ 932.210333] ? __fd_install+0x2b5/0x8f0 [ 932.214326] ? __fget_light+0x2e9/0x430 [ 932.218298] ? fget_raw+0x20/0x20 [ 932.221746] ? __might_fault+0x12b/0x1e0 [ 932.225818] ? lock_downgrade+0x900/0x900 [ 932.229979] ? lock_release+0xa00/0xa00 [ 932.233948] ? perf_trace_sched_process_exec+0x860/0x860 [ 932.239393] ? posix_ktime_get_ts+0x15/0x20 [ 932.243724] ? trace_hardirqs_off_caller+0x310/0x310 [ 932.248843] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 932.254377] ? sockfd_lookup_light+0xc5/0x160 [ 932.258873] __sys_sendmsg+0x11d/0x280 [ 932.262756] ? __ia32_sys_shutdown+0x80/0x80 [ 932.267180] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 932.272716] ? put_timespec64+0x10f/0x1b0 [ 932.276866] ? do_syscall_64+0x9a/0x820 [ 932.280848] ? do_syscall_64+0x9a/0x820 [ 932.284837] ? trace_hardirqs_off_caller+0x310/0x310 [ 932.289941] __x64_sys_sendmsg+0x78/0xb0 [ 932.294010] do_syscall_64+0x1b9/0x820 [ 932.297908] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 932.303271] ? syscall_return_slowpath+0x5e0/0x5e0 [ 932.308204] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 932.313055] ? trace_hardirqs_on_caller+0x310/0x310 [ 932.318098] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 932.323124] ? prepare_exit_to_usermode+0x291/0x3b0 [ 932.328137] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 932.332997] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 932.338196] RIP: 0033:0x457569 [ 932.341385] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 01:08:55 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xffffff7f00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:55 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x2000000000000000) [ 932.360280] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 932.367982] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 932.375248] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 932.382512] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 932.389787] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 932.397208] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:55 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x20000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:55 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xf00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:55 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, 0x2c) 01:08:55 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000fffffffd0000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:55 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x97ffffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:55 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x2c) 01:08:55 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x10000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:55 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xf0ffffffffffff) [ 932.692790] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 932.723553] CPU: 0 PID: 9246 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 932.730865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 932.740236] Call Trace: [ 932.742856] dump_stack+0x244/0x39d [ 932.746514] ? dump_stack_print_info.cold.1+0x20/0x20 [ 932.751740] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 932.756871] sysfs_warn_dup.cold.3+0x1c/0x2b [ 932.761306] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 932.766695] sysfs_create_link+0x65/0xc0 [ 932.770783] device_add+0x64a/0x18e0 [ 932.774521] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 932.779712] ? genl_rcv_msg+0xc6/0x168 [ 932.783633] ? get_device_parent.isra.25+0x5a0/0x5a0 01:08:55 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x1000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 932.788756] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 932.794144] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 932.799385] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 932.804955] wiphy_register+0x1a5b/0x2770 [ 932.809141] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 932.814123] ? rcu_read_lock_sched_held+0x14f/0x180 [ 932.819209] ? __kmalloc+0x5ee/0x760 [ 932.822952] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 932.828513] ? ieee80211_cs_list_valid+0x7c/0x440 [ 932.833377] ? ieee80211_register_hw+0xce9/0x3f10 [ 932.838241] ieee80211_register_hw+0x159b/0x3f10 [ 932.843029] ? ieee80211_ifa_changed+0xed0/0xed0 [ 932.847831] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 932.852974] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 932.859145] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 932.864766] ? vsnprintf+0x20d/0x1b60 [ 932.868593] ? pointer+0x900/0x900 [ 932.872212] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 932.877259] ? kvasprintf+0xee/0x150 [ 932.881009] ? bust_spinlocks+0xe0/0xe0 [ 932.885015] ? validate_nla+0x29a/0x1650 [ 932.889115] ? kasprintf+0xab/0xe0 01:08:55 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0xf000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 932.892679] ? kvasprintf_const+0x190/0x190 [ 932.897029] ? cap_capable+0x1f9/0x260 [ 932.900942] hwsim_new_radio_nl+0x7dc/0xb20 [ 932.905300] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 932.910682] ? __nla_parse+0x12c/0x3e0 [ 932.914613] genl_family_rcv_msg+0x8a7/0x11a0 [ 932.919141] ? genl_unregister_family+0x8a0/0x8a0 [ 932.924035] ? lock_downgrade+0x900/0x900 [ 932.928221] ? check_preemption_disabled+0x48/0x280 [ 932.933266] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 932.938221] ? kasan_check_read+0x11/0x20 01:08:55 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x1200]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 932.942392] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 932.947686] ? rcu_softirq_qs+0x20/0x20 [ 932.951703] genl_rcv_msg+0xc6/0x168 [ 932.955441] netlink_rcv_skb+0x172/0x440 [ 932.959525] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 932.959544] ? netlink_ack+0xb80/0xb80 [ 932.959559] ? down_read+0x8d/0x120 [ 932.959587] genl_rcv+0x28/0x40 [ 932.959602] netlink_unicast+0x5a5/0x760 [ 932.959625] ? netlink_attachskb+0x9a0/0x9a0 [ 932.959643] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 932.959660] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 932.959681] netlink_sendmsg+0xa18/0xfc0 [ 932.959704] ? netlink_unicast+0x760/0x760 [ 932.968363] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 933.007522] ? apparmor_socket_sendmsg+0x29/0x30 [ 933.012299] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 933.017860] ? security_socket_sendmsg+0x94/0xc0 [ 933.022639] ? netlink_unicast+0x760/0x760 [ 933.026903] sock_sendmsg+0xd5/0x120 [ 933.030676] ___sys_sendmsg+0x7fd/0x930 [ 933.034690] ? find_held_lock+0x36/0x1c0 [ 933.038780] ? copy_msghdr_from_user+0x580/0x580 01:08:55 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x9]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 933.043553] ? __fd_install+0x2b5/0x8f0 [ 933.047556] ? __fget_light+0x2e9/0x430 [ 933.051609] ? fget_raw+0x20/0x20 [ 933.055084] ? __might_fault+0x12b/0x1e0 [ 933.055103] ? lock_downgrade+0x900/0x900 [ 933.055124] ? lock_release+0xa00/0xa00 [ 933.055140] ? perf_trace_sched_process_exec+0x860/0x860 [ 933.055154] ? posix_ktime_get_ts+0x15/0x20 [ 933.055194] ? trace_hardirqs_off_caller+0x310/0x310 [ 933.063415] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 933.063432] ? sockfd_lookup_light+0xc5/0x160 [ 933.063453] __sys_sendmsg+0x11d/0x280 [ 933.063474] ? __ia32_sys_shutdown+0x80/0x80 [ 933.063493] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 933.063514] ? put_timespec64+0x10f/0x1b0 [ 933.110435] ? do_syscall_64+0x9a/0x820 [ 933.114433] ? do_syscall_64+0x9a/0x820 [ 933.118438] ? trace_hardirqs_off_caller+0x310/0x310 [ 933.123572] __x64_sys_sendmsg+0x78/0xb0 [ 933.127661] do_syscall_64+0x1b9/0x820 [ 933.131574] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 933.136952] ? syscall_return_slowpath+0x5e0/0x5e0 [ 933.141889] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 933.146848] ? trace_hardirqs_on_caller+0x310/0x310 [ 933.151860] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 933.156875] ? prepare_exit_to_usermode+0x291/0x3b0 [ 933.161892] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 933.166735] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 933.171922] RIP: 0033:0x457569 [ 933.175108] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 933.194002] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 933.201712] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 933.208999] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 933.216290] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 933.223552] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 933.230817] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:56 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xad1a0000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:56 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x3f00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:56 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000007000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:56 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11]}, 0x2c) 01:08:56 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x16b6, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:56 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xe0000000) 01:08:56 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x13000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 933.406602] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 933.455183] CPU: 1 PID: 9293 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 933.462496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 933.471861] Call Trace: [ 933.474477] dump_stack+0x244/0x39d [ 933.478138] ? dump_stack_print_info.cold.1+0x20/0x20 [ 933.483387] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 933.488527] sysfs_warn_dup.cold.3+0x1c/0x2b [ 933.492962] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 933.498350] sysfs_create_link+0x65/0xc0 [ 933.502439] device_add+0x64a/0x18e0 [ 933.506194] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 933.506210] ? genl_rcv_msg+0xc6/0x168 [ 933.506235] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 933.506250] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 933.506269] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 933.506289] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 933.514865] wiphy_register+0x1a5b/0x2770 [ 933.514898] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 933.514926] ? rcu_read_lock_sched_held+0x14f/0x180 [ 933.514945] ? __kmalloc+0x5ee/0x760 01:08:56 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000060000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 933.553938] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 933.559496] ? ieee80211_cs_list_valid+0x7c/0x440 [ 933.564357] ? ieee80211_register_hw+0xce9/0x3f10 [ 933.569230] ieee80211_register_hw+0x159b/0x3f10 [ 933.574023] ? ieee80211_ifa_changed+0xed0/0xed0 [ 933.578818] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 933.583874] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 933.590048] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 933.595608] ? vsnprintf+0x20d/0x1b60 [ 933.599445] ? pointer+0x900/0x900 [ 933.603018] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 933.608057] ? kvasprintf+0xee/0x150 [ 933.611798] ? bust_spinlocks+0xe0/0xe0 [ 933.615800] ? validate_nla+0x29a/0x1650 [ 933.619888] ? kasprintf+0xab/0xe0 [ 933.623443] ? kvasprintf_const+0x190/0x190 [ 933.627788] ? cap_capable+0x1f9/0x260 [ 933.631723] hwsim_new_radio_nl+0x7dc/0xb20 [ 933.636090] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 933.641304] ? __nla_parse+0x12c/0x3e0 [ 933.645235] genl_family_rcv_msg+0x8a7/0x11a0 [ 933.649746] ? genl_unregister_family+0x8a0/0x8a0 [ 933.654589] ? lock_downgrade+0x900/0x900 [ 933.658744] ? check_preemption_disabled+0x48/0x280 [ 933.663762] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 933.668691] ? kasan_check_read+0x11/0x20 [ 933.672844] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 933.678119] ? rcu_softirq_qs+0x20/0x20 [ 933.682142] genl_rcv_msg+0xc6/0x168 [ 933.685890] netlink_rcv_skb+0x172/0x440 [ 933.689963] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 933.694738] ? netlink_ack+0xb80/0xb80 [ 933.698634] ? down_read+0x8d/0x120 [ 933.702288] genl_rcv+0x28/0x40 [ 933.705575] netlink_unicast+0x5a5/0x760 [ 933.709791] ? netlink_attachskb+0x9a0/0x9a0 [ 933.714236] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 933.719775] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 933.724791] netlink_sendmsg+0xa18/0xfc0 [ 933.728852] ? netlink_unicast+0x760/0x760 [ 933.733095] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 933.738021] ? apparmor_socket_sendmsg+0x29/0x30 [ 933.742773] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 933.748318] ? security_socket_sendmsg+0x94/0xc0 [ 933.753073] ? netlink_unicast+0x760/0x760 [ 933.757317] sock_sendmsg+0xd5/0x120 [ 933.761042] ___sys_sendmsg+0x7fd/0x930 [ 933.765013] ? find_held_lock+0x36/0x1c0 [ 933.769085] ? copy_msghdr_from_user+0x580/0x580 [ 933.773866] ? __fd_install+0x2b5/0x8f0 [ 933.777896] ? __fget_light+0x2e9/0x430 [ 933.781870] ? fget_raw+0x20/0x20 [ 933.785322] ? __might_fault+0x12b/0x1e0 [ 933.789390] ? lock_downgrade+0x900/0x900 [ 933.793551] ? lock_release+0xa00/0xa00 [ 933.797529] ? perf_trace_sched_process_exec+0x860/0x860 [ 933.802987] ? posix_ktime_get_ts+0x15/0x20 [ 933.807310] ? trace_hardirqs_off_caller+0x310/0x310 [ 933.812417] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 933.817952] ? sockfd_lookup_light+0xc5/0x160 [ 933.822446] __sys_sendmsg+0x11d/0x280 [ 933.826330] ? __ia32_sys_shutdown+0x80/0x80 [ 933.830735] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 933.836272] ? put_timespec64+0x10f/0x1b0 [ 933.840420] ? do_syscall_64+0x9a/0x820 [ 933.844390] ? do_syscall_64+0x9a/0x820 [ 933.848364] ? trace_hardirqs_off_caller+0x310/0x310 [ 933.853470] __x64_sys_sendmsg+0x78/0xb0 [ 933.857536] do_syscall_64+0x1b9/0x820 [ 933.861420] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 933.866781] ? syscall_return_slowpath+0x5e0/0x5e0 [ 933.871705] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 933.876556] ? trace_hardirqs_on_caller+0x310/0x310 [ 933.881592] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 933.886662] ? prepare_exit_to_usermode+0x291/0x3b0 [ 933.891700] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 933.896542] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 933.901766] RIP: 0033:0x457569 [ 933.904956] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 933.923873] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 933.931623] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 933.938955] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 933.946240] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:08:56 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf0ffffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:56 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3401000000000000]}, 0x2c) [ 933.953525] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 933.960809] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:56 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x7a00, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:56 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x600]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:56 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x9000000) 01:08:56 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000400000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:57 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000]}, 0x2c) [ 934.162752] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 934.191983] CPU: 0 PID: 9326 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 934.199296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 934.208775] Call Trace: [ 934.211390] dump_stack+0x244/0x39d [ 934.215052] ? dump_stack_print_info.cold.1+0x20/0x20 [ 934.220293] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 934.225440] sysfs_warn_dup.cold.3+0x1c/0x2b [ 934.229869] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 934.235343] sysfs_create_link+0x65/0xc0 [ 934.239434] device_add+0x64a/0x18e0 [ 934.243185] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 934.243201] ? genl_rcv_msg+0xc6/0x168 [ 934.243226] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 934.243245] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe 01:08:57 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 934.251813] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 934.251832] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 934.251860] wiphy_register+0x1a5b/0x2770 [ 934.251891] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 934.251919] ? rcu_read_lock_sched_held+0x14f/0x180 [ 934.251938] ? __kmalloc+0x5ee/0x760 [ 934.290947] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 934.296507] ? ieee80211_cs_list_valid+0x7c/0x440 [ 934.301374] ? ieee80211_register_hw+0xce9/0x3f10 [ 934.306251] ieee80211_register_hw+0x159b/0x3f10 [ 934.311041] ? ieee80211_ifa_changed+0xed0/0xed0 [ 934.315838] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 934.320901] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 934.327074] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 934.332646] ? vsnprintf+0x20d/0x1b60 [ 934.336487] ? pointer+0x900/0x900 [ 934.340062] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 934.345101] ? kvasprintf+0xee/0x150 [ 934.348824] ? bust_spinlocks+0xe0/0xe0 [ 934.352931] ? validate_nla+0x29a/0x1650 [ 934.356990] ? kasprintf+0xab/0xe0 [ 934.360527] ? kvasprintf_const+0x190/0x190 [ 934.364849] ? cap_capable+0x1f9/0x260 [ 934.368777] hwsim_new_radio_nl+0x7dc/0xb20 [ 934.373100] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 934.378299] ? __nla_parse+0x12c/0x3e0 [ 934.382218] genl_family_rcv_msg+0x8a7/0x11a0 [ 934.386716] ? genl_unregister_family+0x8a0/0x8a0 [ 934.391557] ? lock_downgrade+0x900/0x900 [ 934.395704] ? check_preemption_disabled+0x48/0x280 [ 934.400718] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 934.405702] ? kasan_check_read+0x11/0x20 [ 934.409899] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 934.415260] ? rcu_softirq_qs+0x20/0x20 [ 934.419246] genl_rcv_msg+0xc6/0x168 [ 934.422970] netlink_rcv_skb+0x172/0x440 [ 934.427039] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 934.431872] ? netlink_ack+0xb80/0xb80 [ 934.435755] ? down_read+0x8d/0x120 [ 934.439383] genl_rcv+0x28/0x40 [ 934.442660] netlink_unicast+0x5a5/0x760 [ 934.446722] ? netlink_attachskb+0x9a0/0x9a0 [ 934.451129] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 934.456662] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 934.461681] netlink_sendmsg+0xa18/0xfc0 [ 934.465784] ? netlink_unicast+0x760/0x760 [ 934.470015] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 934.474941] ? apparmor_socket_sendmsg+0x29/0x30 [ 934.479693] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 934.485227] ? security_socket_sendmsg+0x94/0xc0 [ 934.489991] ? netlink_unicast+0x760/0x760 [ 934.494241] sock_sendmsg+0xd5/0x120 [ 934.497953] ___sys_sendmsg+0x7fd/0x930 [ 934.501936] ? find_held_lock+0x36/0x1c0 [ 934.506009] ? copy_msghdr_from_user+0x580/0x580 [ 934.510884] ? __fd_install+0x2b5/0x8f0 [ 934.514864] ? __fget_light+0x2e9/0x430 [ 934.518871] ? fget_raw+0x20/0x20 [ 934.522325] ? __might_fault+0x12b/0x1e0 [ 934.526383] ? lock_downgrade+0x900/0x900 [ 934.530528] ? lock_release+0xa00/0xa00 [ 934.534497] ? perf_trace_sched_process_exec+0x860/0x860 [ 934.539942] ? posix_ktime_get_ts+0x15/0x20 [ 934.544263] ? trace_hardirqs_off_caller+0x310/0x310 [ 934.549368] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 934.554901] ? sockfd_lookup_light+0xc5/0x160 [ 934.559399] __sys_sendmsg+0x11d/0x280 [ 934.563287] ? __ia32_sys_shutdown+0x80/0x80 [ 934.567702] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 934.573237] ? put_timespec64+0x10f/0x1b0 [ 934.577387] ? do_syscall_64+0x9a/0x820 [ 934.581356] ? do_syscall_64+0x9a/0x820 [ 934.585333] ? trace_hardirqs_off_caller+0x310/0x310 [ 934.590437] __x64_sys_sendmsg+0x78/0xb0 [ 934.594496] do_syscall_64+0x1b9/0x820 [ 934.598377] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 934.603738] ? syscall_return_slowpath+0x5e0/0x5e0 [ 934.608664] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 934.613505] ? trace_hardirqs_on_caller+0x310/0x310 [ 934.618530] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 934.623542] ? prepare_exit_to_usermode+0x291/0x3b0 [ 934.628556] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 934.633397] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 934.638578] RIP: 0033:0x457569 [ 934.641777] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 934.660675] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 934.668377] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 934.675683] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 934.682949] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 934.690216] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 934.697479] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 934.759999] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 934.789142] CPU: 1 PID: 9349 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 934.796465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 934.805828] Call Trace: [ 934.808444] dump_stack+0x244/0x39d [ 934.812105] ? dump_stack_print_info.cold.1+0x20/0x20 [ 934.817337] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 934.822473] sysfs_warn_dup.cold.3+0x1c/0x2b [ 934.826903] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 934.832289] sysfs_create_link+0x65/0xc0 [ 934.836374] device_add+0x64a/0x18e0 [ 934.840109] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 934.844793] ? genl_rcv_msg+0xc6/0x168 [ 934.844817] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 934.844837] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 934.859221] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 934.864443] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 934.870015] wiphy_register+0x1a5b/0x2770 [ 934.874215] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 934.879197] ? rcu_read_lock_sched_held+0x14f/0x180 [ 934.884242] ? __kmalloc+0x5ee/0x760 [ 934.887982] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 934.893547] ? ieee80211_cs_list_valid+0x7c/0x440 [ 934.898418] ? ieee80211_register_hw+0xce9/0x3f10 [ 934.903293] ieee80211_register_hw+0x159b/0x3f10 01:08:57 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1f00000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:57 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x800000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:57 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xfe800000) 01:08:57 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1200]}, 0x2c) 01:08:57 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000680000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 934.908093] ? ieee80211_ifa_changed+0xed0/0xed0 [ 934.913403] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 934.918461] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 934.924631] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 934.930215] ? vsnprintf+0x20d/0x1b60 [ 934.934051] ? pointer+0x900/0x900 [ 934.937631] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 934.942697] ? kvasprintf+0xee/0x150 [ 934.946434] ? bust_spinlocks+0xe0/0xe0 [ 934.950435] ? validate_nla+0x29a/0x1650 [ 934.954519] ? kasprintf+0xab/0xe0 01:08:57 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1200000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 934.958080] ? kvasprintf_const+0x190/0x190 [ 934.962424] ? cap_capable+0x1f9/0x260 [ 934.966347] hwsim_new_radio_nl+0x7dc/0xb20 [ 934.970701] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 934.970718] ? __nla_parse+0x12c/0x3e0 [ 934.970752] genl_family_rcv_msg+0x8a7/0x11a0 [ 934.970779] ? genl_unregister_family+0x8a0/0x8a0 [ 934.970799] ? lock_downgrade+0x900/0x900 [ 934.970816] ? check_preemption_disabled+0x48/0x280 [ 934.970835] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 934.979914] ? kasan_check_read+0x11/0x20 [ 934.979930] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 934.979945] ? rcu_softirq_qs+0x20/0x20 [ 934.979989] genl_rcv_msg+0xc6/0x168 [ 935.020525] netlink_rcv_skb+0x172/0x440 [ 935.024610] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 935.029389] ? netlink_ack+0xb80/0xb80 [ 935.033301] ? down_read+0x8d/0x120 [ 935.036964] genl_rcv+0x28/0x40 [ 935.040274] netlink_unicast+0x5a5/0x760 [ 935.044370] ? netlink_attachskb+0x9a0/0x9a0 [ 935.048814] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 935.054379] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 935.059426] netlink_sendmsg+0xa18/0xfc0 [ 935.063516] ? netlink_unicast+0x760/0x760 [ 935.067767] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 935.072718] ? apparmor_socket_sendmsg+0x29/0x30 [ 935.077495] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 935.083051] ? security_socket_sendmsg+0x94/0xc0 [ 935.083068] ? netlink_unicast+0x760/0x760 [ 935.083089] sock_sendmsg+0xd5/0x120 [ 935.083108] ___sys_sendmsg+0x7fd/0x930 [ 935.083125] ? find_held_lock+0x36/0x1c0 [ 935.083145] ? copy_msghdr_from_user+0x580/0x580 [ 935.095890] ? __fd_install+0x2b5/0x8f0 [ 935.095920] ? __fget_light+0x2e9/0x430 [ 935.095938] ? fget_raw+0x20/0x20 [ 935.095957] ? __might_fault+0x12b/0x1e0 [ 935.095976] ? lock_downgrade+0x900/0x900 [ 935.095997] ? lock_release+0xa00/0xa00 [ 935.096012] ? perf_trace_sched_process_exec+0x860/0x860 [ 935.096030] ? posix_ktime_get_ts+0x15/0x20 [ 935.142189] ? trace_hardirqs_off_caller+0x310/0x310 [ 935.147301] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 935.152844] ? sockfd_lookup_light+0xc5/0x160 [ 935.157368] __sys_sendmsg+0x11d/0x280 [ 935.161272] ? __ia32_sys_shutdown+0x80/0x80 [ 935.165681] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 935.171233] ? put_timespec64+0x10f/0x1b0 [ 935.175434] ? do_syscall_64+0x9a/0x820 [ 935.179415] ? do_syscall_64+0x9a/0x820 [ 935.183394] ? trace_hardirqs_off_caller+0x310/0x310 [ 935.188513] __x64_sys_sendmsg+0x78/0xb0 [ 935.192585] do_syscall_64+0x1b9/0x820 [ 935.196476] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 935.201851] ? syscall_return_slowpath+0x5e0/0x5e0 [ 935.206801] ? trace_hardirqs_on_caller+0x310/0x310 [ 935.211848] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 935.216864] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 935.223545] ? __switch_to_asm+0x40/0x70 [ 935.227614] ? __switch_to_asm+0x34/0x70 [ 935.231693] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 935.236557] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 935.241744] RIP: 0033:0x457569 01:08:58 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xad0d020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:58 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1100000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 935.244991] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 935.263903] RSP: 002b:00007fef3bf50c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 935.271630] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 935.278911] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 935.286202] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 935.293479] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf516d4 [ 935.300750] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:58 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xa00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:58 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a00000000ffffff80000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:58 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x300) [ 935.419217] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:08:58 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1100]}, 0x2c) [ 935.468100] CPU: 1 PID: 9382 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 935.475439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 935.484812] Call Trace: [ 935.487423] dump_stack+0x244/0x39d [ 935.491085] ? dump_stack_print_info.cold.1+0x20/0x20 [ 935.496305] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 935.501439] sysfs_warn_dup.cold.3+0x1c/0x2b [ 935.505873] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 935.511265] sysfs_create_link+0x65/0xc0 [ 935.515346] device_add+0x64a/0x18e0 [ 935.519070] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 935.523757] ? genl_rcv_msg+0xc6/0x168 [ 935.527665] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 935.532792] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 935.538196] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 935.543412] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 935.549091] wiphy_register+0x1a5b/0x2770 [ 935.549122] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 935.558234] ? rcu_read_lock_sched_held+0x14f/0x180 [ 935.558252] ? __kmalloc+0x5ee/0x760 [ 935.558271] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 935.558295] ? ieee80211_cs_list_valid+0x7c/0x440 [ 935.577411] ? ieee80211_register_hw+0xce9/0x3f10 [ 935.582276] ieee80211_register_hw+0x159b/0x3f10 [ 935.582310] ? ieee80211_ifa_changed+0xed0/0xed0 [ 935.582341] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 935.582373] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 935.591892] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 935.591910] ? vsnprintf+0x20d/0x1b60 [ 935.591936] ? pointer+0x900/0x900 01:08:58 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x33, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:58 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x13]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 935.591962] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 935.591979] ? kvasprintf+0xee/0x150 [ 935.591995] ? bust_spinlocks+0xe0/0xe0 [ 935.592016] ? validate_nla+0x29a/0x1650 [ 935.632862] ? kasprintf+0xab/0xe0 [ 935.636429] ? kvasprintf_const+0x190/0x190 [ 935.640774] ? cap_capable+0x1f9/0x260 [ 935.644715] hwsim_new_radio_nl+0x7dc/0xb20 [ 935.649067] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 935.654286] ? __nla_parse+0x12c/0x3e0 [ 935.658226] genl_family_rcv_msg+0x8a7/0x11a0 [ 935.662750] ? genl_unregister_family+0x8a0/0x8a0 01:08:58 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x10]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 935.667613] ? lock_downgrade+0x900/0x900 [ 935.671787] ? check_preemption_disabled+0x48/0x280 [ 935.676828] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 935.681779] ? kasan_check_read+0x11/0x20 [ 935.685948] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 935.691255] ? rcu_softirq_qs+0x20/0x20 [ 935.695275] genl_rcv_msg+0xc6/0x168 [ 935.699013] netlink_rcv_skb+0x172/0x440 [ 935.703094] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 935.707869] ? netlink_ack+0xb80/0xb80 [ 935.711771] ? down_read+0x8d/0x120 [ 935.715443] genl_rcv+0x28/0x40 [ 935.718746] netlink_unicast+0x5a5/0x760 [ 935.722835] ? netlink_attachskb+0x9a0/0x9a0 [ 935.722855] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 935.722872] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 935.722895] netlink_sendmsg+0xa18/0xfc0 [ 935.722921] ? netlink_unicast+0x760/0x760 [ 935.722942] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 935.732892] ? apparmor_socket_sendmsg+0x29/0x30 [ 935.732910] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 935.732928] ? security_socket_sendmsg+0x94/0xc0 01:08:58 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3f00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 935.732944] ? netlink_unicast+0x760/0x760 [ 935.732965] sock_sendmsg+0xd5/0x120 [ 935.732984] ___sys_sendmsg+0x7fd/0x930 [ 935.733001] ? find_held_lock+0x36/0x1c0 [ 935.733023] ? copy_msghdr_from_user+0x580/0x580 [ 935.733041] ? __fd_install+0x2b5/0x8f0 [ 935.791091] ? __fget_light+0x2e9/0x430 [ 935.795088] ? fget_raw+0x20/0x20 [ 935.798561] ? __might_fault+0x12b/0x1e0 [ 935.802646] ? lock_downgrade+0x900/0x900 [ 935.806824] ? lock_release+0xa00/0xa00 [ 935.810815] ? perf_trace_sched_process_exec+0x860/0x860 01:08:58 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x5]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 935.816276] ? posix_ktime_get_ts+0x15/0x20 [ 935.816297] ? trace_hardirqs_off_caller+0x310/0x310 [ 935.825730] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 935.831293] ? sockfd_lookup_light+0xc5/0x160 [ 935.835816] __sys_sendmsg+0x11d/0x280 [ 935.839728] ? __ia32_sys_shutdown+0x80/0x80 [ 935.844187] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 935.849750] ? put_timespec64+0x10f/0x1b0 [ 935.853924] ? do_syscall_64+0x9a/0x820 [ 935.857920] ? do_syscall_64+0x9a/0x820 [ 935.861923] ? trace_hardirqs_off_caller+0x310/0x310 [ 935.867055] __x64_sys_sendmsg+0x78/0xb0 [ 935.867076] do_syscall_64+0x1b9/0x820 [ 935.867092] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 935.867112] ? syscall_return_slowpath+0x5e0/0x5e0 [ 935.867128] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 935.867147] ? trace_hardirqs_on_caller+0x310/0x310 [ 935.867186] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 935.867206] ? prepare_exit_to_usermode+0x291/0x3b0 [ 935.875186] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 935.875212] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 935.875225] RIP: 0033:0x457569 01:08:58 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xffffff7f]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 935.875243] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 935.875252] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 935.875268] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 935.875278] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 935.875288] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 935.875302] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 935.937599] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 936.051452] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 936.070058] CPU: 1 PID: 9382 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 936.077360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 936.086724] Call Trace: [ 936.089346] dump_stack+0x244/0x39d [ 936.093007] ? dump_stack_print_info.cold.1+0x20/0x20 [ 936.098226] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 936.098257] sysfs_warn_dup.cold.3+0x1c/0x2b [ 936.098280] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 936.098303] sysfs_create_link+0x65/0xc0 [ 936.107879] device_add+0x64a/0x18e0 [ 936.107896] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 936.107911] ? genl_rcv_msg+0xc6/0x168 [ 936.107934] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 936.107954] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 936.117384] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 936.117405] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 936.117432] wiphy_register+0x1a5b/0x2770 [ 936.117461] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 936.125861] ? rcu_read_lock_sched_held+0x14f/0x180 [ 936.125879] ? __kmalloc+0x5ee/0x760 [ 936.125898] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 936.125921] ? ieee80211_cs_list_valid+0x7c/0x440 [ 936.134914] ? ieee80211_register_hw+0xce9/0x3f10 [ 936.134939] ieee80211_register_hw+0x159b/0x3f10 [ 936.134971] ? ieee80211_ifa_changed+0xed0/0xed0 [ 936.135002] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 936.145558] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 936.145577] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 936.145594] ? vsnprintf+0x20d/0x1b60 [ 936.145617] ? pointer+0x900/0x900 [ 936.155328] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 936.155346] ? kvasprintf+0xee/0x150 [ 936.155363] ? bust_spinlocks+0xe0/0xe0 [ 936.155384] ? validate_nla+0x29a/0x1650 [ 936.155404] ? kasprintf+0xab/0xe0 [ 936.238122] ? kvasprintf_const+0x190/0x190 [ 936.242498] ? cap_capable+0x1f9/0x260 [ 936.246406] hwsim_new_radio_nl+0x7dc/0xb20 [ 936.250742] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 936.255926] ? __nla_parse+0x12c/0x3e0 [ 936.259816] genl_family_rcv_msg+0x8a7/0x11a0 [ 936.264316] ? genl_unregister_family+0x8a0/0x8a0 [ 936.269176] ? lock_downgrade+0x900/0x900 [ 936.273327] ? check_preemption_disabled+0x48/0x280 [ 936.278343] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 936.283271] ? kasan_check_read+0x11/0x20 [ 936.287416] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 936.292699] ? rcu_softirq_qs+0x20/0x20 [ 936.296693] genl_rcv_msg+0xc6/0x168 [ 936.300406] netlink_rcv_skb+0x172/0x440 [ 936.304465] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 936.309226] ? netlink_ack+0xb80/0xb80 [ 936.313111] ? down_read+0x8d/0x120 [ 936.316762] genl_rcv+0x28/0x40 [ 936.320055] netlink_unicast+0x5a5/0x760 [ 936.324121] ? netlink_attachskb+0x9a0/0x9a0 [ 936.328527] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 936.334064] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 936.339081] netlink_sendmsg+0xa18/0xfc0 [ 936.343157] ? netlink_unicast+0x760/0x760 [ 936.347423] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 936.352361] ? apparmor_socket_sendmsg+0x29/0x30 [ 936.357128] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 936.362682] ? security_socket_sendmsg+0x94/0xc0 [ 936.367491] ? netlink_unicast+0x760/0x760 [ 936.371727] sock_sendmsg+0xd5/0x120 [ 936.375453] ___sys_sendmsg+0x7fd/0x930 [ 936.379463] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 936.384392] ? kasan_check_read+0x11/0x20 [ 936.388540] ? copy_msghdr_from_user+0x580/0x580 [ 936.393299] ? __fget_light+0x2e9/0x430 [ 936.397286] ? fget_raw+0x20/0x20 [ 936.400755] ? __might_fault+0x12b/0x1e0 [ 936.404816] ? lock_downgrade+0x900/0x900 [ 936.408974] ? lock_release+0xa00/0xa00 [ 936.412958] ? perf_trace_sched_process_exec+0x860/0x860 [ 936.418403] ? posix_ktime_get_ts+0x15/0x20 [ 936.422720] ? trace_hardirqs_off_caller+0x310/0x310 [ 936.427839] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 936.433376] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 936.438910] ? sockfd_lookup_light+0xc5/0x160 [ 936.443407] __sys_sendmsg+0x11d/0x280 [ 936.447293] ? __ia32_sys_shutdown+0x80/0x80 [ 936.451698] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 936.457233] ? put_timespec64+0x10f/0x1b0 [ 936.461380] ? do_syscall_64+0x9a/0x820 [ 936.465404] ? do_syscall_64+0x9a/0x820 [ 936.469381] ? trace_hardirqs_off_caller+0x310/0x310 [ 936.474485] __x64_sys_sendmsg+0x78/0xb0 [ 936.478544] do_syscall_64+0x1b9/0x820 [ 936.482428] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 936.487828] ? syscall_return_slowpath+0x5e0/0x5e0 [ 936.492752] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 936.497590] ? trace_hardirqs_on_caller+0x310/0x310 [ 936.502606] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 936.507626] ? prepare_exit_to_usermode+0x291/0x3b0 [ 936.512649] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 936.517495] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 936.522683] RIP: 0033:0x457569 [ 936.525881] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 936.544789] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:08:59 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xab0d020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:08:59 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1300]}, 0x2c) 01:08:59 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000009000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:08:59 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xfe80) 01:08:59 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 936.552493] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 936.559756] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 936.567017] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 936.574282] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 936.581544] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:08:59 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffff00000000]}, 0x2c) [ 936.715343] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 936.751879] CPU: 1 PID: 9439 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 936.759209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 936.768581] Call Trace: [ 936.771214] dump_stack+0x244/0x39d [ 936.774880] ? dump_stack_print_info.cold.1+0x20/0x20 [ 936.780213] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 936.785350] sysfs_warn_dup.cold.3+0x1c/0x2b [ 936.785372] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 936.785397] sysfs_create_link+0x65/0xc0 [ 936.795202] device_add+0x64a/0x18e0 [ 936.795220] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 936.795235] ? genl_rcv_msg+0xc6/0x168 [ 936.795258] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 936.795277] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 936.822080] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 936.827298] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 936.832867] wiphy_register+0x1a5b/0x2770 [ 936.837054] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 936.842021] ? rcu_read_lock_sched_held+0x14f/0x180 [ 936.847060] ? __kmalloc+0x5ee/0x760 [ 936.850799] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 936.856363] ? ieee80211_cs_list_valid+0x7c/0x440 [ 936.861239] ? ieee80211_register_hw+0xce9/0x3f10 01:08:59 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3700000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:08:59 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xfffff000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:08:59 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 936.866108] ieee80211_register_hw+0x159b/0x3f10 [ 936.870893] ? ieee80211_ifa_changed+0xed0/0xed0 [ 936.875689] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 936.880760] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 936.886924] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 936.892482] ? vsnprintf+0x20d/0x1b60 [ 936.896311] ? pointer+0x900/0x900 [ 936.899884] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 936.904921] ? kvasprintf+0xee/0x150 [ 936.908653] ? bust_spinlocks+0xe0/0xe0 [ 936.913228] ? validate_nla+0x29a/0x1650 [ 936.917319] ? kasprintf+0xab/0xe0 [ 936.920880] ? kvasprintf_const+0x190/0x190 [ 936.920904] ? cap_capable+0x1f9/0x260 [ 936.920930] hwsim_new_radio_nl+0x7dc/0xb20 [ 936.920955] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 936.929184] ? __nla_parse+0x12c/0x3e0 [ 936.929218] genl_family_rcv_msg+0x8a7/0x11a0 [ 936.929245] ? genl_unregister_family+0x8a0/0x8a0 [ 936.929265] ? lock_downgrade+0x900/0x900 [ 936.929283] ? check_preemption_disabled+0x48/0x280 [ 936.929302] ? rcu_read_unlock_special+0x1c0/0x1c0 01:08:59 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1200]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 936.929318] ? kasan_check_read+0x11/0x20 [ 936.929337] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 936.975626] ? rcu_softirq_qs+0x20/0x20 [ 936.979652] genl_rcv_msg+0xc6/0x168 [ 936.983480] netlink_rcv_skb+0x172/0x440 [ 936.987561] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 936.992342] ? netlink_ack+0xb80/0xb80 [ 936.996254] ? down_read+0x8d/0x120 [ 936.999920] genl_rcv+0x28/0x40 [ 937.003237] netlink_unicast+0x5a5/0x760 [ 937.007329] ? netlink_attachskb+0x9a0/0x9a0 01:08:59 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x12]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 937.011762] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 937.017320] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 937.022362] netlink_sendmsg+0xa18/0xfc0 [ 937.026453] ? netlink_unicast+0x760/0x760 [ 937.030726] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 937.035702] ? apparmor_socket_sendmsg+0x29/0x30 [ 937.040477] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 937.046034] ? security_socket_sendmsg+0x94/0xc0 [ 937.050807] ? netlink_unicast+0x760/0x760 [ 937.055067] sock_sendmsg+0xd5/0x120 [ 937.058805] ___sys_sendmsg+0x7fd/0x930 [ 937.062798] ? find_held_lock+0x36/0x1c0 01:08:59 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x9effffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 937.066888] ? copy_msghdr_from_user+0x580/0x580 [ 937.071668] ? __fd_install+0x2b5/0x8f0 [ 937.075768] ? __fget_light+0x2e9/0x430 [ 937.079766] ? fget_raw+0x20/0x20 [ 937.083245] ? __might_fault+0x12b/0x1e0 [ 937.087327] ? lock_downgrade+0x900/0x900 [ 937.091497] ? lock_release+0xa00/0xa00 [ 937.095493] ? perf_trace_sched_process_exec+0x860/0x860 [ 937.100958] ? posix_ktime_get_ts+0x15/0x20 [ 937.105298] ? trace_hardirqs_off_caller+0x310/0x310 [ 937.110433] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 937.115994] ? sockfd_lookup_light+0xc5/0x160 [ 937.120513] __sys_sendmsg+0x11d/0x280 [ 937.124432] ? __ia32_sys_shutdown+0x80/0x80 [ 937.128883] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 937.134445] ? put_timespec64+0x10f/0x1b0 [ 937.138616] ? do_syscall_64+0x9a/0x820 [ 937.142611] ? do_syscall_64+0x9a/0x820 [ 937.146616] ? trace_hardirqs_off_caller+0x310/0x310 [ 937.151737] __x64_sys_sendmsg+0x78/0xb0 [ 937.155799] do_syscall_64+0x1b9/0x820 [ 937.159699] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 937.165076] ? syscall_return_slowpath+0x5e0/0x5e0 [ 937.170001] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 937.174852] ? trace_hardirqs_on_caller+0x310/0x310 [ 937.179883] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 937.184904] ? prepare_exit_to_usermode+0x291/0x3b0 [ 937.189919] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 937.194771] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 937.199970] RIP: 0033:0x457569 [ 937.203190] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 937.222099] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 937.229801] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 937.237067] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 937.244330] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 937.251603] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 937.258882] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:00 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:00 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf0]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:00 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a00000000000000000000006c0000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:00 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x500) 01:09:00 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1800000000000000]}, 0x2c) 01:09:00 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:00 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x69000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 937.438701] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:09:00 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x900]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 937.508933] CPU: 1 PID: 9483 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 937.516252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 937.525622] Call Trace: [ 937.528250] dump_stack+0x244/0x39d [ 937.531907] ? dump_stack_print_info.cold.1+0x20/0x20 [ 937.537124] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 937.542280] sysfs_warn_dup.cold.3+0x1c/0x2b [ 937.546715] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 937.552096] sysfs_create_link+0x65/0xc0 01:09:00 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3f00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 937.556208] device_add+0x64a/0x18e0 [ 937.559948] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 937.564632] ? genl_rcv_msg+0xc6/0x168 [ 937.568555] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 937.573684] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 937.579072] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 937.584283] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 937.589848] wiphy_register+0x1a5b/0x2770 [ 937.594028] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 937.598988] ? rcu_read_lock_sched_held+0x14f/0x180 [ 937.599006] ? __kmalloc+0x5ee/0x760 [ 937.599026] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 937.613314] ? ieee80211_cs_list_valid+0x7c/0x440 [ 937.613333] ? ieee80211_register_hw+0xce9/0x3f10 [ 937.613358] ieee80211_register_hw+0x159b/0x3f10 [ 937.613391] ? ieee80211_ifa_changed+0xed0/0xed0 [ 937.613423] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 937.613456] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 937.623136] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 937.623154] ? vsnprintf+0x20d/0x1b60 [ 937.623201] ? pointer+0x900/0x900 01:09:00 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x9]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 937.623229] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 937.623246] ? kvasprintf+0xee/0x150 [ 937.623262] ? bust_spinlocks+0xe0/0xe0 [ 937.623283] ? validate_nla+0x29a/0x1650 [ 937.632823] ? kasprintf+0xab/0xe0 [ 937.632841] ? kvasprintf_const+0x190/0x190 [ 937.632865] ? cap_capable+0x1f9/0x260 [ 937.632892] hwsim_new_radio_nl+0x7dc/0xb20 [ 937.632914] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 937.632933] ? __nla_parse+0x12c/0x3e0 [ 937.698925] genl_family_rcv_msg+0x8a7/0x11a0 [ 937.703452] ? genl_unregister_family+0x8a0/0x8a0 01:09:00 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 937.708318] ? lock_downgrade+0x900/0x900 [ 937.712485] ? check_preemption_disabled+0x48/0x280 [ 937.717522] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 937.722470] ? kasan_check_read+0x11/0x20 [ 937.726639] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 937.731944] ? rcu_softirq_qs+0x20/0x20 [ 937.735967] genl_rcv_msg+0xc6/0x168 [ 937.739715] netlink_rcv_skb+0x172/0x440 [ 937.743800] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 937.748583] ? netlink_ack+0xb80/0xb80 [ 937.752493] ? down_read+0x8d/0x120 [ 937.756158] genl_rcv+0x28/0x40 01:09:00 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x400000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 937.759483] netlink_unicast+0x5a5/0x760 [ 937.763573] ? netlink_attachskb+0x9a0/0x9a0 [ 937.768003] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 937.773581] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 937.778640] netlink_sendmsg+0xa18/0xfc0 [ 937.782738] ? netlink_unicast+0x760/0x760 [ 937.786992] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 937.791944] ? apparmor_socket_sendmsg+0x29/0x30 [ 937.796720] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 937.802295] ? security_socket_sendmsg+0x94/0xc0 [ 937.807068] ? netlink_unicast+0x760/0x760 [ 937.811330] sock_sendmsg+0xd5/0x120 [ 937.811351] ___sys_sendmsg+0x7fd/0x930 [ 937.811368] ? find_held_lock+0x36/0x1c0 [ 937.811391] ? copy_msghdr_from_user+0x580/0x580 [ 937.811409] ? __fd_install+0x2b5/0x8f0 [ 937.811443] ? __fget_light+0x2e9/0x430 [ 937.819151] ? fget_raw+0x20/0x20 [ 937.819190] ? __might_fault+0x12b/0x1e0 [ 937.819208] ? lock_downgrade+0x900/0x900 [ 937.819232] ? lock_release+0xa00/0xa00 [ 937.851629] ? perf_trace_sched_process_exec+0x860/0x860 [ 937.857098] ? posix_ktime_get_ts+0x15/0x20 [ 937.861446] ? trace_hardirqs_off_caller+0x310/0x310 [ 937.866598] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 937.872156] ? sockfd_lookup_light+0xc5/0x160 [ 937.876708] __sys_sendmsg+0x11d/0x280 [ 937.880621] ? __ia32_sys_shutdown+0x80/0x80 [ 937.885051] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 937.890609] ? put_timespec64+0x10f/0x1b0 [ 937.894789] ? do_syscall_64+0x9a/0x820 [ 937.898785] ? do_syscall_64+0x9a/0x820 [ 937.902815] ? trace_hardirqs_off_caller+0x310/0x310 [ 937.902840] __x64_sys_sendmsg+0x78/0xb0 [ 937.902865] do_syscall_64+0x1b9/0x820 [ 937.915924] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 937.921315] ? syscall_return_slowpath+0x5e0/0x5e0 [ 937.926268] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 937.931140] ? trace_hardirqs_on_caller+0x310/0x310 [ 937.936222] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 937.941262] ? prepare_exit_to_usermode+0x291/0x3b0 [ 937.946296] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 937.951139] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 937.956349] RIP: 0033:0x457569 [ 937.959540] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 937.978555] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 937.986266] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 937.993539] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 938.000863] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 938.008127] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 938.015395] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:00 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x20db7, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:00 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x10c3]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:00 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000005000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 938.188349] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 938.209234] CPU: 1 PID: 9533 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 938.216541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 938.225899] Call Trace: [ 938.225926] dump_stack+0x244/0x39d [ 938.225952] ? dump_stack_print_info.cold.1+0x20/0x20 [ 938.225975] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 938.232223] sysfs_warn_dup.cold.3+0x1c/0x2b [ 938.232243] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 938.232261] sysfs_create_link+0x65/0xc0 [ 938.232281] device_add+0x64a/0x18e0 [ 938.232302] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 938.264787] ? genl_rcv_msg+0xc6/0x168 [ 938.268689] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 938.273792] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 938.279177] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 938.284367] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 938.289907] wiphy_register+0x1a5b/0x2770 [ 938.294058] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 938.299002] ? rcu_read_lock_sched_held+0x14f/0x180 [ 938.304019] ? __kmalloc+0x5ee/0x760 [ 938.307741] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 938.313300] ? ieee80211_cs_list_valid+0x7c/0x440 [ 938.318143] ? ieee80211_register_hw+0xce9/0x3f10 [ 938.323002] ieee80211_register_hw+0x159b/0x3f10 [ 938.327761] ? ieee80211_ifa_changed+0xed0/0xed0 [ 938.332521] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 938.337564] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 938.343721] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 938.349270] ? vsnprintf+0x20d/0x1b60 [ 938.353071] ? pointer+0x900/0x900 [ 938.356615] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 938.361638] ? kvasprintf+0xee/0x150 [ 938.365366] ? bust_spinlocks+0xe0/0xe0 [ 938.369337] ? validate_nla+0x29a/0x1650 [ 938.373398] ? kasprintf+0xab/0xe0 [ 938.376934] ? kvasprintf_const+0x190/0x190 [ 938.381274] ? cap_capable+0x1f9/0x260 [ 938.385192] hwsim_new_radio_nl+0x7dc/0xb20 [ 938.389659] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 938.394861] ? __nla_parse+0x12c/0x3e0 [ 938.398749] genl_family_rcv_msg+0x8a7/0x11a0 [ 938.403245] ? genl_unregister_family+0x8a0/0x8a0 [ 938.408086] ? lock_downgrade+0x900/0x900 [ 938.412251] ? check_preemption_disabled+0x48/0x280 [ 938.417279] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 938.422230] ? kasan_check_read+0x11/0x20 [ 938.426372] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 938.431644] ? rcu_softirq_qs+0x20/0x20 [ 938.435627] genl_rcv_msg+0xc6/0x168 [ 938.439340] netlink_rcv_skb+0x172/0x440 [ 938.443400] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 938.448151] ? netlink_ack+0xb80/0xb80 [ 938.452056] ? down_read+0x8d/0x120 [ 938.455688] genl_rcv+0x28/0x40 [ 938.459069] netlink_unicast+0x5a5/0x760 [ 938.463187] ? netlink_attachskb+0x9a0/0x9a0 [ 938.467597] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 938.473146] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 938.478208] netlink_sendmsg+0xa18/0xfc0 [ 938.482272] ? netlink_unicast+0x760/0x760 [ 938.486516] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 938.491441] ? apparmor_socket_sendmsg+0x29/0x30 [ 938.496224] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 938.501776] ? security_socket_sendmsg+0x94/0xc0 [ 938.506578] ? netlink_unicast+0x760/0x760 [ 938.510852] sock_sendmsg+0xd5/0x120 [ 938.514576] ___sys_sendmsg+0x7fd/0x930 [ 938.518562] ? find_held_lock+0x36/0x1c0 [ 938.522637] ? copy_msghdr_from_user+0x580/0x580 [ 938.527394] ? __fd_install+0x2b5/0x8f0 [ 938.531369] ? __fget_light+0x2e9/0x430 [ 938.535345] ? fget_raw+0x20/0x20 [ 938.538796] ? __might_fault+0x12b/0x1e0 [ 938.542856] ? lock_downgrade+0x900/0x900 [ 938.547002] ? lock_release+0xa00/0xa00 [ 938.550972] ? perf_trace_sched_process_exec+0x860/0x860 [ 938.556419] ? posix_ktime_get_ts+0x15/0x20 [ 938.560837] ? trace_hardirqs_off_caller+0x310/0x310 [ 938.565944] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 938.571475] ? sockfd_lookup_light+0xc5/0x160 [ 938.575966] __sys_sendmsg+0x11d/0x280 [ 938.579851] ? __ia32_sys_shutdown+0x80/0x80 [ 938.584257] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 938.589788] ? put_timespec64+0x10f/0x1b0 [ 938.593940] ? do_syscall_64+0x9a/0x820 [ 938.597914] ? do_syscall_64+0x9a/0x820 [ 938.601903] ? trace_hardirqs_off_caller+0x310/0x310 [ 938.607021] __x64_sys_sendmsg+0x78/0xb0 [ 938.611092] do_syscall_64+0x1b9/0x820 [ 938.614991] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 938.620349] ? syscall_return_slowpath+0x5e0/0x5e0 [ 938.625273] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 938.630112] ? trace_hardirqs_on_caller+0x310/0x310 [ 938.635139] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 938.640200] ? prepare_exit_to_usermode+0x291/0x3b0 [ 938.645216] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 938.650076] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 938.655274] RIP: 0033:0x457569 [ 938.658463] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 938.677356] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:09:01 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x200000000000000) 01:09:01 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00000000000000]}, 0x2c) 01:09:01 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5c000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:01 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xb]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:01 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000070000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 938.685098] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 938.692361] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 938.699623] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 938.706888] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 938.714152] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:01 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x500000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:01 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1100000000000000]}, 0x2c) 01:09:01 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:01 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3700, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:01 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x11]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:01 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x300000000000000) 01:09:01 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000]}, 0x2c) 01:09:01 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000004000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 939.016818] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 939.056951] CPU: 0 PID: 9569 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 939.064252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 939.073613] Call Trace: [ 939.076237] dump_stack+0x244/0x39d [ 939.079895] ? dump_stack_print_info.cold.1+0x20/0x20 [ 939.085086] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 939.090219] sysfs_warn_dup.cold.3+0x1c/0x2b [ 939.094648] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 939.100022] sysfs_create_link+0x65/0xc0 [ 939.104098] device_add+0x64a/0x18e0 [ 939.107822] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 939.112498] ? genl_rcv_msg+0xc6/0x168 [ 939.116416] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 939.121574] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 939.126951] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 939.132157] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 939.137734] wiphy_register+0x1a5b/0x2770 [ 939.141910] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 939.146873] ? rcu_read_lock_sched_held+0x14f/0x180 [ 939.151916] ? __kmalloc+0x5ee/0x760 [ 939.155649] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 939.161263] ? ieee80211_cs_list_valid+0x7c/0x440 [ 939.166128] ? ieee80211_register_hw+0xce9/0x3f10 [ 939.171002] ieee80211_register_hw+0x159b/0x3f10 [ 939.175784] ? ieee80211_ifa_changed+0xed0/0xed0 [ 939.180575] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 939.185621] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 939.191777] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 939.197333] ? vsnprintf+0x20d/0x1b60 [ 939.201156] ? pointer+0x900/0x900 [ 939.204769] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 939.209794] ? kvasprintf+0xee/0x150 [ 939.213498] ? bust_spinlocks+0xe0/0xe0 [ 939.217488] ? validate_nla+0x29a/0x1650 [ 939.221552] ? kasprintf+0xab/0xe0 [ 939.225088] ? kvasprintf_const+0x190/0x190 [ 939.229417] ? cap_capable+0x1f9/0x260 [ 939.233310] hwsim_new_radio_nl+0x7dc/0xb20 [ 939.237645] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 939.242854] ? __nla_parse+0x12c/0x3e0 [ 939.246754] genl_family_rcv_msg+0x8a7/0x11a0 [ 939.251266] ? genl_unregister_family+0x8a0/0x8a0 [ 939.256117] ? lock_downgrade+0x900/0x900 [ 939.260291] ? check_preemption_disabled+0x48/0x280 [ 939.265325] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 939.270253] ? kasan_check_read+0x11/0x20 [ 939.274401] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 939.279682] ? rcu_softirq_qs+0x20/0x20 [ 939.283657] genl_rcv_msg+0xc6/0x168 [ 939.287413] netlink_rcv_skb+0x172/0x440 [ 939.291487] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 939.296403] ? netlink_ack+0xb80/0xb80 [ 939.300293] ? down_read+0x8d/0x120 [ 939.303915] genl_rcv+0x28/0x40 [ 939.307206] netlink_unicast+0x5a5/0x760 [ 939.311256] ? netlink_attachskb+0x9a0/0x9a0 [ 939.315666] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 939.321248] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 939.326277] netlink_sendmsg+0xa18/0xfc0 [ 939.330345] ? netlink_unicast+0x760/0x760 [ 939.334576] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 939.339503] ? apparmor_socket_sendmsg+0x29/0x30 [ 939.344259] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 939.349787] ? security_socket_sendmsg+0x94/0xc0 [ 939.354547] ? netlink_unicast+0x760/0x760 [ 939.358810] sock_sendmsg+0xd5/0x120 [ 939.362542] ___sys_sendmsg+0x7fd/0x930 [ 939.366502] ? find_held_lock+0x36/0x1c0 [ 939.370573] ? copy_msghdr_from_user+0x580/0x580 [ 939.375342] ? __fd_install+0x2b5/0x8f0 [ 939.379312] ? __fget_light+0x2e9/0x430 [ 939.383290] ? fget_raw+0x20/0x20 [ 939.386751] ? __might_fault+0x12b/0x1e0 [ 939.390862] ? lock_downgrade+0x900/0x900 [ 939.395029] ? lock_release+0xa00/0xa00 [ 939.399015] ? perf_trace_sched_process_exec+0x860/0x860 [ 939.404489] ? posix_ktime_get_ts+0x15/0x20 [ 939.408806] ? trace_hardirqs_off_caller+0x310/0x310 [ 939.413936] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 939.419488] ? sockfd_lookup_light+0xc5/0x160 [ 939.423977] __sys_sendmsg+0x11d/0x280 [ 939.427855] ? __ia32_sys_shutdown+0x80/0x80 [ 939.432264] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 939.437798] ? put_timespec64+0x10f/0x1b0 [ 939.441937] ? do_syscall_64+0x9a/0x820 [ 939.445908] ? do_syscall_64+0x9a/0x820 [ 939.449903] ? trace_hardirqs_off_caller+0x310/0x310 [ 939.455018] __x64_sys_sendmsg+0x78/0xb0 [ 939.459071] do_syscall_64+0x1b9/0x820 [ 939.462956] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 939.468339] ? syscall_return_slowpath+0x5e0/0x5e0 [ 939.473265] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 939.478126] ? trace_hardirqs_on_caller+0x310/0x310 [ 939.483180] ? prepare_exit_to_usermode+0x291/0x3b0 [ 939.488242] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 939.493105] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 939.498306] RIP: 0033:0x457569 01:09:02 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xfffffff0]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 939.501498] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 939.520386] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 939.528106] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 939.535368] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 939.542641] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 939.549909] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 939.557192] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:02 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xffffff7f00000000) 01:09:02 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, 0x2c) 01:09:02 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000009000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 939.655196] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 939.729935] CPU: 1 PID: 9593 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 939.737270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 939.746627] Call Trace: [ 939.749234] dump_stack+0x244/0x39d [ 939.752888] ? dump_stack_print_info.cold.1+0x20/0x20 [ 939.758101] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 939.763234] sysfs_warn_dup.cold.3+0x1c/0x2b [ 939.767667] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 939.773059] sysfs_create_link+0x65/0xc0 [ 939.777134] device_add+0x64a/0x18e0 [ 939.780882] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 939.780896] ? genl_rcv_msg+0xc6/0x168 [ 939.780918] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 939.780931] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 939.780949] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 939.780967] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 939.789557] wiphy_register+0x1a5b/0x2770 [ 939.789588] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 939.789621] ? rcu_read_lock_sched_held+0x14f/0x180 [ 939.824844] ? __kmalloc+0x5ee/0x760 [ 939.828580] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 939.834231] ? ieee80211_cs_list_valid+0x7c/0x440 [ 939.839090] ? ieee80211_register_hw+0xce9/0x3f10 [ 939.843958] ieee80211_register_hw+0x159b/0x3f10 [ 939.848738] ? ieee80211_ifa_changed+0xed0/0xed0 [ 939.853516] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 939.858557] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 939.864735] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 939.870298] ? vsnprintf+0x20d/0x1b60 [ 939.874133] ? pointer+0x900/0x900 [ 939.877717] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 939.882737] ? kvasprintf+0xee/0x150 [ 939.886460] ? bust_spinlocks+0xe0/0xe0 [ 939.890448] ? validate_nla+0x29a/0x1650 [ 939.894519] ? kasprintf+0xab/0xe0 [ 939.898076] ? kvasprintf_const+0x190/0x190 [ 939.902411] ? cap_capable+0x1f9/0x260 [ 939.906321] hwsim_new_radio_nl+0x7dc/0xb20 [ 939.910665] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 939.915875] ? __nla_parse+0x12c/0x3e0 [ 939.919821] genl_family_rcv_msg+0x8a7/0x11a0 [ 939.924333] ? genl_unregister_family+0x8a0/0x8a0 [ 939.929196] ? lock_downgrade+0x900/0x900 [ 939.933356] ? check_preemption_disabled+0x48/0x280 [ 939.938383] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 939.943324] ? kasan_check_read+0x11/0x20 [ 939.947479] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 939.952773] ? rcu_softirq_qs+0x20/0x20 [ 939.956775] genl_rcv_msg+0xc6/0x168 [ 939.960506] netlink_rcv_skb+0x172/0x440 [ 939.964575] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 939.969346] ? netlink_ack+0xb80/0xb80 [ 939.973239] ? down_read+0x8d/0x120 [ 939.976885] genl_rcv+0x28/0x40 [ 939.980196] netlink_unicast+0x5a5/0x760 [ 939.984302] ? netlink_attachskb+0x9a0/0x9a0 [ 939.988757] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 939.994331] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 939.999365] netlink_sendmsg+0xa18/0xfc0 [ 940.003442] ? netlink_unicast+0x760/0x760 [ 940.007692] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 940.012641] ? apparmor_socket_sendmsg+0x29/0x30 [ 940.017409] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 940.022956] ? security_socket_sendmsg+0x94/0xc0 [ 940.027717] ? netlink_unicast+0x760/0x760 [ 940.031987] sock_sendmsg+0xd5/0x120 [ 940.035726] ___sys_sendmsg+0x7fd/0x930 [ 940.039716] ? find_held_lock+0x36/0x1c0 [ 940.043817] ? copy_msghdr_from_user+0x580/0x580 [ 940.048587] ? __fd_install+0x2b5/0x8f0 [ 940.052581] ? __fget_light+0x2e9/0x430 [ 940.056566] ? fget_raw+0x20/0x20 [ 940.060033] ? __might_fault+0x12b/0x1e0 [ 940.064107] ? lock_downgrade+0x900/0x900 [ 940.068268] ? lock_release+0xa00/0xa00 [ 940.072250] ? perf_trace_sched_process_exec+0x860/0x860 01:09:02 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x500]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 940.077714] ? posix_ktime_get_ts+0x15/0x20 [ 940.082050] ? trace_hardirqs_off_caller+0x310/0x310 [ 940.087183] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 940.092734] ? sockfd_lookup_light+0xc5/0x160 [ 940.097244] __sys_sendmsg+0x11d/0x280 [ 940.101142] ? __ia32_sys_shutdown+0x80/0x80 [ 940.105572] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 940.111121] ? put_timespec64+0x10f/0x1b0 [ 940.115284] ? do_syscall_64+0x9a/0x820 [ 940.119268] ? do_syscall_64+0x9a/0x820 [ 940.123265] ? trace_hardirqs_off_caller+0x310/0x310 01:09:03 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x9000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 940.128386] __x64_sys_sendmsg+0x78/0xb0 [ 940.132477] do_syscall_64+0x1b9/0x820 [ 940.136393] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 940.141786] ? syscall_return_slowpath+0x5e0/0x5e0 [ 940.146736] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 940.151600] ? trace_hardirqs_on_caller+0x310/0x310 [ 940.156630] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 940.161660] ? prepare_exit_to_usermode+0x291/0x3b0 [ 940.166723] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 940.166747] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 940.166775] RIP: 0033:0x457569 [ 940.166808] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 940.166832] RSP: 002b:00007fef3bf50c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 940.166848] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 940.166857] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 940.166886] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 940.176922] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf516d4 [ 940.176933] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:03 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x97ffffff00000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 940.376324] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 940.397416] CPU: 0 PID: 9622 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 940.404741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 940.414104] Call Trace: [ 940.416711] dump_stack+0x244/0x39d [ 940.420363] ? dump_stack_print_info.cold.1+0x20/0x20 01:09:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4600, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:03 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:03 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00]}, 0x2c) 01:09:03 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x2300000000000000) 01:09:03 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000400300000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 940.425604] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 940.430737] sysfs_warn_dup.cold.3+0x1c/0x2b [ 940.435189] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 940.440574] sysfs_create_link+0x65/0xc0 [ 940.444645] device_add+0x64a/0x18e0 [ 940.448368] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 940.453260] ? genl_rcv_msg+0xc6/0x168 [ 940.457160] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 940.462286] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 940.467674] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 940.472881] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 940.478438] wiphy_register+0x1a5b/0x2770 [ 940.482621] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 940.487579] ? rcu_read_lock_sched_held+0x14f/0x180 [ 940.492612] ? __kmalloc+0x5ee/0x760 [ 940.496344] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 940.501893] ? ieee80211_cs_list_valid+0x7c/0x440 [ 940.506757] ? ieee80211_register_hw+0xce9/0x3f10 [ 940.511619] ieee80211_register_hw+0x159b/0x3f10 [ 940.516399] ? ieee80211_ifa_changed+0xed0/0xed0 [ 940.521203] mac80211_hwsim_new_radio+0x1e48/0x3460 01:09:03 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 940.526251] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 940.532419] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 940.537968] ? vsnprintf+0x20d/0x1b60 [ 940.541785] ? pointer+0x900/0x900 [ 940.545340] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 940.550370] ? kvasprintf+0xee/0x150 [ 940.554111] ? bust_spinlocks+0xe0/0xe0 [ 940.558106] ? validate_nla+0x29a/0x1650 [ 940.562201] ? kasprintf+0xab/0xe0 [ 940.565770] ? kvasprintf_const+0x190/0x190 [ 940.570128] ? cap_capable+0x1f9/0x260 [ 940.574054] hwsim_new_radio_nl+0x7dc/0xb20 [ 940.578397] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 940.583600] ? __nla_parse+0x12c/0x3e0 [ 940.587520] genl_family_rcv_msg+0x8a7/0x11a0 [ 940.592045] ? genl_unregister_family+0x8a0/0x8a0 [ 940.596907] ? lock_downgrade+0x900/0x900 [ 940.601069] ? check_preemption_disabled+0x48/0x280 [ 940.606102] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 940.611048] ? kasan_check_read+0x11/0x20 [ 940.615215] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 940.620504] ? rcu_softirq_qs+0x20/0x20 01:09:03 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 940.624524] genl_rcv_msg+0xc6/0x168 [ 940.628267] netlink_rcv_skb+0x172/0x440 [ 940.632342] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 940.637112] ? netlink_ack+0xb80/0xb80 [ 940.641016] ? down_read+0x8d/0x120 [ 940.644671] genl_rcv+0x28/0x40 [ 940.647960] netlink_unicast+0x5a5/0x760 [ 940.652045] ? netlink_attachskb+0x9a0/0x9a0 [ 940.656471] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 940.662040] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 940.667075] netlink_sendmsg+0xa18/0xfc0 [ 940.671178] ? netlink_unicast+0x760/0x760 01:09:03 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x100000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 940.675432] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 940.680389] ? apparmor_socket_sendmsg+0x29/0x30 [ 940.685178] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 940.690746] ? security_socket_sendmsg+0x94/0xc0 [ 940.695513] ? netlink_unicast+0x760/0x760 [ 940.699766] sock_sendmsg+0xd5/0x120 [ 940.703494] ___sys_sendmsg+0x7fd/0x930 [ 940.707497] ? find_held_lock+0x36/0x1c0 [ 940.711592] ? copy_msghdr_from_user+0x580/0x580 [ 940.716391] ? __fd_install+0x2b5/0x8f0 [ 940.720407] ? __fget_light+0x2e9/0x430 [ 940.724391] ? fget_raw+0x20/0x20 01:09:03 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x9effffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 940.727860] ? __might_fault+0x12b/0x1e0 [ 940.731953] ? lock_downgrade+0x900/0x900 [ 940.736118] ? lock_release+0xa00/0xa00 [ 940.740103] ? perf_trace_sched_process_exec+0x860/0x860 [ 940.745568] ? posix_ktime_get_ts+0x15/0x20 [ 940.749908] ? trace_hardirqs_off_caller+0x310/0x310 [ 940.755046] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 940.760597] ? sockfd_lookup_light+0xc5/0x160 [ 940.765105] __sys_sendmsg+0x11d/0x280 [ 940.769008] ? __ia32_sys_shutdown+0x80/0x80 [ 940.773428] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 940.779441] ? put_timespec64+0x10f/0x1b0 [ 940.783614] ? do_syscall_64+0x9a/0x820 [ 940.787625] ? do_syscall_64+0x9a/0x820 [ 940.791620] ? trace_hardirqs_off_caller+0x310/0x310 [ 940.796759] __x64_sys_sendmsg+0x78/0xb0 [ 940.800853] do_syscall_64+0x1b9/0x820 [ 940.804753] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 940.810131] ? syscall_return_slowpath+0x5e0/0x5e0 [ 940.815123] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 940.820009] ? trace_hardirqs_on_caller+0x310/0x310 01:09:03 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xffffffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 940.825049] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 940.830075] ? prepare_exit_to_usermode+0x291/0x3b0 [ 940.835122] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 940.840005] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 940.845209] RIP: 0033:0x457569 [ 940.848430] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 940.867424] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:09:03 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x6000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 940.875136] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 940.882426] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 940.889705] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 940.897073] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 940.904352] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:03 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xb40d020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3a00, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:03 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:03 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]}, 0x2c) 01:09:03 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xffffffff00000000) 01:09:03 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000068000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 941.087784] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 941.103992] CPU: 0 PID: 9670 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 941.111289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 941.120651] Call Trace: [ 941.123255] dump_stack+0x244/0x39d [ 941.126903] ? dump_stack_print_info.cold.1+0x20/0x20 [ 941.132108] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 941.137268] sysfs_warn_dup.cold.3+0x1c/0x2b [ 941.141696] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 941.147072] sysfs_create_link+0x65/0xc0 [ 941.147093] device_add+0x64a/0x18e0 [ 941.147111] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 941.147125] ? genl_rcv_msg+0xc6/0x168 [ 941.147146] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 941.163470] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 941.163490] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 941.163511] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 941.163537] wiphy_register+0x1a5b/0x2770 [ 941.163566] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 941.193840] ? rcu_read_lock_sched_held+0x14f/0x180 [ 941.198883] ? __kmalloc+0x5ee/0x760 [ 941.202614] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 941.208185] ? ieee80211_cs_list_valid+0x7c/0x440 [ 941.213053] ? ieee80211_register_hw+0xce9/0x3f10 [ 941.217919] ieee80211_register_hw+0x159b/0x3f10 [ 941.222718] ? ieee80211_ifa_changed+0xed0/0xed0 [ 941.227519] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 941.232570] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 941.238731] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 941.244285] ? vsnprintf+0x20d/0x1b60 [ 941.248109] ? pointer+0x900/0x900 [ 941.251673] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 941.256702] ? kvasprintf+0xee/0x150 [ 941.260431] ? bust_spinlocks+0xe0/0xe0 [ 941.264426] ? validate_nla+0x29a/0x1650 [ 941.268505] ? kasprintf+0xab/0xe0 [ 941.272059] ? kvasprintf_const+0x190/0x190 [ 941.276415] ? cap_capable+0x1f9/0x260 [ 941.280322] hwsim_new_radio_nl+0x7dc/0xb20 01:09:04 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf0ffffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 941.284666] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 941.289869] ? __nla_parse+0x12c/0x3e0 [ 941.293794] genl_family_rcv_msg+0x8a7/0x11a0 [ 941.298313] ? genl_unregister_family+0x8a0/0x8a0 [ 941.303185] ? lock_downgrade+0x900/0x900 [ 941.303205] ? check_preemption_disabled+0x48/0x280 [ 941.303224] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 941.303245] ? kasan_check_read+0x11/0x20 [ 941.312426] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 941.312442] ? rcu_softirq_qs+0x20/0x20 [ 941.312480] genl_rcv_msg+0xc6/0x168 [ 941.312502] netlink_rcv_skb+0x172/0x440 [ 941.312521] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 941.343320] ? netlink_ack+0xb80/0xb80 [ 941.347231] ? down_read+0x8d/0x120 [ 941.350883] genl_rcv+0x28/0x40 [ 941.354200] netlink_unicast+0x5a5/0x760 [ 941.358283] ? netlink_attachskb+0x9a0/0x9a0 [ 941.362706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 941.368256] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 941.373293] netlink_sendmsg+0xa18/0xfc0 [ 941.377376] ? netlink_unicast+0x760/0x760 [ 941.381618] ? aa_sock_msg_perm.isra.14+0xba/0x160 01:09:04 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd]}, 0x2c) [ 941.386583] ? apparmor_socket_sendmsg+0x29/0x30 [ 941.391352] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 941.396899] ? security_socket_sendmsg+0x94/0xc0 [ 941.401655] ? netlink_unicast+0x760/0x760 [ 941.405932] sock_sendmsg+0xd5/0x120 [ 941.409659] ___sys_sendmsg+0x7fd/0x930 [ 941.413641] ? find_held_lock+0x36/0x1c0 [ 941.417715] ? copy_msghdr_from_user+0x580/0x580 [ 941.422480] ? __fd_install+0x2b5/0x8f0 [ 941.422510] ? __fget_light+0x2e9/0x430 [ 941.422527] ? fget_raw+0x20/0x20 [ 941.422547] ? __might_fault+0x12b/0x1e0 01:09:04 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x200000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 941.430506] ? lock_downgrade+0x900/0x900 [ 941.430526] ? lock_release+0xa00/0xa00 [ 941.430540] ? perf_trace_sched_process_exec+0x860/0x860 [ 941.430552] ? posix_ktime_get_ts+0x15/0x20 [ 941.430570] ? trace_hardirqs_off_caller+0x310/0x310 [ 941.430594] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 941.466602] ? sockfd_lookup_light+0xc5/0x160 [ 941.466623] __sys_sendmsg+0x11d/0x280 [ 941.466642] ? __ia32_sys_shutdown+0x80/0x80 [ 941.479491] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 941.485042] ? put_timespec64+0x10f/0x1b0 [ 941.485066] ? do_syscall_64+0x9a/0x820 [ 941.485082] ? do_syscall_64+0x9a/0x820 [ 941.485110] ? trace_hardirqs_off_caller+0x310/0x310 [ 941.485134] __x64_sys_sendmsg+0x78/0xb0 [ 941.485152] do_syscall_64+0x1b9/0x820 [ 941.485187] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 941.515639] ? syscall_return_slowpath+0x5e0/0x5e0 [ 941.520581] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 941.525444] ? trace_hardirqs_on_caller+0x310/0x310 [ 941.530477] ? prepare_exit_to_usermode+0x3b0/0x3b0 01:09:04 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x40030000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 941.535503] ? prepare_exit_to_usermode+0x291/0x3b0 [ 941.540536] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 941.545405] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 941.550606] RIP: 0033:0x457569 [ 941.553809] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 941.572725] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 941.580441] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 01:09:04 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x5000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:04 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xfffffffffffff000) [ 941.587719] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 941.594998] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 941.602286] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 941.609562] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:04 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x48000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:04 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6c0a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:04 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1100]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:04 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000ffffff800000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:04 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000000]}, 0x2c) [ 941.859593] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 941.875540] CPU: 0 PID: 9723 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 941.882843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 941.892235] Call Trace: [ 941.894860] dump_stack+0x244/0x39d [ 941.898541] ? dump_stack_print_info.cold.1+0x20/0x20 [ 941.903750] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 01:09:04 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x6]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 941.908880] sysfs_warn_dup.cold.3+0x1c/0x2b [ 941.913320] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 941.918699] sysfs_create_link+0x65/0xc0 [ 941.922809] device_add+0x64a/0x18e0 [ 941.926567] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 941.931250] ? genl_rcv_msg+0xc6/0x168 [ 941.935180] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 941.940331] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 941.945710] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 941.950918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 01:09:04 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xa]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:04 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1000000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 941.956486] wiphy_register+0x1a5b/0x2770 [ 941.960665] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 941.965624] ? rcu_read_lock_sched_held+0x14f/0x180 [ 941.970659] ? __kmalloc+0x5ee/0x760 [ 941.974396] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 941.979959] ? ieee80211_cs_list_valid+0x7c/0x440 [ 941.984830] ? ieee80211_register_hw+0xce9/0x3f10 [ 941.989693] ieee80211_register_hw+0x159b/0x3f10 [ 941.994478] ? ieee80211_ifa_changed+0xed0/0xed0 [ 941.999263] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 942.004309] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 942.010470] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 942.016054] ? vsnprintf+0x20d/0x1b60 [ 942.019874] ? pointer+0x900/0x900 [ 942.023439] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 942.028466] ? kvasprintf+0xee/0x150 [ 942.032210] ? bust_spinlocks+0xe0/0xe0 [ 942.036223] ? validate_nla+0x29a/0x1650 [ 942.040303] ? kasprintf+0xab/0xe0 [ 942.043854] ? kvasprintf_const+0x190/0x190 [ 942.048209] ? cap_capable+0x1f9/0x260 [ 942.052130] hwsim_new_radio_nl+0x7dc/0xb20 01:09:04 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xa00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 942.056502] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 942.061705] ? __nla_parse+0x12c/0x3e0 [ 942.065624] genl_family_rcv_msg+0x8a7/0x11a0 [ 942.070142] ? genl_unregister_family+0x8a0/0x8a0 [ 942.075018] ? lock_downgrade+0x900/0x900 [ 942.079197] ? check_preemption_disabled+0x48/0x280 [ 942.084239] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 942.089254] ? kasan_check_read+0x11/0x20 [ 942.093416] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 942.098705] ? rcu_softirq_qs+0x20/0x20 [ 942.102715] genl_rcv_msg+0xc6/0x168 [ 942.106448] netlink_rcv_skb+0x172/0x440 01:09:04 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x11000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 942.110519] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 942.110538] ? netlink_ack+0xb80/0xb80 [ 942.110555] ? down_read+0x8d/0x120 [ 942.110586] genl_rcv+0x28/0x40 [ 942.110602] netlink_unicast+0x5a5/0x760 [ 942.110625] ? netlink_attachskb+0x9a0/0x9a0 [ 942.110646] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 942.122923] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 942.122947] netlink_sendmsg+0xa18/0xfc0 [ 942.122972] ? netlink_unicast+0x760/0x760 [ 942.122992] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 942.158475] ? apparmor_socket_sendmsg+0x29/0x30 [ 942.163243] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 942.163262] ? security_socket_sendmsg+0x94/0xc0 [ 942.163278] ? netlink_unicast+0x760/0x760 [ 942.163299] sock_sendmsg+0xd5/0x120 [ 942.163318] ___sys_sendmsg+0x7fd/0x930 [ 942.163340] ? find_held_lock+0x36/0x1c0 [ 942.173631] ? copy_msghdr_from_user+0x580/0x580 [ 942.173650] ? __fd_install+0x2b5/0x8f0 [ 942.173679] ? __fget_light+0x2e9/0x430 [ 942.173697] ? fget_raw+0x20/0x20 [ 942.173715] ? __might_fault+0x12b/0x1e0 01:09:05 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x12000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 942.173735] ? lock_downgrade+0x900/0x900 [ 942.214047] ? lock_release+0xa00/0xa00 [ 942.218032] ? perf_trace_sched_process_exec+0x860/0x860 [ 942.223490] ? posix_ktime_get_ts+0x15/0x20 [ 942.227822] ? trace_hardirqs_off_caller+0x310/0x310 [ 942.232955] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 942.238506] ? sockfd_lookup_light+0xc5/0x160 [ 942.243020] __sys_sendmsg+0x11d/0x280 [ 942.246925] ? __ia32_sys_shutdown+0x80/0x80 [ 942.251360] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 942.256915] ? put_timespec64+0x10f/0x1b0 [ 942.261077] ? do_syscall_64+0x9a/0x820 [ 942.265064] ? do_syscall_64+0x9a/0x820 [ 942.269065] ? trace_hardirqs_off_caller+0x310/0x310 [ 942.274204] __x64_sys_sendmsg+0x78/0xb0 [ 942.278303] do_syscall_64+0x1b9/0x820 [ 942.282212] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 942.287593] ? syscall_return_slowpath+0x5e0/0x5e0 [ 942.292537] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 942.297401] ? trace_hardirqs_on_caller+0x310/0x310 [ 942.302436] ? prepare_exit_to_usermode+0x3b0/0x3b0 01:09:05 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x3f00000000000000) [ 942.307473] ? prepare_exit_to_usermode+0x291/0x3b0 [ 942.312520] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 942.317386] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 942.322586] RIP: 0033:0x457569 [ 942.325789] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 942.325799] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 942.325815] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 942.325825] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 942.325834] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 942.325844] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 942.325859] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:05 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xb000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:05 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x88200000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:05 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:05 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000]}, 0x2c) 01:09:05 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000048000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:05 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x100000000000000) 01:09:05 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x10000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 942.645902] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 942.668261] CPU: 1 PID: 9787 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 942.675560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 942.684915] Call Trace: [ 942.687523] dump_stack+0x244/0x39d [ 942.691195] ? dump_stack_print_info.cold.1+0x20/0x20 [ 942.696406] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 942.701529] sysfs_warn_dup.cold.3+0x1c/0x2b [ 942.701549] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 942.701568] sysfs_create_link+0x65/0xc0 [ 942.701589] device_add+0x64a/0x18e0 [ 942.719116] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 942.723796] ? genl_rcv_msg+0xc6/0x168 [ 942.727757] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 942.732884] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 942.738265] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 942.743475] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 942.749038] wiphy_register+0x1a5b/0x2770 [ 942.753254] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 942.758216] ? rcu_read_lock_sched_held+0x14f/0x180 [ 942.763254] ? __kmalloc+0x5ee/0x760 [ 942.766986] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 942.772559] ? ieee80211_cs_list_valid+0x7c/0x440 [ 942.777419] ? ieee80211_register_hw+0xce9/0x3f10 [ 942.782444] ieee80211_register_hw+0x159b/0x3f10 [ 942.787232] ? ieee80211_ifa_changed+0xed0/0xed0 [ 942.792034] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 942.797082] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 942.803248] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 942.808800] ? vsnprintf+0x20d/0x1b60 [ 942.808825] ? pointer+0x900/0x900 [ 942.808853] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 942.808872] ? kvasprintf+0xee/0x150 [ 942.816211] ? bust_spinlocks+0xe0/0xe0 [ 942.816233] ? validate_nla+0x29a/0x1650 [ 942.816255] ? kasprintf+0xab/0xe0 [ 942.816274] ? kvasprintf_const+0x190/0x190 [ 942.840861] ? cap_capable+0x1f9/0x260 [ 942.844778] hwsim_new_radio_nl+0x7dc/0xb20 [ 942.849123] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 942.854336] ? __nla_parse+0x12c/0x3e0 [ 942.858256] genl_family_rcv_msg+0x8a7/0x11a0 [ 942.862777] ? genl_unregister_family+0x8a0/0x8a0 [ 942.867641] ? lock_downgrade+0x900/0x900 [ 942.871815] ? check_preemption_disabled+0x48/0x280 [ 942.876846] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 942.881817] ? kasan_check_read+0x11/0x20 [ 942.885995] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 942.891287] ? rcu_softirq_qs+0x20/0x20 [ 942.895298] genl_rcv_msg+0xc6/0x168 [ 942.899025] netlink_rcv_skb+0x172/0x440 [ 942.903098] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 942.907879] ? netlink_ack+0xb80/0xb80 [ 942.912276] ? down_read+0x8d/0x120 [ 942.915932] genl_rcv+0x28/0x40 [ 942.919227] netlink_unicast+0x5a5/0x760 [ 942.923304] ? netlink_attachskb+0x9a0/0x9a0 [ 942.927728] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 942.933277] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 942.938309] netlink_sendmsg+0xa18/0xfc0 [ 942.942392] ? netlink_unicast+0x760/0x760 [ 942.946643] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 942.951609] ? apparmor_socket_sendmsg+0x29/0x30 [ 942.951627] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 942.951644] ? security_socket_sendmsg+0x94/0xc0 [ 942.951663] ? netlink_unicast+0x760/0x760 [ 942.962043] sock_sendmsg+0xd5/0x120 [ 942.974722] ___sys_sendmsg+0x7fd/0x930 [ 942.978714] ? find_held_lock+0x36/0x1c0 [ 942.982809] ? copy_msghdr_from_user+0x580/0x580 [ 942.987585] ? __fd_install+0x2b5/0x8f0 [ 942.991583] ? __fget_light+0x2e9/0x430 01:09:05 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:05 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xfffffffffffff000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:05 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xffffff7f00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:05 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xc310000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:05 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xc310]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:05 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 942.995578] ? fget_raw+0x20/0x20 [ 942.999047] ? __might_fault+0x12b/0x1e0 [ 943.003128] ? lock_downgrade+0x900/0x900 [ 943.007299] ? lock_release+0xa00/0xa00 [ 943.011284] ? perf_trace_sched_process_exec+0x860/0x860 [ 943.016748] ? posix_ktime_get_ts+0x15/0x20 [ 943.021084] ? trace_hardirqs_off_caller+0x310/0x310 [ 943.026592] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 943.026611] ? sockfd_lookup_light+0xc5/0x160 [ 943.026631] __sys_sendmsg+0x11d/0x280 [ 943.026651] ? __ia32_sys_shutdown+0x80/0x80 01:09:05 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 943.036723] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 943.050528] ? put_timespec64+0x10f/0x1b0 [ 943.054704] ? do_syscall_64+0x9a/0x820 [ 943.058699] ? do_syscall_64+0x9a/0x820 [ 943.062708] ? trace_hardirqs_off_caller+0x310/0x310 [ 943.067836] __x64_sys_sendmsg+0x78/0xb0 [ 943.071916] do_syscall_64+0x1b9/0x820 [ 943.075831] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 943.081211] ? syscall_return_slowpath+0x5e0/0x5e0 [ 943.086156] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 943.091022] ? trace_hardirqs_on_caller+0x310/0x310 [ 943.096063] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 943.101100] ? prepare_exit_to_usermode+0x291/0x3b0 [ 943.106128] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 943.110996] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 943.116203] RIP: 0033:0x457569 [ 943.119493] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 943.138405] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 943.146122] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 943.153403] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 943.160692] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 943.168063] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 943.175344] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:06 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x20daf, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:06 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:06 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000007000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:06 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}, 0x2c) 01:09:06 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x3000000) [ 943.377967] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:09:06 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x71000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:06 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 943.422498] CPU: 0 PID: 9838 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 943.429822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 943.439200] Call Trace: [ 943.441812] dump_stack+0x244/0x39d [ 943.445475] ? dump_stack_print_info.cold.1+0x20/0x20 [ 943.450689] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 943.455819] sysfs_warn_dup.cold.3+0x1c/0x2b [ 943.460259] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 943.465667] sysfs_create_link+0x65/0xc0 01:09:06 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x300000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 943.469755] device_add+0x64a/0x18e0 [ 943.473479] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 943.478180] ? genl_rcv_msg+0xc6/0x168 [ 943.482697] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 943.487812] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 943.493209] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 943.498423] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 943.503985] wiphy_register+0x1a5b/0x2770 [ 943.508172] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 943.513136] ? rcu_read_lock_sched_held+0x14f/0x180 [ 943.518201] ? __kmalloc+0x5ee/0x760 [ 943.521932] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 943.521951] ? ieee80211_cs_list_valid+0x7c/0x440 [ 943.521971] ? ieee80211_register_hw+0xce9/0x3f10 [ 943.521995] ieee80211_register_hw+0x159b/0x3f10 [ 943.522028] ? ieee80211_ifa_changed+0xed0/0xed0 [ 943.522056] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 943.532440] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 943.532458] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 943.532475] ? vsnprintf+0x20d/0x1b60 [ 943.532498] ? pointer+0x900/0x900 01:09:06 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 943.570827] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 943.575856] ? kvasprintf+0xee/0x150 [ 943.579583] ? bust_spinlocks+0xe0/0xe0 [ 943.583575] ? validate_nla+0x29a/0x1650 [ 943.587650] ? kasprintf+0xab/0xe0 [ 943.591239] ? kvasprintf_const+0x190/0x190 [ 943.595580] ? cap_capable+0x1f9/0x260 [ 943.599500] hwsim_new_radio_nl+0x7dc/0xb20 [ 943.603844] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 943.609042] ? __nla_parse+0x12c/0x3e0 [ 943.612962] genl_family_rcv_msg+0x8a7/0x11a0 [ 943.617485] ? genl_unregister_family+0x8a0/0x8a0 01:09:06 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3f000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 943.622346] ? lock_downgrade+0x900/0x900 [ 943.626511] ? check_preemption_disabled+0x48/0x280 [ 943.631543] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 943.636484] ? kasan_check_read+0x11/0x20 [ 943.640645] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 943.645938] ? rcu_softirq_qs+0x20/0x20 [ 943.649949] genl_rcv_msg+0xc6/0x168 [ 943.653711] netlink_rcv_skb+0x172/0x440 [ 943.657789] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 943.662567] ? netlink_ack+0xb80/0xb80 [ 943.666469] ? down_read+0x8d/0x120 [ 943.670125] genl_rcv+0x28/0x40 01:09:06 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x2000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 943.673416] netlink_unicast+0x5a5/0x760 [ 943.677497] ? netlink_attachskb+0x9a0/0x9a0 [ 943.681920] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 943.687470] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 943.692504] netlink_sendmsg+0xa18/0xfc0 [ 943.696590] ? netlink_unicast+0x760/0x760 [ 943.700838] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 943.705784] ? apparmor_socket_sendmsg+0x29/0x30 [ 943.710557] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 943.716112] ? security_socket_sendmsg+0x94/0xc0 01:09:06 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 943.720886] ? netlink_unicast+0x760/0x760 [ 943.725139] sock_sendmsg+0xd5/0x120 [ 943.728882] ___sys_sendmsg+0x7fd/0x930 [ 943.732871] ? find_held_lock+0x36/0x1c0 [ 943.736956] ? copy_msghdr_from_user+0x580/0x580 [ 943.741722] ? __fd_install+0x2b5/0x8f0 [ 943.745723] ? __fget_light+0x2e9/0x430 [ 943.749714] ? fget_raw+0x20/0x20 [ 943.753201] ? __might_fault+0x12b/0x1e0 [ 943.757281] ? lock_downgrade+0x900/0x900 [ 943.757302] ? lock_release+0xa00/0xa00 [ 943.757318] ? perf_trace_sched_process_exec+0x860/0x860 [ 943.757333] ? posix_ktime_get_ts+0x15/0x20 [ 943.757352] ? trace_hardirqs_off_caller+0x310/0x310 [ 943.757380] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 943.757399] ? sockfd_lookup_light+0xc5/0x160 [ 943.765519] __sys_sendmsg+0x11d/0x280 [ 943.765541] ? __ia32_sys_shutdown+0x80/0x80 [ 943.765561] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 943.765579] ? put_timespec64+0x10f/0x1b0 [ 943.765602] ? do_syscall_64+0x9a/0x820 [ 943.765623] ? do_syscall_64+0x9a/0x820 [ 943.816378] ? trace_hardirqs_off_caller+0x310/0x310 [ 943.821501] __x64_sys_sendmsg+0x78/0xb0 [ 943.825578] do_syscall_64+0x1b9/0x820 [ 943.829480] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 943.834904] ? syscall_return_slowpath+0x5e0/0x5e0 [ 943.839895] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 943.844769] ? trace_hardirqs_on_caller+0x310/0x310 [ 943.849805] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 943.854849] ? prepare_exit_to_usermode+0x291/0x3b0 [ 943.859899] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 943.864733] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 943.869917] RIP: 0033:0x457569 [ 943.873125] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 943.892071] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 943.899784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 943.907038] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 943.914302] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 943.921572] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 943.928826] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:06 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x4c00, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:06 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000fffffffb0000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:06 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf0ffffffffffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:06 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13]}, 0x2c) [ 944.075214] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 944.102127] CPU: 0 PID: 9883 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 944.109455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 944.118815] Call Trace: [ 944.121423] dump_stack+0x244/0x39d [ 944.125070] ? dump_stack_print_info.cold.1+0x20/0x20 [ 944.130282] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 944.135409] sysfs_warn_dup.cold.3+0x1c/0x2b [ 944.139832] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 944.145218] sysfs_create_link+0x65/0xc0 [ 944.149294] device_add+0x64a/0x18e0 [ 944.153021] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 944.157704] ? genl_rcv_msg+0xc6/0x168 [ 944.161613] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 944.166757] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 944.172135] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 944.177356] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 944.177384] wiphy_register+0x1a5b/0x2770 [ 944.177412] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 944.187102] ? rcu_read_lock_sched_held+0x14f/0x180 [ 944.187120] ? __kmalloc+0x5ee/0x760 [ 944.187140] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 944.206330] ? ieee80211_cs_list_valid+0x7c/0x440 [ 944.211206] ? ieee80211_register_hw+0xce9/0x3f10 [ 944.216077] ieee80211_register_hw+0x159b/0x3f10 [ 944.220889] ? ieee80211_ifa_changed+0xed0/0xed0 [ 944.225659] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 944.230678] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 944.236840] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 944.242370] ? vsnprintf+0x20d/0x1b60 [ 944.246201] ? pointer+0x900/0x900 [ 944.249733] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 944.254736] ? kvasprintf+0xee/0x150 [ 944.258440] ? bust_spinlocks+0xe0/0xe0 [ 944.262404] ? validate_nla+0x29a/0x1650 [ 944.266456] ? kasprintf+0xab/0xe0 [ 944.269986] ? kvasprintf_const+0x190/0x190 [ 944.274297] ? cap_capable+0x1f9/0x260 [ 944.278192] hwsim_new_radio_nl+0x7dc/0xb20 [ 944.282507] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 944.287685] ? __nla_parse+0x12c/0x3e0 [ 944.291571] genl_family_rcv_msg+0x8a7/0x11a0 [ 944.296060] ? genl_unregister_family+0x8a0/0x8a0 [ 944.300914] ? lock_downgrade+0x900/0x900 [ 944.305050] ? check_preemption_disabled+0x48/0x280 [ 944.310055] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 944.314973] ? kasan_check_read+0x11/0x20 [ 944.319109] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 944.324379] ? rcu_softirq_qs+0x20/0x20 [ 944.328351] genl_rcv_msg+0xc6/0x168 [ 944.332053] netlink_rcv_skb+0x172/0x440 [ 944.336102] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 944.340845] ? netlink_ack+0xb80/0xb80 [ 944.344750] ? down_read+0x8d/0x120 [ 944.348369] genl_rcv+0x28/0x40 [ 944.351636] netlink_unicast+0x5a5/0x760 [ 944.355689] ? netlink_attachskb+0x9a0/0x9a0 [ 944.360088] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 944.365636] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 944.370644] netlink_sendmsg+0xa18/0xfc0 [ 944.374699] ? netlink_unicast+0x760/0x760 [ 944.378924] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 944.383855] ? apparmor_socket_sendmsg+0x29/0x30 [ 944.388597] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 944.394123] ? security_socket_sendmsg+0x94/0xc0 [ 944.398872] ? netlink_unicast+0x760/0x760 [ 944.403112] sock_sendmsg+0xd5/0x120 [ 944.406829] ___sys_sendmsg+0x7fd/0x930 [ 944.410887] ? find_held_lock+0x36/0x1c0 [ 944.414951] ? copy_msghdr_from_user+0x580/0x580 [ 944.419697] ? __fd_install+0x2b5/0x8f0 [ 944.423691] ? __fget_light+0x2e9/0x430 [ 944.427671] ? fget_raw+0x20/0x20 [ 944.431117] ? __might_fault+0x12b/0x1e0 [ 944.435179] ? lock_downgrade+0x900/0x900 [ 944.439321] ? lock_release+0xa00/0xa00 [ 944.443280] ? perf_trace_sched_process_exec+0x860/0x860 [ 944.448717] ? posix_ktime_get_ts+0x15/0x20 [ 944.453028] ? trace_hardirqs_off_caller+0x310/0x310 [ 944.458122] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 944.463651] ? sockfd_lookup_light+0xc5/0x160 [ 944.468134] __sys_sendmsg+0x11d/0x280 [ 944.472008] ? __ia32_sys_shutdown+0x80/0x80 [ 944.476431] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 944.481961] ? put_timespec64+0x10f/0x1b0 [ 944.486099] ? do_syscall_64+0x9a/0x820 [ 944.490061] ? do_syscall_64+0x9a/0x820 [ 944.494031] ? trace_hardirqs_off_caller+0x310/0x310 [ 944.499125] __x64_sys_sendmsg+0x78/0xb0 [ 944.503185] do_syscall_64+0x1b9/0x820 [ 944.507080] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 944.512432] ? syscall_return_slowpath+0x5e0/0x5e0 [ 944.517357] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 944.522202] ? trace_hardirqs_on_caller+0x310/0x310 [ 944.527222] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 944.532229] ? prepare_exit_to_usermode+0x291/0x3b0 [ 944.537246] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 944.542078] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 944.547272] RIP: 0033:0x457569 [ 944.550456] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 944.569359] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:09:07 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xe00) 01:09:07 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1f00, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:07 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xc3100000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:07 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd000000]}, 0x2c) [ 944.577053] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 944.584324] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 944.591578] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 944.598851] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 944.606106] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:07 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000034000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:07 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xfdffffff00000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:07 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x400300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:07 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1500]}, 0x2c) [ 944.837831] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:09:07 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x600000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 944.883989] CPU: 0 PID: 9912 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 944.891319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 944.900695] Call Trace: [ 944.903321] dump_stack+0x244/0x39d [ 944.906991] ? dump_stack_print_info.cold.1+0x20/0x20 [ 944.912329] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 944.917458] sysfs_warn_dup.cold.3+0x1c/0x2b [ 944.921913] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 944.927295] sysfs_create_link+0x65/0xc0 01:09:07 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1300000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 944.931379] device_add+0x64a/0x18e0 [ 944.935110] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 944.939800] ? genl_rcv_msg+0xc6/0x168 [ 944.943711] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 944.943728] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 944.943749] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 944.954214] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 944.954241] wiphy_register+0x1a5b/0x2770 [ 944.954270] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 944.954296] ? rcu_read_lock_sched_held+0x14f/0x180 [ 944.954312] ? __kmalloc+0x5ee/0x760 [ 944.954330] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 944.954350] ? ieee80211_cs_list_valid+0x7c/0x440 [ 944.988371] ? ieee80211_register_hw+0xce9/0x3f10 [ 944.988396] ieee80211_register_hw+0x159b/0x3f10 [ 944.988430] ? ieee80211_ifa_changed+0xed0/0xed0 [ 944.988460] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 944.998148] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 944.998182] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 944.998201] ? vsnprintf+0x20d/0x1b60 [ 944.998223] ? pointer+0x900/0x900 01:09:07 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xa000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 945.031748] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 945.036774] ? kvasprintf+0xee/0x150 [ 945.040500] ? bust_spinlocks+0xe0/0xe0 [ 945.044491] ? validate_nla+0x29a/0x1650 [ 945.048569] ? kasprintf+0xab/0xe0 [ 945.052134] ? kvasprintf_const+0x190/0x190 [ 945.056489] ? cap_capable+0x1f9/0x260 [ 945.060402] hwsim_new_radio_nl+0x7dc/0xb20 [ 945.064830] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 945.070037] ? __nla_parse+0x12c/0x3e0 [ 945.073952] genl_family_rcv_msg+0x8a7/0x11a0 [ 945.078467] ? genl_unregister_family+0x8a0/0x8a0 01:09:07 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xb00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 945.083328] ? lock_downgrade+0x900/0x900 [ 945.087491] ? check_preemption_disabled+0x48/0x280 [ 945.092537] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 945.097480] ? kasan_check_read+0x11/0x20 [ 945.101638] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 945.106931] ? rcu_softirq_qs+0x20/0x20 [ 945.110942] genl_rcv_msg+0xc6/0x168 [ 945.114675] netlink_rcv_skb+0x172/0x440 [ 945.118750] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 945.123531] ? netlink_ack+0xb80/0xb80 [ 945.127436] ? down_read+0x8d/0x120 [ 945.131089] genl_rcv+0x28/0x40 [ 945.134385] netlink_unicast+0x5a5/0x760 [ 945.138468] ? netlink_attachskb+0x9a0/0x9a0 [ 945.142901] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 945.148452] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 945.153485] netlink_sendmsg+0xa18/0xfc0 [ 945.157571] ? netlink_unicast+0x760/0x760 [ 945.161846] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 945.166811] ? apparmor_socket_sendmsg+0x29/0x30 [ 945.171601] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 945.177173] ? security_socket_sendmsg+0x94/0xc0 [ 945.181958] ? netlink_unicast+0x760/0x760 [ 945.186233] sock_sendmsg+0xd5/0x120 [ 945.189978] ___sys_sendmsg+0x7fd/0x930 [ 945.193968] ? find_held_lock+0x36/0x1c0 [ 945.198041] ? copy_msghdr_from_user+0x580/0x580 [ 945.202809] ? __fd_install+0x2b5/0x8f0 [ 945.206813] ? __fget_light+0x2e9/0x430 [ 945.210800] ? fget_raw+0x20/0x20 [ 945.214268] ? __might_fault+0x12b/0x1e0 [ 945.218357] ? lock_downgrade+0x900/0x900 [ 945.222549] ? lock_release+0xa00/0xa00 [ 945.226588] ? perf_trace_sched_process_exec+0x860/0x860 [ 945.232026] ? posix_ktime_get_ts+0x15/0x20 [ 945.236347] ? trace_hardirqs_off_caller+0x310/0x310 [ 945.241447] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 945.246975] ? sockfd_lookup_light+0xc5/0x160 [ 945.251464] __sys_sendmsg+0x11d/0x280 [ 945.255348] ? __ia32_sys_shutdown+0x80/0x80 [ 945.259748] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 945.265275] ? put_timespec64+0x10f/0x1b0 [ 945.269513] ? do_syscall_64+0x9a/0x820 [ 945.273519] ? do_syscall_64+0x9a/0x820 [ 945.277502] ? trace_hardirqs_off_caller+0x310/0x310 [ 945.282611] __x64_sys_sendmsg+0x78/0xb0 [ 945.286678] do_syscall_64+0x1b9/0x820 [ 945.290569] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 945.295935] ? syscall_return_slowpath+0x5e0/0x5e0 [ 945.300867] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 945.305738] ? trace_hardirqs_on_caller+0x310/0x310 [ 945.310744] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 945.315776] ? prepare_exit_to_usermode+0x291/0x3b0 [ 945.320796] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 945.325644] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 945.330816] RIP: 0033:0x457569 [ 945.334008] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 945.352928] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 945.360623] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 945.367878] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 945.375132] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:09:08 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xffffff7f) [ 945.382413] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 945.389686] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:08 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300]}, 0x2c) 01:09:08 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xb, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:08 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x34000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:08 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a00000000007a0000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:08 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xb00d020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:08 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x4000000) [ 945.619917] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 945.648580] CPU: 1 PID: 9961 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 945.655894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 945.665257] Call Trace: 01:09:08 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x2]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:08 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1300]}, 0x2c) [ 945.667891] dump_stack+0x244/0x39d [ 945.671571] ? dump_stack_print_info.cold.1+0x20/0x20 [ 945.676789] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 945.681915] sysfs_warn_dup.cold.3+0x1c/0x2b [ 945.681934] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 945.681952] sysfs_create_link+0x65/0xc0 [ 945.691755] device_add+0x64a/0x18e0 [ 945.691772] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 945.691787] ? genl_rcv_msg+0xc6/0x168 [ 945.691810] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 945.691825] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 945.691843] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 945.691866] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 945.723828] wiphy_register+0x1a5b/0x2770 [ 945.723859] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 945.723887] ? rcu_read_lock_sched_held+0x14f/0x180 [ 945.733555] ? __kmalloc+0x5ee/0x760 [ 945.733576] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 945.733594] ? ieee80211_cs_list_valid+0x7c/0x440 [ 945.733612] ? ieee80211_register_hw+0xce9/0x3f10 [ 945.733634] ieee80211_register_hw+0x159b/0x3f10 [ 945.767306] ? ieee80211_ifa_changed+0xed0/0xed0 [ 945.772088] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 945.777129] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 945.783306] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 945.788861] ? vsnprintf+0x20d/0x1b60 [ 945.792717] ? pointer+0x900/0x900 [ 945.796287] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 945.801315] ? kvasprintf+0xee/0x150 [ 945.805056] ? bust_spinlocks+0xe0/0xe0 [ 945.809050] ? validate_nla+0x29a/0x1650 [ 945.813138] ? kasprintf+0xab/0xe0 [ 945.816706] ? kvasprintf_const+0x190/0x190 01:09:08 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xb00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 945.821047] ? cap_capable+0x1f9/0x260 [ 945.824969] hwsim_new_radio_nl+0x7dc/0xb20 [ 945.829307] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 945.834505] ? __nla_parse+0x12c/0x3e0 [ 945.838414] genl_family_rcv_msg+0x8a7/0x11a0 [ 945.842928] ? genl_unregister_family+0x8a0/0x8a0 [ 945.847785] ? lock_downgrade+0x900/0x900 [ 945.851946] ? check_preemption_disabled+0x48/0x280 [ 945.856982] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 945.861927] ? kasan_check_read+0x11/0x20 [ 945.866091] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 01:09:08 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xffffff9e]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 945.871381] ? rcu_softirq_qs+0x20/0x20 [ 945.875394] genl_rcv_msg+0xc6/0x168 [ 945.879134] netlink_rcv_skb+0x172/0x440 [ 945.883222] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 945.888009] ? netlink_ack+0xb80/0xb80 [ 945.891902] ? down_read+0x8d/0x120 [ 945.895555] genl_rcv+0x28/0x40 [ 945.898864] netlink_unicast+0x5a5/0x760 [ 945.902944] ? netlink_attachskb+0x9a0/0x9a0 [ 945.907367] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 945.912916] ? __sanitizer_cov_trace_cmp4+0x16/0x20 01:09:08 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x900000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 945.917950] netlink_sendmsg+0xa18/0xfc0 [ 945.922029] ? netlink_unicast+0x760/0x760 [ 945.926274] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 945.931220] ? apparmor_socket_sendmsg+0x29/0x30 [ 945.936001] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 945.941551] ? security_socket_sendmsg+0x94/0xc0 [ 945.946317] ? netlink_unicast+0x760/0x760 [ 945.950573] sock_sendmsg+0xd5/0x120 [ 945.954307] ___sys_sendmsg+0x7fd/0x930 [ 945.958312] ? find_held_lock+0x36/0x1c0 [ 945.962393] ? copy_msghdr_from_user+0x580/0x580 [ 945.967174] ? __fd_install+0x2b5/0x8f0 01:09:08 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf0ffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:08 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xb00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 945.971179] ? __fget_light+0x2e9/0x430 [ 945.975175] ? fget_raw+0x20/0x20 [ 945.978642] ? __might_fault+0x12b/0x1e0 [ 945.982726] ? lock_downgrade+0x900/0x900 [ 945.986918] ? lock_release+0xa00/0xa00 [ 945.990901] ? perf_trace_sched_process_exec+0x860/0x860 [ 945.996362] ? posix_ktime_get_ts+0x15/0x20 [ 946.000928] ? trace_hardirqs_off_caller+0x310/0x310 [ 946.006057] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 946.011603] ? sockfd_lookup_light+0xc5/0x160 [ 946.016109] __sys_sendmsg+0x11d/0x280 01:09:08 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x100000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 946.020029] ? __ia32_sys_shutdown+0x80/0x80 [ 946.024461] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 946.030011] ? put_timespec64+0x10f/0x1b0 [ 946.034213] ? do_syscall_64+0x9a/0x820 [ 946.038209] ? do_syscall_64+0x9a/0x820 [ 946.042217] ? trace_hardirqs_off_caller+0x310/0x310 [ 946.047370] __x64_sys_sendmsg+0x78/0xb0 [ 946.051444] do_syscall_64+0x1b9/0x820 [ 946.055339] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 946.060721] ? syscall_return_slowpath+0x5e0/0x5e0 [ 946.065663] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 946.070535] ? trace_hardirqs_on_caller+0x310/0x310 [ 946.075564] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 946.080600] ? prepare_exit_to_usermode+0x291/0x3b0 [ 946.085640] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 946.090510] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 946.095714] RIP: 0033:0x457569 [ 946.098913] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 946.117834] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 946.125548] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 946.132832] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 946.140115] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 946.147369] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 946.154623] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:09 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000]}, 0x2c) 01:09:09 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x400000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:09 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x540a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:09 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x2088ffffffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:09 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000020000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:09 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x10) 01:09:09 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xf00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:09 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18000000]}, 0x2c) 01:09:09 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x1f4) [ 946.500991] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 946.508759] CPU: 0 PID: 10018 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 946.516118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 946.525519] Call Trace: [ 946.528131] dump_stack+0x244/0x39d [ 946.531824] ? dump_stack_print_info.cold.1+0x20/0x20 [ 946.537039] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 946.542158] sysfs_warn_dup.cold.3+0x1c/0x2b [ 946.542231] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 946.542256] sysfs_create_link+0x65/0xc0 [ 946.552038] device_add+0x64a/0x18e0 [ 946.552055] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 946.552070] ? genl_rcv_msg+0xc6/0x168 [ 946.552094] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 946.552109] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 946.552128] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 946.552146] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 946.552198] wiphy_register+0x1a5b/0x2770 [ 946.589660] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 946.598733] ? rcu_read_lock_sched_held+0x14f/0x180 [ 946.598750] ? __kmalloc+0x5ee/0x760 [ 946.598768] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 946.598800] ? ieee80211_cs_list_valid+0x7c/0x440 [ 946.598833] ? ieee80211_register_hw+0xce9/0x3f10 [ 946.598855] ieee80211_register_hw+0x159b/0x3f10 [ 946.627549] ? ieee80211_ifa_changed+0xed0/0xed0 [ 946.632337] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 946.637457] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 946.643664] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 946.649217] ? vsnprintf+0x20d/0x1b60 [ 946.653053] ? pointer+0x900/0x900 [ 946.656611] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 946.661665] ? kvasprintf+0xee/0x150 [ 946.665388] ? bust_spinlocks+0xe0/0xe0 [ 946.669406] ? validate_nla+0x29a/0x1650 [ 946.673507] ? kasprintf+0xab/0xe0 [ 946.677073] ? kvasprintf_const+0x190/0x190 [ 946.681416] ? cap_capable+0x1f9/0x260 [ 946.681444] hwsim_new_radio_nl+0x7dc/0xb20 [ 946.681466] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 946.694862] ? __nla_parse+0x12c/0x3e0 01:09:09 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x550a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:09 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x1300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 946.694915] genl_family_rcv_msg+0x8a7/0x11a0 [ 946.694989] ? genl_unregister_family+0x8a0/0x8a0 [ 946.708224] ? lock_downgrade+0x900/0x900 [ 946.712406] ? check_preemption_disabled+0x48/0x280 [ 946.717472] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 946.722420] ? kasan_check_read+0x11/0x20 [ 946.726581] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 946.731876] ? rcu_softirq_qs+0x20/0x20 [ 946.735886] genl_rcv_msg+0xc6/0x168 [ 946.739635] netlink_rcv_skb+0x172/0x440 [ 946.743745] ? genl_family_rcv_msg+0x11a0/0x11a0 01:09:09 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x500]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 946.748511] ? netlink_ack+0xb80/0xb80 [ 946.752413] ? down_read+0x8d/0x120 [ 946.756064] genl_rcv+0x28/0x40 [ 946.759368] netlink_unicast+0x5a5/0x760 [ 946.763448] ? netlink_attachskb+0x9a0/0x9a0 [ 946.767878] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 946.773635] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 946.778673] netlink_sendmsg+0xa18/0xfc0 [ 946.783162] ? netlink_unicast+0x760/0x760 [ 946.787441] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 946.792387] ? apparmor_socket_sendmsg+0x29/0x30 [ 946.797156] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 946.802728] ? security_socket_sendmsg+0x94/0xc0 [ 946.807511] ? netlink_unicast+0x760/0x760 [ 946.807533] sock_sendmsg+0xd5/0x120 [ 946.807552] ___sys_sendmsg+0x7fd/0x930 [ 946.822933] ? find_held_lock+0x36/0x1c0 [ 946.827008] ? copy_msghdr_from_user+0x580/0x580 [ 946.827025] ? __fd_install+0x2b5/0x8f0 [ 946.827052] ? __fget_light+0x2e9/0x430 [ 946.827067] ? fget_raw+0x20/0x20 [ 946.827085] ? __might_fault+0x12b/0x1e0 [ 946.827102] ? lock_downgrade+0x900/0x900 01:09:09 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x8000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 946.827120] ? lock_release+0xa00/0xa00 [ 946.827138] ? perf_trace_sched_process_exec+0x860/0x860 [ 946.860853] ? posix_ktime_get_ts+0x15/0x20 [ 946.865207] ? trace_hardirqs_off_caller+0x310/0x310 [ 946.870347] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 946.875895] ? sockfd_lookup_light+0xc5/0x160 [ 946.880414] __sys_sendmsg+0x11d/0x280 [ 946.884315] ? __ia32_sys_shutdown+0x80/0x80 [ 946.888742] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 946.894329] ? put_timespec64+0x10f/0x1b0 [ 946.898502] ? do_syscall_64+0x9a/0x820 [ 946.902520] ? do_syscall_64+0x9a/0x820 [ 946.906515] ? trace_hardirqs_off_caller+0x310/0x310 [ 946.911781] __x64_sys_sendmsg+0x78/0xb0 [ 946.915853] do_syscall_64+0x1b9/0x820 [ 946.919748] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 946.925124] ? syscall_return_slowpath+0x5e0/0x5e0 [ 946.930109] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 946.934983] ? trace_hardirqs_on_caller+0x310/0x310 [ 946.940018] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 946.945059] ? prepare_exit_to_usermode+0x291/0x3b0 01:09:09 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x1200]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 946.950095] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 946.954962] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 946.960191] RIP: 0033:0x457569 [ 946.963397] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 946.982316] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 946.982332] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 01:09:09 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x5]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 946.982341] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 946.982349] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 946.982358] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 946.982372] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:10 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xb70d0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:10 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000040000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:10 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00]}, 0x2c) 01:09:10 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x9]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:10 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x4) 01:09:10 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3401]}, 0x2c) 01:09:10 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6d000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:10 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xf]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 947.265924] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 947.325592] CPU: 1 PID: 10078 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 947.332986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 947.342343] Call Trace: [ 947.344974] dump_stack+0x244/0x39d [ 947.348644] ? dump_stack_print_info.cold.1+0x20/0x20 [ 947.353864] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 947.358997] sysfs_warn_dup.cold.3+0x1c/0x2b [ 947.363439] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 947.368819] sysfs_create_link+0x65/0xc0 [ 947.372900] device_add+0x64a/0x18e0 [ 947.376668] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 947.381355] ? genl_rcv_msg+0xc6/0x168 [ 947.385283] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 947.390400] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 947.395780] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 947.401030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 947.406603] wiphy_register+0x1a5b/0x2770 [ 947.410781] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 947.415742] ? rcu_read_lock_sched_held+0x14f/0x180 [ 947.420775] ? __kmalloc+0x5ee/0x760 [ 947.424504] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 947.430051] ? ieee80211_cs_list_valid+0x7c/0x440 [ 947.434906] ? ieee80211_register_hw+0xce9/0x3f10 [ 947.439768] ieee80211_register_hw+0x159b/0x3f10 [ 947.439800] ? ieee80211_ifa_changed+0xed0/0xed0 [ 947.439833] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 947.439868] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 947.439886] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 947.439903] ? vsnprintf+0x20d/0x1b60 [ 947.439927] ? pointer+0x900/0x900 01:09:10 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xc310000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:10 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x1000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 947.439954] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 947.439970] ? kvasprintf+0xee/0x150 [ 947.439987] ? bust_spinlocks+0xe0/0xe0 [ 947.440008] ? validate_nla+0x29a/0x1650 [ 947.440030] ? kasprintf+0xab/0xe0 [ 947.440046] ? kvasprintf_const+0x190/0x190 [ 947.440070] ? cap_capable+0x1f9/0x260 [ 947.440096] hwsim_new_radio_nl+0x7dc/0xb20 [ 947.440119] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 947.440134] ? __nla_parse+0x12c/0x3e0 [ 947.440177] genl_family_rcv_msg+0x8a7/0x11a0 [ 947.440203] ? genl_unregister_family+0x8a0/0x8a0 01:09:10 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x12]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 947.449707] ? lock_downgrade+0x900/0x900 [ 947.449726] ? check_preemption_disabled+0x48/0x280 [ 947.449745] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 947.449764] ? kasan_check_read+0x11/0x20 [ 947.543228] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 947.548548] ? rcu_softirq_qs+0x20/0x20 [ 947.552585] genl_rcv_msg+0xc6/0x168 [ 947.556353] netlink_rcv_skb+0x172/0x440 [ 947.560439] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 947.565214] ? netlink_ack+0xb80/0xb80 [ 947.569139] ? down_read+0x8d/0x120 [ 947.572816] genl_rcv+0x28/0x40 01:09:10 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xffffffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 947.576105] netlink_unicast+0x5a5/0x760 [ 947.580187] ? netlink_attachskb+0x9a0/0x9a0 [ 947.584641] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 947.590220] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 947.595272] netlink_sendmsg+0xa18/0xfc0 [ 947.599353] ? netlink_unicast+0x760/0x760 [ 947.603597] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 947.608538] ? apparmor_socket_sendmsg+0x29/0x30 [ 947.613314] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 947.618863] ? security_socket_sendmsg+0x94/0xc0 [ 947.623633] ? netlink_unicast+0x760/0x760 [ 947.627899] sock_sendmsg+0xd5/0x120 [ 947.631634] ___sys_sendmsg+0x7fd/0x930 [ 947.635635] ? find_held_lock+0x36/0x1c0 [ 947.639731] ? copy_msghdr_from_user+0x580/0x580 [ 947.644498] ? __fd_install+0x2b5/0x8f0 [ 947.648498] ? __fget_light+0x2e9/0x430 [ 947.652491] ? fget_raw+0x20/0x20 [ 947.655948] ? __might_fault+0x12b/0x1e0 [ 947.660009] ? lock_downgrade+0x900/0x900 [ 947.664153] ? lock_release+0xa00/0xa00 [ 947.668131] ? perf_trace_sched_process_exec+0x860/0x860 [ 947.673577] ? posix_ktime_get_ts+0x15/0x20 [ 947.677904] ? trace_hardirqs_off_caller+0x310/0x310 [ 947.683076] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 947.688617] ? sockfd_lookup_light+0xc5/0x160 [ 947.693127] __sys_sendmsg+0x11d/0x280 [ 947.697003] ? __ia32_sys_shutdown+0x80/0x80 [ 947.701399] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 947.706926] ? put_timespec64+0x10f/0x1b0 [ 947.711071] ? do_syscall_64+0x9a/0x820 [ 947.715030] ? do_syscall_64+0x9a/0x820 [ 947.719004] ? trace_hardirqs_off_caller+0x310/0x310 [ 947.724108] __x64_sys_sendmsg+0x78/0xb0 [ 947.728160] do_syscall_64+0x1b9/0x820 [ 947.732062] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 947.737434] ? syscall_return_slowpath+0x5e0/0x5e0 [ 947.742366] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 947.747199] ? trace_hardirqs_on_caller+0x310/0x310 [ 947.752214] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 947.757234] ? prepare_exit_to_usermode+0x291/0x3b0 [ 947.762263] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 947.767112] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 947.772295] RIP: 0033:0x457569 [ 947.775490] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 947.794385] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 947.802104] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 947.809366] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 947.816644] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 947.823917] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 947.831191] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:10 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xaa0d0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:10 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x500000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:10 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xfe80000000000000) 01:09:10 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a000000000000000000ffffffff00000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:10 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900]}, 0x2c) 01:09:10 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:10 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x900000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 948.055462] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:09:10 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00]}, 0x2c) [ 948.122608] CPU: 1 PID: 10126 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 948.130021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 948.130028] Call Trace: [ 948.130053] dump_stack+0x244/0x39d [ 948.130078] ? dump_stack_print_info.cold.1+0x20/0x20 [ 948.150822] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 948.155944] sysfs_warn_dup.cold.3+0x1c/0x2b [ 948.155964] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 948.155983] sysfs_create_link+0x65/0xc0 01:09:11 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xc310]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 948.156004] device_add+0x64a/0x18e0 [ 948.173526] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 948.178209] ? genl_rcv_msg+0xc6/0x168 [ 948.182121] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 948.187242] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 948.192613] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 948.197794] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 948.203343] wiphy_register+0x1a5b/0x2770 [ 948.207517] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 948.212466] ? rcu_read_lock_sched_held+0x14f/0x180 [ 948.217494] ? __kmalloc+0x5ee/0x760 [ 948.221224] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 948.226786] ? ieee80211_cs_list_valid+0x7c/0x440 [ 948.226804] ? ieee80211_register_hw+0xce9/0x3f10 [ 948.226825] ieee80211_register_hw+0x159b/0x3f10 [ 948.226852] ? ieee80211_ifa_changed+0xed0/0xed0 [ 948.236553] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 948.236607] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 948.257246] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 948.262800] ? vsnprintf+0x20d/0x1b60 [ 948.266644] ? pointer+0x900/0x900 01:09:11 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x10c3]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:11 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x1000000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 948.270214] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 948.275253] ? kvasprintf+0xee/0x150 [ 948.278979] ? bust_spinlocks+0xe0/0xe0 [ 948.282976] ? validate_nla+0x29a/0x1650 [ 948.287055] ? kasprintf+0xab/0xe0 [ 948.290634] ? kvasprintf_const+0x190/0x190 [ 948.294995] ? cap_capable+0x1f9/0x260 [ 948.298906] hwsim_new_radio_nl+0x7dc/0xb20 [ 948.303250] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 948.308469] ? __nla_parse+0x12c/0x3e0 [ 948.312381] genl_family_rcv_msg+0x8a7/0x11a0 [ 948.316895] ? genl_unregister_family+0x8a0/0x8a0 01:09:11 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x400300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 948.321753] ? lock_downgrade+0x900/0x900 [ 948.325916] ? check_preemption_disabled+0x48/0x280 [ 948.330954] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 948.335898] ? kasan_check_read+0x11/0x20 [ 948.340057] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 948.345365] ? rcu_softirq_qs+0x20/0x20 [ 948.349376] genl_rcv_msg+0xc6/0x168 [ 948.353134] netlink_rcv_skb+0x172/0x440 [ 948.357212] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 948.361979] ? netlink_ack+0xb80/0xb80 [ 948.365876] ? down_read+0x8d/0x120 [ 948.369522] genl_rcv+0x28/0x40 [ 948.372806] netlink_unicast+0x5a5/0x760 [ 948.376896] ? netlink_attachskb+0x9a0/0x9a0 [ 948.381345] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 948.386917] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 948.391951] netlink_sendmsg+0xa18/0xfc0 [ 948.396030] ? netlink_unicast+0x760/0x760 [ 948.400303] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 948.405235] ? apparmor_socket_sendmsg+0x29/0x30 [ 948.409986] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 948.415548] ? security_socket_sendmsg+0x94/0xc0 [ 948.420354] ? netlink_unicast+0x760/0x760 [ 948.424596] sock_sendmsg+0xd5/0x120 [ 948.428299] ___sys_sendmsg+0x7fd/0x930 [ 948.432259] ? find_held_lock+0x36/0x1c0 [ 948.436311] ? copy_msghdr_from_user+0x580/0x580 [ 948.441055] ? __fd_install+0x2b5/0x8f0 [ 948.445023] ? __fget_light+0x2e9/0x430 [ 948.449007] ? fget_raw+0x20/0x20 [ 948.452490] ? __might_fault+0x12b/0x1e0 [ 948.456591] ? lock_downgrade+0x900/0x900 [ 948.460732] ? lock_release+0xa00/0xa00 [ 948.464712] ? perf_trace_sched_process_exec+0x860/0x860 [ 948.470163] ? posix_ktime_get_ts+0x15/0x20 [ 948.474484] ? trace_hardirqs_off_caller+0x310/0x310 [ 948.479596] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 948.485119] ? sockfd_lookup_light+0xc5/0x160 [ 948.489623] __sys_sendmsg+0x11d/0x280 [ 948.493519] ? __ia32_sys_shutdown+0x80/0x80 [ 948.497967] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 948.503524] ? put_timespec64+0x10f/0x1b0 [ 948.507695] ? do_syscall_64+0x9a/0x820 [ 948.511657] ? do_syscall_64+0x9a/0x820 [ 948.515652] ? trace_hardirqs_off_caller+0x310/0x310 [ 948.520748] __x64_sys_sendmsg+0x78/0xb0 [ 948.524804] do_syscall_64+0x1b9/0x820 [ 948.528695] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 948.534060] ? syscall_return_slowpath+0x5e0/0x5e0 [ 948.538999] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 948.543844] ? trace_hardirqs_on_caller+0x310/0x310 [ 948.548867] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 948.553872] ? prepare_exit_to_usermode+0x291/0x3b0 [ 948.558876] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 948.563720] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 948.568907] RIP: 0033:0x457569 [ 948.572086] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 948.590979] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 948.598721] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 948.605983] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 948.613257] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 948.620549] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 948.627806] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:11 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x60000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:11 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x9000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:11 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000480000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:11 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0xfffff000) 01:09:11 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe00]}, 0x2c) 01:09:11 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xffffff97, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 948.832723] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 948.862505] CPU: 0 PID: 10173 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 948.869907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 948.879269] Call Trace: [ 948.881870] dump_stack+0x244/0x39d [ 948.885492] ? dump_stack_print_info.cold.1+0x20/0x20 [ 948.890696] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 948.895833] sysfs_warn_dup.cold.3+0x1c/0x2b [ 948.900232] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 948.905587] sysfs_create_link+0x65/0xc0 [ 948.909653] device_add+0x64a/0x18e0 [ 948.913480] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 948.918138] ? genl_rcv_msg+0xc6/0x168 [ 948.922037] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 948.927138] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 948.932550] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 948.937730] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 948.943312] wiphy_register+0x1a5b/0x2770 [ 948.947492] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 948.952417] ? rcu_read_lock_sched_held+0x14f/0x180 [ 948.957420] ? __kmalloc+0x5ee/0x760 [ 948.961136] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 948.966694] ? ieee80211_cs_list_valid+0x7c/0x440 [ 948.971539] ? ieee80211_register_hw+0xce9/0x3f10 [ 948.976374] ieee80211_register_hw+0x159b/0x3f10 [ 948.981198] ? ieee80211_ifa_changed+0xed0/0xed0 [ 948.985966] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 948.990977] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 948.997111] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 949.002644] ? vsnprintf+0x20d/0x1b60 [ 949.006483] ? pointer+0x900/0x900 [ 949.010035] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 949.015068] ? kvasprintf+0xee/0x150 [ 949.018770] ? bust_spinlocks+0xe0/0xe0 [ 949.022759] ? validate_nla+0x29a/0x1650 [ 949.026810] ? kasprintf+0xab/0xe0 [ 949.030381] ? kvasprintf_const+0x190/0x190 [ 949.034725] ? cap_capable+0x1f9/0x260 [ 949.038605] hwsim_new_radio_nl+0x7dc/0xb20 [ 949.042934] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 949.048111] ? __nla_parse+0x12c/0x3e0 [ 949.052006] genl_family_rcv_msg+0x8a7/0x11a0 [ 949.056498] ? genl_unregister_family+0x8a0/0x8a0 [ 949.061344] ? lock_downgrade+0x900/0x900 [ 949.065513] ? check_preemption_disabled+0x48/0x280 [ 949.070516] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 949.075433] ? kasan_check_read+0x11/0x20 [ 949.079567] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 949.084840] ? rcu_softirq_qs+0x20/0x20 [ 949.088807] genl_rcv_msg+0xc6/0x168 [ 949.092530] netlink_rcv_skb+0x172/0x440 [ 949.096578] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 949.101349] ? netlink_ack+0xb80/0xb80 [ 949.105239] ? down_read+0x8d/0x120 [ 949.108903] genl_rcv+0x28/0x40 [ 949.112195] netlink_unicast+0x5a5/0x760 [ 949.116261] ? netlink_attachskb+0x9a0/0x9a0 [ 949.120672] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 949.126202] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 949.131245] netlink_sendmsg+0xa18/0xfc0 [ 949.135302] ? netlink_unicast+0x760/0x760 [ 949.139535] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 949.144477] ? apparmor_socket_sendmsg+0x29/0x30 [ 949.149236] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 949.154778] ? security_socket_sendmsg+0x94/0xc0 [ 949.159520] ? netlink_unicast+0x760/0x760 [ 949.163745] sock_sendmsg+0xd5/0x120 [ 949.167449] ___sys_sendmsg+0x7fd/0x930 [ 949.171424] ? find_held_lock+0x36/0x1c0 [ 949.175476] ? copy_msghdr_from_user+0x580/0x580 [ 949.180219] ? __fd_install+0x2b5/0x8f0 [ 949.184199] ? __fget_light+0x2e9/0x430 [ 949.188189] ? fget_raw+0x20/0x20 [ 949.191662] ? __might_fault+0x12b/0x1e0 [ 949.195716] ? lock_downgrade+0x900/0x900 [ 949.199870] ? lock_release+0xa00/0xa00 [ 949.203844] ? perf_trace_sched_process_exec+0x860/0x860 [ 949.209311] ? posix_ktime_get_ts+0x15/0x20 [ 949.213634] ? trace_hardirqs_off_caller+0x310/0x310 [ 949.218781] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 949.224313] ? sockfd_lookup_light+0xc5/0x160 [ 949.228797] __sys_sendmsg+0x11d/0x280 [ 949.232676] ? __ia32_sys_shutdown+0x80/0x80 [ 949.237085] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 949.242611] ? put_timespec64+0x10f/0x1b0 [ 949.246749] ? do_syscall_64+0x9a/0x820 [ 949.250710] ? do_syscall_64+0x9a/0x820 [ 949.254676] ? trace_hardirqs_off_caller+0x310/0x310 [ 949.259773] __x64_sys_sendmsg+0x78/0xb0 [ 949.263822] do_syscall_64+0x1b9/0x820 [ 949.267695] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 949.273059] ? syscall_return_slowpath+0x5e0/0x5e0 [ 949.277976] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 949.282806] ? trace_hardirqs_on_caller+0x310/0x310 [ 949.287824] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 949.292841] ? prepare_exit_to_usermode+0x291/0x3b0 [ 949.297861] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 949.302709] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 949.307896] RIP: 0033:0x457569 [ 949.311095] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 01:09:12 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xf000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:12 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, 0x2c) [ 949.329999] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 949.337698] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 949.344964] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 949.352217] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 949.359509] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 949.366790] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:12 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000340000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:12 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = socket$kcm(0x29, 0x7, 0x0) ioctl$sock_SIOCOUTQ(r2, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0xfffffffffffffeaf) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:12 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000]}, 0x2c) [ 949.537792] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 949.562795] CPU: 1 PID: 10192 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 949.570246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 949.579604] Call Trace: [ 949.582237] dump_stack+0x244/0x39d [ 949.585995] ? dump_stack_print_info.cold.1+0x20/0x20 [ 949.591237] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 949.596362] sysfs_warn_dup.cold.3+0x1c/0x2b [ 949.600804] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 949.606215] sysfs_create_link+0x65/0xc0 [ 949.610289] device_add+0x64a/0x18e0 [ 949.613990] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 949.618642] ? genl_rcv_msg+0xc6/0x168 [ 949.622520] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 949.627630] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 949.632997] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 949.638206] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 949.643768] wiphy_register+0x1a5b/0x2770 [ 949.647905] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 949.652828] ? rcu_read_lock_sched_held+0x14f/0x180 [ 949.657840] ? __kmalloc+0x5ee/0x760 [ 949.661577] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 949.667127] ? ieee80211_cs_list_valid+0x7c/0x440 [ 949.671980] ? ieee80211_register_hw+0xce9/0x3f10 [ 949.676815] ieee80211_register_hw+0x159b/0x3f10 [ 949.681696] ? ieee80211_ifa_changed+0xed0/0xed0 [ 949.686496] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 949.691523] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 949.697674] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 949.703214] ? vsnprintf+0x20d/0x1b60 [ 949.707018] ? pointer+0x900/0x900 [ 949.710559] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 949.715563] ? kvasprintf+0xee/0x150 [ 949.719273] ? bust_spinlocks+0xe0/0xe0 [ 949.723250] ? validate_nla+0x29a/0x1650 [ 949.727301] ? kasprintf+0xab/0xe0 [ 949.730847] ? kvasprintf_const+0x190/0x190 [ 949.735162] ? cap_capable+0x1f9/0x260 [ 949.739058] hwsim_new_radio_nl+0x7dc/0xb20 [ 949.743372] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 949.748557] ? __nla_parse+0x12c/0x3e0 [ 949.752480] genl_family_rcv_msg+0x8a7/0x11a0 [ 949.756966] ? genl_unregister_family+0x8a0/0x8a0 [ 949.761797] ? lock_downgrade+0x900/0x900 [ 949.765938] ? check_preemption_disabled+0x48/0x280 [ 949.770944] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 949.775861] ? kasan_check_read+0x11/0x20 [ 949.780009] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 949.785286] ? rcu_softirq_qs+0x20/0x20 [ 949.789291] genl_rcv_msg+0xc6/0x168 [ 949.792994] netlink_rcv_skb+0x172/0x440 [ 949.797056] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 949.801827] ? netlink_ack+0xb80/0xb80 [ 949.805719] ? down_read+0x8d/0x120 [ 949.809351] genl_rcv+0x28/0x40 [ 949.812632] netlink_unicast+0x5a5/0x760 [ 949.816698] ? netlink_attachskb+0x9a0/0x9a0 [ 949.821114] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 949.826656] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 949.831852] netlink_sendmsg+0xa18/0xfc0 [ 949.835922] ? netlink_unicast+0x760/0x760 [ 949.840156] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 949.845085] ? apparmor_socket_sendmsg+0x29/0x30 [ 949.849913] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 949.855440] ? security_socket_sendmsg+0x94/0xc0 [ 949.860227] ? netlink_unicast+0x760/0x760 [ 949.864468] sock_sendmsg+0xd5/0x120 [ 949.868201] ___sys_sendmsg+0x7fd/0x930 [ 949.872175] ? find_held_lock+0x36/0x1c0 [ 949.876230] ? copy_msghdr_from_user+0x580/0x580 [ 949.880973] ? __fd_install+0x2b5/0x8f0 [ 949.884960] ? __fget_light+0x2e9/0x430 [ 949.888941] ? fget_raw+0x20/0x20 [ 949.892396] ? __might_fault+0x12b/0x1e0 [ 949.896448] ? lock_downgrade+0x900/0x900 [ 949.900606] ? lock_release+0xa00/0xa00 [ 949.904580] ? perf_trace_sched_process_exec+0x860/0x860 [ 949.910023] ? posix_ktime_get_ts+0x15/0x20 [ 949.914343] ? trace_hardirqs_off_caller+0x310/0x310 [ 949.919451] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 949.924993] ? sockfd_lookup_light+0xc5/0x160 [ 949.929506] __sys_sendmsg+0x11d/0x280 [ 949.933424] ? __ia32_sys_shutdown+0x80/0x80 [ 949.937831] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 949.943353] ? put_timespec64+0x10f/0x1b0 [ 949.947502] ? do_syscall_64+0x9a/0x820 [ 949.951475] ? do_syscall_64+0x9a/0x820 [ 949.955456] ? trace_hardirqs_off_caller+0x310/0x310 [ 949.960564] __x64_sys_sendmsg+0x78/0xb0 [ 949.964626] do_syscall_64+0x1b9/0x820 [ 949.968539] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 949.973893] ? syscall_return_slowpath+0x5e0/0x5e0 [ 949.978811] ? trace_hardirqs_on_caller+0x310/0x310 [ 949.983816] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 949.988820] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 949.995516] ? __switch_to_asm+0x40/0x70 [ 949.999574] ? __switch_to_asm+0x34/0x70 [ 950.003625] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 950.008457] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 950.013643] RIP: 0033:0x457569 [ 950.016849] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 01:09:12 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xb616, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 950.035738] RSP: 002b:00007fef3bf50c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 950.043436] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 950.050702] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 950.057964] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 950.065234] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf516d4 [ 950.072488] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:12 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:12 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x6]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:13 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000050000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:13 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}, 0x2c) 01:09:13 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0abf5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(r2, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$sock_bt_hidp_HIDPCONNADD(r2, 0x400448c8, &(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="ecde05000000dcae092c670000", @ANYPTR=&(0x7f0000000400)=ANY=[@ANYBLOB="8adf0bf73b3eb009fa27feb4e95b1f6e32004d443c563ecb41086bbd798147d929b552f711cc10081cd760672b3eef6bfd0b5e6500304bc5b7b05e09c40a747c55dde05ab0365677d55e05141755f96608d1ab1eab5426950fc3c8cad880dfeeeabaabab0e67cc50172e9b7e09934adcdad072bbc6e170775aea8e6612cb17f3f86c82561636e30194fc6c20"], @ANYBLOB="07f40400154c070007000000000000078c09efa08cf3361efa45eec09097fb5da446cb"]) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x4fb58b6aeef977bb) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) [ 950.239833] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:09:13 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x9effffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 950.280137] CPU: 1 PID: 10220 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 950.287550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 950.296920] Call Trace: [ 950.299523] dump_stack+0x244/0x39d [ 950.303181] ? dump_stack_print_info.cold.1+0x20/0x20 [ 950.308390] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 950.313555] sysfs_warn_dup.cold.3+0x1c/0x2b [ 950.317980] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 950.323358] sysfs_create_link+0x65/0xc0 01:09:13 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x3000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 950.327437] device_add+0x64a/0x18e0 [ 950.331163] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 950.335856] ? genl_rcv_msg+0xc6/0x168 [ 950.339754] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 950.344940] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 950.350333] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 950.355541] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 950.361099] wiphy_register+0x1a5b/0x2770 [ 950.365305] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 950.370262] ? rcu_read_lock_sched_held+0x14f/0x180 [ 950.375322] ? __kmalloc+0x5ee/0x760 01:09:13 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x1300000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 950.379080] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 950.384649] ? ieee80211_cs_list_valid+0x7c/0x440 [ 950.389513] ? ieee80211_register_hw+0xce9/0x3f10 [ 950.394378] ieee80211_register_hw+0x159b/0x3f10 [ 950.399163] ? ieee80211_ifa_changed+0xed0/0xed0 [ 950.403976] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 950.409024] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 950.415196] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 950.420752] ? vsnprintf+0x20d/0x1b60 [ 950.424576] ? pointer+0x900/0x900 01:09:13 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xf0ffffffffffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 950.428144] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 950.433200] ? kvasprintf+0xee/0x150 [ 950.436931] ? bust_spinlocks+0xe0/0xe0 [ 950.440923] ? validate_nla+0x29a/0x1650 [ 950.445001] ? kasprintf+0xab/0xe0 [ 950.448550] ? kvasprintf_const+0x190/0x190 [ 950.452889] ? cap_capable+0x1f9/0x260 [ 950.456802] hwsim_new_radio_nl+0x7dc/0xb20 [ 950.461147] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 950.466359] ? __nla_parse+0x12c/0x3e0 [ 950.470275] genl_family_rcv_msg+0x8a7/0x11a0 [ 950.474796] ? genl_unregister_family+0x8a0/0x8a0 01:09:13 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x9effffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 950.479662] ? lock_downgrade+0x900/0x900 [ 950.483831] ? check_preemption_disabled+0x48/0x280 [ 950.488864] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 950.493807] ? kasan_check_read+0x11/0x20 [ 950.497967] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 950.503251] ? rcu_softirq_qs+0x20/0x20 [ 950.507265] genl_rcv_msg+0xc6/0x168 [ 950.511000] netlink_rcv_skb+0x172/0x440 [ 950.515078] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 950.519854] ? netlink_ack+0xb80/0xb80 [ 950.523761] ? down_read+0x8d/0x120 [ 950.527419] genl_rcv+0x28/0x40 01:09:13 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xf0ffffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 950.530714] netlink_unicast+0x5a5/0x760 [ 950.534796] ? netlink_attachskb+0x9a0/0x9a0 [ 950.539219] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 950.544775] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 950.549810] netlink_sendmsg+0xa18/0xfc0 [ 950.553899] ? netlink_unicast+0x760/0x760 [ 950.558145] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 950.563099] ? apparmor_socket_sendmsg+0x29/0x30 [ 950.567872] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 950.573424] ? security_socket_sendmsg+0x94/0xc0 01:09:13 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xc00, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 950.578195] ? netlink_unicast+0x760/0x760 [ 950.582446] sock_sendmsg+0xd5/0x120 [ 950.586186] ___sys_sendmsg+0x7fd/0x930 [ 950.590190] ? find_held_lock+0x36/0x1c0 [ 950.594258] ? copy_msghdr_from_user+0x580/0x580 [ 950.599011] ? __fd_install+0x2b5/0x8f0 [ 950.603010] ? __fget_light+0x2e9/0x430 [ 950.606996] ? fget_raw+0x20/0x20 [ 950.610469] ? __might_fault+0x12b/0x1e0 [ 950.614546] ? lock_downgrade+0x900/0x900 [ 950.618716] ? lock_release+0xa00/0xa00 [ 950.622714] ? perf_trace_sched_process_exec+0x860/0x860 [ 950.628184] ? posix_ktime_get_ts+0x15/0x20 [ 950.632532] ? trace_hardirqs_off_caller+0x310/0x310 [ 950.637711] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 950.643258] ? sockfd_lookup_light+0xc5/0x160 [ 950.647766] __sys_sendmsg+0x11d/0x280 [ 950.651651] ? __ia32_sys_shutdown+0x80/0x80 [ 950.656120] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 950.661692] ? put_timespec64+0x10f/0x1b0 [ 950.665846] ? do_syscall_64+0x9a/0x820 [ 950.669807] ? do_syscall_64+0x9a/0x820 [ 950.673804] ? trace_hardirqs_off_caller+0x310/0x310 [ 950.678901] __x64_sys_sendmsg+0x78/0xb0 [ 950.682986] do_syscall_64+0x1b9/0x820 [ 950.686931] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 950.692308] ? syscall_return_slowpath+0x5e0/0x5e0 [ 950.697237] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 950.702065] ? trace_hardirqs_on_caller+0x310/0x310 [ 950.707068] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 950.712076] ? prepare_exit_to_usermode+0x291/0x3b0 [ 950.717082] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 950.721917] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 950.727093] RIP: 0033:0x457569 [ 950.730281] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 950.749190] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 950.756890] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 950.764156] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 950.771433] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 950.778821] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 950.786084] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:13 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x20da8, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:13 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x3f00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:13 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={r0}) sendmsg$xdp(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000400)="66f7398cea7c866f33b0ad086333337ee11f5e4691aea1c1e9fa827f105c66ce93606ccecfe179095b2d2aede713bb38f0f678f530921962cdaf8d1ce49927197bf6b89e94b10fc564de619969d13f955ea93170dfbdf173e250105f5369bdecc4d1cdfd7527ee5d766addb9174e123ca387f6675e582bc256f552e71ffb45119aac4100511c7dd0ff63c4d8f728cf9f3fd663c293d5666aae423d35d02db59d3a0702c41f9a678f37206146b2b4a227ac3cdf7a2f2f6bcffea33c88d7c6cd6c205e699cd0ad405def726892fbc1fbe44f20beaeff5c2f07c4eb11", 0xdb}, {&(0x7f0000000180)="06c5c60d8c100222a67f2db90d215975af16e01974e7f65cc871", 0x1a}, {&(0x7f0000000ac0)="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", 0x1000}, {&(0x7f0000000500)="3de98821e1578c7b74c4d761ac9cea762655d475effb80299427a9579d91c8906c49efaa0e7c3c4d72e4c4065ea28a8b12a7347cde89c69543e0e84b0985debd813b996446edfecd5d27fa5e96f131d796824694cb02f162857d809b8eab91f6643453ed7face0bcab13e4f294b81565773fc542bc3fba03567467348a7aa87a561a301e", 0x84}, {&(0x7f0000000300)="0af85b5439323acc31cb231c3163785312fea6b414cbed426548d0db43f475f6a233fee8be86f3b008b8823ce7002c8a7328bea4e2ef75bf3514f180c63c3dc769b7", 0x42}], 0x5, 0x0, 0x0, 0x41}, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:13 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}, 0x2c) 01:09:13 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000100000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:13 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6b, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:13 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x3f000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:13 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x2c) 01:09:14 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) [ 951.189055] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 951.214116] CPU: 1 PID: 10278 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 951.221505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 951.230860] Call Trace: [ 951.233456] dump_stack+0x244/0x39d 01:09:14 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xe4ffffff00000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 951.237097] ? dump_stack_print_info.cold.1+0x20/0x20 [ 951.242320] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 951.247448] sysfs_warn_dup.cold.3+0x1c/0x2b [ 951.251873] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 951.251893] sysfs_create_link+0x65/0xc0 [ 951.251914] device_add+0x64a/0x18e0 [ 951.265057] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 951.265085] ? genl_rcv_msg+0xc6/0x168 [ 951.265108] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 951.278768] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 951.284145] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 951.289407] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 951.294964] wiphy_register+0x1a5b/0x2770 [ 951.299141] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 951.304103] ? rcu_read_lock_sched_held+0x14f/0x180 [ 951.309146] ? __kmalloc+0x5ee/0x760 [ 951.312940] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 951.318486] ? ieee80211_cs_list_valid+0x7c/0x440 [ 951.323355] ? ieee80211_register_hw+0xce9/0x3f10 [ 951.328213] ieee80211_register_hw+0x159b/0x3f10 [ 951.332991] ? ieee80211_ifa_changed+0xed0/0xed0 [ 951.337776] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 951.342822] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 951.349007] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 951.354554] ? vsnprintf+0x20d/0x1b60 [ 951.358372] ? pointer+0x900/0x900 [ 951.361928] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 951.366954] ? kvasprintf+0xee/0x150 [ 951.370674] ? bust_spinlocks+0xe0/0xe0 [ 951.374667] ? validate_nla+0x29a/0x1650 [ 951.378747] ? kasprintf+0xab/0xe0 [ 951.382298] ? kvasprintf_const+0x190/0x190 [ 951.386637] ? cap_capable+0x1f9/0x260 [ 951.390559] hwsim_new_radio_nl+0x7dc/0xb20 [ 951.394896] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 951.400096] ? __nla_parse+0x12c/0x3e0 [ 951.404009] genl_family_rcv_msg+0x8a7/0x11a0 [ 951.408544] ? genl_unregister_family+0x8a0/0x8a0 [ 951.413418] ? lock_downgrade+0x900/0x900 [ 951.417581] ? check_preemption_disabled+0x48/0x280 [ 951.422610] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 951.427544] ? kasan_check_read+0x11/0x20 [ 951.431705] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 01:09:14 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x10]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 951.436978] ? rcu_softirq_qs+0x20/0x20 [ 951.440971] genl_rcv_msg+0xc6/0x168 [ 951.444726] netlink_rcv_skb+0x172/0x440 [ 951.448822] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 951.453588] ? netlink_ack+0xb80/0xb80 [ 951.457493] ? down_read+0x8d/0x120 [ 951.461149] genl_rcv+0x28/0x40 [ 951.464450] netlink_unicast+0x5a5/0x760 [ 951.468533] ? netlink_attachskb+0x9a0/0x9a0 [ 951.472957] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 951.478539] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 951.483572] netlink_sendmsg+0xa18/0xfc0 01:09:14 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x200000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 951.487656] ? netlink_unicast+0x760/0x760 [ 951.491910] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 951.496857] ? apparmor_socket_sendmsg+0x29/0x30 [ 951.501625] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 951.507192] ? security_socket_sendmsg+0x94/0xc0 [ 951.511960] ? netlink_unicast+0x760/0x760 [ 951.516216] sock_sendmsg+0xd5/0x120 [ 951.519939] ___sys_sendmsg+0x7fd/0x930 [ 951.523937] ? find_held_lock+0x36/0x1c0 [ 951.528024] ? copy_msghdr_from_user+0x580/0x580 [ 951.532792] ? __fd_install+0x2b5/0x8f0 [ 951.532821] ? __fget_light+0x2e9/0x430 [ 951.532838] ? fget_raw+0x20/0x20 [ 951.532856] ? __might_fault+0x12b/0x1e0 [ 951.532874] ? lock_downgrade+0x900/0x900 [ 951.532893] ? lock_release+0xa00/0xa00 [ 951.540854] ? perf_trace_sched_process_exec+0x860/0x860 [ 951.540883] ? posix_ktime_get_ts+0x15/0x20 [ 951.540902] ? trace_hardirqs_off_caller+0x310/0x310 [ 951.540944] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 951.540960] ? sockfd_lookup_light+0xc5/0x160 [ 951.540982] __sys_sendmsg+0x11d/0x280 [ 951.541015] ? __ia32_sys_shutdown+0x80/0x80 [ 951.541034] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 951.595321] ? put_timespec64+0x10f/0x1b0 [ 951.599487] ? do_syscall_64+0x9a/0x820 [ 951.603493] ? do_syscall_64+0x9a/0x820 [ 951.607502] ? trace_hardirqs_off_caller+0x310/0x310 [ 951.612628] __x64_sys_sendmsg+0x78/0xb0 [ 951.616709] do_syscall_64+0x1b9/0x820 [ 951.620632] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 951.625988] ? syscall_return_slowpath+0x5e0/0x5e0 [ 951.630927] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 951.635778] ? trace_hardirqs_on_caller+0x310/0x310 [ 951.640803] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 951.645830] ? prepare_exit_to_usermode+0x291/0x3b0 [ 951.650865] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 951.655713] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 951.660903] RIP: 0033:0x457569 [ 951.664086] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 951.682976] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 951.690670] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 951.698188] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 951.705459] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 951.712718] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 951.719992] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:14 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x1f00, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:14 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xffffff7f00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:14 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000000500000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:14 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xfdffffff00000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:14 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13]}, 0x2c) 01:09:14 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r1, 0x8, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:14 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000300000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 951.972605] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 952.012693] CPU: 1 PID: 10328 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 952.020085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 952.029448] Call Trace: [ 952.032056] dump_stack+0x244/0x39d [ 952.035718] ? dump_stack_print_info.cold.1+0x20/0x20 [ 952.040945] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 952.046080] sysfs_warn_dup.cold.3+0x1c/0x2b [ 952.050510] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 952.055894] sysfs_create_link+0x65/0xc0 [ 952.060000] device_add+0x64a/0x18e0 [ 952.063729] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 952.068412] ? genl_rcv_msg+0xc6/0x168 [ 952.072325] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 952.077444] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 952.082842] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 952.088046] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 952.093636] wiphy_register+0x1a5b/0x2770 [ 952.097833] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 952.102888] ? rcu_read_lock_sched_held+0x14f/0x180 [ 952.107933] ? __kmalloc+0x5ee/0x760 [ 952.111728] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 952.117281] ? ieee80211_cs_list_valid+0x7c/0x440 [ 952.122139] ? ieee80211_register_hw+0xce9/0x3f10 [ 952.127015] ieee80211_register_hw+0x159b/0x3f10 [ 952.131810] ? ieee80211_ifa_changed+0xed0/0xed0 [ 952.136597] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 952.141648] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 952.147813] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 952.153365] ? vsnprintf+0x20d/0x1b60 [ 952.157202] ? pointer+0x900/0x900 [ 952.160769] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 952.165801] ? kvasprintf+0xee/0x150 [ 952.169529] ? bust_spinlocks+0xe0/0xe0 [ 952.173522] ? validate_nla+0x29a/0x1650 [ 952.177603] ? kasprintf+0xab/0xe0 [ 952.181181] ? kvasprintf_const+0x190/0x190 [ 952.185536] ? cap_capable+0x1f9/0x260 [ 952.189478] hwsim_new_radio_nl+0x7dc/0xb20 [ 952.193820] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 952.199028] ? __nla_parse+0x12c/0x3e0 [ 952.202958] genl_family_rcv_msg+0x8a7/0x11a0 [ 952.207470] ? genl_unregister_family+0x8a0/0x8a0 [ 952.212322] ? lock_downgrade+0x900/0x900 [ 952.216484] ? check_preemption_disabled+0x48/0x280 [ 952.221515] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 952.226469] ? kasan_check_read+0x11/0x20 [ 952.230642] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 952.235974] ? rcu_softirq_qs+0x20/0x20 [ 952.240009] genl_rcv_msg+0xc6/0x168 [ 952.243758] netlink_rcv_skb+0x172/0x440 [ 952.247858] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 952.252640] ? netlink_ack+0xb80/0xb80 [ 952.256540] ? down_read+0x8d/0x120 [ 952.260213] genl_rcv+0x28/0x40 [ 952.263508] netlink_unicast+0x5a5/0x760 [ 952.267601] ? netlink_attachskb+0x9a0/0x9a0 [ 952.272019] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 952.277583] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 952.282613] netlink_sendmsg+0xa18/0xfc0 [ 952.286707] ? netlink_unicast+0x760/0x760 [ 952.290968] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 952.295912] ? apparmor_socket_sendmsg+0x29/0x30 [ 952.300689] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 952.306256] ? security_socket_sendmsg+0x94/0xc0 [ 952.311032] ? netlink_unicast+0x760/0x760 [ 952.315299] sock_sendmsg+0xd5/0x120 [ 952.319031] ___sys_sendmsg+0x7fd/0x930 [ 952.323033] ? find_held_lock+0x36/0x1c0 [ 952.327139] ? copy_msghdr_from_user+0x580/0x580 [ 952.331968] ? __fd_install+0x2b5/0x8f0 [ 952.335949] ? __fget_light+0x2e9/0x430 [ 952.339922] ? fget_raw+0x20/0x20 [ 952.343361] ? __might_fault+0x12b/0x1e0 [ 952.347422] ? lock_downgrade+0x900/0x900 [ 952.351573] ? lock_release+0xa00/0xa00 [ 952.355539] ? perf_trace_sched_process_exec+0x860/0x860 [ 952.361036] ? posix_ktime_get_ts+0x15/0x20 [ 952.365365] ? trace_hardirqs_off_caller+0x310/0x310 [ 952.370477] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 952.376016] ? sockfd_lookup_light+0xc5/0x160 [ 952.380500] __sys_sendmsg+0x11d/0x280 [ 952.384385] ? __ia32_sys_shutdown+0x80/0x80 [ 952.388796] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 952.394331] ? put_timespec64+0x10f/0x1b0 [ 952.398497] ? do_syscall_64+0x9a/0x820 [ 952.402482] ? do_syscall_64+0x9a/0x820 [ 952.406482] ? trace_hardirqs_off_caller+0x310/0x310 [ 952.411585] __x64_sys_sendmsg+0x78/0xb0 [ 952.415637] do_syscall_64+0x1b9/0x820 [ 952.419546] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 952.424920] ? syscall_return_slowpath+0x5e0/0x5e0 [ 952.429853] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 952.434709] ? trace_hardirqs_on_caller+0x310/0x310 [ 952.439719] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 952.444741] ? prepare_exit_to_usermode+0x291/0x3b0 [ 952.449802] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 952.454671] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 952.459866] RIP: 0033:0x457569 [ 952.463096] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 952.481992] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 952.489696] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 952.496978] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 952.504271] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 952.511538] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 01:09:14 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000000]}, 0x2c) 01:09:14 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xffffff7f]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:15 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xa000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:15 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x800000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:15 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x40030000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 952.518814] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:15 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xb00d0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:15 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xc3100000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:15 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1200]}, 0x2c) 01:09:15 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r0, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) r2 = socket$inet(0x10, 0x3, 0x0) r3 = socket$inet6(0xa, 0x803, 0x3) ioctl(r3, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") sendmsg(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="240000002400075e1dfffd946fa2830020200a000900000000008568f1ffffff0400ff7e280000001100ffffba16a0aa1c0009b3ebea8653b1cc7e63975c0ac47b6268e3966cf055d90f15a3", 0x4c}], 0x1}, 0x0) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_RX_RING(r1, 0x10e, 0x6, &(0x7f0000000040)={0x41e2, 0x1f, 0x10001, 0x100000001}, 0x10) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0xfffffffffffffffe, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) 01:09:15 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4c00000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:15 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000fdffffff0000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:15 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x12000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 952.762610] netlink: 8 bytes leftover after parsing attributes in process `syz-executor0'. 01:09:15 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1300000000000000]}, 0x2c) 01:09:15 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6800000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 952.845443] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:09:15 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000004c00000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 952.890418] CPU: 1 PID: 10384 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 952.897804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 952.907160] Call Trace: [ 952.909812] dump_stack+0x244/0x39d [ 952.913988] ? dump_stack_print_info.cold.1+0x20/0x20 [ 952.919208] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 952.924331] sysfs_warn_dup.cold.3+0x1c/0x2b [ 952.928748] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 952.934155] sysfs_create_link+0x65/0xc0 [ 952.938242] device_add+0x64a/0x18e0 [ 952.941969] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 952.946662] ? genl_rcv_msg+0xc6/0x168 [ 952.950573] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 952.955698] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 952.961083] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 952.966322] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 952.971882] wiphy_register+0x1a5b/0x2770 [ 952.976058] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 952.981017] ? rcu_read_lock_sched_held+0x14f/0x180 [ 952.986043] ? __kmalloc+0x5ee/0x760 01:09:15 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x1100]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 952.986063] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 952.986079] ? ieee80211_cs_list_valid+0x7c/0x440 [ 952.986100] ? ieee80211_register_hw+0xce9/0x3f10 [ 953.005035] ieee80211_register_hw+0x159b/0x3f10 [ 953.009810] ? ieee80211_ifa_changed+0xed0/0xed0 [ 953.009843] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 953.009879] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 953.009897] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 953.009913] ? vsnprintf+0x20d/0x1b60 [ 953.009936] ? pointer+0x900/0x900 [ 953.009960] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 953.025845] ? kvasprintf+0xee/0x150 [ 953.025863] ? bust_spinlocks+0xe0/0xe0 [ 953.025885] ? validate_nla+0x29a/0x1650 [ 953.025907] ? kasprintf+0xab/0xe0 [ 953.025923] ? kvasprintf_const+0x190/0x190 [ 953.025948] ? cap_capable+0x1f9/0x260 [ 953.047537] hwsim_new_radio_nl+0x7dc/0xb20 [ 953.047560] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 953.047575] ? __nla_parse+0x12c/0x3e0 [ 953.047606] genl_family_rcv_msg+0x8a7/0x11a0 [ 953.047631] ? genl_unregister_family+0x8a0/0x8a0 [ 953.047649] ? lock_downgrade+0x900/0x900 [ 953.047669] ? check_preemption_disabled+0x48/0x280 [ 953.076916] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 953.076932] ? kasan_check_read+0x11/0x20 [ 953.076961] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 953.076976] ? rcu_softirq_qs+0x20/0x20 [ 953.077014] genl_rcv_msg+0xc6/0x168 [ 953.077034] netlink_rcv_skb+0x172/0x440 [ 953.077050] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 953.077068] ? netlink_ack+0xb80/0xb80 [ 953.108458] ? down_read+0x8d/0x120 [ 953.108490] genl_rcv+0x28/0x40 01:09:15 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xfffffffffffff000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 953.108507] netlink_unicast+0x5a5/0x760 [ 953.108531] ? netlink_attachskb+0x9a0/0x9a0 [ 953.108550] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 953.108582] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 953.108608] netlink_sendmsg+0xa18/0xfc0 [ 953.155202] ? netlink_unicast+0x760/0x760 [ 953.155219] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 953.155239] ? apparmor_socket_sendmsg+0x29/0x30 [ 953.155257] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 953.155275] ? security_socket_sendmsg+0x94/0xc0 [ 953.155291] ? netlink_unicast+0x760/0x760 [ 953.155326] sock_sendmsg+0xd5/0x120 [ 953.155344] ___sys_sendmsg+0x7fd/0x930 [ 953.155363] ? find_held_lock+0x36/0x1c0 [ 953.183863] ? copy_msghdr_from_user+0x580/0x580 [ 953.183880] ? __fd_install+0x2b5/0x8f0 [ 953.183908] ? __fget_light+0x2e9/0x430 [ 953.183924] ? fget_raw+0x20/0x20 [ 953.183941] ? __might_fault+0x12b/0x1e0 [ 953.183959] ? lock_downgrade+0x900/0x900 [ 953.183977] ? lock_release+0xa00/0xa00 [ 953.183996] ? perf_trace_sched_process_exec+0x860/0x860 [ 953.238412] ? posix_ktime_get_ts+0x15/0x20 [ 953.238431] ? trace_hardirqs_off_caller+0x310/0x310 [ 953.238457] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 953.238472] ? sockfd_lookup_light+0xc5/0x160 [ 953.238492] __sys_sendmsg+0x11d/0x280 [ 953.238510] ? __ia32_sys_shutdown+0x80/0x80 [ 953.247916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 953.247935] ? put_timespec64+0x10f/0x1b0 [ 953.247958] ? do_syscall_64+0x9a/0x820 [ 953.247975] ? do_syscall_64+0x9a/0x820 [ 953.248002] ? trace_hardirqs_off_caller+0x310/0x310 [ 953.248027] __x64_sys_sendmsg+0x78/0xb0 [ 953.248051] do_syscall_64+0x1b9/0x820 [ 953.296917] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 953.302293] ? syscall_return_slowpath+0x5e0/0x5e0 [ 953.307253] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 953.312082] ? trace_hardirqs_on_caller+0x310/0x310 [ 953.317104] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 953.322124] ? prepare_exit_to_usermode+0x291/0x3b0 [ 953.327160] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 953.332029] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 953.337207] RIP: 0033:0x457569 [ 953.340393] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 953.359301] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 953.367010] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 953.374273] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 953.381546] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 953.388843] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 953.396101] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 953.446601] netlink: 8 bytes leftover after parsing attributes in process `syz-executor0'. [ 953.489615] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 953.497359] CPU: 1 PID: 10420 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 953.504727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 953.514074] Call Trace: [ 953.516687] dump_stack+0x244/0x39d [ 953.520335] ? dump_stack_print_info.cold.1+0x20/0x20 [ 953.525560] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 953.530693] sysfs_warn_dup.cold.3+0x1c/0x2b [ 953.535114] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 953.540492] sysfs_create_link+0x65/0xc0 [ 953.540513] device_add+0x64a/0x18e0 [ 953.540530] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 953.540548] ? genl_rcv_msg+0xc6/0x168 [ 953.552983] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 953.552999] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 953.553016] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 953.553035] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 953.562008] wiphy_register+0x1a5b/0x2770 [ 953.562037] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 953.562062] ? rcu_read_lock_sched_held+0x14f/0x180 [ 953.562082] ? __kmalloc+0x5ee/0x760 [ 953.572619] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 953.572635] ? ieee80211_cs_list_valid+0x7c/0x440 [ 953.572652] ? ieee80211_register_hw+0xce9/0x3f10 [ 953.572671] ieee80211_register_hw+0x159b/0x3f10 [ 953.587312] ? ieee80211_ifa_changed+0xed0/0xed0 [ 953.587344] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 953.587376] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 953.596070] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 953.596086] ? vsnprintf+0x20d/0x1b60 [ 953.596108] ? pointer+0x900/0x900 [ 953.596131] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 953.649810] ? kvasprintf+0xee/0x150 [ 953.653531] ? bust_spinlocks+0xe0/0xe0 [ 953.657518] ? validate_nla+0x29a/0x1650 [ 953.661610] ? kasprintf+0xab/0xe0 [ 953.665197] ? kvasprintf_const+0x190/0x190 [ 953.669579] ? cap_capable+0x1f9/0x260 [ 953.673486] hwsim_new_radio_nl+0x7dc/0xb20 [ 953.677839] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 953.683061] ? __nla_parse+0x12c/0x3e0 [ 953.686944] genl_family_rcv_msg+0x8a7/0x11a0 [ 953.691429] ? genl_unregister_family+0x8a0/0x8a0 [ 953.696287] ? lock_downgrade+0x900/0x900 [ 953.700459] ? check_preemption_disabled+0x48/0x280 [ 953.705481] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 953.710396] ? kasan_check_read+0x11/0x20 [ 953.714531] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 953.719809] ? rcu_softirq_qs+0x20/0x20 [ 953.723785] genl_rcv_msg+0xc6/0x168 [ 953.727514] netlink_rcv_skb+0x172/0x440 [ 953.731563] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 953.736304] ? netlink_ack+0xb80/0xb80 [ 953.740184] ? down_read+0x8d/0x120 [ 953.743802] genl_rcv+0x28/0x40 [ 953.747096] netlink_unicast+0x5a5/0x760 [ 953.751164] ? netlink_attachskb+0x9a0/0x9a0 [ 953.755586] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 953.761157] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 953.766180] netlink_sendmsg+0xa18/0xfc0 [ 953.770263] ? netlink_unicast+0x760/0x760 [ 953.774495] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 953.779430] ? apparmor_socket_sendmsg+0x29/0x30 [ 953.784195] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 953.789795] ? security_socket_sendmsg+0x94/0xc0 [ 953.794535] ? netlink_unicast+0x760/0x760 [ 953.798771] sock_sendmsg+0xd5/0x120 [ 953.802499] ___sys_sendmsg+0x7fd/0x930 [ 953.806458] ? find_held_lock+0x36/0x1c0 [ 953.810540] ? copy_msghdr_from_user+0x580/0x580 [ 953.815321] ? __fd_install+0x2b5/0x8f0 [ 953.819290] ? __fget_light+0x2e9/0x430 [ 953.823259] ? fget_raw+0x20/0x20 [ 953.826719] ? __might_fault+0x12b/0x1e0 [ 953.830772] ? lock_downgrade+0x900/0x900 [ 953.834905] ? lock_release+0xa00/0xa00 [ 953.838865] ? perf_trace_sched_process_exec+0x860/0x860 [ 953.844365] ? posix_ktime_get_ts+0x15/0x20 [ 953.848708] ? trace_hardirqs_off_caller+0x310/0x310 [ 953.853806] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 953.859349] ? sockfd_lookup_light+0xc5/0x160 [ 953.863878] __sys_sendmsg+0x11d/0x280 [ 953.867754] ? __ia32_sys_shutdown+0x80/0x80 [ 953.872148] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 953.877708] ? put_timespec64+0x10f/0x1b0 [ 953.881861] ? do_syscall_64+0x9a/0x820 [ 953.885820] ? do_syscall_64+0x9a/0x820 [ 953.889787] ? trace_hardirqs_off_caller+0x310/0x310 [ 953.894889] __x64_sys_sendmsg+0x78/0xb0 [ 953.898945] do_syscall_64+0x1b9/0x820 [ 953.902829] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 953.908200] ? syscall_return_slowpath+0x5e0/0x5e0 [ 953.913145] ? trace_hardirqs_on_caller+0x310/0x310 [ 953.918180] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 953.923192] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 953.929846] ? __switch_to_asm+0x40/0x70 [ 953.933889] ? __switch_to_asm+0x34/0x70 [ 953.937935] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 953.942782] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 953.948214] RIP: 0033:0x457569 [ 953.951391] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 953.970293] RSP: 002b:00007fef3bf50c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 953.977999] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 01:09:16 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xa90d0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:16 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xa]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:16 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000010000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:16 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12000000]}, 0x2c) 01:09:16 executing program 0: r0 = socket$inet6(0xa, 0x6, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) accept4$inet(0xffffffffffffffff, 0x0, &(0x7f00000001c0), 0x80800) accept4(r1, &(0x7f0000000440)=@generic, &(0x7f00000004c0)=0x80, 0x8db0124b2b2b0a31) r2 = accept4(r0, &(0x7f0000000500)=@can, &(0x7f0000000580)=0x80, 0x80800) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r2, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r3 = socket(0x0, 0x0, 0x0) bind$bt_sco(r3, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000040), &(0x7f0000000180)=0x4) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r4, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x0, 0x0, 0x0, 0x40000000000000}}], 0x1, 0x0) [ 953.985253] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 953.992524] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 953.999777] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf516d4 [ 954.007031] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:16 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xd000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:17 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x3f00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:17 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}, 0x2c) 01:09:17 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000003f00000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 954.261437] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:09:17 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6f000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 954.311439] CPU: 0 PID: 10446 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 954.318819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 954.328193] Call Trace: [ 954.330803] dump_stack+0x244/0x39d [ 954.334457] ? dump_stack_print_info.cold.1+0x20/0x20 [ 954.339670] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 954.344801] sysfs_warn_dup.cold.3+0x1c/0x2b [ 954.349233] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 954.354617] sysfs_create_link+0x65/0xc0 01:09:17 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000340)={0x10, 0x0, 0x25dfdbfb, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = syz_genetlink_get_family_id$team(&(0x7f0000000180)='team\x00') getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000400)={{{@in=@local, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@remote}}, &(0x7f00000001c0)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000540)={{{@in=@loopback, @in6=@ipv4={[], [], @multicast2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in=@remote}}, &(0x7f0000000640)=0xe8) getsockopt$inet6_mreq(r3, 0x29, 0x15, &(0x7f0000000680)={@mcast1, 0x0}, &(0x7f00000006c0)=0x14) getsockname$packet(r3, &(0x7f0000000700)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000740)=0x14) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000780)={{{@in=@loopback, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@loopback}}, &(0x7f0000000880)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000ac0)={{{@in6=@local, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@broadcast}}, &(0x7f0000000bc0)=0xe8) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000cc0)={'team0\x00', 0x0}) accept4$packet(r2, &(0x7f00000013c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000001400)=0x14, 0x80800) accept4$packet(r3, &(0x7f0000001440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000001480)=0x14, 0x80800) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000014c0)={{{@in6, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @broadcast}}, 0x0, @in6=@mcast2}}, &(0x7f00000015c0)=0xe8) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000001600)={0x0, @dev, @multicast1}, &(0x7f0000001640)=0xc) getsockopt$inet_mreqn(r2, 0x0, 0x20, &(0x7f0000001680)={@local, @multicast1, 0x0}, &(0x7f00000016c0)=0xc) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000001700)={0x0, @multicast2, @empty}, &(0x7f0000001740)=0xc) getpeername$packet(r2, &(0x7f0000001840)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000001880)=0x14) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000018c0)={{{@in=@empty, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@local}}, &(0x7f00000019c0)=0xe8) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000001a00)={0x0, @loopback, @dev}, &(0x7f0000001a40)=0xc) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001c40)={'veth1\x00', 0x0}) accept4$packet(r2, &(0x7f0000001c80)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000001cc0)=0x14, 0x80800) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000001d00)={'vcan0\x00', 0x0}) getpeername$packet(r2, &(0x7f0000001d40)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000001d80)=0x14) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000001e80)={{{@in=@remote, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@multicast1}}, &(0x7f0000001f80)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000001fc0)={{{@in6=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6}}, &(0x7f00000020c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000002100)={'vlan0\x00', 0x0}) accept4$packet(r2, &(0x7f0000002140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000002180)=0x14, 0x80000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000021c0)={'dummy0\x00', 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000002200)={{{@in6=@local, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@remote}}, &(0x7f0000002300)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000002340)={'bond0\x00', 0x0}) getsockname$packet(r2, &(0x7f0000002380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000023c0)=0x14) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000002400)={0x0, @empty, @loopback}, &(0x7f0000002440)=0xc) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000002540)={{{@in6=@mcast1, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@loopback}}, &(0x7f0000002640)=0xe8) sendmsg$TEAM_CMD_PORT_LIST_GET(r2, &(0x7f0000003080)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1020}, 0xc, &(0x7f0000003040)={&(0x7f0000002680)={0x988, r4, 0x71a, 0x70bd2c, 0x25dfdbff, {}, [{{0x8, 0x1, r5}, {0x17c, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r6}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r7}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r8}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x166}}, {0x8, 0x6, r9}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x32e1}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r11}}}]}}, {{0x8, 0x1, r12}, {0x238, 0x2, [{0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r13}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r14}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0xc036}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r15}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0xe000000000000}}, {0x8, 0x6, r16}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0xc, 0x4, 'random\x00'}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r17}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x32bf}}, {0x8, 0x6, r18}}}]}}, {{0x8, 0x1, r19}, {0x138, 0x2, [{0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0xffffffffffff7fff}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r20}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r21}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r22}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r23}}}]}}, {{0x8, 0x1, r24}, {0xc4, 0x2, [{0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r25}}}, {0x4c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x1c, 0x4, [{0x1, 0x94, 0xb4, 0x2}, {0x9, 0x8, 0x401, 0x2}, {0x8, 0x5, 0x9b81, 0x2d068a4e}]}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r26}}}]}}, {{0x8, 0x1, r27}, {0xf4, 0x2, [{0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x6}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0xcd8d}}, {0x8}}}]}}, {{0x8, 0x1, r28}, {0xc0, 0x2, [{0x44, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x14, 0x4, [{0x3ff, 0x3, 0x400}, {0x8, 0xdc, 0x5, 0x4}]}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x7}}, {0x8}}}]}}, {{0x8, 0x1, r29}, {0x44, 0x2, [{0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x9}}, {0x8, 0x6, r30}}}]}}, {{0x8, 0x1, r31}, {0xc0, 0x2, [{0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x4c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x1c, 0x4, [{0xda, 0x8, 0x5, 0x4}, {0x5, 0x675e, 0x7, 0xfff}, {0x101, 0x8, 0x7, 0x4}]}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r32}}}]}}, {{0x8, 0x1, r33}, {0xc4, 0x2, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0xfffffffffffffff8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r34}}}, {0x4c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x1c, 0x4, [{0x1, 0x762, 0x100000001, 0x3}, {0x644, 0x3, 0x5, 0x3}, {0x800, 0x1, 0x3, 0x7}]}}}]}}]}, 0x988}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r35 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r35, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r35, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) [ 954.358698] device_add+0x64a/0x18e0 [ 954.362431] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 954.367112] ? genl_rcv_msg+0xc6/0x168 [ 954.371045] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 954.376201] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 954.381605] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 954.386823] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 954.392382] wiphy_register+0x1a5b/0x2770 [ 954.392425] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 954.401510] ? rcu_read_lock_sched_held+0x14f/0x180 [ 954.401528] ? __kmalloc+0x5ee/0x760 [ 954.401548] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 954.401565] ? ieee80211_cs_list_valid+0x7c/0x440 [ 954.401584] ? ieee80211_register_hw+0xce9/0x3f10 [ 954.401607] ieee80211_register_hw+0x159b/0x3f10 [ 954.401639] ? ieee80211_ifa_changed+0xed0/0xed0 [ 954.401671] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 954.401705] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 954.401725] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 954.416009] ? vsnprintf+0x20d/0x1b60 [ 954.416033] ? pointer+0x900/0x900 [ 954.416058] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 954.416073] ? kvasprintf+0xee/0x150 [ 954.416089] ? bust_spinlocks+0xe0/0xe0 [ 954.416109] ? validate_nla+0x29a/0x1650 [ 954.416142] ? kasprintf+0xab/0xe0 [ 954.425811] ? kvasprintf_const+0x190/0x190 [ 954.425835] ? cap_capable+0x1f9/0x260 [ 954.425862] hwsim_new_radio_nl+0x7dc/0xb20 [ 954.425886] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 954.425901] ? __nla_parse+0x12c/0x3e0 [ 954.425936] genl_family_rcv_msg+0x8a7/0x11a0 [ 954.505842] ? genl_unregister_family+0x8a0/0x8a0 [ 954.510716] ? lock_downgrade+0x900/0x900 [ 954.514877] ? check_preemption_disabled+0x48/0x280 [ 954.519896] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 954.524818] ? kasan_check_read+0x11/0x20 [ 954.528981] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 954.534257] ? rcu_softirq_qs+0x20/0x20 [ 954.538241] genl_rcv_msg+0xc6/0x168 [ 954.541961] netlink_rcv_skb+0x172/0x440 [ 954.546047] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 954.550833] ? netlink_ack+0xb80/0xb80 [ 954.554738] ? down_read+0x8d/0x120 [ 954.558377] genl_rcv+0x28/0x40 [ 954.561700] netlink_unicast+0x5a5/0x760 [ 954.565797] ? netlink_attachskb+0x9a0/0x9a0 [ 954.570238] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 954.575796] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 954.580819] netlink_sendmsg+0xa18/0xfc0 [ 954.584890] ? netlink_unicast+0x760/0x760 [ 954.589118] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 954.594050] ? apparmor_socket_sendmsg+0x29/0x30 [ 954.598824] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 954.604362] ? security_socket_sendmsg+0x94/0xc0 [ 954.609120] ? netlink_unicast+0x760/0x760 [ 954.613357] sock_sendmsg+0xd5/0x120 [ 954.617091] ___sys_sendmsg+0x7fd/0x930 [ 954.621093] ? find_held_lock+0x36/0x1c0 [ 954.625160] ? copy_msghdr_from_user+0x580/0x580 [ 954.629919] ? __fd_install+0x2b5/0x8f0 [ 954.633899] ? __fget_light+0x2e9/0x430 [ 954.637893] ? fget_raw+0x20/0x20 [ 954.641345] ? __might_fault+0x12b/0x1e0 [ 954.645424] ? lock_downgrade+0x900/0x900 [ 954.649587] ? lock_release+0xa00/0xa00 [ 954.653565] ? perf_trace_sched_process_exec+0x860/0x860 [ 954.659025] ? posix_ktime_get_ts+0x15/0x20 [ 954.663371] ? trace_hardirqs_off_caller+0x310/0x310 [ 954.668498] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 954.674058] ? sockfd_lookup_light+0xc5/0x160 [ 954.678581] __sys_sendmsg+0x11d/0x280 [ 954.682477] ? __ia32_sys_shutdown+0x80/0x80 [ 954.686893] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 954.692454] ? put_timespec64+0x10f/0x1b0 [ 954.696678] ? do_syscall_64+0x9a/0x820 [ 954.700699] ? do_syscall_64+0x9a/0x820 [ 954.704697] ? trace_hardirqs_off_caller+0x310/0x310 [ 954.709808] __x64_sys_sendmsg+0x78/0xb0 [ 954.713901] do_syscall_64+0x1b9/0x820 [ 954.717803] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 954.723154] ? syscall_return_slowpath+0x5e0/0x5e0 [ 954.728097] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 954.732972] ? trace_hardirqs_on_caller+0x310/0x310 [ 954.737989] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 954.743007] ? prepare_exit_to_usermode+0x291/0x3b0 [ 954.748048] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 954.752889] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 954.758062] RIP: 0033:0x457569 [ 954.761259] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 954.780164] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 954.787909] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 954.795219] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 954.802481] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:09:17 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x5000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 954.809745] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 954.817004] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:17 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xab0d0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:17 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x11000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:17 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xb]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:17 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000004800000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:17 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000]}, 0x2c) 01:09:17 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x300000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 955.031301] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 955.064213] CPU: 1 PID: 10495 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 955.071607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 955.080966] Call Trace: [ 955.080993] dump_stack+0x244/0x39d [ 955.081020] ? dump_stack_print_info.cold.1+0x20/0x20 [ 955.081042] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 955.092431] sysfs_warn_dup.cold.3+0x1c/0x2b [ 955.092451] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 955.092471] sysfs_create_link+0x65/0xc0 [ 955.092491] device_add+0x64a/0x18e0 [ 955.092511] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 955.119779] ? genl_rcv_msg+0xc6/0x168 [ 955.123703] ? get_device_parent.isra.25+0x5a0/0x5a0 01:09:18 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xfffff000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:18 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 955.128830] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 955.134205] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 955.134223] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 955.134248] wiphy_register+0x1a5b/0x2770 [ 955.149115] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 955.154084] ? rcu_read_lock_sched_held+0x14f/0x180 [ 955.159122] ? __kmalloc+0x5ee/0x760 [ 955.162855] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 955.168421] ? ieee80211_cs_list_valid+0x7c/0x440 [ 955.173274] ? ieee80211_register_hw+0xce9/0x3f10 01:09:18 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x600]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 955.178184] ieee80211_register_hw+0x159b/0x3f10 [ 955.182966] ? ieee80211_ifa_changed+0xed0/0xed0 [ 955.187744] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 955.192791] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 955.198948] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 955.204496] ? vsnprintf+0x20d/0x1b60 [ 955.208315] ? pointer+0x900/0x900 [ 955.211916] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 955.216950] ? kvasprintf+0xee/0x150 [ 955.220672] ? bust_spinlocks+0xe0/0xe0 [ 955.224669] ? validate_nla+0x29a/0x1650 [ 955.228752] ? kasprintf+0xab/0xe0 [ 955.228769] ? kvasprintf_const+0x190/0x190 [ 955.228793] ? cap_capable+0x1f9/0x260 [ 955.228820] hwsim_new_radio_nl+0x7dc/0xb20 [ 955.236669] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 955.236690] ? __nla_parse+0x12c/0x3e0 [ 955.236719] genl_family_rcv_msg+0x8a7/0x11a0 [ 955.236742] ? genl_unregister_family+0x8a0/0x8a0 [ 955.263322] ? lock_downgrade+0x900/0x900 [ 955.267482] ? check_preemption_disabled+0x48/0x280 [ 955.272527] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 955.277477] ? kasan_check_read+0x11/0x20 01:09:18 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x11]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 955.281649] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 955.286941] ? rcu_softirq_qs+0x20/0x20 [ 955.290944] genl_rcv_msg+0xc6/0x168 [ 955.294692] netlink_rcv_skb+0x172/0x440 [ 955.298763] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 955.303524] ? netlink_ack+0xb80/0xb80 [ 955.307422] ? down_read+0x8d/0x120 [ 955.311063] genl_rcv+0x28/0x40 [ 955.314347] netlink_unicast+0x5a5/0x760 [ 955.318447] ? netlink_attachskb+0x9a0/0x9a0 [ 955.322866] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 955.328418] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 955.333454] netlink_sendmsg+0xa18/0xfc0 [ 955.337547] ? netlink_unicast+0x760/0x760 [ 955.341812] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 955.346755] ? apparmor_socket_sendmsg+0x29/0x30 [ 955.351518] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 955.357066] ? security_socket_sendmsg+0x94/0xc0 [ 955.361835] ? netlink_unicast+0x760/0x760 [ 955.366113] sock_sendmsg+0xd5/0x120 [ 955.369843] ___sys_sendmsg+0x7fd/0x930 [ 955.373831] ? find_held_lock+0x36/0x1c0 [ 955.377894] ? copy_msghdr_from_user+0x580/0x580 [ 955.382634] ? __fd_install+0x2b5/0x8f0 [ 955.386599] ? __fget_light+0x2e9/0x430 [ 955.390559] ? fget_raw+0x20/0x20 [ 955.394016] ? __might_fault+0x12b/0x1e0 [ 955.398081] ? lock_downgrade+0x900/0x900 [ 955.402250] ? lock_release+0xa00/0xa00 [ 955.406260] ? perf_trace_sched_process_exec+0x860/0x860 [ 955.411699] ? posix_ktime_get_ts+0x15/0x20 [ 955.416007] ? trace_hardirqs_off_caller+0x310/0x310 [ 955.421101] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 955.426640] ? sockfd_lookup_light+0xc5/0x160 [ 955.431126] __sys_sendmsg+0x11d/0x280 [ 955.435018] ? __ia32_sys_shutdown+0x80/0x80 [ 955.439431] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 955.444955] ? put_timespec64+0x10f/0x1b0 [ 955.449090] ? do_syscall_64+0x9a/0x820 [ 955.453073] ? do_syscall_64+0x9a/0x820 [ 955.457051] ? trace_hardirqs_off_caller+0x310/0x310 [ 955.462143] __x64_sys_sendmsg+0x78/0xb0 [ 955.466201] do_syscall_64+0x1b9/0x820 [ 955.470086] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 955.475434] ? syscall_return_slowpath+0x5e0/0x5e0 [ 955.480347] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 955.485190] ? trace_hardirqs_on_caller+0x310/0x310 [ 955.490206] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 955.495257] ? prepare_exit_to_usermode+0x291/0x3b0 [ 955.500277] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 955.505111] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 955.510303] RIP: 0033:0x457569 [ 955.513498] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 955.532401] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 955.540093] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 955.547379] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 955.554649] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 955.561904] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 955.569159] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:18 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xb00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:18 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600000000000000]}, 0x2c) 01:09:18 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(r2) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) getpeername$packet(r2, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000180)=0x14) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f00000001c0)={@ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x21}}, 0x3a, r4}) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:18 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xf0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:18 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000fbffffff0000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:18 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xf00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 955.754554] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 955.793453] CPU: 0 PID: 10530 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 955.800842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 955.810223] Call Trace: [ 955.812833] dump_stack+0x244/0x39d [ 955.816489] ? dump_stack_print_info.cold.1+0x20/0x20 [ 955.821704] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 955.826849] sysfs_warn_dup.cold.3+0x1c/0x2b [ 955.831289] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 955.836664] sysfs_create_link+0x65/0xc0 [ 955.840734] device_add+0x64a/0x18e0 [ 955.840750] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 955.840764] ? genl_rcv_msg+0xc6/0x168 [ 955.840785] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 955.840799] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 955.840820] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 955.868751] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 955.874356] wiphy_register+0x1a5b/0x2770 [ 955.878531] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 955.883482] ? rcu_read_lock_sched_held+0x14f/0x180 [ 955.888515] ? __kmalloc+0x5ee/0x760 [ 955.892259] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 955.897846] ? ieee80211_cs_list_valid+0x7c/0x440 [ 955.902704] ? ieee80211_register_hw+0xce9/0x3f10 [ 955.907565] ieee80211_register_hw+0x159b/0x3f10 [ 955.912345] ? ieee80211_ifa_changed+0xed0/0xed0 [ 955.917140] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 955.922265] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 955.928455] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 955.934004] ? vsnprintf+0x20d/0x1b60 [ 955.937820] ? pointer+0x900/0x900 [ 955.941377] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 955.941393] ? kvasprintf+0xee/0x150 [ 955.941424] ? bust_spinlocks+0xe0/0xe0 01:09:18 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2c000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:18 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x1000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 955.941446] ? validate_nla+0x29a/0x1650 [ 955.941466] ? kasprintf+0xab/0xe0 [ 955.961801] ? kvasprintf_const+0x190/0x190 [ 955.966144] ? cap_capable+0x1f9/0x260 [ 955.970089] hwsim_new_radio_nl+0x7dc/0xb20 [ 955.974428] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 955.979627] ? __nla_parse+0x12c/0x3e0 [ 955.983537] genl_family_rcv_msg+0x8a7/0x11a0 [ 955.988068] ? genl_unregister_family+0x8a0/0x8a0 [ 955.992925] ? lock_downgrade+0x900/0x900 [ 955.997209] ? check_preemption_disabled+0x48/0x280 [ 956.002243] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 956.007199] ? kasan_check_read+0x11/0x20 [ 956.011379] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 956.016767] ? rcu_softirq_qs+0x20/0x20 [ 956.020765] genl_rcv_msg+0xc6/0x168 [ 956.024488] netlink_rcv_skb+0x172/0x440 [ 956.028564] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 956.033341] ? netlink_ack+0xb80/0xb80 [ 956.037251] ? down_read+0x8d/0x120 [ 956.040920] genl_rcv+0x28/0x40 [ 956.044220] netlink_unicast+0x5a5/0x760 [ 956.048301] ? netlink_attachskb+0x9a0/0x9a0 01:09:18 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x8]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.052734] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 956.058327] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 956.063362] netlink_sendmsg+0xa18/0xfc0 [ 956.067440] ? netlink_unicast+0x760/0x760 [ 956.067456] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 956.067475] ? apparmor_socket_sendmsg+0x29/0x30 [ 956.067492] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 956.067509] ? security_socket_sendmsg+0x94/0xc0 [ 956.067527] ? netlink_unicast+0x760/0x760 [ 956.076686] sock_sendmsg+0xd5/0x120 [ 956.076706] ___sys_sendmsg+0x7fd/0x930 01:09:18 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x2]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.076724] ? find_held_lock+0x36/0x1c0 [ 956.076762] ? copy_msghdr_from_user+0x580/0x580 [ 956.076779] ? __fd_install+0x2b5/0x8f0 [ 956.076804] ? __fget_light+0x2e9/0x430 [ 956.120568] ? fget_raw+0x20/0x20 [ 956.124037] ? __might_fault+0x12b/0x1e0 [ 956.128228] ? lock_downgrade+0x900/0x900 [ 956.132394] ? lock_release+0xa00/0xa00 [ 956.136384] ? perf_trace_sched_process_exec+0x860/0x860 [ 956.141846] ? posix_ktime_get_ts+0x15/0x20 [ 956.146204] ? trace_hardirqs_off_caller+0x310/0x310 01:09:19 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x2000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.151334] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 956.156895] ? sockfd_lookup_light+0xc5/0x160 [ 956.161426] __sys_sendmsg+0x11d/0x280 [ 956.165354] ? __ia32_sys_shutdown+0x80/0x80 [ 956.169806] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 956.175356] ? put_timespec64+0x10f/0x1b0 [ 956.179523] ? do_syscall_64+0x9a/0x820 [ 956.183515] ? do_syscall_64+0x9a/0x820 [ 956.187512] ? trace_hardirqs_off_caller+0x310/0x310 [ 956.192658] __x64_sys_sendmsg+0x78/0xb0 [ 956.196770] do_syscall_64+0x1b9/0x820 [ 956.200688] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe 01:09:19 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x4000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.206080] ? syscall_return_slowpath+0x5e0/0x5e0 [ 956.211016] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 956.215870] ? trace_hardirqs_on_caller+0x310/0x310 [ 956.220897] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 956.225924] ? prepare_exit_to_usermode+0x291/0x3b0 [ 956.230963] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 956.235823] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 956.241025] RIP: 0033:0x457569 01:09:19 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xffffff9e]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.244232] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 956.263144] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 956.270877] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 956.278153] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 956.285445] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 956.292723] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 956.300001] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:19 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xfffffff0]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:19 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700000000000000]}, 0x2c) 01:09:19 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xaa0d020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:19 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x200000000002, 0x4) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) getpeername$packet(r2, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:19 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000ffffff800000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 956.492409] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 956.516518] CPU: 0 PID: 10586 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 956.523903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 956.533283] Call Trace: [ 956.535901] dump_stack+0x244/0x39d 01:09:19 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3f000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:19 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xf0ffffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.539558] ? dump_stack_print_info.cold.1+0x20/0x20 [ 956.544768] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 956.549906] sysfs_warn_dup.cold.3+0x1c/0x2b [ 956.554322] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 956.559692] sysfs_create_link+0x65/0xc0 [ 956.563786] device_add+0x64a/0x18e0 [ 956.567516] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 956.572218] ? genl_rcv_msg+0xc6/0x168 [ 956.576123] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 956.581245] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 956.586654] ? __sanitizer_cov_trace_switch+0x53/0x90 01:09:19 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xa00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.591860] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 956.597414] wiphy_register+0x1a5b/0x2770 [ 956.601615] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 956.606563] ? rcu_read_lock_sched_held+0x14f/0x180 [ 956.611600] ? __kmalloc+0x5ee/0x760 [ 956.611620] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 956.611637] ? ieee80211_cs_list_valid+0x7c/0x440 [ 956.611655] ? ieee80211_register_hw+0xce9/0x3f10 [ 956.611678] ieee80211_register_hw+0x159b/0x3f10 [ 956.611725] ? ieee80211_ifa_changed+0xed0/0xed0 [ 956.611771] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 956.611818] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 956.611851] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 956.621124] ? vsnprintf+0x20d/0x1b60 [ 956.621148] ? pointer+0x900/0x900 [ 956.621187] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 956.640383] ? kvasprintf+0xee/0x150 [ 956.651521] ? bust_spinlocks+0xe0/0xe0 [ 956.651541] ? validate_nla+0x29a/0x1650 [ 956.651562] ? kasprintf+0xab/0xe0 [ 956.651578] ? kvasprintf_const+0x190/0x190 [ 956.651598] ? cap_capable+0x1f9/0x260 01:09:19 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x1100000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.692977] hwsim_new_radio_nl+0x7dc/0xb20 [ 956.697316] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 956.702516] ? __nla_parse+0x12c/0x3e0 [ 956.706443] genl_family_rcv_msg+0x8a7/0x11a0 [ 956.710966] ? genl_unregister_family+0x8a0/0x8a0 [ 956.715830] ? lock_downgrade+0x900/0x900 [ 956.719994] ? check_preemption_disabled+0x48/0x280 [ 956.725022] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 956.729961] ? kasan_check_read+0x11/0x20 [ 956.734133] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 956.739436] ? rcu_softirq_qs+0x20/0x20 [ 956.739474] genl_rcv_msg+0xc6/0x168 [ 956.739494] netlink_rcv_skb+0x172/0x440 [ 956.739514] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 956.747206] ? netlink_ack+0xb80/0xb80 [ 956.759873] ? down_read+0x8d/0x120 [ 956.763541] genl_rcv+0x28/0x40 [ 956.766832] netlink_unicast+0x5a5/0x760 [ 956.770916] ? netlink_attachskb+0x9a0/0x9a0 [ 956.775337] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 956.781447] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 956.786490] netlink_sendmsg+0xa18/0xfc0 01:09:19 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x1200000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.790591] ? netlink_unicast+0x760/0x760 [ 956.794833] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 956.799781] ? apparmor_socket_sendmsg+0x29/0x30 [ 956.804568] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 956.810148] ? security_socket_sendmsg+0x94/0xc0 [ 956.814958] ? netlink_unicast+0x760/0x760 [ 956.819222] sock_sendmsg+0xd5/0x120 [ 956.822953] ___sys_sendmsg+0x7fd/0x930 [ 956.826942] ? find_held_lock+0x36/0x1c0 [ 956.831022] ? copy_msghdr_from_user+0x580/0x580 [ 956.835792] ? __fd_install+0x2b5/0x8f0 [ 956.839790] ? __fget_light+0x2e9/0x430 01:09:19 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xb000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.843779] ? fget_raw+0x20/0x20 [ 956.847264] ? __might_fault+0x12b/0x1e0 [ 956.851360] ? lock_downgrade+0x900/0x900 [ 956.855524] ? lock_release+0xa00/0xa00 [ 956.859511] ? perf_trace_sched_process_exec+0x860/0x860 [ 956.859525] ? posix_ktime_get_ts+0x15/0x20 [ 956.859544] ? trace_hardirqs_off_caller+0x310/0x310 [ 956.859576] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 956.869338] ? sockfd_lookup_light+0xc5/0x160 [ 956.884478] __sys_sendmsg+0x11d/0x280 [ 956.888372] ? __ia32_sys_shutdown+0x80/0x80 01:09:19 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xf000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.892782] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 956.898338] ? put_timespec64+0x10f/0x1b0 [ 956.902508] ? do_syscall_64+0x9a/0x820 [ 956.906500] ? do_syscall_64+0x9a/0x820 [ 956.910537] ? trace_hardirqs_off_caller+0x310/0x310 [ 956.915816] __x64_sys_sendmsg+0x78/0xb0 [ 956.919901] do_syscall_64+0x1b9/0x820 [ 956.923801] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 956.929198] ? syscall_return_slowpath+0x5e0/0x5e0 [ 956.934151] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 956.939025] ? trace_hardirqs_on_caller+0x310/0x310 01:09:19 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xa00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 956.944058] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 956.949095] ? prepare_exit_to_usermode+0x291/0x3b0 [ 956.954126] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 956.958994] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 956.964221] RIP: 0033:0x457569 [ 956.967425] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 956.986338] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:09:19 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1800]}, 0x2c) [ 956.994056] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 957.001334] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 957.008609] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 957.015881] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 957.023151] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:19 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xae0d0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 957.184364] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 957.209782] CPU: 0 PID: 10632 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 957.217214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 957.226582] Call Trace: [ 957.229222] dump_stack+0x244/0x39d [ 957.232873] ? dump_stack_print_info.cold.1+0x20/0x20 [ 957.238083] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 957.243232] sysfs_warn_dup.cold.3+0x1c/0x2b [ 957.247698] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 957.253076] sysfs_create_link+0x65/0xc0 [ 957.257197] device_add+0x64a/0x18e0 [ 957.260935] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 957.265613] ? genl_rcv_msg+0xc6/0x168 [ 957.269521] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 957.274652] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 957.280038] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 957.285248] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 957.290776] wiphy_register+0x1a5b/0x2770 [ 957.294928] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 957.299860] ? rcu_read_lock_sched_held+0x14f/0x180 [ 957.304860] ? __kmalloc+0x5ee/0x760 [ 957.308569] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 957.314107] ? ieee80211_cs_list_valid+0x7c/0x440 [ 957.318944] ? ieee80211_register_hw+0xce9/0x3f10 [ 957.323791] ieee80211_register_hw+0x159b/0x3f10 [ 957.328568] ? ieee80211_ifa_changed+0xed0/0xed0 [ 957.333330] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 957.338355] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 957.344486] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 957.350008] ? vsnprintf+0x20d/0x1b60 [ 957.353792] ? pointer+0x900/0x900 [ 957.357322] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 957.362325] ? kvasprintf+0xee/0x150 [ 957.366038] ? bust_spinlocks+0xe0/0xe0 [ 957.369998] ? validate_nla+0x29a/0x1650 [ 957.374045] ? kasprintf+0xab/0xe0 [ 957.377566] ? kvasprintf_const+0x190/0x190 [ 957.381876] ? cap_capable+0x1f9/0x260 [ 957.385769] hwsim_new_radio_nl+0x7dc/0xb20 [ 957.390085] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 957.395257] ? __nla_parse+0x12c/0x3e0 [ 957.399134] genl_family_rcv_msg+0x8a7/0x11a0 [ 957.403616] ? genl_unregister_family+0x8a0/0x8a0 [ 957.408445] ? lock_downgrade+0x900/0x900 [ 957.412603] ? check_preemption_disabled+0x48/0x280 [ 957.417605] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 957.422522] ? kasan_check_read+0x11/0x20 [ 957.426682] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 957.431965] ? rcu_softirq_qs+0x20/0x20 [ 957.435937] genl_rcv_msg+0xc6/0x168 [ 957.439637] netlink_rcv_skb+0x172/0x440 [ 957.443684] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 957.448424] ? netlink_ack+0xb80/0xb80 [ 957.452296] ? down_read+0x8d/0x120 [ 957.455914] genl_rcv+0x28/0x40 [ 957.459204] netlink_unicast+0x5a5/0x760 [ 957.463250] ? netlink_attachskb+0x9a0/0x9a0 [ 957.467674] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 957.473207] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 957.478211] netlink_sendmsg+0xa18/0xfc0 [ 957.482261] ? netlink_unicast+0x760/0x760 [ 957.486496] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 957.491413] ? apparmor_socket_sendmsg+0x29/0x30 [ 957.496151] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 957.501685] ? security_socket_sendmsg+0x94/0xc0 [ 957.506425] ? netlink_unicast+0x760/0x760 [ 957.510659] sock_sendmsg+0xd5/0x120 [ 957.514359] ___sys_sendmsg+0x7fd/0x930 [ 957.518331] ? find_held_lock+0x36/0x1c0 [ 957.522392] ? copy_msghdr_from_user+0x580/0x580 [ 957.527131] ? __fd_install+0x2b5/0x8f0 [ 957.531094] ? __fget_light+0x2e9/0x430 [ 957.535073] ? fget_raw+0x20/0x20 [ 957.538514] ? __might_fault+0x12b/0x1e0 [ 957.542569] ? lock_downgrade+0x900/0x900 [ 957.546704] ? lock_release+0xa00/0xa00 [ 957.550674] ? perf_trace_sched_process_exec+0x860/0x860 [ 957.556107] ? posix_ktime_get_ts+0x15/0x20 [ 957.560437] ? trace_hardirqs_off_caller+0x310/0x310 [ 957.565530] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 957.571052] ? sockfd_lookup_light+0xc5/0x160 [ 957.575530] __sys_sendmsg+0x11d/0x280 [ 957.579416] ? __ia32_sys_shutdown+0x80/0x80 [ 957.583823] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 957.589348] ? put_timespec64+0x10f/0x1b0 [ 957.593496] ? do_syscall_64+0x9a/0x820 [ 957.597467] ? do_syscall_64+0x9a/0x820 [ 957.601429] ? trace_hardirqs_off_caller+0x310/0x310 [ 957.606520] __x64_sys_sendmsg+0x78/0xb0 [ 957.610569] do_syscall_64+0x1b9/0x820 [ 957.614440] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 957.619802] ? syscall_return_slowpath+0x5e0/0x5e0 [ 957.624711] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 957.629551] ? trace_hardirqs_on_caller+0x310/0x310 [ 957.634553] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 957.639555] ? prepare_exit_to_usermode+0x291/0x3b0 [ 957.644573] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 957.649405] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 957.654576] RIP: 0033:0x457569 [ 957.657751] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 957.676665] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:09:20 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = socket(0x0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000400)="c92788795581dc610c47e20dd5f513d5f71bbcae5f742864935f24be2e4a5f2d9a9f2940b4971e7e8ca1e7d15be273257132ef37d1df93320dcdedd68c170e909374afd3dd211af194d7a4030a8ac3b06aced11c5d3695ca6060953f346cc8c235dc417709f173b0fce7c599d2b78a5b17e1bd63fa50bd7802b300429261d985a05f4b09ba3bd1bdfde3fb9cff16c27ebe2892505ff3026c6464de5508be9aa019a3a4d6c661454c99e090d4f71f6976b79bf8e734a7377170ec1abc06f8f2c23a07af85119cc68f5667e2ab756d29fc", 0xd0}, {&(0x7f0000000180)="b565def1009f42643367357a06f203e827361c49570d266af8dd8cc7536f17dd9bb5e3e7cf025ebfd832aac5874791396d858f14298a30426b95a108ab6e154dfb73ab92286b8a958924ca6e84ac39082e46bbd2ed6ca4e468444a1c77cdadb17ea545073581", 0x66}, {&(0x7f0000000040)}], 0x3}, 0x4000000) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(r0, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) getsockopt$inet6_mreq(r3, 0x29, 0x1f, &(0x7f0000000040)={@mcast2}, &(0x7f0000000500)=0x14) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:20 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:20 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5f0a0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:20 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000004000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:20 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1100]}, 0x2c) [ 957.684379] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 957.691630] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 957.698878] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 957.706145] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 957.713404] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:20 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xb80d020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:20 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1500000000000000]}, 0x2c) 01:09:20 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xf0]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:20 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3d000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:20 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a000000000080ffffff0000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 957.896827] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 957.979042] CPU: 0 PID: 10658 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 957.986462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 957.995815] Call Trace: [ 957.998416] dump_stack+0x244/0x39d [ 958.002059] ? dump_stack_print_info.cold.1+0x20/0x20 [ 958.007253] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 958.012368] sysfs_warn_dup.cold.3+0x1c/0x2b [ 958.016785] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 958.022196] sysfs_create_link+0x65/0xc0 [ 958.026289] device_add+0x64a/0x18e0 [ 958.030005] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 958.034724] ? genl_rcv_msg+0xc6/0x168 [ 958.038620] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 958.043721] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 958.049088] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 958.054286] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 958.059836] wiphy_register+0x1a5b/0x2770 [ 958.063999] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 958.068940] ? rcu_read_lock_sched_held+0x14f/0x180 [ 958.073985] ? __kmalloc+0x5ee/0x760 [ 958.077705] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 958.083246] ? ieee80211_cs_list_valid+0x7c/0x440 [ 958.088090] ? ieee80211_register_hw+0xce9/0x3f10 [ 958.092945] ieee80211_register_hw+0x159b/0x3f10 [ 958.097722] ? ieee80211_ifa_changed+0xed0/0xed0 [ 958.102634] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 958.107673] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 958.113825] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 958.119364] ? vsnprintf+0x20d/0x1b60 [ 958.123192] ? pointer+0x900/0x900 [ 958.126745] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 958.131764] ? kvasprintf+0xee/0x150 [ 958.135478] ? bust_spinlocks+0xe0/0xe0 [ 958.139465] ? validate_nla+0x29a/0x1650 [ 958.143546] ? kasprintf+0xab/0xe0 [ 958.147102] ? kvasprintf_const+0x190/0x190 [ 958.151434] ? cap_capable+0x1f9/0x260 [ 958.155332] hwsim_new_radio_nl+0x7dc/0xb20 [ 958.159662] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 958.164854] ? __nla_parse+0x12c/0x3e0 [ 958.168771] genl_family_rcv_msg+0x8a7/0x11a0 [ 958.173312] ? genl_unregister_family+0x8a0/0x8a0 [ 958.178187] ? lock_downgrade+0x900/0x900 [ 958.182384] ? check_preemption_disabled+0x48/0x280 [ 958.187406] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 958.192338] ? kasan_check_read+0x11/0x20 [ 958.196502] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 958.201778] ? rcu_softirq_qs+0x20/0x20 [ 958.205790] genl_rcv_msg+0xc6/0x168 [ 958.209513] netlink_rcv_skb+0x172/0x440 [ 958.213609] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 958.218369] ? netlink_ack+0xb80/0xb80 [ 958.222260] ? down_read+0x8d/0x120 [ 958.225898] genl_rcv+0x28/0x40 [ 958.229193] netlink_unicast+0x5a5/0x760 [ 958.233265] ? netlink_attachskb+0x9a0/0x9a0 [ 958.237676] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 958.243219] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 958.248256] netlink_sendmsg+0xa18/0xfc0 [ 958.252330] ? netlink_unicast+0x760/0x760 [ 958.256567] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 958.261500] ? apparmor_socket_sendmsg+0x29/0x30 [ 958.266271] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 958.271824] ? security_socket_sendmsg+0x94/0xc0 [ 958.276583] ? netlink_unicast+0x760/0x760 [ 958.280823] sock_sendmsg+0xd5/0x120 [ 958.284539] ___sys_sendmsg+0x7fd/0x930 [ 958.288532] ? find_held_lock+0x36/0x1c0 [ 958.292597] ? copy_msghdr_from_user+0x580/0x580 [ 958.297357] ? __fd_install+0x2b5/0x8f0 [ 958.301344] ? __fget_light+0x2e9/0x430 [ 958.305335] ? fget_raw+0x20/0x20 [ 958.308804] ? __might_fault+0x12b/0x1e0 [ 958.312867] ? lock_downgrade+0x900/0x900 [ 958.317042] ? lock_release+0xa00/0xa00 [ 958.321017] ? perf_trace_sched_process_exec+0x860/0x860 [ 958.326466] ? posix_ktime_get_ts+0x15/0x20 [ 958.330790] ? trace_hardirqs_off_caller+0x310/0x310 [ 958.335907] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 958.341449] ? sockfd_lookup_light+0xc5/0x160 [ 958.345957] __sys_sendmsg+0x11d/0x280 [ 958.349849] ? __ia32_sys_shutdown+0x80/0x80 [ 958.354261] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 958.359802] ? put_timespec64+0x10f/0x1b0 [ 958.363959] ? do_syscall_64+0x9a/0x820 [ 958.367932] ? do_syscall_64+0x9a/0x820 [ 958.371923] ? trace_hardirqs_off_caller+0x310/0x310 [ 958.377035] __x64_sys_sendmsg+0x78/0xb0 [ 958.381102] do_syscall_64+0x1b9/0x820 [ 958.384991] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 958.390362] ? syscall_return_slowpath+0x5e0/0x5e0 [ 958.395292] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 958.400141] ? trace_hardirqs_on_caller+0x310/0x310 [ 958.405197] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 958.410231] ? prepare_exit_to_usermode+0x291/0x3b0 [ 958.415271] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 958.420151] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 958.425373] RIP: 0033:0x457569 [ 958.428577] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 958.447491] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 958.455225] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 958.462492] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 958.469762] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 958.477044] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 958.484315] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:21 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) accept4$inet(0xffffffffffffff9c, &(0x7f0000000040)={0x2, 0x0, @multicast1}, &(0x7f0000000180)=0x10, 0x80800) recvmmsg(r0, &(0x7f0000005a40)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000001c0)=""/17, 0x11}, {&(0x7f0000000300)=""/80, 0x50}, {&(0x7f0000000400)=""/235, 0xeb}, {&(0x7f0000000500)=""/238, 0xee}, {&(0x7f0000000600)=""/185, 0xb9}], 0x5, &(0x7f0000000740)=""/253, 0xfd}, 0x2}, {{&(0x7f0000000840)=@pppoe={0x18, 0x0, {0x0, @link_local}}, 0x80, &(0x7f0000000b80)=[{&(0x7f00000008c0)=""/167, 0xa7}, {&(0x7f0000000980)=""/110, 0x6e}, {&(0x7f0000000ac0)=""/137, 0x89}, {&(0x7f0000000a00)=""/115, 0x73}], 0x4, &(0x7f0000000bc0)=""/4096, 0x1000, 0x2}, 0x3}, {{0x0, 0x0, &(0x7f0000001e80)=[{&(0x7f0000001bc0)=""/41, 0x29}, {&(0x7f0000001c00)=""/168, 0xa8}, {&(0x7f0000001cc0)=""/221, 0xdd}, {&(0x7f0000001dc0)=""/157, 0x9d}], 0x4, &(0x7f0000001ec0)=""/216, 0xd8, 0x6}, 0x8}, {{&(0x7f0000001fc0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff}}, 0x80, &(0x7f0000003440)=[{&(0x7f0000002040)=""/84, 0x54}, {&(0x7f00000020c0)=""/171, 0xab}, {&(0x7f0000002180)=""/4096, 0x1000}, {&(0x7f0000003180)=""/153, 0x99}, {&(0x7f0000003240)=""/44, 0x2c}, {&(0x7f0000003280)=""/255, 0xff}, {&(0x7f0000003380)=""/73, 0x49}, {&(0x7f0000003400)=""/61, 0x3d}], 0x8, &(0x7f00000034c0)=""/141, 0x8d, 0x7}, 0x4}, {{&(0x7f0000003580)=@l2, 0x80, &(0x7f00000059c0)=[{&(0x7f0000003600)=""/166, 0xa6}, {&(0x7f00000036c0)=""/4096, 0x1000}, {&(0x7f00000046c0)=""/151, 0x97}, {&(0x7f0000004780)=""/65, 0x41}, {&(0x7f0000004800)=""/210, 0xd2}, {&(0x7f0000004900)=""/4096, 0x1000}, {&(0x7f0000005900)=""/134, 0x86}], 0x7, 0x0, 0x0, 0x3}, 0xedd}], 0x5, 0x12002, &(0x7f0000005b80)={0x77359400}) r3 = accept4$inet(0xffffffffffffff9c, &(0x7f0000007d80), &(0x7f0000007dc0)=0x10, 0x800) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r3, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x5, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000005c00)={0x10, 0x0, 0xfffffffffffffffe, 0x42002}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(r2) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe, 0x0, 0x0, 0x7}}, 0xe8) sendmmsg(r4, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:21 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x13]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:21 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}, 0x2c) 01:09:21 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xffffff7f00000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:21 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a00000000004c0000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:21 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x3]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 958.696485] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:09:21 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x62000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:21 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000]}, 0x2c) [ 958.743707] CPU: 0 PID: 10696 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 958.751087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 958.760445] Call Trace: [ 958.763061] dump_stack+0x244/0x39d [ 958.766726] ? dump_stack_print_info.cold.1+0x20/0x20 [ 958.771934] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 958.777053] sysfs_warn_dup.cold.3+0x1c/0x2b [ 958.781938] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 958.781956] sysfs_create_link+0x65/0xc0 [ 958.781974] device_add+0x64a/0x18e0 [ 958.781989] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 958.782006] ? genl_rcv_msg+0xc6/0x168 [ 958.803672] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 958.808780] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 958.808799] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 958.808818] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 958.808847] wiphy_register+0x1a5b/0x2770 [ 958.829118] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 958.834070] ? rcu_read_lock_sched_held+0x14f/0x180 [ 958.839125] ? __kmalloc+0x5ee/0x760 [ 958.842926] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 958.848480] ? ieee80211_cs_list_valid+0x7c/0x440 [ 958.853340] ? ieee80211_register_hw+0xce9/0x3f10 [ 958.853365] ieee80211_register_hw+0x159b/0x3f10 [ 958.853398] ? ieee80211_ifa_changed+0xed0/0xed0 [ 958.853432] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 958.853465] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 958.878935] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 958.884484] ? vsnprintf+0x20d/0x1b60 [ 958.888333] ? pointer+0x900/0x900 [ 958.891900] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 958.896934] ? kvasprintf+0xee/0x150 [ 958.900680] ? bust_spinlocks+0xe0/0xe0 [ 958.904674] ? validate_nla+0x29a/0x1650 [ 958.908761] ? kasprintf+0xab/0xe0 [ 958.912486] ? kvasprintf_const+0x190/0x190 [ 958.916826] ? cap_capable+0x1f9/0x260 [ 958.920738] hwsim_new_radio_nl+0x7dc/0xb20 [ 958.925112] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 958.930315] ? __nla_parse+0x12c/0x3e0 [ 958.934235] genl_family_rcv_msg+0x8a7/0x11a0 [ 958.938758] ? genl_unregister_family+0x8a0/0x8a0 [ 958.943614] ? lock_downgrade+0x900/0x900 [ 958.947803] ? check_preemption_disabled+0x48/0x280 [ 958.952856] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 958.957792] ? kasan_check_read+0x11/0x20 [ 958.961951] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 958.967289] ? rcu_softirq_qs+0x20/0x20 [ 958.971301] genl_rcv_msg+0xc6/0x168 [ 958.975052] netlink_rcv_skb+0x172/0x440 [ 958.980693] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 958.985463] ? netlink_ack+0xb80/0xb80 [ 958.989363] ? down_read+0x8d/0x120 [ 958.993021] genl_rcv+0x28/0x40 [ 958.996350] netlink_unicast+0x5a5/0x760 [ 959.000463] ? netlink_attachskb+0x9a0/0x9a0 [ 959.004889] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 959.010440] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 959.015479] netlink_sendmsg+0xa18/0xfc0 [ 959.019562] ? netlink_unicast+0x760/0x760 [ 959.023846] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 959.028810] ? apparmor_socket_sendmsg+0x29/0x30 [ 959.033578] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 959.039137] ? security_socket_sendmsg+0x94/0xc0 [ 959.043923] ? netlink_unicast+0x760/0x760 [ 959.048157] sock_sendmsg+0xd5/0x120 [ 959.051895] ___sys_sendmsg+0x7fd/0x930 [ 959.055871] ? find_held_lock+0x36/0x1c0 [ 959.059938] ? copy_msghdr_from_user+0x580/0x580 [ 959.064696] ? __fd_install+0x2b5/0x8f0 [ 959.068669] ? __fget_light+0x2e9/0x430 [ 959.072649] ? fget_raw+0x20/0x20 [ 959.076092] ? __might_fault+0x12b/0x1e0 [ 959.080189] ? lock_downgrade+0x900/0x900 [ 959.084338] ? lock_release+0xa00/0xa00 [ 959.088346] ? perf_trace_sched_process_exec+0x860/0x860 [ 959.093796] ? posix_ktime_get_ts+0x15/0x20 [ 959.098119] ? trace_hardirqs_off_caller+0x310/0x310 [ 959.103214] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 959.108737] ? sockfd_lookup_light+0xc5/0x160 [ 959.113269] __sys_sendmsg+0x11d/0x280 [ 959.117158] ? __ia32_sys_shutdown+0x80/0x80 [ 959.121601] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 959.127135] ? put_timespec64+0x10f/0x1b0 [ 959.131292] ? do_syscall_64+0x9a/0x820 [ 959.135265] ? do_syscall_64+0x9a/0x820 [ 959.139249] ? trace_hardirqs_off_caller+0x310/0x310 [ 959.144369] __x64_sys_sendmsg+0x78/0xb0 [ 959.148435] do_syscall_64+0x1b9/0x820 [ 959.152325] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 959.157695] ? syscall_return_slowpath+0x5e0/0x5e0 [ 959.162638] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 959.167497] ? trace_hardirqs_on_caller+0x310/0x310 [ 959.172529] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 959.177537] ? prepare_exit_to_usermode+0x291/0x3b0 [ 959.182572] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 959.187441] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 959.192633] RIP: 0033:0x457569 [ 959.195832] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 959.214799] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 959.222505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 959.229760] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 959.237022] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:09:22 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x10000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 959.244311] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 959.251582] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 959.271524] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 959.283139] CPU: 0 PID: 10696 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 959.290538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 959.299891] Call Trace: [ 959.302488] dump_stack+0x244/0x39d [ 959.306132] ? dump_stack_print_info.cold.1+0x20/0x20 [ 959.311361] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 959.316485] sysfs_warn_dup.cold.3+0x1c/0x2b [ 959.320910] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 959.326303] sysfs_create_link+0x65/0xc0 [ 959.330390] device_add+0x64a/0x18e0 [ 959.334113] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 959.338787] ? genl_rcv_msg+0xc6/0x168 [ 959.342714] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 959.347824] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 959.353208] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 959.358412] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 959.363975] wiphy_register+0x1a5b/0x2770 [ 959.368147] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 959.373110] ? rcu_read_lock_sched_held+0x14f/0x180 [ 959.378136] ? __kmalloc+0x5ee/0x760 [ 959.381872] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 959.387424] ? ieee80211_cs_list_valid+0x7c/0x440 [ 959.392275] ? ieee80211_register_hw+0xce9/0x3f10 [ 959.397133] ieee80211_register_hw+0x159b/0x3f10 [ 959.401924] ? ieee80211_ifa_changed+0xed0/0xed0 [ 959.406729] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 959.411771] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 959.417925] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 959.423482] ? vsnprintf+0x20d/0x1b60 [ 959.427318] ? pointer+0x900/0x900 [ 959.430889] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 959.435933] ? kvasprintf+0xee/0x150 [ 959.439655] ? bust_spinlocks+0xe0/0xe0 01:09:22 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x6000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 959.443654] ? validate_nla+0x29a/0x1650 [ 959.447757] ? kasprintf+0xab/0xe0 [ 959.451306] ? kvasprintf_const+0x190/0x190 [ 959.455646] ? cap_capable+0x1f9/0x260 [ 959.459551] hwsim_new_radio_nl+0x7dc/0xb20 [ 959.463910] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 959.469111] ? __nla_parse+0x12c/0x3e0 [ 959.473023] genl_family_rcv_msg+0x8a7/0x11a0 [ 959.477553] ? genl_unregister_family+0x8a0/0x8a0 [ 959.482408] ? lock_downgrade+0x900/0x900 [ 959.486565] ? check_preemption_disabled+0x48/0x280 [ 959.491592] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 959.491609] ? kasan_check_read+0x11/0x20 [ 959.491624] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 959.491639] ? rcu_softirq_qs+0x20/0x20 [ 959.491673] genl_rcv_msg+0xc6/0x168 [ 959.513701] netlink_rcv_skb+0x172/0x440 [ 959.517779] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 959.522549] ? netlink_ack+0xb80/0xb80 [ 959.526460] ? down_read+0x8d/0x120 [ 959.530114] genl_rcv+0x28/0x40 [ 959.533400] netlink_unicast+0x5a5/0x760 [ 959.537493] ? netlink_attachskb+0x9a0/0x9a0 [ 959.541909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 959.547455] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 959.552491] netlink_sendmsg+0xa18/0xfc0 [ 959.556569] ? netlink_unicast+0x760/0x760 [ 959.560810] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 959.565745] ? apparmor_socket_sendmsg+0x29/0x30 [ 959.570517] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 959.576076] ? security_socket_sendmsg+0x94/0xc0 [ 959.580831] ? netlink_unicast+0x760/0x760 [ 959.585072] sock_sendmsg+0xd5/0x120 [ 959.588789] ___sys_sendmsg+0x7fd/0x930 [ 959.592769] ? find_held_lock+0x36/0x1c0 [ 959.596862] ? copy_msghdr_from_user+0x580/0x580 [ 959.601629] ? __fd_install+0x2b5/0x8f0 [ 959.605622] ? __fget_light+0x2e9/0x430 [ 959.609639] ? fget_raw+0x20/0x20 [ 959.613099] ? __might_fault+0x12b/0x1e0 [ 959.617197] ? lock_downgrade+0x900/0x900 [ 959.621353] ? lock_release+0xa00/0xa00 [ 959.625333] ? perf_trace_sched_process_exec+0x860/0x860 [ 959.630787] ? posix_ktime_get_ts+0x15/0x20 [ 959.635131] ? trace_hardirqs_off_caller+0x310/0x310 [ 959.640248] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 959.645789] ? sockfd_lookup_light+0xc5/0x160 [ 959.650294] __sys_sendmsg+0x11d/0x280 [ 959.654203] ? __ia32_sys_shutdown+0x80/0x80 [ 959.658624] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 959.664166] ? put_timespec64+0x10f/0x1b0 [ 959.668337] ? do_syscall_64+0x9a/0x820 [ 959.672330] ? do_syscall_64+0x9a/0x820 [ 959.676318] ? trace_hardirqs_off_caller+0x310/0x310 [ 959.681438] __x64_sys_sendmsg+0x78/0xb0 [ 959.685541] do_syscall_64+0x1b9/0x820 [ 959.689442] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 959.694816] ? syscall_return_slowpath+0x5e0/0x5e0 [ 959.699755] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 959.704607] ? trace_hardirqs_on_caller+0x310/0x310 [ 959.709647] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 959.714668] ? prepare_exit_to_usermode+0x291/0x3b0 [ 959.719697] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 959.724557] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 959.729769] RIP: 0033:0x457569 [ 959.732964] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 959.751881] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 959.759692] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 959.766966] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 959.774236] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 959.781507] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 959.788778] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:22 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x13000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:22 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xffffffff00000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:22 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x12d) recvmmsg(r1, 0x0, 0xfffffffffffffdfa, 0x4, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x314) ioctl$sock_SIOCADDDLCI(r2, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) getsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000040), &(0x7f0000000180)=0x2) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:22 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00]}, 0x2c) 01:09:22 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000006c00000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:22 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x34000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 959.965119] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 959.994833] CPU: 0 PID: 10733 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 960.002221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 960.011589] Call Trace: [ 960.014248] dump_stack+0x244/0x39d [ 960.017899] ? dump_stack_print_info.cold.1+0x20/0x20 [ 960.023108] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 960.028235] sysfs_warn_dup.cold.3+0x1c/0x2b [ 960.032740] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 960.038123] sysfs_create_link+0x65/0xc0 [ 960.042217] device_add+0x64a/0x18e0 [ 960.045949] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 960.050660] ? genl_rcv_msg+0xc6/0x168 [ 960.054564] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 960.059691] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 960.065083] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 960.070289] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 960.075847] wiphy_register+0x1a5b/0x2770 [ 960.080026] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 960.084977] ? rcu_read_lock_sched_held+0x14f/0x180 [ 960.090005] ? __kmalloc+0x5ee/0x760 [ 960.093735] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 960.099307] ? ieee80211_cs_list_valid+0x7c/0x440 [ 960.104165] ? ieee80211_register_hw+0xce9/0x3f10 [ 960.109049] ieee80211_register_hw+0x159b/0x3f10 [ 960.113858] ? ieee80211_ifa_changed+0xed0/0xed0 [ 960.113892] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 960.113928] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 960.123692] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 960.123709] ? vsnprintf+0x20d/0x1b60 [ 960.123733] ? pointer+0x900/0x900 [ 960.123759] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 960.123776] ? kvasprintf+0xee/0x150 [ 960.123793] ? bust_spinlocks+0xe0/0xe0 [ 960.123813] ? validate_nla+0x29a/0x1650 [ 960.123835] ? kasprintf+0xab/0xe0 01:09:23 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}, 0x2c) 01:09:23 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x4]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 960.123852] ? kvasprintf_const+0x190/0x190 [ 960.167429] ? cap_capable+0x1f9/0x260 [ 960.171341] hwsim_new_radio_nl+0x7dc/0xb20 [ 960.175682] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 960.180871] ? __nla_parse+0x12c/0x3e0 [ 960.184772] genl_family_rcv_msg+0x8a7/0x11a0 [ 960.189288] ? genl_unregister_family+0x8a0/0x8a0 [ 960.194146] ? lock_downgrade+0x900/0x900 [ 960.198342] ? check_preemption_disabled+0x48/0x280 [ 960.203375] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 960.208319] ? kasan_check_read+0x11/0x20 [ 960.212482] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 960.217774] ? rcu_softirq_qs+0x20/0x20 [ 960.221783] genl_rcv_msg+0xc6/0x168 [ 960.225515] netlink_rcv_skb+0x172/0x440 [ 960.229589] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 960.234364] ? netlink_ack+0xb80/0xb80 [ 960.238263] ? down_read+0x8d/0x120 [ 960.241945] genl_rcv+0x28/0x40 [ 960.241962] netlink_unicast+0x5a5/0x760 [ 960.241984] ? netlink_attachskb+0x9a0/0x9a0 [ 960.242002] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 960.242019] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 960.242045] netlink_sendmsg+0xa18/0xfc0 [ 960.268405] ? netlink_unicast+0x760/0x760 [ 960.272658] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 960.277603] ? apparmor_socket_sendmsg+0x29/0x30 [ 960.282378] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 960.287931] ? security_socket_sendmsg+0x94/0xc0 [ 960.292692] ? netlink_unicast+0x760/0x760 [ 960.296936] sock_sendmsg+0xd5/0x120 [ 960.300658] ___sys_sendmsg+0x7fd/0x930 [ 960.304636] ? find_held_lock+0x36/0x1c0 [ 960.308730] ? copy_msghdr_from_user+0x580/0x580 [ 960.313481] ? __fd_install+0x2b5/0x8f0 [ 960.317470] ? __fget_light+0x2e9/0x430 [ 960.321438] ? fget_raw+0x20/0x20 [ 960.324879] ? __might_fault+0x12b/0x1e0 [ 960.328942] ? lock_downgrade+0x900/0x900 [ 960.333102] ? lock_release+0xa00/0xa00 [ 960.337083] ? perf_trace_sched_process_exec+0x860/0x860 [ 960.342528] ? posix_ktime_get_ts+0x15/0x20 [ 960.346880] ? trace_hardirqs_off_caller+0x310/0x310 [ 960.352012] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 960.357539] ? sockfd_lookup_light+0xc5/0x160 [ 960.362051] __sys_sendmsg+0x11d/0x280 [ 960.365943] ? __ia32_sys_shutdown+0x80/0x80 [ 960.370341] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 960.375900] ? put_timespec64+0x10f/0x1b0 [ 960.380039] ? do_syscall_64+0x9a/0x820 [ 960.384001] ? do_syscall_64+0x9a/0x820 [ 960.387968] ? trace_hardirqs_off_caller+0x310/0x310 [ 960.393083] __x64_sys_sendmsg+0x78/0xb0 [ 960.397153] do_syscall_64+0x1b9/0x820 [ 960.401071] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 960.406437] ? syscall_return_slowpath+0x5e0/0x5e0 [ 960.411366] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 960.416235] ? trace_hardirqs_on_caller+0x310/0x310 [ 960.421241] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 960.426246] ? prepare_exit_to_usermode+0x291/0x3b0 [ 960.431254] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 960.436099] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 960.441295] RIP: 0033:0x457569 [ 960.444477] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 01:09:23 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x550a0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:23 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x600000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 960.463368] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 960.471072] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 960.478342] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 960.485596] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 960.492858] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 960.500123] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:23 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0xf0ffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:23 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x1000000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:23 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe000000]}, 0x2c) 01:09:23 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x5, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(r1) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0x7, &(0x7f0000000040)={0x80, 0x9, 0x5, 0x9}, 0x10) 01:09:23 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000000600000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:23 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x900]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 960.675965] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 960.701414] CPU: 0 PID: 10771 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 960.708806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 960.718166] Call Trace: [ 960.720815] dump_stack+0x244/0x39d [ 960.724485] ? dump_stack_print_info.cold.1+0x20/0x20 [ 960.729728] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 960.734908] sysfs_warn_dup.cold.3+0x1c/0x2b [ 960.739335] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 960.744714] sysfs_create_link+0x65/0xc0 [ 960.748800] device_add+0x64a/0x18e0 [ 960.752551] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 960.757233] ? genl_rcv_msg+0xc6/0x168 [ 960.761140] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 960.766292] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe 01:09:23 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xa00, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 960.771667] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 960.776873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 960.782955] wiphy_register+0x1a5b/0x2770 [ 960.787133] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 960.792100] ? rcu_read_lock_sched_held+0x14f/0x180 [ 960.797145] ? __kmalloc+0x5ee/0x760 [ 960.800947] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 960.806502] ? ieee80211_cs_list_valid+0x7c/0x440 [ 960.811365] ? ieee80211_register_hw+0xce9/0x3f10 [ 960.816248] ieee80211_register_hw+0x159b/0x3f10 [ 960.821047] ? ieee80211_ifa_changed+0xed0/0xed0 01:09:23 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xa00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 960.825835] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 960.830902] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 960.837072] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 960.842618] ? vsnprintf+0x20d/0x1b60 [ 960.846438] ? pointer+0x900/0x900 [ 960.850005] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 960.855039] ? kvasprintf+0xee/0x150 [ 960.858767] ? bust_spinlocks+0xe0/0xe0 [ 960.862771] ? validate_nla+0x29a/0x1650 [ 960.866851] ? kasprintf+0xab/0xe0 [ 960.870406] ? kvasprintf_const+0x190/0x190 [ 960.874744] ? cap_capable+0x1f9/0x260 [ 960.878660] hwsim_new_radio_nl+0x7dc/0xb20 [ 960.882999] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 960.888215] ? __nla_parse+0x12c/0x3e0 [ 960.892132] genl_family_rcv_msg+0x8a7/0x11a0 [ 960.896680] ? genl_unregister_family+0x8a0/0x8a0 [ 960.901545] ? lock_downgrade+0x900/0x900 [ 960.905714] ? check_preemption_disabled+0x48/0x280 [ 960.910906] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 960.915875] ? kasan_check_read+0x11/0x20 [ 960.920037] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 960.925328] ? rcu_softirq_qs+0x20/0x20 [ 960.929337] genl_rcv_msg+0xc6/0x168 [ 960.929359] netlink_rcv_skb+0x172/0x440 [ 960.929378] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 960.929396] ? netlink_ack+0xb80/0xb80 [ 960.929412] ? down_read+0x8d/0x120 [ 960.929440] genl_rcv+0x28/0x40 [ 960.929456] netlink_unicast+0x5a5/0x760 [ 960.929478] ? netlink_attachskb+0x9a0/0x9a0 [ 960.929498] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 960.937268] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 960.937291] netlink_sendmsg+0xa18/0xfc0 [ 960.937317] ? netlink_unicast+0x760/0x760 [ 960.937333] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 960.937353] ? apparmor_socket_sendmsg+0x29/0x30 [ 960.937371] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 960.937390] ? security_socket_sendmsg+0x94/0xc0 [ 960.937408] ? netlink_unicast+0x760/0x760 [ 960.946082] sock_sendmsg+0xd5/0x120 [ 960.946102] ___sys_sendmsg+0x7fd/0x930 [ 960.946119] ? find_held_lock+0x36/0x1c0 [ 960.946141] ? copy_msghdr_from_user+0x580/0x580 [ 960.946158] ? __fd_install+0x2b5/0x8f0 01:09:23 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:23 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18]}, 0x2c) [ 960.946203] ? __fget_light+0x2e9/0x430 [ 960.946225] ? fget_raw+0x20/0x20 [ 960.953122] ? __might_fault+0x12b/0x1e0 [ 960.953140] ? lock_downgrade+0x900/0x900 [ 960.953160] ? lock_release+0xa00/0xa00 [ 960.953197] ? perf_trace_sched_process_exec+0x860/0x860 [ 960.953227] ? posix_ktime_get_ts+0x15/0x20 [ 960.953246] ? trace_hardirqs_off_caller+0x310/0x310 [ 960.953277] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 961.036682] ? sockfd_lookup_light+0xc5/0x160 [ 961.044824] __sys_sendmsg+0x11d/0x280 [ 961.044857] ? __ia32_sys_shutdown+0x80/0x80 [ 961.044875] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 961.044905] ? put_timespec64+0x10f/0x1b0 [ 961.044924] ? do_syscall_64+0x9a/0x820 [ 961.044940] ? do_syscall_64+0x9a/0x820 [ 961.083622] ? trace_hardirqs_off_caller+0x310/0x310 [ 961.083648] __x64_sys_sendmsg+0x78/0xb0 [ 961.083668] do_syscall_64+0x1b9/0x820 [ 961.083684] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 961.083703] ? syscall_return_slowpath+0x5e0/0x5e0 [ 961.083723] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 961.095791] ? trace_hardirqs_on_caller+0x310/0x310 [ 961.095809] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 961.095828] ? prepare_exit_to_usermode+0x291/0x3b0 [ 961.095850] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 961.095873] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 961.095885] RIP: 0033:0x457569 [ 961.095905] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 01:09:24 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x34000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 961.171201] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 961.178920] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 961.186214] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 961.193494] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 961.200770] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 961.208059] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:24 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:24 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x7a00000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:24 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf]}, 0x2c) 01:09:24 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000000400000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 961.346449] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 961.375429] CPU: 0 PID: 10816 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 961.382813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 961.392199] Call Trace: [ 961.394809] dump_stack+0x244/0x39d [ 961.398462] ? dump_stack_print_info.cold.1+0x20/0x20 [ 961.403674] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 961.408801] sysfs_warn_dup.cold.3+0x1c/0x2b [ 961.413260] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 961.418644] sysfs_create_link+0x65/0xc0 [ 961.422726] device_add+0x64a/0x18e0 [ 961.426460] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 961.431143] ? genl_rcv_msg+0xc6/0x168 [ 961.435071] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 961.440206] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 961.445594] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 961.450808] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 961.456385] wiphy_register+0x1a5b/0x2770 [ 961.460558] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 961.465517] ? rcu_read_lock_sched_held+0x14f/0x180 [ 961.470541] ? __kmalloc+0x5ee/0x760 [ 961.474258] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 961.479799] ? ieee80211_cs_list_valid+0x7c/0x440 [ 961.484644] ? ieee80211_register_hw+0xce9/0x3f10 [ 961.489496] ieee80211_register_hw+0x159b/0x3f10 [ 961.494250] ? ieee80211_ifa_changed+0xed0/0xed0 [ 961.499021] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 961.504038] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 961.510180] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 961.515712] ? vsnprintf+0x20d/0x1b60 [ 961.519524] ? pointer+0x900/0x900 [ 961.523067] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 961.528093] ? kvasprintf+0xee/0x150 [ 961.531818] ? bust_spinlocks+0xe0/0xe0 [ 961.535803] ? validate_nla+0x29a/0x1650 [ 961.539882] ? kasprintf+0xab/0xe0 [ 961.543412] ? kvasprintf_const+0x190/0x190 [ 961.547727] ? cap_capable+0x1f9/0x260 [ 961.551609] hwsim_new_radio_nl+0x7dc/0xb20 [ 961.555954] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 961.561128] ? __nla_parse+0x12c/0x3e0 [ 961.565012] genl_family_rcv_msg+0x8a7/0x11a0 [ 961.569498] ? genl_unregister_family+0x8a0/0x8a0 [ 961.574332] ? lock_downgrade+0x900/0x900 [ 961.578468] ? check_preemption_disabled+0x48/0x280 [ 961.583472] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 961.588387] ? kasan_check_read+0x11/0x20 [ 961.592521] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 961.597781] ? rcu_softirq_qs+0x20/0x20 [ 961.601753] genl_rcv_msg+0xc6/0x168 [ 961.605469] netlink_rcv_skb+0x172/0x440 [ 961.609535] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 961.614279] ? netlink_ack+0xb80/0xb80 [ 961.618154] ? down_read+0x8d/0x120 [ 961.621830] genl_rcv+0x28/0x40 [ 961.625104] netlink_unicast+0x5a5/0x760 [ 961.629187] ? netlink_attachskb+0x9a0/0x9a0 [ 961.633599] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 961.639123] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 961.644130] netlink_sendmsg+0xa18/0xfc0 [ 961.648197] ? netlink_unicast+0x760/0x760 [ 961.652418] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 961.657337] ? apparmor_socket_sendmsg+0x29/0x30 [ 961.662101] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 961.667652] ? security_socket_sendmsg+0x94/0xc0 [ 961.672395] ? netlink_unicast+0x760/0x760 [ 961.676620] sock_sendmsg+0xd5/0x120 [ 961.680321] ___sys_sendmsg+0x7fd/0x930 [ 961.684290] ? find_held_lock+0x36/0x1c0 [ 961.688371] ? copy_msghdr_from_user+0x580/0x580 [ 961.693113] ? __fd_install+0x2b5/0x8f0 [ 961.697078] ? __fget_light+0x2e9/0x430 [ 961.701054] ? fget_raw+0x20/0x20 [ 961.704511] ? __might_fault+0x12b/0x1e0 [ 961.708557] ? lock_downgrade+0x900/0x900 [ 961.712701] ? lock_release+0xa00/0xa00 [ 961.716677] ? perf_trace_sched_process_exec+0x860/0x860 [ 961.722111] ? posix_ktime_get_ts+0x15/0x20 [ 961.726422] ? trace_hardirqs_off_caller+0x310/0x310 [ 961.731522] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 961.737045] ? sockfd_lookup_light+0xc5/0x160 [ 961.741530] __sys_sendmsg+0x11d/0x280 [ 961.745425] ? __ia32_sys_shutdown+0x80/0x80 [ 961.749854] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 961.755378] ? put_timespec64+0x10f/0x1b0 [ 961.759518] ? do_syscall_64+0x9a/0x820 [ 961.763477] ? do_syscall_64+0x9a/0x820 [ 961.767460] ? trace_hardirqs_off_caller+0x310/0x310 [ 961.772552] __x64_sys_sendmsg+0x78/0xb0 [ 961.776602] do_syscall_64+0x1b9/0x820 [ 961.780477] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 961.785845] ? syscall_return_slowpath+0x5e0/0x5e0 [ 961.790787] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 961.795622] ? trace_hardirqs_on_caller+0x310/0x310 [ 961.800643] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 961.805649] ? prepare_exit_to_usermode+0x291/0x3b0 [ 961.810654] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 961.815514] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 961.820692] RIP: 0033:0x457569 [ 961.823892] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 01:09:24 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x900000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 961.842779] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 961.850470] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 961.857748] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 961.865015] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 961.872270] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 961.879542] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:24 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11]}, 0x2c) 01:09:24 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x800000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:24 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6900000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:24 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000680000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:24 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000001e00)={&(0x7f0000001b80)={0x10, 0x0, 0x0, 0x800002}, 0xc, &(0x7f0000001dc0)={&(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1c4}, 0x1, 0x0, 0x0, 0x40040}, 0x4c8c0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:24 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 962.091961] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 962.134210] CPU: 0 PID: 10842 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 962.141604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 962.150964] Call Trace: [ 962.153569] dump_stack+0x244/0x39d [ 962.157235] ? dump_stack_print_info.cold.1+0x20/0x20 [ 962.162448] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 962.167579] sysfs_warn_dup.cold.3+0x1c/0x2b [ 962.172002] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 962.172022] sysfs_create_link+0x65/0xc0 [ 962.172041] device_add+0x64a/0x18e0 [ 962.172056] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 962.172070] ? genl_rcv_msg+0xc6/0x168 [ 962.172091] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 962.172104] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 962.172123] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 962.181543] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 962.181571] wiphy_register+0x1a5b/0x2770 [ 962.181602] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 962.181630] ? rcu_read_lock_sched_held+0x14f/0x180 [ 962.181647] ? __kmalloc+0x5ee/0x760 01:09:25 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000]}, 0x2c) [ 962.181665] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 962.181682] ? ieee80211_cs_list_valid+0x7c/0x440 [ 962.181699] ? ieee80211_register_hw+0xce9/0x3f10 [ 962.181721] ieee80211_register_hw+0x159b/0x3f10 [ 962.252939] ? ieee80211_ifa_changed+0xed0/0xed0 [ 962.257718] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 962.262748] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 962.268892] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 962.274430] ? vsnprintf+0x20d/0x1b60 [ 962.278263] ? pointer+0x900/0x900 01:09:25 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xc3100000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 962.281832] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 962.286860] ? kvasprintf+0xee/0x150 [ 962.290587] ? bust_spinlocks+0xe0/0xe0 [ 962.294579] ? validate_nla+0x29a/0x1650 [ 962.298657] ? kasprintf+0xab/0xe0 [ 962.302241] ? kvasprintf_const+0x190/0x190 [ 962.306576] ? cap_capable+0x1f9/0x260 [ 962.310511] hwsim_new_radio_nl+0x7dc/0xb20 [ 962.314842] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 962.320035] ? __nla_parse+0x12c/0x3e0 [ 962.323947] genl_family_rcv_msg+0x8a7/0x11a0 [ 962.328470] ? genl_unregister_family+0x8a0/0x8a0 01:09:25 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 962.333340] ? lock_downgrade+0x900/0x900 [ 962.337505] ? check_preemption_disabled+0x48/0x280 [ 962.342531] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 962.347523] ? kasan_check_read+0x11/0x20 [ 962.351696] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 962.356987] ? rcu_softirq_qs+0x20/0x20 [ 962.360997] genl_rcv_msg+0xc6/0x168 [ 962.364730] netlink_rcv_skb+0x172/0x440 [ 962.368800] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 962.373568] ? netlink_ack+0xb80/0xb80 [ 962.377461] ? down_read+0x8d/0x120 [ 962.381110] genl_rcv+0x28/0x40 01:09:25 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff9e]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 962.384423] netlink_unicast+0x5a5/0x760 [ 962.388502] ? netlink_attachskb+0x9a0/0x9a0 [ 962.392925] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 962.398472] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 962.403498] netlink_sendmsg+0xa18/0xfc0 [ 962.407573] ? netlink_unicast+0x760/0x760 [ 962.411814] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 962.416754] ? apparmor_socket_sendmsg+0x29/0x30 [ 962.421523] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 962.427085] ? security_socket_sendmsg+0x94/0xc0 01:09:25 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 962.431862] ? netlink_unicast+0x760/0x760 [ 962.436115] sock_sendmsg+0xd5/0x120 [ 962.439877] ___sys_sendmsg+0x7fd/0x930 [ 962.443860] ? find_held_lock+0x36/0x1c0 [ 962.447934] ? copy_msghdr_from_user+0x580/0x580 [ 962.452696] ? __fd_install+0x2b5/0x8f0 [ 962.456691] ? __fget_light+0x2e9/0x430 [ 962.460679] ? fget_raw+0x20/0x20 [ 962.464147] ? __might_fault+0x12b/0x1e0 [ 962.468258] ? lock_downgrade+0x900/0x900 [ 962.472432] ? lock_release+0xa00/0xa00 [ 962.476414] ? perf_trace_sched_process_exec+0x860/0x860 01:09:25 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 962.481872] ? posix_ktime_get_ts+0x15/0x20 [ 962.486225] ? trace_hardirqs_off_caller+0x310/0x310 [ 962.491353] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 962.496914] ? sockfd_lookup_light+0xc5/0x160 [ 962.501419] __sys_sendmsg+0x11d/0x280 [ 962.505323] ? __ia32_sys_shutdown+0x80/0x80 [ 962.509743] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 962.515291] ? put_timespec64+0x10f/0x1b0 [ 962.519498] ? do_syscall_64+0x9a/0x820 [ 962.519514] ? do_syscall_64+0x9a/0x820 [ 962.519556] ? trace_hardirqs_off_caller+0x310/0x310 01:09:25 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 962.519579] __x64_sys_sendmsg+0x78/0xb0 [ 962.519616] do_syscall_64+0x1b9/0x820 [ 962.540584] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 962.545961] ? syscall_return_slowpath+0x5e0/0x5e0 [ 962.550897] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 962.555754] ? trace_hardirqs_on_caller+0x310/0x310 [ 962.560809] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 962.565839] ? prepare_exit_to_usermode+0x291/0x3b0 [ 962.570871] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 962.575729] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 962.580942] RIP: 0033:0x457569 [ 962.584160] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 962.603100] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 962.610812] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 962.618102] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 962.625382] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 962.632664] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 962.639931] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:25 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x20db1, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:25 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xa00000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:25 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a00000000007a0000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:25 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x1200]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:25 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) getsockname(r1, &(0x7f0000000180)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, &(0x7f0000000040)=0x35) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f0000000300), &(0x7f0000000340)=0x4) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:25 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500]}, 0x2c) [ 962.755271] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 962.771542] CPU: 1 PID: 10891 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 962.779044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 962.788398] Call Trace: [ 962.791096] dump_stack+0x244/0x39d [ 962.794791] ? dump_stack_print_info.cold.1+0x20/0x20 [ 962.800037] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 962.805162] sysfs_warn_dup.cold.3+0x1c/0x2b [ 962.809629] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 962.815017] sysfs_create_link+0x65/0xc0 [ 962.819093] device_add+0x64a/0x18e0 [ 962.822825] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 962.827515] ? genl_rcv_msg+0xc6/0x168 [ 962.831420] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 962.836527] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 962.841897] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 962.841917] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 962.841942] wiphy_register+0x1a5b/0x2770 [ 962.841969] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 962.852787] ? rcu_read_lock_sched_held+0x14f/0x180 [ 962.852805] ? __kmalloc+0x5ee/0x760 [ 962.852824] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 962.852856] ? ieee80211_cs_list_valid+0x7c/0x440 [ 962.852873] ? ieee80211_register_hw+0xce9/0x3f10 [ 962.852925] ieee80211_register_hw+0x159b/0x3f10 [ 962.852956] ? ieee80211_ifa_changed+0xed0/0xed0 [ 962.895437] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 962.900481] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 962.906640] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 962.912738] ? vsnprintf+0x20d/0x1b60 [ 962.916553] ? pointer+0x900/0x900 [ 962.920129] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 962.925186] ? kvasprintf+0xee/0x150 [ 962.928915] ? bust_spinlocks+0xe0/0xe0 [ 962.932908] ? validate_nla+0x29a/0x1650 [ 962.936999] ? kasprintf+0xab/0xe0 [ 962.940553] ? kvasprintf_const+0x190/0x190 [ 962.944914] ? cap_capable+0x1f9/0x260 [ 962.948825] hwsim_new_radio_nl+0x7dc/0xb20 01:09:25 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 962.953165] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 962.958385] ? __nla_parse+0x12c/0x3e0 [ 962.962302] genl_family_rcv_msg+0x8a7/0x11a0 [ 962.966848] ? genl_unregister_family+0x8a0/0x8a0 [ 962.971716] ? lock_downgrade+0x900/0x900 [ 962.975879] ? check_preemption_disabled+0x48/0x280 [ 962.980927] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 962.985871] ? kasan_check_read+0x11/0x20 [ 962.990025] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 962.990040] ? rcu_softirq_qs+0x20/0x20 [ 962.990091] genl_rcv_msg+0xc6/0x168 [ 962.990111] netlink_rcv_skb+0x172/0x440 [ 962.990128] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 962.990144] ? netlink_ack+0xb80/0xb80 [ 962.990163] ? down_read+0x8d/0x120 [ 962.999423] genl_rcv+0x28/0x40 [ 962.999440] netlink_unicast+0x5a5/0x760 [ 962.999464] ? netlink_attachskb+0x9a0/0x9a0 [ 962.999483] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 962.999500] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 962.999522] netlink_sendmsg+0xa18/0xfc0 [ 962.999545] ? netlink_unicast+0x760/0x760 [ 963.050186] ? aa_sock_msg_perm.isra.14+0xba/0x160 01:09:25 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff0]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 963.055150] ? apparmor_socket_sendmsg+0x29/0x30 [ 963.059930] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 963.065477] ? security_socket_sendmsg+0x94/0xc0 [ 963.070247] ? netlink_unicast+0x760/0x760 [ 963.074510] sock_sendmsg+0xd5/0x120 [ 963.078241] ___sys_sendmsg+0x7fd/0x930 [ 963.082229] ? find_held_lock+0x36/0x1c0 [ 963.082253] ? copy_msghdr_from_user+0x580/0x580 [ 963.082271] ? __fd_install+0x2b5/0x8f0 [ 963.082301] ? __fget_light+0x2e9/0x430 [ 963.082318] ? fget_raw+0x20/0x20 [ 963.082342] ? __might_fault+0x12b/0x1e0 [ 963.091153] ? lock_downgrade+0x900/0x900 [ 963.091199] ? lock_release+0xa00/0xa00 [ 963.091215] ? perf_trace_sched_process_exec+0x860/0x860 [ 963.091229] ? posix_ktime_get_ts+0x15/0x20 [ 963.091248] ? trace_hardirqs_off_caller+0x310/0x310 [ 963.091275] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 963.091292] ? sockfd_lookup_light+0xc5/0x160 [ 963.091313] __sys_sendmsg+0x11d/0x280 [ 963.091332] ? __ia32_sys_shutdown+0x80/0x80 [ 963.091352] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 01:09:26 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x13]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 963.153563] ? put_timespec64+0x10f/0x1b0 [ 963.157757] ? do_syscall_64+0x9a/0x820 [ 963.161754] ? do_syscall_64+0x9a/0x820 [ 963.165749] ? trace_hardirqs_off_caller+0x310/0x310 [ 963.170879] __x64_sys_sendmsg+0x78/0xb0 [ 963.174955] do_syscall_64+0x1b9/0x820 [ 963.178864] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 963.184278] ? syscall_return_slowpath+0x5e0/0x5e0 [ 963.189227] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 963.194089] ? trace_hardirqs_on_caller+0x310/0x310 [ 963.199121] ? prepare_exit_to_usermode+0x3b0/0x3b0 01:09:26 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x400300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 963.204155] ? prepare_exit_to_usermode+0x291/0x3b0 [ 963.209262] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 963.214140] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 963.219353] RIP: 0033:0x457569 [ 963.222558] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 963.241478] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 963.249215] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 01:09:26 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x500]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 963.256490] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 963.263766] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 963.271129] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 963.278406] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:26 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x2c) 01:09:26 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x300000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:26 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000040)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) r2 = socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) setsockopt$inet_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f00000000c0), 0x4) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:26 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x640a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:26 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x12]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:26 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a00000000006c0000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 963.471438] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 963.504451] CPU: 1 PID: 10935 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 963.511858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 963.521217] Call Trace: [ 963.523819] dump_stack+0x244/0x39d [ 963.527469] ? dump_stack_print_info.cold.1+0x20/0x20 [ 963.532675] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 963.532709] sysfs_warn_dup.cold.3+0x1c/0x2b [ 963.532730] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 963.542243] sysfs_create_link+0x65/0xc0 [ 963.542263] device_add+0x64a/0x18e0 [ 963.542279] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 963.542307] ? genl_rcv_msg+0xc6/0x168 [ 963.542342] ? get_device_parent.isra.25+0x5a0/0x5a0 01:09:26 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1100000000000000]}, 0x2c) [ 963.542375] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 963.574776] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 963.580026] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 963.585590] wiphy_register+0x1a5b/0x2770 [ 963.589760] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 963.594710] ? rcu_read_lock_sched_held+0x14f/0x180 [ 963.599744] ? __kmalloc+0x5ee/0x760 [ 963.603473] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 963.609015] ? ieee80211_cs_list_valid+0x7c/0x440 [ 963.613891] ? ieee80211_register_hw+0xce9/0x3f10 [ 963.618769] ieee80211_register_hw+0x159b/0x3f10 [ 963.623548] ? ieee80211_ifa_changed+0xed0/0xed0 [ 963.628326] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 963.633369] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 963.639524] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 963.645072] ? vsnprintf+0x20d/0x1b60 [ 963.648880] ? pointer+0x900/0x900 [ 963.652415] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 963.657420] ? kvasprintf+0xee/0x150 [ 963.661133] ? bust_spinlocks+0xe0/0xe0 [ 963.665126] ? validate_nla+0x29a/0x1650 [ 963.669197] ? kasprintf+0xab/0xe0 [ 963.672726] ? kvasprintf_const+0x190/0x190 [ 963.677053] ? cap_capable+0x1f9/0x260 [ 963.680942] hwsim_new_radio_nl+0x7dc/0xb20 [ 963.685255] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 963.690454] ? __nla_parse+0x12c/0x3e0 [ 963.694352] genl_family_rcv_msg+0x8a7/0x11a0 [ 963.698840] ? genl_unregister_family+0x8a0/0x8a0 [ 963.703669] ? lock_downgrade+0x900/0x900 [ 963.707831] ? check_preemption_disabled+0x48/0x280 [ 963.712882] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 963.717803] ? kasan_check_read+0x11/0x20 [ 963.721938] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 963.727206] ? rcu_softirq_qs+0x20/0x20 [ 963.731190] genl_rcv_msg+0xc6/0x168 [ 963.734896] netlink_rcv_skb+0x172/0x440 [ 963.738968] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 963.743724] ? netlink_ack+0xb80/0xb80 [ 963.747605] ? down_read+0x8d/0x120 [ 963.751274] genl_rcv+0x28/0x40 [ 963.754578] netlink_unicast+0x5a5/0x760 [ 963.758642] ? netlink_attachskb+0x9a0/0x9a0 [ 963.763063] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 963.768603] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 963.773624] netlink_sendmsg+0xa18/0xfc0 [ 963.777691] ? netlink_unicast+0x760/0x760 [ 963.781950] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 963.786884] ? apparmor_socket_sendmsg+0x29/0x30 [ 963.791631] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 963.797158] ? security_socket_sendmsg+0x94/0xc0 [ 963.801919] ? netlink_unicast+0x760/0x760 [ 963.806147] sock_sendmsg+0xd5/0x120 [ 963.809854] ___sys_sendmsg+0x7fd/0x930 [ 963.813842] ? find_held_lock+0x36/0x1c0 [ 963.817909] ? copy_msghdr_from_user+0x580/0x580 [ 963.822669] ? __fd_install+0x2b5/0x8f0 [ 963.826690] ? __fget_light+0x2e9/0x430 [ 963.830665] ? fget_raw+0x20/0x20 [ 963.834111] ? __might_fault+0x12b/0x1e0 [ 963.838160] ? lock_downgrade+0x900/0x900 [ 963.842337] ? lock_release+0xa00/0xa00 [ 963.846317] ? perf_trace_sched_process_exec+0x860/0x860 [ 963.851767] ? posix_ktime_get_ts+0x15/0x20 [ 963.856075] ? trace_hardirqs_off_caller+0x310/0x310 [ 963.861197] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 963.866758] ? sockfd_lookup_light+0xc5/0x160 [ 963.871257] __sys_sendmsg+0x11d/0x280 [ 963.875134] ? __ia32_sys_shutdown+0x80/0x80 [ 963.879541] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 963.885163] ? put_timespec64+0x10f/0x1b0 [ 963.889316] ? do_syscall_64+0x9a/0x820 [ 963.893298] ? do_syscall_64+0x9a/0x820 [ 963.897283] ? trace_hardirqs_off_caller+0x310/0x310 [ 963.902395] __x64_sys_sendmsg+0x78/0xb0 [ 963.906472] do_syscall_64+0x1b9/0x820 [ 963.910359] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 963.915716] ? syscall_return_slowpath+0x5e0/0x5e0 [ 963.920639] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 963.925485] ? trace_hardirqs_on_caller+0x310/0x310 [ 963.930503] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 963.935508] ? prepare_exit_to_usermode+0x291/0x3b0 [ 963.940532] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 963.945381] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 963.950578] RIP: 0033:0x457569 [ 963.953786] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 01:09:26 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xc310000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 963.972719] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 963.980433] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 963.987731] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 963.995024] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 964.002293] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 964.009552] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:26 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:26 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xfffff000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:26 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffff]}, 0x2c) 01:09:27 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000740000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:27 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(0xffffffffffffffff, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f0000000300)={&(0x7f0000000400)=""/206, 0x10000, 0x800, 0xe8b}, 0x18) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r1, 0x7ff, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r3, &(0x7f0000000180)="5cfca08abf22dd65805aea381ffeeb35315880f89bd017d863fca7f8bb06adadcc90f6bcbb3abdbd1c885a014b3b039e8e20f04ff5511b37e355c9e49b0a19567568e4f6a09ee2abf91023c24417a2e1cbf75928d1c8ee9d97c54bd45143bd", &(0x7f0000000500)="cdd19f8bbf54f3d2862c88eec37743b9d1b03c79e88503fe35acc7dee720d4a76491350ea8c23c0c33a97cc6cb870cf162d5d720a64b6a3b2cb07ad2576f57cd809ec85e55bec2c03cdf9dbe189aba02a66165dbaf760c877a9b8d1816fafcd913774c4b2928c489325be5139182d6f75ece92b0f05b13fb4e856b47ca3746fe4129eaabf5b625e2e66badd7eddf6c86c5b736dd3b79236202fce098f83ab39f5fc44b528f8cf3031f9921d56273116eec3d36d9d424b4a85b87a5f50012a653ca02e6f3b1f3b0a5f455f6fc720f6557f12074c4d9e049aeb9e53af681b65aa7d426df15f3caafa404aa77860674898a40", 0x2}, 0x20) sendmmsg(r2, &(0x7f0000000a80), 0x0, 0x8000) 01:09:27 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x38000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:27 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 964.202672] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 964.263413] CPU: 1 PID: 10972 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 964.270805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 964.270813] Call Trace: [ 964.270839] dump_stack+0x244/0x39d [ 964.270864] ? dump_stack_print_info.cold.1+0x20/0x20 [ 964.291593] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 964.296728] sysfs_warn_dup.cold.3+0x1c/0x2b [ 964.301160] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 964.306553] sysfs_create_link+0x65/0xc0 [ 964.310630] device_add+0x64a/0x18e0 [ 964.310648] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 964.310663] ? genl_rcv_msg+0xc6/0x168 [ 964.310692] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 964.310711] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 964.333436] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 964.338644] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 964.344211] wiphy_register+0x1a5b/0x2770 [ 964.348394] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 964.353354] ? rcu_read_lock_sched_held+0x14f/0x180 [ 964.358382] ? __kmalloc+0x5ee/0x760 [ 964.362114] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 964.367670] ? ieee80211_cs_list_valid+0x7c/0x440 [ 964.372528] ? ieee80211_register_hw+0xce9/0x3f10 [ 964.377402] ieee80211_register_hw+0x159b/0x3f10 [ 964.377436] ? ieee80211_ifa_changed+0xed0/0xed0 [ 964.377476] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 964.377517] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 964.398143] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 964.403714] ? vsnprintf+0x20d/0x1b60 [ 964.407552] ? pointer+0x900/0x900 01:09:27 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 964.411241] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 964.416266] ? kvasprintf+0xee/0x150 [ 964.419985] ? bust_spinlocks+0xe0/0xe0 [ 964.423987] ? validate_nla+0x29a/0x1650 [ 964.428069] ? kasprintf+0xab/0xe0 [ 964.431622] ? kvasprintf_const+0x190/0x190 [ 964.435981] ? cap_capable+0x1f9/0x260 [ 964.439893] hwsim_new_radio_nl+0x7dc/0xb20 [ 964.444242] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 964.449450] ? __nla_parse+0x12c/0x3e0 [ 964.453369] genl_family_rcv_msg+0x8a7/0x11a0 [ 964.457929] ? genl_unregister_family+0x8a0/0x8a0 01:09:27 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xf00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 964.462788] ? lock_downgrade+0x900/0x900 [ 964.467115] ? check_preemption_disabled+0x48/0x280 [ 964.472146] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 964.477100] ? kasan_check_read+0x11/0x20 [ 964.481347] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 964.486646] ? rcu_softirq_qs+0x20/0x20 [ 964.490725] genl_rcv_msg+0xc6/0x168 [ 964.494476] netlink_rcv_skb+0x172/0x440 [ 964.494510] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 964.494558] ? netlink_ack+0xb80/0xb80 [ 964.494590] ? down_read+0x8d/0x120 [ 964.494633] genl_rcv+0x28/0x40 [ 964.494663] netlink_unicast+0x5a5/0x760 [ 964.494737] ? netlink_attachskb+0x9a0/0x9a0 [ 964.503564] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 964.503598] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 964.503649] netlink_sendmsg+0xa18/0xfc0 [ 964.503673] ? netlink_unicast+0x760/0x760 [ 964.503693] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 964.503710] ? apparmor_socket_sendmsg+0x29/0x30 [ 964.551471] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 964.557022] ? security_socket_sendmsg+0x94/0xc0 01:09:27 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 964.561792] ? netlink_unicast+0x760/0x760 [ 964.566052] sock_sendmsg+0xd5/0x120 [ 964.569793] ___sys_sendmsg+0x7fd/0x930 [ 964.573776] ? find_held_lock+0x36/0x1c0 [ 964.577856] ? copy_msghdr_from_user+0x580/0x580 [ 964.582629] ? __fd_install+0x2b5/0x8f0 [ 964.586642] ? __fget_light+0x2e9/0x430 [ 964.590625] ? fget_raw+0x20/0x20 [ 964.594095] ? __might_fault+0x12b/0x1e0 [ 964.598181] ? lock_downgrade+0x900/0x900 [ 964.602347] ? lock_release+0xa00/0xa00 [ 964.606334] ? perf_trace_sched_process_exec+0x860/0x860 01:09:27 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 964.611807] ? posix_ktime_get_ts+0x15/0x20 [ 964.616153] ? trace_hardirqs_off_caller+0x310/0x310 [ 964.621300] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 964.626846] ? sockfd_lookup_light+0xc5/0x160 [ 964.631360] __sys_sendmsg+0x11d/0x280 [ 964.635261] ? __ia32_sys_shutdown+0x80/0x80 [ 964.639691] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 964.645257] ? put_timespec64+0x10f/0x1b0 [ 964.649428] ? do_syscall_64+0x9a/0x820 [ 964.653417] ? do_syscall_64+0x9a/0x820 [ 964.657408] ? trace_hardirqs_off_caller+0x310/0x310 01:09:27 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:27 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 964.662521] __x64_sys_sendmsg+0x78/0xb0 [ 964.666593] do_syscall_64+0x1b9/0x820 [ 964.670488] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 964.675868] ? syscall_return_slowpath+0x5e0/0x5e0 [ 964.680808] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 964.685661] ? trace_hardirqs_on_caller+0x310/0x310 [ 964.690707] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 964.695755] ? prepare_exit_to_usermode+0x291/0x3b0 [ 964.700801] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 964.705672] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 964.710885] RIP: 0033:0x457569 [ 964.714091] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 964.732997] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 964.740718] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 964.747996] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 964.755274] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:09:27 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xf0ffffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 964.762553] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 964.769828] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:27 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000]}, 0x2c) [ 964.865443] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 964.886269] CPU: 1 PID: 11019 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 964.893650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 964.903034] Call Trace: [ 964.905635] dump_stack+0x244/0x39d [ 964.909310] ? dump_stack_print_info.cold.1+0x20/0x20 [ 964.915038] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 964.920188] sysfs_warn_dup.cold.3+0x1c/0x2b [ 964.924639] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 964.930054] sysfs_create_link+0x65/0xc0 [ 964.934129] device_add+0x64a/0x18e0 [ 964.937853] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 964.942529] ? genl_rcv_msg+0xc6/0x168 [ 964.946431] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 964.951558] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 964.956937] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 964.962141] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 964.967800] wiphy_register+0x1a5b/0x2770 [ 964.972070] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 964.977023] ? rcu_read_lock_sched_held+0x14f/0x180 [ 964.982059] ? __kmalloc+0x5ee/0x760 [ 964.985789] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 964.991339] ? ieee80211_cs_list_valid+0x7c/0x440 [ 964.996206] ? ieee80211_register_hw+0xce9/0x3f10 [ 965.001067] ieee80211_register_hw+0x159b/0x3f10 [ 965.005831] ? ieee80211_ifa_changed+0xed0/0xed0 [ 965.010599] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 965.015651] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 965.021782] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 965.027315] ? vsnprintf+0x20d/0x1b60 [ 965.031118] ? pointer+0x900/0x900 [ 965.034652] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 965.039660] ? kvasprintf+0xee/0x150 [ 965.043366] ? bust_spinlocks+0xe0/0xe0 [ 965.047330] ? validate_nla+0x29a/0x1650 [ 965.051381] ? kasprintf+0xab/0xe0 [ 965.054933] ? kvasprintf_const+0x190/0x190 [ 965.059251] ? cap_capable+0x1f9/0x260 [ 965.063135] hwsim_new_radio_nl+0x7dc/0xb20 [ 965.067449] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 965.072626] ? __nla_parse+0x12c/0x3e0 [ 965.076509] genl_family_rcv_msg+0x8a7/0x11a0 [ 965.080994] ? genl_unregister_family+0x8a0/0x8a0 [ 965.085827] ? lock_downgrade+0x900/0x900 [ 965.089972] ? check_preemption_disabled+0x48/0x280 [ 965.094978] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 965.099893] ? kasan_check_read+0x11/0x20 [ 965.104024] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 965.109297] ? rcu_softirq_qs+0x20/0x20 [ 965.113290] genl_rcv_msg+0xc6/0x168 [ 965.116995] netlink_rcv_skb+0x172/0x440 [ 965.121042] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 965.125787] ? netlink_ack+0xb80/0xb80 [ 965.129677] ? down_read+0x8d/0x120 [ 965.133319] genl_rcv+0x28/0x40 [ 965.136584] netlink_unicast+0x5a5/0x760 [ 965.140642] ? netlink_attachskb+0x9a0/0x9a0 [ 965.145045] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 965.150570] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 965.155593] netlink_sendmsg+0xa18/0xfc0 [ 965.159658] ? netlink_unicast+0x760/0x760 [ 965.163884] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 965.168803] ? apparmor_socket_sendmsg+0x29/0x30 [ 965.173546] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 965.179074] ? security_socket_sendmsg+0x94/0xc0 [ 965.183830] ? netlink_unicast+0x760/0x760 [ 965.188060] sock_sendmsg+0xd5/0x120 [ 965.191769] ___sys_sendmsg+0x7fd/0x930 [ 965.195733] ? copy_msghdr_from_user+0x580/0x580 [ 965.200472] ? __switch_to_asm+0x34/0x70 [ 965.204519] ? __switch_to_asm+0x34/0x70 [ 965.208575] ? __switch_to_asm+0x40/0x70 [ 965.212625] ? __switch_to_asm+0x34/0x70 [ 965.216675] ? __switch_to_asm+0x40/0x70 [ 965.220722] ? __switch_to_asm+0x34/0x70 [ 965.224777] ? __fget_light+0x2e9/0x430 [ 965.228745] ? fget_raw+0x20/0x20 [ 965.232228] ? __might_fault+0x12b/0x1e0 [ 965.236305] ? lock_downgrade+0x900/0x900 [ 965.240469] ? lock_release+0xa00/0xa00 [ 965.244445] ? perf_trace_sched_process_exec+0x860/0x860 [ 965.249889] ? posix_ktime_get_ts+0x15/0x20 [ 965.254207] ? trace_hardirqs_off_caller+0x310/0x310 [ 965.259301] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 965.264820] ? sockfd_lookup_light+0xc5/0x160 [ 965.269303] __sys_sendmsg+0x11d/0x280 [ 965.273183] ? __ia32_sys_shutdown+0x80/0x80 [ 965.277594] ? schedule+0x108/0x460 [ 965.281222] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 965.286744] ? put_timespec64+0x10f/0x1b0 [ 965.290874] ? __schedule+0x21d0/0x21d0 [ 965.294833] ? exit_to_usermode_loop+0x8c/0x380 [ 965.299502] ? do_syscall_64+0x9a/0x820 [ 965.303475] ? do_syscall_64+0x9a/0x820 [ 965.307441] ? trace_hardirqs_off_caller+0x310/0x310 [ 965.312548] __x64_sys_sendmsg+0x78/0xb0 [ 965.316597] do_syscall_64+0x1b9/0x820 [ 965.320471] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 965.325819] ? syscall_return_slowpath+0x5e0/0x5e0 [ 965.330734] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 965.335565] ? trace_hardirqs_on_caller+0x310/0x310 [ 965.340567] ? prepare_exit_to_usermode+0x291/0x3b0 [ 965.345587] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 965.350429] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 965.355599] RIP: 0033:0x457569 [ 965.358808] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 965.377695] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 965.385388] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 965.392641] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 965.399900] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 965.407154] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 01:09:28 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000070000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:28 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:28 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) pipe(&(0x7f0000000440)) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='cgroup.events\x00', 0x0, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) r2 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000300)='syz1\x00', 0x200002, 0x0) openat$cgroup(r2, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0xfffffffffffffe08, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1, 0x0, 0x1c0}}], 0x1, 0xfffffffffffffffc) 01:09:28 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x74, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 965.414414] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:28 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x1000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:28 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:28 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00000000000000]}, 0x2c) [ 965.590682] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 965.654407] CPU: 0 PID: 11043 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 965.661789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 965.671147] Call Trace: [ 965.673786] dump_stack+0x244/0x39d [ 965.677434] ? dump_stack_print_info.cold.1+0x20/0x20 [ 965.677461] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 965.687743] sysfs_warn_dup.cold.3+0x1c/0x2b [ 965.692168] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 965.697562] sysfs_create_link+0x65/0xc0 01:09:28 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1100000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 965.701637] device_add+0x64a/0x18e0 [ 965.705379] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 965.710071] ? genl_rcv_msg+0xc6/0x168 [ 965.713992] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 965.719100] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 965.724508] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 965.729711] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 965.735297] wiphy_register+0x1a5b/0x2770 [ 965.739465] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 965.744402] ? rcu_read_lock_sched_held+0x14f/0x180 [ 965.749407] ? __kmalloc+0x5ee/0x760 [ 965.753108] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 965.758628] ? ieee80211_cs_list_valid+0x7c/0x440 [ 965.763471] ? ieee80211_register_hw+0xce9/0x3f10 [ 965.768348] ieee80211_register_hw+0x159b/0x3f10 [ 965.773095] ? ieee80211_ifa_changed+0xed0/0xed0 [ 965.777874] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 965.782901] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 965.789050] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 965.794594] ? vsnprintf+0x20d/0x1b60 [ 965.798394] ? pointer+0x900/0x900 [ 965.801925] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 965.806933] ? kvasprintf+0xee/0x150 [ 965.810638] ? bust_spinlocks+0xe0/0xe0 [ 965.814614] ? validate_nla+0x29a/0x1650 [ 965.818767] ? kasprintf+0xab/0xe0 [ 965.822297] ? kvasprintf_const+0x190/0x190 [ 965.826620] ? cap_capable+0x1f9/0x260 [ 965.830516] hwsim_new_radio_nl+0x7dc/0xb20 [ 965.834842] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 965.840019] ? __nla_parse+0x12c/0x3e0 [ 965.843903] genl_family_rcv_msg+0x8a7/0x11a0 [ 965.848389] ? genl_unregister_family+0x8a0/0x8a0 [ 965.853220] ? lock_downgrade+0x900/0x900 [ 965.857356] ? check_preemption_disabled+0x48/0x280 [ 965.862373] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 965.867317] ? kasan_check_read+0x11/0x20 [ 965.871450] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 965.876714] ? rcu_softirq_qs+0x20/0x20 [ 965.880701] genl_rcv_msg+0xc6/0x168 [ 965.884417] netlink_rcv_skb+0x172/0x440 [ 965.888463] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 965.893217] ? netlink_ack+0xb80/0xb80 [ 965.897107] ? down_read+0x8d/0x120 [ 965.900739] genl_rcv+0x28/0x40 [ 965.904019] netlink_unicast+0x5a5/0x760 [ 965.908081] ? netlink_attachskb+0x9a0/0x9a0 [ 965.912493] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 965.918031] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 965.923035] netlink_sendmsg+0xa18/0xfc0 [ 965.927114] ? netlink_unicast+0x760/0x760 [ 965.931348] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 965.936279] ? apparmor_socket_sendmsg+0x29/0x30 [ 965.941057] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 965.946612] ? security_socket_sendmsg+0x94/0xc0 [ 965.951353] ? netlink_unicast+0x760/0x760 [ 965.955596] sock_sendmsg+0xd5/0x120 [ 965.959298] ___sys_sendmsg+0x7fd/0x930 [ 965.963260] ? find_held_lock+0x36/0x1c0 [ 965.967329] ? copy_msghdr_from_user+0x580/0x580 [ 965.972088] ? __fd_install+0x2b5/0x8f0 [ 965.976055] ? __fget_light+0x2e9/0x430 [ 965.980026] ? fget_raw+0x20/0x20 [ 965.983482] ? __might_fault+0x12b/0x1e0 [ 965.987543] ? lock_downgrade+0x900/0x900 [ 965.991677] ? lock_release+0xa00/0xa00 [ 965.995641] ? perf_trace_sched_process_exec+0x860/0x860 [ 966.001082] ? posix_ktime_get_ts+0x15/0x20 [ 966.005390] ? trace_hardirqs_off_caller+0x310/0x310 [ 966.010482] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 966.016006] ? sockfd_lookup_light+0xc5/0x160 [ 966.020491] __sys_sendmsg+0x11d/0x280 [ 966.024368] ? __ia32_sys_shutdown+0x80/0x80 [ 966.028765] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 966.034290] ? put_timespec64+0x10f/0x1b0 [ 966.038426] ? do_syscall_64+0x9a/0x820 [ 966.042388] ? do_syscall_64+0x9a/0x820 [ 966.046354] ? trace_hardirqs_off_caller+0x310/0x310 [ 966.051447] __x64_sys_sendmsg+0x78/0xb0 [ 966.055499] do_syscall_64+0x1b9/0x820 [ 966.059374] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 966.064749] ? syscall_return_slowpath+0x5e0/0x5e0 [ 966.069695] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 966.074566] ? trace_hardirqs_on_caller+0x310/0x310 [ 966.079592] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 966.084600] ? prepare_exit_to_usermode+0x291/0x3b0 [ 966.089604] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 966.094437] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 966.099619] RIP: 0033:0x457569 [ 966.102838] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 966.121720] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 966.129417] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 966.136680] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 966.143936] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:09:29 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:29 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000040), &(0x7f0000000340)=0xc) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) [ 966.151204] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 966.158460] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:29 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000007400000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:29 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, 0x2c) 01:09:29 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xf0ffffffffffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:29 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x13000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:29 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x7, &(0x7f0000000300)="c38a6e51e69e06ed8b8c954233f3d5ba9ecc5e27129110f502d80e27ce107be1d3e09e30488df4b8313f91bb251d7077ed20136317b0f583d9d3ffbd74c8026b9e45b65c15cd0ff01d02a4cd32d1a60c506a0933212af7d15d674adaf6e0f846209a66cc9a651f69ba532f22525ff416b9a8b6d042f4") ioctl$sock_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(0xffffffffffffffff, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000040)={0x0, 0x5c9}, &(0x7f0000000180)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f00000001c0)={r2}, 0x8) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) [ 966.399630] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 966.428888] CPU: 0 PID: 11076 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 966.436273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 966.445628] Call Trace: [ 966.448231] dump_stack+0x244/0x39d [ 966.451880] ? dump_stack_print_info.cold.1+0x20/0x20 [ 966.457086] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 966.462221] sysfs_warn_dup.cold.3+0x1c/0x2b [ 966.466645] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 966.472020] sysfs_create_link+0x65/0xc0 [ 966.476097] device_add+0x64a/0x18e0 [ 966.479838] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 966.484521] ? genl_rcv_msg+0xc6/0x168 [ 966.488428] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 966.493543] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe 01:09:29 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x2, 0x1) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_inet_SIOCDELRT(r2, 0x890c, &(0x7f0000000300)={0x1, {0x2, 0x4e21, @local}, {0x2, 0x4e22, @multicast1}, {0x2, 0x4e21, @local}, 0x280, 0x5, 0x3f, 0x7fff, 0x0, &(0x7f0000000180)='ipddp0\x00', 0xb7, 0x3, 0x2e}) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000040)={r2}) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) [ 966.498917] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 966.504119] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 966.509672] wiphy_register+0x1a5b/0x2770 [ 966.513846] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 966.518794] ? rcu_read_lock_sched_held+0x14f/0x180 [ 966.523816] ? __kmalloc+0x5ee/0x760 [ 966.527546] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 966.533101] ? ieee80211_cs_list_valid+0x7c/0x440 [ 966.537958] ? ieee80211_register_hw+0xce9/0x3f10 [ 966.542804] ieee80211_register_hw+0x159b/0x3f10 01:09:29 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 966.547588] ? ieee80211_ifa_changed+0xed0/0xed0 [ 966.552369] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 966.557412] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 966.563583] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 966.569126] ? vsnprintf+0x20d/0x1b60 [ 966.569150] ? pointer+0x900/0x900 [ 966.569192] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 966.569211] ? kvasprintf+0xee/0x150 [ 966.585282] ? bust_spinlocks+0xe0/0xe0 [ 966.589274] ? validate_nla+0x29a/0x1650 [ 966.593360] ? kasprintf+0xab/0xe0 01:09:29 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 966.596907] ? kvasprintf_const+0x190/0x190 [ 966.601284] ? cap_capable+0x1f9/0x260 [ 966.605213] hwsim_new_radio_nl+0x7dc/0xb20 [ 966.609582] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 966.614782] ? __nla_parse+0x12c/0x3e0 [ 966.618692] genl_family_rcv_msg+0x8a7/0x11a0 [ 966.623250] ? genl_unregister_family+0x8a0/0x8a0 [ 966.628102] ? lock_downgrade+0x900/0x900 [ 966.632265] ? check_preemption_disabled+0x48/0x280 [ 966.637295] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 966.642236] ? kasan_check_read+0x11/0x20 [ 966.646399] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 966.651685] ? rcu_softirq_qs+0x20/0x20 [ 966.651723] genl_rcv_msg+0xc6/0x168 [ 966.651746] netlink_rcv_skb+0x172/0x440 [ 966.659424] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 966.659442] ? netlink_ack+0xb80/0xb80 [ 966.659457] ? down_read+0x8d/0x120 [ 966.659485] genl_rcv+0x28/0x40 [ 966.659502] netlink_unicast+0x5a5/0x760 [ 966.683202] ? netlink_attachskb+0x9a0/0x9a0 [ 966.687632] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 966.693202] ? __sanitizer_cov_trace_cmp4+0x16/0x20 01:09:29 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 966.698227] netlink_sendmsg+0xa18/0xfc0 [ 966.702309] ? netlink_unicast+0x760/0x760 [ 966.706573] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 966.711514] ? apparmor_socket_sendmsg+0x29/0x30 [ 966.716294] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 966.721855] ? security_socket_sendmsg+0x94/0xc0 [ 966.726663] ? netlink_unicast+0x760/0x760 [ 966.730944] sock_sendmsg+0xd5/0x120 [ 966.734669] ___sys_sendmsg+0x7fd/0x930 [ 966.738672] ? find_held_lock+0x36/0x1c0 [ 966.742757] ? copy_msghdr_from_user+0x580/0x580 [ 966.747522] ? __fd_install+0x2b5/0x8f0 [ 966.751520] ? __fget_light+0x2e9/0x430 [ 966.755506] ? fget_raw+0x20/0x20 [ 966.758989] ? __might_fault+0x12b/0x1e0 [ 966.763067] ? lock_downgrade+0x900/0x900 [ 966.767232] ? lock_release+0xa00/0xa00 [ 966.771228] ? perf_trace_sched_process_exec+0x860/0x860 [ 966.776689] ? posix_ktime_get_ts+0x15/0x20 [ 966.781509] ? trace_hardirqs_off_caller+0x310/0x310 [ 966.786621] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 966.792143] ? sockfd_lookup_light+0xc5/0x160 [ 966.796673] __sys_sendmsg+0x11d/0x280 [ 966.800549] ? __ia32_sys_shutdown+0x80/0x80 [ 966.804959] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 966.810484] ? put_timespec64+0x10f/0x1b0 [ 966.814636] ? do_syscall_64+0x9a/0x820 [ 966.818593] ? do_syscall_64+0x9a/0x820 [ 966.822561] ? trace_hardirqs_off_caller+0x310/0x310 [ 966.827651] __x64_sys_sendmsg+0x78/0xb0 [ 966.831703] do_syscall_64+0x1b9/0x820 [ 966.835576] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 966.840925] ? syscall_return_slowpath+0x5e0/0x5e0 [ 966.845840] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 966.850669] ? trace_hardirqs_on_caller+0x310/0x310 [ 966.855722] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 966.860741] ? prepare_exit_to_usermode+0x291/0x3b0 [ 966.865749] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 966.870590] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 966.875786] RIP: 0033:0x457569 [ 966.878973] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 01:09:29 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xb6160000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:29 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x600000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 966.897884] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 966.905581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 966.913032] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 966.920283] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 966.927539] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 966.934806] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:29 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xb80d0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:29 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000090000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:29 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}, 0x2c) 01:09:29 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x1300000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 967.106052] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 967.138210] CPU: 1 PID: 11118 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 967.145615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 967.154972] Call Trace: [ 967.157617] dump_stack+0x244/0x39d [ 967.161273] ? dump_stack_print_info.cold.1+0x20/0x20 [ 967.166488] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 967.171611] sysfs_warn_dup.cold.3+0x1c/0x2b [ 967.176052] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 967.181447] sysfs_create_link+0x65/0xc0 [ 967.185530] device_add+0x64a/0x18e0 [ 967.189260] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 967.193942] ? genl_rcv_msg+0xc6/0x168 [ 967.197850] ? get_device_parent.isra.25+0x5a0/0x5a0 01:09:30 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5200, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 967.202988] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 967.208382] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 967.213591] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 967.219194] wiphy_register+0x1a5b/0x2770 [ 967.223384] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 967.228341] ? rcu_read_lock_sched_held+0x14f/0x180 [ 967.233377] ? __kmalloc+0x5ee/0x760 [ 967.237108] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 967.242670] ? ieee80211_cs_list_valid+0x7c/0x440 [ 967.247534] ? ieee80211_register_hw+0xce9/0x3f10 [ 967.252396] ieee80211_register_hw+0x159b/0x3f10 [ 967.257181] ? ieee80211_ifa_changed+0xed0/0xed0 [ 967.261940] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 967.266966] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 967.273129] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 967.278670] ? vsnprintf+0x20d/0x1b60 [ 967.282498] ? pointer+0x900/0x900 [ 967.286032] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 967.291045] ? kvasprintf+0xee/0x150 [ 967.294778] ? bust_spinlocks+0xe0/0xe0 [ 967.298759] ? validate_nla+0x29a/0x1650 [ 967.302825] ? kasprintf+0xab/0xe0 [ 967.306387] ? kvasprintf_const+0x190/0x190 [ 967.310721] ? cap_capable+0x1f9/0x260 [ 967.314598] hwsim_new_radio_nl+0x7dc/0xb20 [ 967.318916] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 967.324107] ? __nla_parse+0x12c/0x3e0 [ 967.328000] genl_family_rcv_msg+0x8a7/0x11a0 [ 967.332499] ? genl_unregister_family+0x8a0/0x8a0 [ 967.337371] ? lock_downgrade+0x900/0x900 [ 967.341524] ? check_preemption_disabled+0x48/0x280 [ 967.346535] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 967.351462] ? kasan_check_read+0x11/0x20 [ 967.355600] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 967.360875] ? rcu_softirq_qs+0x20/0x20 [ 967.364866] genl_rcv_msg+0xc6/0x168 [ 967.368571] netlink_rcv_skb+0x172/0x440 [ 967.372630] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 967.377390] ? netlink_ack+0xb80/0xb80 [ 967.381275] ? down_read+0x8d/0x120 [ 967.384925] genl_rcv+0x28/0x40 [ 967.388200] netlink_unicast+0x5a5/0x760 [ 967.392260] ? netlink_attachskb+0x9a0/0x9a0 [ 967.396666] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 967.402218] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 967.407237] netlink_sendmsg+0xa18/0xfc0 [ 967.411300] ? netlink_unicast+0x760/0x760 [ 967.415521] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 967.420446] ? apparmor_socket_sendmsg+0x29/0x30 [ 967.425198] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 967.430727] ? security_socket_sendmsg+0x94/0xc0 [ 967.435468] ? netlink_unicast+0x760/0x760 [ 967.439722] sock_sendmsg+0xd5/0x120 [ 967.443465] ___sys_sendmsg+0x7fd/0x930 [ 967.447425] ? find_held_lock+0x36/0x1c0 [ 967.451473] ? copy_msghdr_from_user+0x580/0x580 [ 967.456229] ? __fd_install+0x2b5/0x8f0 [ 967.460227] ? __fget_light+0x2e9/0x430 [ 967.464217] ? fget_raw+0x20/0x20 [ 967.467656] ? __might_fault+0x12b/0x1e0 [ 967.471713] ? lock_downgrade+0x900/0x900 [ 967.475852] ? lock_release+0xa00/0xa00 [ 967.479824] ? perf_trace_sched_process_exec+0x860/0x860 [ 967.485281] ? posix_ktime_get_ts+0x15/0x20 [ 967.489604] ? trace_hardirqs_off_caller+0x310/0x310 [ 967.494703] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 967.500234] ? sockfd_lookup_light+0xc5/0x160 [ 967.504741] __sys_sendmsg+0x11d/0x280 [ 967.508632] ? __ia32_sys_shutdown+0x80/0x80 [ 967.513029] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 967.518580] ? put_timespec64+0x10f/0x1b0 [ 967.522724] ? do_syscall_64+0x9a/0x820 [ 967.526690] ? do_syscall_64+0x9a/0x820 [ 967.530668] ? trace_hardirqs_off_caller+0x310/0x310 [ 967.535772] __x64_sys_sendmsg+0x78/0xb0 [ 967.539832] do_syscall_64+0x1b9/0x820 [ 967.543719] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 967.549071] ? syscall_return_slowpath+0x5e0/0x5e0 [ 967.553982] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 967.558822] ? trace_hardirqs_on_caller+0x310/0x310 [ 967.563854] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 967.568858] ? prepare_exit_to_usermode+0x291/0x3b0 [ 967.573873] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 967.578722] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 967.583912] RIP: 0033:0x457569 [ 967.587104] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 01:09:30 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000180)={0x10, 0x0, 0x0, 0x3}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000040)=0xb, 0x4) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:30 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffffffffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 967.605989] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 967.613682] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 967.620940] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 967.628205] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 967.635474] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 967.642738] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:30 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:30 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc00]}, 0x2c) 01:09:30 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000500000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:30 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xe4ffffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:30 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0xffffff59, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) read(r1, &(0x7f0000000400)=""/215, 0xd7) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000040)={0x0, 0xffffffffffff7fff}, 0x8) ioctl(r2, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:30 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x900]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:30 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000007400000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:30 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}, 0x2c) 01:09:30 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9effffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 967.971490] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 968.040831] CPU: 1 PID: 11166 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 968.048244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 968.057610] Call Trace: [ 968.060230] dump_stack+0x244/0x39d [ 968.063887] ? dump_stack_print_info.cold.1+0x20/0x20 [ 968.069104] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 968.074235] sysfs_warn_dup.cold.3+0x1c/0x2b [ 968.078656] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 968.084040] sysfs_create_link+0x65/0xc0 [ 968.088118] device_add+0x64a/0x18e0 [ 968.091848] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 968.096519] ? genl_rcv_msg+0xc6/0x168 [ 968.100411] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 968.105501] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 968.110870] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 968.116070] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 968.121626] wiphy_register+0x1a5b/0x2770 [ 968.125801] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 968.130739] ? rcu_read_lock_sched_held+0x14f/0x180 [ 968.135758] ? __kmalloc+0x5ee/0x760 [ 968.139480] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 968.145016] ? ieee80211_cs_list_valid+0x7c/0x440 [ 968.149875] ? ieee80211_register_hw+0xce9/0x3f10 [ 968.154753] ieee80211_register_hw+0x159b/0x3f10 [ 968.159533] ? ieee80211_ifa_changed+0xed0/0xed0 [ 968.164298] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 968.169344] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 968.175487] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 968.181029] ? vsnprintf+0x20d/0x1b60 [ 968.184844] ? pointer+0x900/0x900 [ 968.188375] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 968.193379] ? kvasprintf+0xee/0x150 [ 968.197080] ? bust_spinlocks+0xe0/0xe0 [ 968.201060] ? validate_nla+0x29a/0x1650 [ 968.205124] ? kasprintf+0xab/0xe0 [ 968.208670] ? kvasprintf_const+0x190/0x190 [ 968.213016] ? cap_capable+0x1f9/0x260 [ 968.216940] hwsim_new_radio_nl+0x7dc/0xb20 [ 968.221274] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 968.226468] ? __nla_parse+0x12c/0x3e0 [ 968.230384] genl_family_rcv_msg+0x8a7/0x11a0 [ 968.234902] ? genl_unregister_family+0x8a0/0x8a0 [ 968.239746] ? lock_downgrade+0x900/0x900 [ 968.243881] ? check_preemption_disabled+0x48/0x280 [ 968.248885] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 968.253812] ? kasan_check_read+0x11/0x20 [ 968.257960] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 968.263237] ? rcu_softirq_qs+0x20/0x20 [ 968.267242] genl_rcv_msg+0xc6/0x168 [ 968.270960] netlink_rcv_skb+0x172/0x440 [ 968.275008] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 968.279780] ? netlink_ack+0xb80/0xb80 [ 968.283671] ? down_read+0x8d/0x120 [ 968.287332] genl_rcv+0x28/0x40 [ 968.290617] netlink_unicast+0x5a5/0x760 [ 968.294679] ? netlink_attachskb+0x9a0/0x9a0 [ 968.299142] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 968.304722] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 968.309754] netlink_sendmsg+0xa18/0xfc0 [ 968.313830] ? netlink_unicast+0x760/0x760 [ 968.318081] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 968.323014] ? apparmor_socket_sendmsg+0x29/0x30 [ 968.327756] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 968.333276] ? security_socket_sendmsg+0x94/0xc0 [ 968.338017] ? netlink_unicast+0x760/0x760 [ 968.342268] sock_sendmsg+0xd5/0x120 [ 968.346007] ___sys_sendmsg+0x7fd/0x930 [ 968.349984] ? find_held_lock+0x36/0x1c0 [ 968.354049] ? copy_msghdr_from_user+0x580/0x580 [ 968.358899] ? __fd_install+0x2b5/0x8f0 [ 968.362865] ? __fget_light+0x2e9/0x430 [ 968.366824] ? fget_raw+0x20/0x20 [ 968.370283] ? __might_fault+0x12b/0x1e0 [ 968.374344] ? lock_downgrade+0x900/0x900 [ 968.378494] ? lock_release+0xa00/0xa00 [ 968.382473] ? perf_trace_sched_process_exec+0x860/0x860 [ 968.387921] ? posix_ktime_get_ts+0x15/0x20 [ 968.392284] ? trace_hardirqs_off_caller+0x310/0x310 [ 968.397380] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 968.402918] ? sockfd_lookup_light+0xc5/0x160 [ 968.407420] __sys_sendmsg+0x11d/0x280 [ 968.411310] ? __ia32_sys_shutdown+0x80/0x80 [ 968.415712] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 968.421245] ? put_timespec64+0x10f/0x1b0 [ 968.425396] ? do_syscall_64+0x9a/0x820 [ 968.429355] ? do_syscall_64+0x9a/0x820 [ 968.433344] ? trace_hardirqs_off_caller+0x310/0x310 [ 968.438448] __x64_sys_sendmsg+0x78/0xb0 [ 968.442513] do_syscall_64+0x1b9/0x820 [ 968.446384] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 968.451748] ? syscall_return_slowpath+0x5e0/0x5e0 [ 968.456673] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 968.461511] ? trace_hardirqs_on_caller+0x310/0x310 [ 968.466514] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 968.471523] ? prepare_exit_to_usermode+0x291/0x3b0 [ 968.476543] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 968.481385] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 968.486575] RIP: 0033:0x457569 [ 968.489767] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 968.508664] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 968.516356] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 968.523616] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 968.530882] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:09:31 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 968.538137] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 968.545402] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:31 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x10c3]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:31 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000003400000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:31 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]}, 0x2c) 01:09:31 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xa70d0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:31 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x40030000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:31 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4c, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:31 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x3d, &(0x7f0000000180)="5c04c736258cbb5de8abb56ff7d7345c5887cdbc443813d2380ee50dcff6ff83162029da0e7ae671b2c0420124bc2e2c865b34100e611672c2c038d12f0f25f8786a5bde", 0x44) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:31 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900000000000000]}, 0x2c) [ 968.818217] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:09:31 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:31 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000006800000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 968.878054] CPU: 1 PID: 11209 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 968.885449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 968.894813] Call Trace: [ 968.897425] dump_stack+0x244/0x39d [ 968.901081] ? dump_stack_print_info.cold.1+0x20/0x20 [ 968.906278] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 968.911750] sysfs_warn_dup.cold.3+0x1c/0x2b [ 968.916194] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 968.921574] sysfs_create_link+0x65/0xc0 01:09:31 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 968.925652] device_add+0x64a/0x18e0 [ 968.929380] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 968.934058] ? genl_rcv_msg+0xc6/0x168 [ 968.937979] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 968.943092] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 968.948469] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 968.953673] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 968.959252] wiphy_register+0x1a5b/0x2770 [ 968.963425] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 968.968377] ? rcu_read_lock_sched_held+0x14f/0x180 [ 968.973405] ? __kmalloc+0x5ee/0x760 [ 968.977125] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 968.982672] ? ieee80211_cs_list_valid+0x7c/0x440 [ 968.987531] ? ieee80211_register_hw+0xce9/0x3f10 [ 968.987556] ieee80211_register_hw+0x159b/0x3f10 [ 968.987590] ? ieee80211_ifa_changed+0xed0/0xed0 [ 968.987622] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 968.987653] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 969.007027] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 969.007045] ? vsnprintf+0x20d/0x1b60 [ 969.007070] ? pointer+0x900/0x900 01:09:31 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xb00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 969.007113] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 969.007129] ? kvasprintf+0xee/0x150 [ 969.007148] ? bust_spinlocks+0xe0/0xe0 [ 969.031155] ? validate_nla+0x29a/0x1650 [ 969.031188] ? kasprintf+0xab/0xe0 [ 969.031206] ? kvasprintf_const+0x190/0x190 [ 969.031230] ? cap_capable+0x1f9/0x260 [ 969.031258] hwsim_new_radio_nl+0x7dc/0xb20 [ 969.031280] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 969.031301] ? __nla_parse+0x12c/0x3e0 [ 969.054793] genl_family_rcv_msg+0x8a7/0x11a0 [ 969.054822] ? genl_unregister_family+0x8a0/0x8a0 [ 969.054842] ? lock_downgrade+0x900/0x900 [ 969.054861] ? check_preemption_disabled+0x48/0x280 [ 969.054884] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 969.077593] ? kasan_check_read+0x11/0x20 [ 969.077610] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 969.077627] ? rcu_softirq_qs+0x20/0x20 [ 969.077668] genl_rcv_msg+0xc6/0x168 [ 969.077695] netlink_rcv_skb+0x172/0x440 [ 969.077715] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 969.095916] ? netlink_ack+0xb80/0xb80 [ 969.095933] ? down_read+0x8d/0x120 [ 969.095964] genl_rcv+0x28/0x40 01:09:31 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 969.095981] netlink_unicast+0x5a5/0x760 [ 969.096004] ? netlink_attachskb+0x9a0/0x9a0 [ 969.096025] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 969.142541] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 969.147569] netlink_sendmsg+0xa18/0xfc0 [ 969.151646] ? netlink_unicast+0x760/0x760 [ 969.155900] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 969.160846] ? apparmor_socket_sendmsg+0x29/0x30 [ 969.160864] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 969.160883] ? security_socket_sendmsg+0x94/0xc0 01:09:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 969.160898] ? netlink_unicast+0x760/0x760 [ 969.160919] sock_sendmsg+0xd5/0x120 [ 969.160939] ___sys_sendmsg+0x7fd/0x930 [ 969.160956] ? find_held_lock+0x36/0x1c0 [ 969.160978] ? copy_msghdr_from_user+0x580/0x580 [ 969.160997] ? __fd_install+0x2b5/0x8f0 [ 969.171286] ? __fget_light+0x2e9/0x430 [ 969.204656] ? fget_raw+0x20/0x20 [ 969.208127] ? __might_fault+0x12b/0x1e0 [ 969.212220] ? lock_downgrade+0x900/0x900 [ 969.216388] ? lock_release+0xa00/0xa00 [ 969.220376] ? perf_trace_sched_process_exec+0x860/0x860 [ 969.225833] ? posix_ktime_get_ts+0x15/0x20 [ 969.230163] ? trace_hardirqs_off_caller+0x310/0x310 [ 969.230200] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 969.230217] ? sockfd_lookup_light+0xc5/0x160 [ 969.230237] __sys_sendmsg+0x11d/0x280 [ 969.230264] ? __ia32_sys_shutdown+0x80/0x80 [ 969.253644] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 969.259210] ? put_timespec64+0x10f/0x1b0 [ 969.263392] ? do_syscall_64+0x9a/0x820 [ 969.267389] ? do_syscall_64+0x9a/0x820 [ 969.271390] ? trace_hardirqs_off_caller+0x310/0x310 01:09:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 969.276516] __x64_sys_sendmsg+0x78/0xb0 [ 969.280597] do_syscall_64+0x1b9/0x820 [ 969.284520] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 969.289916] ? syscall_return_slowpath+0x5e0/0x5e0 [ 969.294876] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 969.299733] ? trace_hardirqs_on_caller+0x310/0x310 [ 969.299751] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 969.299772] ? prepare_exit_to_usermode+0x291/0x3b0 [ 969.314801] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 969.314826] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 969.314840] RIP: 0033:0x457569 [ 969.314857] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 969.314865] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 969.354690] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 969.354701] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 969.354711] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 969.354721] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 969.354731] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:32 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x97ffffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:32 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1200000000000000]}, 0x2c) 01:09:32 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xfffffffd, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:32 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0x7, 0x0, 0x3ce) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = socket$inet6(0xa, 0x803, 0x3) ioctl(r2, 0x1000008912, &(0x7f0000000180)="0a5c2d023c126285718070") r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x8800000}) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000040)={'bcsf0\x00', 0x1300}) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) 01:09:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x1200000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:32 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000020000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:32 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, 0x2c) [ 969.606634] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 01:09:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 969.669307] CPU: 1 PID: 11263 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 969.676714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 969.686068] Call Trace: [ 969.688670] dump_stack+0x244/0x39d [ 969.692345] ? dump_stack_print_info.cold.1+0x20/0x20 [ 969.697553] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 969.702676] sysfs_warn_dup.cold.3+0x1c/0x2b [ 969.707170] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 969.712564] sysfs_create_link+0x65/0xc0 [ 969.716642] device_add+0x64a/0x18e0 [ 969.720393] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 969.725075] ? genl_rcv_msg+0xc6/0x168 [ 969.729008] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 969.734121] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 969.739501] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 969.744708] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 969.750267] wiphy_register+0x1a5b/0x2770 [ 969.754444] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 969.759397] ? rcu_read_lock_sched_held+0x14f/0x180 [ 969.759415] ? __kmalloc+0x5ee/0x760 01:09:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffff000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 969.759434] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 969.759451] ? ieee80211_cs_list_valid+0x7c/0x440 [ 969.759469] ? ieee80211_register_hw+0xce9/0x3f10 [ 969.759490] ieee80211_register_hw+0x159b/0x3f10 [ 969.768226] ? ieee80211_ifa_changed+0xed0/0xed0 [ 969.768260] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 969.768297] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 969.768315] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 969.768335] ? vsnprintf+0x20d/0x1b60 [ 969.813510] ? pointer+0x900/0x900 01:09:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x1100000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 969.817090] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 969.822115] ? kvasprintf+0xee/0x150 [ 969.825843] ? bust_spinlocks+0xe0/0xe0 [ 969.829832] ? validate_nla+0x29a/0x1650 [ 969.833911] ? kasprintf+0xab/0xe0 [ 969.837466] ? kvasprintf_const+0x190/0x190 [ 969.841801] ? cap_capable+0x1f9/0x260 [ 969.845734] hwsim_new_radio_nl+0x7dc/0xb20 [ 969.850074] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 969.855281] ? __nla_parse+0x12c/0x3e0 [ 969.859221] genl_family_rcv_msg+0x8a7/0x11a0 [ 969.863772] ? genl_unregister_family+0x8a0/0x8a0 01:09:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x1100]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 969.868632] ? lock_downgrade+0x900/0x900 [ 969.872792] ? check_preemption_disabled+0x48/0x280 [ 969.877839] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 969.882779] ? kasan_check_read+0x11/0x20 [ 969.886953] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 969.892253] ? rcu_softirq_qs+0x20/0x20 [ 969.896436] genl_rcv_msg+0xc6/0x168 [ 969.900172] netlink_rcv_skb+0x172/0x440 [ 969.904258] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 969.909023] ? netlink_ack+0xb80/0xb80 [ 969.912921] ? down_read+0x8d/0x120 [ 969.916570] genl_rcv+0x28/0x40 01:09:32 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x9effffff]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 969.919874] netlink_unicast+0x5a5/0x760 [ 969.923958] ? netlink_attachskb+0x9a0/0x9a0 [ 969.928383] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 969.933940] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 969.938970] netlink_sendmsg+0xa18/0xfc0 [ 969.943055] ? netlink_unicast+0x760/0x760 [ 969.947304] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 969.952250] ? apparmor_socket_sendmsg+0x29/0x30 [ 969.957019] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 969.962567] ? security_socket_sendmsg+0x94/0xc0 [ 969.967332] ? netlink_unicast+0x760/0x760 [ 969.971578] sock_sendmsg+0xd5/0x120 [ 969.975310] ___sys_sendmsg+0x7fd/0x930 [ 969.979305] ? find_held_lock+0x36/0x1c0 [ 969.983386] ? copy_msghdr_from_user+0x580/0x580 [ 969.988155] ? __fd_install+0x2b5/0x8f0 [ 969.992166] ? __fget_light+0x2e9/0x430 [ 969.996165] ? fget_raw+0x20/0x20 [ 969.999644] ? __might_fault+0x12b/0x1e0 [ 970.003722] ? lock_downgrade+0x900/0x900 [ 970.007873] ? lock_release+0xa00/0xa00 [ 970.011844] ? perf_trace_sched_process_exec+0x860/0x860 [ 970.017302] ? posix_ktime_get_ts+0x15/0x20 [ 970.021637] ? trace_hardirqs_off_caller+0x310/0x310 [ 970.026763] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 970.032294] ? sockfd_lookup_light+0xc5/0x160 [ 970.036781] __sys_sendmsg+0x11d/0x280 [ 970.040669] ? __ia32_sys_shutdown+0x80/0x80 [ 970.045098] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 970.050638] ? put_timespec64+0x10f/0x1b0 [ 970.054799] ? do_syscall_64+0x9a/0x820 [ 970.058799] ? do_syscall_64+0x9a/0x820 [ 970.062777] ? trace_hardirqs_off_caller+0x310/0x310 [ 970.067872] __x64_sys_sendmsg+0x78/0xb0 [ 970.071922] do_syscall_64+0x1b9/0x820 [ 970.075795] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 970.081159] ? syscall_return_slowpath+0x5e0/0x5e0 [ 970.086107] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 970.090948] ? trace_hardirqs_on_caller+0x310/0x310 [ 970.095961] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 970.100977] ? prepare_exit_to_usermode+0x291/0x3b0 [ 970.105985] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 970.110834] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 970.116020] RIP: 0033:0x457569 [ 970.119206] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 970.138115] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 970.145821] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 970.153086] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 970.160345] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 970.167597] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 970.174857] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:33 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x4c000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:33 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x1300]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:33 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x97ffffff00000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 970.401796] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 970.411211] CPU: 1 PID: 11313 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 970.418588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 970.427980] Call Trace: [ 970.430604] dump_stack+0x244/0x39d [ 970.434259] ? dump_stack_print_info.cold.1+0x20/0x20 [ 970.439467] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 970.444588] sysfs_warn_dup.cold.3+0x1c/0x2b [ 970.449006] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 970.454388] sysfs_create_link+0x65/0xc0 [ 970.458471] device_add+0x64a/0x18e0 [ 970.462213] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 970.466894] ? genl_rcv_msg+0xc6/0x168 [ 970.470789] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 970.475880] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 970.481232] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 970.486419] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 970.491964] wiphy_register+0x1a5b/0x2770 [ 970.496107] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 970.501028] ? rcu_read_lock_sched_held+0x14f/0x180 [ 970.506033] ? __kmalloc+0x5ee/0x760 [ 970.509737] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 970.515262] ? ieee80211_cs_list_valid+0x7c/0x440 [ 970.520094] ? ieee80211_register_hw+0xce9/0x3f10 [ 970.524926] ieee80211_register_hw+0x159b/0x3f10 [ 970.529708] ? ieee80211_ifa_changed+0xed0/0xed0 [ 970.534461] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 970.539491] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 970.545638] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 970.551163] ? vsnprintf+0x20d/0x1b60 [ 970.554990] ? pointer+0x900/0x900 [ 970.558539] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 970.563548] ? kvasprintf+0xee/0x150 [ 970.567248] ? bust_spinlocks+0xe0/0xe0 [ 970.571241] ? validate_nla+0x29a/0x1650 [ 970.575304] ? kasprintf+0xab/0xe0 [ 970.578829] ? kvasprintf_const+0x190/0x190 [ 970.583139] ? cap_capable+0x1f9/0x260 [ 970.587029] hwsim_new_radio_nl+0x7dc/0xb20 [ 970.591353] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 970.596530] ? __nla_parse+0x12c/0x3e0 [ 970.600411] genl_family_rcv_msg+0x8a7/0x11a0 [ 970.604899] ? genl_unregister_family+0x8a0/0x8a0 [ 970.609751] ? lock_downgrade+0x900/0x900 [ 970.613905] ? check_preemption_disabled+0x48/0x280 [ 970.618909] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 970.623828] ? kasan_check_read+0x11/0x20 [ 970.627964] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 970.633224] ? rcu_softirq_qs+0x20/0x20 [ 970.637206] genl_rcv_msg+0xc6/0x168 [ 970.640926] netlink_rcv_skb+0x172/0x440 [ 970.645009] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 970.649764] ? netlink_ack+0xb80/0xb80 [ 970.653642] ? down_read+0x8d/0x120 [ 970.657278] genl_rcv+0x28/0x40 [ 970.660559] netlink_unicast+0x5a5/0x760 [ 970.664620] ? netlink_attachskb+0x9a0/0x9a0 [ 970.669032] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 970.674552] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 970.679555] netlink_sendmsg+0xa18/0xfc0 [ 970.683621] ? netlink_unicast+0x760/0x760 [ 970.687847] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 970.692766] ? apparmor_socket_sendmsg+0x29/0x30 [ 970.697515] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 970.703039] ? security_socket_sendmsg+0x94/0xc0 [ 970.707780] ? netlink_unicast+0x760/0x760 [ 970.712000] sock_sendmsg+0xd5/0x120 [ 970.715734] ___sys_sendmsg+0x7fd/0x930 [ 970.719702] ? find_held_lock+0x36/0x1c0 [ 970.723763] ? copy_msghdr_from_user+0x580/0x580 [ 970.728516] ? __fd_install+0x2b5/0x8f0 [ 970.732488] ? __fget_light+0x2e9/0x430 [ 970.736451] ? fget_raw+0x20/0x20 [ 970.739891] ? __might_fault+0x12b/0x1e0 [ 970.743943] ? lock_downgrade+0x900/0x900 [ 970.748079] ? lock_release+0xa00/0xa00 [ 970.752039] ? perf_trace_sched_process_exec+0x860/0x860 [ 970.757477] ? posix_ktime_get_ts+0x15/0x20 [ 970.761787] ? trace_hardirqs_off_caller+0x310/0x310 [ 970.766947] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 970.772480] ? sockfd_lookup_light+0xc5/0x160 [ 970.776985] __sys_sendmsg+0x11d/0x280 [ 970.780875] ? __ia32_sys_shutdown+0x80/0x80 [ 970.785274] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 970.790800] ? put_timespec64+0x10f/0x1b0 [ 970.794939] ? do_syscall_64+0x9a/0x820 [ 970.798898] ? do_syscall_64+0x9a/0x820 [ 970.802863] ? trace_hardirqs_off_caller+0x310/0x310 [ 970.807955] __x64_sys_sendmsg+0x78/0xb0 [ 970.812017] do_syscall_64+0x1b9/0x820 [ 970.815903] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 970.821256] ? syscall_return_slowpath+0x5e0/0x5e0 [ 970.826197] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 970.831032] ? trace_hardirqs_on_caller+0x310/0x310 [ 970.836038] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 970.841055] ? prepare_exit_to_usermode+0x291/0x3b0 [ 970.846060] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 970.850890] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 970.856084] RIP: 0033:0x457569 [ 970.859294] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 970.878292] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 970.885985] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 970.893259] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 01:09:33 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) r3 = socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(r2, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0xfffffffffffffec4) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000400)={0x80, {{0xa, 0x4e24, 0x9, @mcast2, 0x3f}}}, 0x88) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r4 = socket$inet6(0xa, 0x0, 0xffffffff80000000) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r4, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) ioctl(r3, 0x9, &(0x7f0000000180)="d6e6e706ec9a363028b8ced5dd6bbd0543cbbd7d3dca94d9ccb6b0f181ca35b9b295fa331ee2ddeb20d96cc1950e6b2dec7aa88d3aa51f2904ed2ca697a777b317a12572a44899367026502377fe1a872d9562adaf4cab5abd72d673257caf20600cb5cd") [ 970.900514] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 970.907768] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 970.915046] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:33 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x580a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:33 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700]}, 0x2c) 01:09:33 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000900000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:33 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xf0]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:33 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x840e, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:33 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xf]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:33 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f00000004c0)={0x10, 0x0, 0x20002, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x6, 0x3fffffffffffffc) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000010000000000000005000000008700939fd45a3d338af45102020000006369f8ff08000000"], &(0x7f0000000300)='GPL\x00', 0x4, 0x29, &(0x7f0000000340)=""/41, 0x410fc, 0x1, [], 0x0, 0x8}, 0x48) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000480)={&(0x7f0000000040)='./file0\x00', r3}, 0x10) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:33 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1800000000000000]}, 0x2c) [ 971.123906] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 971.142937] CPU: 0 PID: 11338 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 971.150327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 971.159690] Call Trace: [ 971.162296] dump_stack+0x244/0x39d [ 971.166001] ? dump_stack_print_info.cold.1+0x20/0x20 01:09:34 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xc00000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 971.171237] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 971.176372] sysfs_warn_dup.cold.3+0x1c/0x2b [ 971.180821] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 971.186244] sysfs_create_link+0x65/0xc0 [ 971.190327] device_add+0x64a/0x18e0 [ 971.194055] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 971.198730] ? genl_rcv_msg+0xc6/0x168 [ 971.202637] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 971.202655] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 971.202673] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 971.202693] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 971.213167] wiphy_register+0x1a5b/0x2770 [ 971.213216] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 971.223935] ? rcu_read_lock_sched_held+0x14f/0x180 [ 971.223966] ? __kmalloc+0x5ee/0x760 [ 971.223991] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 971.238060] ? ieee80211_cs_list_valid+0x7c/0x440 [ 971.238079] ? ieee80211_register_hw+0xce9/0x3f10 [ 971.238103] ieee80211_register_hw+0x159b/0x3f10 [ 971.238140] ? ieee80211_ifa_changed+0xed0/0xed0 [ 971.247396] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 971.247434] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 971.247452] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 971.247472] ? vsnprintf+0x20d/0x1b60 [ 971.257144] ? pointer+0x900/0x900 [ 971.257172] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 971.257204] ? kvasprintf+0xee/0x150 [ 971.257222] ? bust_spinlocks+0xe0/0xe0 [ 971.257248] ? validate_nla+0x29a/0x1650 [ 971.307473] ? kasprintf+0xab/0xe0 [ 971.311027] ? kvasprintf_const+0x190/0x190 [ 971.315364] ? cap_capable+0x1f9/0x260 [ 971.319279] hwsim_new_radio_nl+0x7dc/0xb20 [ 971.323618] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 971.328821] ? __nla_parse+0x12c/0x3e0 [ 971.332740] genl_family_rcv_msg+0x8a7/0x11a0 [ 971.337262] ? genl_unregister_family+0x8a0/0x8a0 [ 971.342120] ? lock_downgrade+0x900/0x900 [ 971.346287] ? check_preemption_disabled+0x48/0x280 [ 971.351315] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 971.356259] ? kasan_check_read+0x11/0x20 [ 971.360421] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 971.365709] ? rcu_softirq_qs+0x20/0x20 [ 971.369723] genl_rcv_msg+0xc6/0x168 [ 971.373453] netlink_rcv_skb+0x172/0x440 [ 971.377527] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 971.382303] ? netlink_ack+0xb80/0xb80 [ 971.386230] ? down_read+0x8d/0x120 [ 971.389864] genl_rcv+0x28/0x40 [ 971.393133] netlink_unicast+0x5a5/0x760 [ 971.397212] ? netlink_attachskb+0x9a0/0x9a0 [ 971.401628] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 971.407152] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 971.412165] netlink_sendmsg+0xa18/0xfc0 [ 971.416229] ? netlink_unicast+0x760/0x760 [ 971.420453] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 971.425388] ? apparmor_socket_sendmsg+0x29/0x30 [ 971.430155] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 971.435710] ? security_socket_sendmsg+0x94/0xc0 [ 971.440475] ? netlink_unicast+0x760/0x760 [ 971.444737] sock_sendmsg+0xd5/0x120 [ 971.448453] ___sys_sendmsg+0x7fd/0x930 [ 971.452428] ? find_held_lock+0x36/0x1c0 [ 971.456491] ? copy_msghdr_from_user+0x580/0x580 [ 971.461247] ? __fd_install+0x2b5/0x8f0 [ 971.465276] ? __fget_light+0x2e9/0x430 [ 971.469242] ? fget_raw+0x20/0x20 [ 971.472687] ? __might_fault+0x12b/0x1e0 [ 971.476746] ? lock_downgrade+0x900/0x900 [ 971.480884] ? lock_release+0xa00/0xa00 [ 971.484844] ? perf_trace_sched_process_exec+0x860/0x860 [ 971.490280] ? posix_ktime_get_ts+0x15/0x20 [ 971.494590] ? trace_hardirqs_off_caller+0x310/0x310 [ 971.499702] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 971.505254] ? sockfd_lookup_light+0xc5/0x160 [ 971.509751] __sys_sendmsg+0x11d/0x280 [ 971.513642] ? __ia32_sys_shutdown+0x80/0x80 [ 971.518061] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 971.523611] ? put_timespec64+0x10f/0x1b0 [ 971.527765] ? do_syscall_64+0x9a/0x820 [ 971.531728] ? do_syscall_64+0x9a/0x820 [ 971.535713] ? trace_hardirqs_off_caller+0x310/0x310 [ 971.540820] __x64_sys_sendmsg+0x78/0xb0 [ 971.544881] do_syscall_64+0x1b9/0x820 [ 971.548762] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 971.554111] ? syscall_return_slowpath+0x5e0/0x5e0 [ 971.559041] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 971.563887] ? trace_hardirqs_on_caller+0x310/0x310 [ 971.568889] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 971.573905] ? prepare_exit_to_usermode+0x291/0x3b0 [ 971.578929] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 971.583776] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 971.588956] RIP: 0033:0x457569 [ 971.592156] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 971.611081] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 971.618823] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 01:09:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 971.626084] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 971.633354] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 971.640607] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 971.647862] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:34 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000180)={&(0x7f0000000040)=""/52, 0xeea9045a3071f896, 0x1000, 0xffffffffffffffff}, 0x18) 01:09:34 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x4800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:34 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000007a00000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:34 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00000000000000]}, 0x2c) [ 971.847056] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 971.889112] CPU: 1 PID: 11377 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 971.896513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 971.905888] Call Trace: [ 971.908494] dump_stack+0x244/0x39d [ 971.912147] ? dump_stack_print_info.cold.1+0x20/0x20 [ 971.917381] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 971.922509] sysfs_warn_dup.cold.3+0x1c/0x2b [ 971.926932] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 971.932328] sysfs_create_link+0x65/0xc0 [ 971.936404] device_add+0x64a/0x18e0 [ 971.940128] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 971.944803] ? genl_rcv_msg+0xc6/0x168 [ 971.944826] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 971.944845] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 971.953857] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 971.953876] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 971.953902] wiphy_register+0x1a5b/0x2770 [ 971.953931] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 971.964464] ? rcu_read_lock_sched_held+0x14f/0x180 [ 971.964483] ? __kmalloc+0x5ee/0x760 01:09:34 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000]}, 0x2c) 01:09:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 971.964502] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 971.964520] ? ieee80211_cs_list_valid+0x7c/0x440 [ 971.964538] ? ieee80211_register_hw+0xce9/0x3f10 [ 971.964559] ieee80211_register_hw+0x159b/0x3f10 [ 971.974252] ? ieee80211_ifa_changed+0xed0/0xed0 [ 971.974284] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 971.974317] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 971.974336] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 972.029302] ? vsnprintf+0x20d/0x1b60 [ 972.033122] ? pointer+0x900/0x900 01:09:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x500000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 972.036682] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 972.041851] ? kvasprintf+0xee/0x150 [ 972.045575] ? bust_spinlocks+0xe0/0xe0 [ 972.049564] ? validate_nla+0x29a/0x1650 [ 972.053647] ? kasprintf+0xab/0xe0 [ 972.057208] ? kvasprintf_const+0x190/0x190 [ 972.061553] ? cap_capable+0x1f9/0x260 [ 972.065460] hwsim_new_radio_nl+0x7dc/0xb20 [ 972.069807] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 972.075011] ? __nla_parse+0x12c/0x3e0 [ 972.078925] genl_family_rcv_msg+0x8a7/0x11a0 [ 972.083440] ? genl_unregister_family+0x8a0/0x8a0 01:09:34 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 972.088297] ? lock_downgrade+0x900/0x900 [ 972.092463] ? check_preemption_disabled+0x48/0x280 [ 972.097500] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 972.102445] ? kasan_check_read+0x11/0x20 [ 972.106603] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 972.111895] ? rcu_softirq_qs+0x20/0x20 [ 972.115909] genl_rcv_msg+0xc6/0x168 [ 972.119640] netlink_rcv_skb+0x172/0x440 [ 972.123723] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 972.128515] ? netlink_ack+0xb80/0xb80 [ 972.132413] ? down_read+0x8d/0x120 [ 972.136065] genl_rcv+0x28/0x40 [ 972.139358] netlink_unicast+0x5a5/0x760 [ 972.143435] ? netlink_attachskb+0x9a0/0x9a0 [ 972.147863] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 972.153415] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 972.158446] netlink_sendmsg+0xa18/0xfc0 [ 972.162526] ? netlink_unicast+0x760/0x760 [ 972.166771] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 972.171718] ? apparmor_socket_sendmsg+0x29/0x30 [ 972.176494] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 972.182035] ? security_socket_sendmsg+0x94/0xc0 [ 972.186778] ? netlink_unicast+0x760/0x760 [ 972.191002] sock_sendmsg+0xd5/0x120 [ 972.194710] ___sys_sendmsg+0x7fd/0x930 [ 972.198675] ? find_held_lock+0x36/0x1c0 [ 972.202782] ? copy_msghdr_from_user+0x580/0x580 [ 972.207537] ? __fd_install+0x2b5/0x8f0 [ 972.211514] ? __fget_light+0x2e9/0x430 [ 972.215479] ? fget_raw+0x20/0x20 [ 972.218923] ? __might_fault+0x12b/0x1e0 [ 972.222980] ? lock_downgrade+0x900/0x900 [ 972.227114] ? lock_release+0xa00/0xa00 [ 972.231072] ? perf_trace_sched_process_exec+0x860/0x860 [ 972.236508] ? posix_ktime_get_ts+0x15/0x20 [ 972.240819] ? trace_hardirqs_off_caller+0x310/0x310 [ 972.245916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 972.251466] ? sockfd_lookup_light+0xc5/0x160 [ 972.255950] __sys_sendmsg+0x11d/0x280 [ 972.259841] ? __ia32_sys_shutdown+0x80/0x80 [ 972.264285] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 972.269839] ? put_timespec64+0x10f/0x1b0 [ 972.273981] ? do_syscall_64+0x9a/0x820 [ 972.277951] ? do_syscall_64+0x9a/0x820 [ 972.281963] ? trace_hardirqs_off_caller+0x310/0x310 [ 972.287068] __x64_sys_sendmsg+0x78/0xb0 [ 972.291161] do_syscall_64+0x1b9/0x820 [ 972.295059] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 972.300422] ? syscall_return_slowpath+0x5e0/0x5e0 [ 972.305346] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 972.310237] ? trace_hardirqs_on_caller+0x310/0x310 [ 972.315266] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 972.320322] ? prepare_exit_to_usermode+0x291/0x3b0 [ 972.325341] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 972.330171] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 972.335380] RIP: 0033:0x457569 [ 972.338583] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 972.357482] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 972.365189] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 972.372477] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 972.379745] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 01:09:35 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x12000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:35 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5c0a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 972.387007] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 972.394275] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:35 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000040)=0x8, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) [ 972.539821] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 972.547603] CPU: 0 PID: 11413 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 972.554967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 972.564327] Call Trace: [ 972.566930] dump_stack+0x244/0x39d [ 972.570581] ? dump_stack_print_info.cold.1+0x20/0x20 [ 972.575787] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 972.580917] sysfs_warn_dup.cold.3+0x1c/0x2b [ 972.585334] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 972.590706] sysfs_create_link+0x65/0xc0 [ 972.594780] device_add+0x64a/0x18e0 [ 972.598506] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 972.598536] ? genl_rcv_msg+0xc6/0x168 [ 972.598561] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 972.612213] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 972.612233] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 972.612253] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 972.612279] wiphy_register+0x1a5b/0x2770 [ 972.632512] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 972.637463] ? rcu_read_lock_sched_held+0x14f/0x180 [ 972.642528] ? __kmalloc+0x5ee/0x760 [ 972.646281] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 972.651834] ? ieee80211_cs_list_valid+0x7c/0x440 [ 972.656706] ? ieee80211_register_hw+0xce9/0x3f10 [ 972.661583] ieee80211_register_hw+0x159b/0x3f10 [ 972.666371] ? ieee80211_ifa_changed+0xed0/0xed0 [ 972.671161] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 972.676225] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 972.682359] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 972.687881] ? vsnprintf+0x20d/0x1b60 [ 972.691675] ? pointer+0x900/0x900 [ 972.695226] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 972.700232] ? kvasprintf+0xee/0x150 [ 972.703934] ? bust_spinlocks+0xe0/0xe0 [ 972.707899] ? validate_nla+0x29a/0x1650 [ 972.711962] ? kasprintf+0xab/0xe0 [ 972.715507] ? kvasprintf_const+0x190/0x190 [ 972.719849] ? cap_capable+0x1f9/0x260 [ 972.723774] hwsim_new_radio_nl+0x7dc/0xb20 [ 972.728119] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 972.733321] ? __nla_parse+0x12c/0x3e0 [ 972.737237] genl_family_rcv_msg+0x8a7/0x11a0 [ 972.741723] ? genl_unregister_family+0x8a0/0x8a0 [ 972.746567] ? lock_downgrade+0x900/0x900 [ 972.750720] ? check_preemption_disabled+0x48/0x280 [ 972.755724] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 972.760639] ? kasan_check_read+0x11/0x20 [ 972.764787] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 972.770050] ? rcu_softirq_qs+0x20/0x20 [ 972.774025] genl_rcv_msg+0xc6/0x168 [ 972.777725] netlink_rcv_skb+0x172/0x440 [ 972.781788] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 972.786531] ? netlink_ack+0xb80/0xb80 [ 972.790404] ? down_read+0x8d/0x120 [ 972.794039] genl_rcv+0x28/0x40 [ 972.797336] netlink_unicast+0x5a5/0x760 [ 972.801400] ? netlink_attachskb+0x9a0/0x9a0 [ 972.805797] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 972.811323] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 972.816327] netlink_sendmsg+0xa18/0xfc0 [ 972.820375] ? netlink_unicast+0x760/0x760 [ 972.824609] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 972.829545] ? apparmor_socket_sendmsg+0x29/0x30 [ 972.834288] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 972.839812] ? security_socket_sendmsg+0x94/0xc0 [ 972.844554] ? netlink_unicast+0x760/0x760 [ 972.848775] sock_sendmsg+0xd5/0x120 [ 972.852494] ___sys_sendmsg+0x7fd/0x930 [ 972.856465] ? find_held_lock+0x36/0x1c0 [ 972.860532] ? copy_msghdr_from_user+0x580/0x580 [ 972.865278] ? __fd_install+0x2b5/0x8f0 [ 972.869277] ? __fget_light+0x2e9/0x430 [ 972.873252] ? fget_raw+0x20/0x20 [ 972.876693] ? __might_fault+0x12b/0x1e0 [ 972.880738] ? lock_downgrade+0x900/0x900 [ 972.884875] ? lock_release+0xa00/0xa00 [ 972.888834] ? perf_trace_sched_process_exec+0x860/0x860 [ 972.894290] ? posix_ktime_get_ts+0x15/0x20 [ 972.898603] ? trace_hardirqs_off_caller+0x310/0x310 [ 972.903700] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 972.909224] ? sockfd_lookup_light+0xc5/0x160 [ 972.913846] __sys_sendmsg+0x11d/0x280 [ 972.917718] ? __ia32_sys_shutdown+0x80/0x80 [ 972.922113] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 972.927637] ? put_timespec64+0x10f/0x1b0 [ 972.931777] ? do_syscall_64+0x9a/0x820 [ 972.935735] ? do_syscall_64+0x9a/0x820 [ 972.939708] ? trace_hardirqs_off_caller+0x310/0x310 [ 972.944815] __x64_sys_sendmsg+0x78/0xb0 [ 972.948864] do_syscall_64+0x1b9/0x820 [ 972.952737] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 972.958093] ? syscall_return_slowpath+0x5e0/0x5e0 [ 972.963010] ? trace_hardirqs_on_caller+0x310/0x310 [ 972.968012] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 972.973016] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 972.979693] ? __switch_to_asm+0x40/0x70 [ 972.983750] ? __switch_to_asm+0x34/0x70 [ 972.987844] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 972.992708] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 972.997906] RIP: 0033:0x457569 [ 973.001112] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 973.020010] RSP: 002b:00007fef3bf50c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 973.027704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 973.034959] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 01:09:35 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x20dae, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:35 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, 0x2c) 01:09:35 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000030000000000000000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:35 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xf00]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:35 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x640a0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 973.042221] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 973.049486] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf516d4 [ 973.056737] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:35 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in=@multicast1, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x80}, {0x0, 0x0, 0x7, 0x0, 0x1, 0x1000000000}, {}, 0xfffffffffffffffd, 0x0, 0x1, 0x4, 0x0, 0x2}, {{@in=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe, 0x1000}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:36 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:36 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12]}, 0x2c) 01:09:36 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a000000000000000000fffffffd00000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:36 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:36 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x62, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:36 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfd, 0x1}, 0xffffffffffffff0c) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000040), &(0x7f0000000180)=0x4) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = socket(0x0, 0x0, 0x0) bind$bt_sco(r2, 0x0, 0x6cf6) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) [ 973.495324] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 973.505032] CPU: 1 PID: 11470 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 973.512411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 973.521765] Call Trace: [ 973.521792] dump_stack+0x244/0x39d [ 973.521819] ? dump_stack_print_info.cold.1+0x20/0x20 [ 973.528019] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 973.538300] sysfs_warn_dup.cold.3+0x1c/0x2b [ 973.542735] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 973.548120] sysfs_create_link+0x65/0xc0 [ 973.552216] device_add+0x64a/0x18e0 [ 973.555945] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 973.560628] ? genl_rcv_msg+0xc6/0x168 [ 973.564529] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 973.569638] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 973.575018] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 973.580231] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 973.585794] wiphy_register+0x1a5b/0x2770 [ 973.589972] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 973.594913] ? rcu_read_lock_sched_held+0x14f/0x180 [ 973.599918] ? __kmalloc+0x5ee/0x760 [ 973.603622] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 973.609159] ? ieee80211_cs_list_valid+0x7c/0x440 [ 973.614008] ? ieee80211_register_hw+0xce9/0x3f10 [ 973.618838] ieee80211_register_hw+0x159b/0x3f10 [ 973.623604] ? ieee80211_ifa_changed+0xed0/0xed0 [ 973.628368] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 973.633381] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 973.639512] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 973.645037] ? vsnprintf+0x20d/0x1b60 [ 973.648830] ? pointer+0x900/0x900 [ 973.652359] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 973.657362] ? kvasprintf+0xee/0x150 [ 973.661065] ? bust_spinlocks+0xe0/0xe0 [ 973.665026] ? validate_nla+0x29a/0x1650 [ 973.669075] ? kasprintf+0xab/0xe0 [ 973.672599] ? kvasprintf_const+0x190/0x190 [ 973.676931] ? cap_capable+0x1f9/0x260 [ 973.680854] hwsim_new_radio_nl+0x7dc/0xb20 [ 973.685189] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 973.690364] ? __nla_parse+0x12c/0x3e0 [ 973.694246] genl_family_rcv_msg+0x8a7/0x11a0 [ 973.698728] ? genl_unregister_family+0x8a0/0x8a0 [ 973.703558] ? lock_downgrade+0x900/0x900 [ 973.707699] ? check_preemption_disabled+0x48/0x280 [ 973.712712] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 973.717643] ? kasan_check_read+0x11/0x20 [ 973.721778] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 973.727069] ? rcu_softirq_qs+0x20/0x20 [ 973.731051] genl_rcv_msg+0xc6/0x168 [ 973.734767] netlink_rcv_skb+0x172/0x440 [ 973.738844] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 973.743633] ? netlink_ack+0xb80/0xb80 [ 973.747519] ? down_read+0x8d/0x120 [ 973.751144] genl_rcv+0x28/0x40 [ 973.754411] netlink_unicast+0x5a5/0x760 [ 973.758464] ? netlink_attachskb+0x9a0/0x9a0 [ 973.762857] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 973.768408] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 973.773413] netlink_sendmsg+0xa18/0xfc0 [ 973.777465] ? netlink_unicast+0x760/0x760 [ 973.781684] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 973.786621] ? apparmor_socket_sendmsg+0x29/0x30 [ 973.791379] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 973.796905] ? security_socket_sendmsg+0x94/0xc0 [ 973.801662] ? netlink_unicast+0x760/0x760 [ 973.805888] sock_sendmsg+0xd5/0x120 [ 973.809604] ___sys_sendmsg+0x7fd/0x930 [ 973.813579] ? find_held_lock+0x36/0x1c0 [ 973.817631] ? copy_msghdr_from_user+0x580/0x580 [ 973.822382] ? __fd_install+0x2b5/0x8f0 [ 973.826349] ? __fget_light+0x2e9/0x430 [ 973.830326] ? fget_raw+0x20/0x20 [ 973.833769] ? __might_fault+0x12b/0x1e0 [ 973.837816] ? lock_downgrade+0x900/0x900 [ 973.841951] ? lock_release+0xa00/0xa00 [ 973.845912] ? perf_trace_sched_process_exec+0x860/0x860 [ 973.851356] ? posix_ktime_get_ts+0x15/0x20 [ 973.855682] ? trace_hardirqs_off_caller+0x310/0x310 [ 973.860782] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 973.866313] ? sockfd_lookup_light+0xc5/0x160 [ 973.870798] __sys_sendmsg+0x11d/0x280 [ 973.874676] ? __ia32_sys_shutdown+0x80/0x80 [ 973.879079] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 973.884604] ? put_timespec64+0x10f/0x1b0 [ 973.888749] ? do_syscall_64+0x9a/0x820 [ 973.892731] ? do_syscall_64+0x9a/0x820 [ 973.896732] ? trace_hardirqs_off_caller+0x310/0x310 [ 973.901827] __x64_sys_sendmsg+0x78/0xb0 [ 973.905877] do_syscall_64+0x1b9/0x820 [ 973.909754] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 973.915114] ? syscall_return_slowpath+0x5e0/0x5e0 [ 973.920046] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 973.924874] ? trace_hardirqs_on_caller+0x310/0x310 [ 973.929879] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 973.934882] ? prepare_exit_to_usermode+0x291/0x3b0 [ 973.939896] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 973.944729] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 973.949903] RIP: 0033:0x457569 [ 973.953090] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 973.972243] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 973.979937] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 973.987200] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 973.994463] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 974.001719] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 974.008983] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:36 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x4c, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:36 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000]}, 0x2c) 01:09:36 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:36 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000010000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:36 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5f, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:36 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = socket(0x0, 0x0, 0x0) bind$bt_sco(r2, 0x0, 0xffe0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) getsockopt$netlink(r3, 0x10e, 0x4, &(0x7f0000000400)=""/187, &(0x7f0000000040)=0xbb) sendmmsg(r4, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:36 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf00000000000000]}, 0x2c) 01:09:37 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xb00000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:37 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0xfffffffffffffee1) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000040), &(0x7f0000000180)=0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:37 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000000700000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) [ 974.245359] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 974.259337] CPU: 1 PID: 11503 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 974.266734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 974.276101] Call Trace: [ 974.278722] dump_stack+0x244/0x39d [ 974.282372] ? dump_stack_print_info.cold.1+0x20/0x20 [ 974.287584] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 974.292721] sysfs_warn_dup.cold.3+0x1c/0x2b [ 974.297150] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 974.302544] sysfs_create_link+0x65/0xc0 [ 974.306621] device_add+0x64a/0x18e0 [ 974.310348] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 974.315025] ? genl_rcv_msg+0xc6/0x168 [ 974.318934] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 974.324053] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 974.329430] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 974.334642] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 974.340235] wiphy_register+0x1a5b/0x2770 [ 974.344413] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 974.349374] ? rcu_read_lock_sched_held+0x14f/0x180 [ 974.354403] ? __kmalloc+0x5ee/0x760 [ 974.358135] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 974.363706] ? ieee80211_cs_list_valid+0x7c/0x440 [ 974.368583] ? ieee80211_register_hw+0xce9/0x3f10 [ 974.373449] ieee80211_register_hw+0x159b/0x3f10 [ 974.378239] ? ieee80211_ifa_changed+0xed0/0xed0 [ 974.383058] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 974.388101] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 974.394296] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 974.399836] ? vsnprintf+0x20d/0x1b60 [ 974.403698] ? pointer+0x900/0x900 [ 974.407250] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 974.412292] ? kvasprintf+0xee/0x150 [ 974.415993] ? bust_spinlocks+0xe0/0xe0 [ 974.419969] ? validate_nla+0x29a/0x1650 [ 974.424017] ? kasprintf+0xab/0xe0 [ 974.427542] ? kvasprintf_const+0x190/0x190 [ 974.431852] ? cap_capable+0x1f9/0x260 [ 974.435730] hwsim_new_radio_nl+0x7dc/0xb20 [ 974.440055] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 974.445262] ? __nla_parse+0x12c/0x3e0 [ 974.449147] genl_family_rcv_msg+0x8a7/0x11a0 [ 974.453648] ? genl_unregister_family+0x8a0/0x8a0 [ 974.458499] ? lock_downgrade+0x900/0x900 [ 974.462670] ? check_preemption_disabled+0x48/0x280 [ 974.467674] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 974.472593] ? kasan_check_read+0x11/0x20 [ 974.476751] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 974.482040] ? rcu_softirq_qs+0x20/0x20 [ 974.486028] genl_rcv_msg+0xc6/0x168 [ 974.489729] netlink_rcv_skb+0x172/0x440 [ 974.493777] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 974.498520] ? netlink_ack+0xb80/0xb80 [ 974.502403] ? down_read+0x8d/0x120 [ 974.506038] genl_rcv+0x28/0x40 [ 974.509305] netlink_unicast+0x5a5/0x760 [ 974.513369] ? netlink_attachskb+0x9a0/0x9a0 [ 974.517777] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 974.523313] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 974.528324] netlink_sendmsg+0xa18/0xfc0 [ 974.532391] ? netlink_unicast+0x760/0x760 [ 974.536617] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 974.541545] ? apparmor_socket_sendmsg+0x29/0x30 [ 974.546308] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 974.551848] ? security_socket_sendmsg+0x94/0xc0 [ 974.556598] ? netlink_unicast+0x760/0x760 [ 974.560856] sock_sendmsg+0xd5/0x120 [ 974.564574] ___sys_sendmsg+0x7fd/0x930 [ 974.568551] ? find_held_lock+0x36/0x1c0 [ 974.572615] ? copy_msghdr_from_user+0x580/0x580 [ 974.577356] ? __fd_install+0x2b5/0x8f0 [ 974.581328] ? __fget_light+0x2e9/0x430 [ 974.585328] ? fget_raw+0x20/0x20 [ 974.588788] ? __might_fault+0x12b/0x1e0 [ 974.592850] ? lock_downgrade+0x900/0x900 [ 974.596989] ? lock_release+0xa00/0xa00 [ 974.600953] ? perf_trace_sched_process_exec+0x860/0x860 [ 974.606390] ? posix_ktime_get_ts+0x15/0x20 [ 974.610706] ? trace_hardirqs_off_caller+0x310/0x310 [ 974.615808] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 974.621330] ? sockfd_lookup_light+0xc5/0x160 [ 974.625815] __sys_sendmsg+0x11d/0x280 [ 974.629732] ? __ia32_sys_shutdown+0x80/0x80 [ 974.634137] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 974.639677] ? put_timespec64+0x10f/0x1b0 [ 974.643818] ? do_syscall_64+0x9a/0x820 [ 974.647823] ? do_syscall_64+0x9a/0x820 [ 974.651800] ? trace_hardirqs_off_caller+0x310/0x310 [ 974.656903] __x64_sys_sendmsg+0x78/0xb0 [ 974.660963] do_syscall_64+0x1b9/0x820 [ 974.664851] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 974.670220] ? syscall_return_slowpath+0x5e0/0x5e0 [ 974.675159] ? trace_hardirqs_on_caller+0x310/0x310 [ 974.680209] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 974.685233] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 974.691898] ? __switch_to_asm+0x40/0x70 [ 974.695946] ? __switch_to_asm+0x34/0x70 [ 974.700014] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 974.704864] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 974.710039] RIP: 0033:0x457569 [ 974.713232] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 974.732133] RSP: 002b:00007fef3bf50c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 974.739837] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 01:09:37 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:37 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x660a020000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 974.747093] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 974.754350] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 974.761613] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf516d4 [ 974.768878] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:37 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xe84, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:37 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000007a00000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:37 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:37 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) r2 = socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000040), 0x4) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:37 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13000000]}, 0x2c) 01:09:37 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) [ 975.034863] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 975.055803] CPU: 1 PID: 11539 Comm: syz-executor4 Not tainted 4.20.0-rc4+ #212 [ 975.063288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 975.072647] Call Trace: [ 975.075246] dump_stack+0x244/0x39d [ 975.078895] ? dump_stack_print_info.cold.1+0x20/0x20 01:09:37 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, 0x2c) [ 975.084107] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 975.089236] sysfs_warn_dup.cold.3+0x1c/0x2b [ 975.089257] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 975.089277] sysfs_create_link+0x65/0xc0 [ 975.089297] device_add+0x64a/0x18e0 [ 975.089317] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 975.099067] ? genl_rcv_msg+0xc6/0x168 [ 975.099092] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 975.099107] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 975.099126] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 975.099144] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 975.099170] wiphy_register+0x1a5b/0x2770 [ 975.136636] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 975.136681] ? rcu_read_lock_sched_held+0x14f/0x180 [ 975.136704] ? __kmalloc+0x5ee/0x760 [ 975.136741] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 975.145805] ? ieee80211_cs_list_valid+0x7c/0x440 [ 975.145839] ? ieee80211_register_hw+0xce9/0x3f10 [ 975.145862] ieee80211_register_hw+0x159b/0x3f10 [ 975.145892] ? ieee80211_ifa_changed+0xed0/0xed0 [ 975.179314] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 975.184363] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 975.190528] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 975.196079] ? vsnprintf+0x20d/0x1b60 [ 975.199905] ? pointer+0x900/0x900 [ 975.203454] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 975.208468] ? kvasprintf+0xee/0x150 [ 975.212207] ? bust_spinlocks+0xe0/0xe0 [ 975.216196] ? validate_nla+0x29a/0x1650 [ 975.220247] ? kasprintf+0xab/0xe0 [ 975.223788] ? kvasprintf_const+0x190/0x190 [ 975.228115] ? cap_capable+0x1f9/0x260 [ 975.232008] hwsim_new_radio_nl+0x7dc/0xb20 [ 975.236330] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 975.241512] ? __nla_parse+0x12c/0x3e0 [ 975.245424] genl_family_rcv_msg+0x8a7/0x11a0 [ 975.249926] ? genl_unregister_family+0x8a0/0x8a0 [ 975.254772] ? lock_downgrade+0x900/0x900 [ 975.258922] ? check_preemption_disabled+0x48/0x280 [ 975.263940] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 975.268866] ? kasan_check_read+0x11/0x20 [ 975.273013] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 975.278273] ? rcu_softirq_qs+0x20/0x20 [ 975.282245] genl_rcv_msg+0xc6/0x168 [ 975.285960] netlink_rcv_skb+0x172/0x440 [ 975.290035] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 975.294793] ? netlink_ack+0xb80/0xb80 [ 975.298697] ? down_read+0x8d/0x120 [ 975.302335] genl_rcv+0x28/0x40 [ 975.305613] netlink_unicast+0x5a5/0x760 [ 975.309663] ? netlink_attachskb+0x9a0/0x9a0 [ 975.314062] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 975.319595] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 975.324602] netlink_sendmsg+0xa18/0xfc0 [ 975.328654] ? netlink_unicast+0x760/0x760 [ 975.332883] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 975.337816] ? apparmor_socket_sendmsg+0x29/0x30 [ 975.342574] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 975.348098] ? security_socket_sendmsg+0x94/0xc0 [ 975.352841] ? netlink_unicast+0x760/0x760 [ 975.357065] sock_sendmsg+0xd5/0x120 [ 975.360777] ___sys_sendmsg+0x7fd/0x930 [ 975.364795] ? find_held_lock+0x36/0x1c0 [ 975.368856] ? copy_msghdr_from_user+0x580/0x580 [ 975.373599] ? __fd_install+0x2b5/0x8f0 [ 975.377579] ? __fget_light+0x2e9/0x430 [ 975.381551] ? fget_raw+0x20/0x20 [ 975.384991] ? __might_fault+0x12b/0x1e0 [ 975.389052] ? lock_downgrade+0x900/0x900 [ 975.393209] ? lock_release+0xa00/0xa00 [ 975.397188] ? perf_trace_sched_process_exec+0x860/0x860 [ 975.402644] ? posix_ktime_get_ts+0x15/0x20 [ 975.406983] ? trace_hardirqs_off_caller+0x310/0x310 [ 975.412076] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 975.417634] ? sockfd_lookup_light+0xc5/0x160 [ 975.422143] __sys_sendmsg+0x11d/0x280 [ 975.426044] ? __ia32_sys_shutdown+0x80/0x80 [ 975.430441] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 975.435964] ? put_timespec64+0x10f/0x1b0 [ 975.440120] ? do_syscall_64+0x9a/0x820 [ 975.444094] ? do_syscall_64+0x9a/0x820 [ 975.448060] ? trace_hardirqs_off_caller+0x310/0x310 [ 975.453152] __x64_sys_sendmsg+0x78/0xb0 [ 975.457244] do_syscall_64+0x1b9/0x820 [ 975.461129] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 975.466496] ? syscall_return_slowpath+0x5e0/0x5e0 [ 975.471447] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 975.476279] ? trace_hardirqs_on_caller+0x310/0x310 [ 975.481316] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 975.486319] ? prepare_exit_to_usermode+0x291/0x3b0 [ 975.491344] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 975.496199] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 975.501384] RIP: 0033:0x457569 [ 975.504579] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 975.523466] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 01:09:38 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x9effffff00000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) [ 975.531160] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 975.538454] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 975.545721] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 975.552989] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 975.560246] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff 01:09:38 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x300000000000000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:38 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000001000000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:38 executing program 0: r0 = socket$inet6(0xa, 0x807, 0x7f) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) r2 = socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) socketpair(0x0, 0xa, 0x40, &(0x7f0000000040)) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000300)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) getsockopt$inet_mreqsrc(r2, 0x0, 0x27, &(0x7f0000000180)={@multicast2, @multicast1, @local}, &(0x7f00000001c0)=0xc) 01:09:38 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14]}, 0x2c) 01:09:38 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x3000000000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 01:09:38 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x71, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:38 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xf000]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:38 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032000100000000000000000000000010014000000000005000600000020000a0000000000000000000000000100000000000000000000000000000000000001001600000000000200010000000000000000000000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) 01:09:38 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc]}, 0x2c) 01:09:38 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0xc310]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:38 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCOUTQ(r1, 0x5411, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0)=0x3, 0x4) accept4$inet(0xffffffffffffff9c, &(0x7f0000000040), &(0x7f0000000180)=0x10, 0x80000) pipe(&(0x7f00000001c0)) socketpair(0x4, 0x3, 0x1, &(0x7f0000000300)={0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r2, 0x84, 0x74, 0x0, 0x0) clock_gettime(0x7, &(0x7f0000000000)) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) socket$key(0xf, 0x3, 0x2) bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) close(0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) pipe(0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x1000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x3, 0x0, 0xdffffffffffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="a013be7456c00b", 0x7}], 0x1}}], 0x1, 0x0) 01:09:38 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x650a0200, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x8, 0x11, [@generic="e2"]}]}, 0x1c}, 0x1, 0x300}, 0x0) 01:09:38 executing program 5: syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff020000000000000000010000000001"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x10]}}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 01:09:38 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000240)="0a5c2d243c126285718070") bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff8000]}, 0x2c) [ 976.175503] ================================================================== [ 976.183088] BUG: KASAN: stack-out-of-bounds in xfrm_state_find+0x396b/0x3eb0 [ 976.183105] Read of size 4 at addr ffff8881966df308 by task syz-executor0/11619 [ 976.183109] [ 976.183128] CPU: 1 PID: 11619 Comm: syz-executor0 Not tainted 4.20.0-rc4+ #212 [ 976.183139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 976.183145] Call Trace: [ 976.183168] dump_stack+0x244/0x39d [ 976.183215] ? dump_stack_print_info.cold.1+0x20/0x20 [ 976.183241] ? printk+0xa7/0xcf [ 976.183263] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 976.197907] print_address_description.cold.7+0x9/0x1ff [ 976.197927] kasan_report.cold.8+0x242/0x309 [ 976.197945] ? xfrm_state_find+0x396b/0x3eb0 [ 976.197964] __asan_report_load4_noabort+0x14/0x20 [ 976.197986] xfrm_state_find+0x396b/0x3eb0 [ 976.216303] ? rb_erase_cached+0xc78/0x3720 [ 976.216348] ? xfrm_state_afinfo_get_rcu+0x1b0/0x1b0 [ 976.216373] ? rb_erase_cached+0xc78/0x3720 [ 976.216393] ? mem_cgroup_commit_charge+0x2c1/0xa50 [ 976.216413] ? rb_next+0x140/0x140 [ 976.222708] ? lru_cache_add+0xa50/0xa50 [ 976.222726] ? cpumask_any_but+0xb1/0xe0 [ 976.222749] ? print_usage_bug+0xc0/0xc0 [ 976.222771] ? zap_class+0x640/0x640 [ 976.222786] ? find_held_lock+0x36/0x1c0 [ 976.222804] ? __update_load_avg_se+0x5eb/0xae0 [ 976.231296] ? __lock_acquire+0x62f/0x4c20 [ 976.231311] ? __update_load_avg_se+0xae0/0xae0 [ 976.231337] ? print_usage_bug+0xc0/0xc0 [ 976.231360] ? mark_held_locks+0x130/0x130 [ 976.231386] ? is_bpf_text_address+0xac/0x170 [ 976.231409] xfrm_tmpl_resolve+0x3c0/0xe50 [ 976.231446] ? __xfrm_decode_session+0x140/0x140 [ 976.245995] ? kernel_text_address+0x79/0xf0 [ 976.255317] ? zap_class+0x640/0x640 [ 976.255334] ? unwind_get_return_address+0x61/0xa0 [ 976.255354] ? __save_stack_trace+0x8d/0xf0 [ 976.255390] xfrm_resolve_and_create_bundle+0x184/0x2800 [ 976.255413] ? __local_bh_enable_ip+0x160/0x260 [ 976.255432] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 976.263969] ? zap_class+0x640/0x640 [ 976.264002] ? _raw_spin_unlock_bh+0x30/0x40 [ 976.264022] ? xfrm_migrate+0x19d0/0x19d0 [ 976.264042] ? check_preemption_disabled+0x48/0x280 [ 976.264059] ? rt_add_uncached_list+0x1e1/0x280 [ 976.264083] ? find_held_lock+0x36/0x1c0 [ 976.273507] ? xfrm_sk_policy_lookup+0x484/0x640 [ 976.273526] ? lock_downgrade+0x900/0x900 [ 976.273544] ? check_preemption_disabled+0x48/0x280 [ 976.273564] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 976.273580] ? kasan_check_read+0x11/0x20 [ 976.273599] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 976.282131] ? rcu_softirq_qs+0x20/0x20 [ 976.282148] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 976.282168] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 976.282204] ? xfrm_sk_policy_lookup+0x4ab/0x640 [ 976.282228] ? xfrm_selector_match+0xf90/0xf90 [ 976.282242] ? rt_dst_alloc+0x41a/0x540 [ 976.282259] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 976.282275] ? xfrm_expand_policies+0x2ab/0x6f0 [ 976.282296] xfrm_lookup_with_ifid+0x39e/0x2b80 [ 976.294452] ? xfrm_lookup_with_ifid+0x39e/0x2b80 [ 976.294483] ? xfrm_policy_lookup+0x80/0x80 [ 976.294501] ? zap_class+0x640/0x640 [ 976.294523] ? ip_route_input_noref+0x260/0x260 [ 976.294540] ? print_usage_bug+0xc0/0xc0 [ 976.294562] ? find_held_lock+0x36/0x1c0 [ 976.298468] kobject: 'queues' (000000009dfff981): kobject_uevent_env [ 976.302328] ? ip_route_output_key_hash+0x270/0x3b0 [ 976.302346] ? lock_downgrade+0x900/0x900 [ 976.302363] ? check_preemption_disabled+0x48/0x280 [ 976.302383] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 976.302399] ? kasan_check_read+0x11/0x20 [ 976.302415] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 976.302430] ? rcu_softirq_qs+0x20/0x20 [ 976.302444] ? find_held_lock+0x36/0x1c0 [ 976.302470] ? ip_route_output_key_hash+0x297/0x3b0 [ 976.311763] kobject: 'queues' (000000009dfff981): kobject_uevent_env: filter function caused the event to drop! [ 976.316009] ? ip_route_output_key_hash_rcu+0x3490/0x3490 [ 976.316036] xfrm_lookup_route+0x3c/0x1f0 [ 976.316057] ip_route_output_flow+0xb1/0xc0 [ 976.316079] udp_sendmsg+0x223a/0x3c70 [ 976.316103] ? ip_reply_glue_bits+0xc0/0xc0 [ 976.316127] ? udp_v4_get_port+0x180/0x180 [ 976.320843] kobject: 'rx-0' (00000000d3050e5f): kobject_add_internal: parent: 'queues', set: 'queues' [ 976.324425] ? __lock_acquire+0x62f/0x4c20 [ 976.324442] ? __lock_acquire+0x62f/0x4c20 [ 976.324458] ? print_usage_bug+0xc0/0xc0 [ 976.324474] ? mark_held_locks+0xc7/0x130 [ 976.324505] ? mark_held_locks+0x130/0x130 [ 976.324524] ? mark_held_locks+0x130/0x130 [ 976.329657] kobject: 'rx-0' (00000000d3050e5f): kobject_uevent_env [ 976.333236] ? find_held_lock+0x36/0x1c0 [ 976.333264] ? mark_held_locks+0x130/0x130 [ 976.333278] ? __local_bh_enable_ip+0x160/0x260 [ 976.333296] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 976.333319] ? _raw_spin_unlock_bh+0x30/0x40 [ 976.333338] ? trace_hardirqs_off_caller+0x310/0x310 [ 976.333358] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 976.338350] kobject: 'rx-0' (00000000d3050e5f): fill_kobj_path: path = '/devices/virtual/mac80211_hwsim/hwsim453/net/wlan206/queues/rx-0' [ 976.342500] ? check_preemption_disabled+0x48/0x280 [ 976.342517] ? udp_lib_get_port+0x8e8/0x1b80 [ 976.342533] ? udp_lib_get_port+0x8e8/0x1b80 [ 976.342550] ? __local_bh_enable_ip+0x160/0x260 [ 976.342573] udpv6_sendmsg+0x182f/0x36b0 [ 976.342589] ? udpv6_sendmsg+0x182f/0x36b0 [ 976.342621] ? udp6_unicast_rcv_skb.isra.24+0x320/0x320 [ 976.342653] ? find_held_lock+0x36/0x1c0 [ 976.342675] ? __local_bh_enable_ip+0x160/0x260 [ 976.350868] kobject: 'tx-0' (00000000350c7ad3): kobject_add_internal: parent: 'queues', set: 'queues' [ 976.351312] ? __local_bh_enable_ip+0x160/0x260 [ 976.356122] kobject: 'tx-0' (00000000350c7ad3): kobject_uevent_env [ 976.361067] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 976.361086] ? trace_hardirqs_on+0xbd/0x310 [ 976.361105] ? _raw_spin_unlock_bh+0x30/0x40 [ 976.361124] ? trace_hardirqs_off_caller+0x310/0x310 [ 976.361142] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 976.361160] ? check_preemption_disabled+0x48/0x280 [ 976.361186] ? release_sock+0x1ec/0x2c0 [ 976.361203] ? release_sock+0x1ec/0x2c0 [ 976.361220] ? __local_bh_enable_ip+0x160/0x260 [ 976.366729] kobject: 'tx-0' (00000000350c7ad3): fill_kobj_path: path = '/devices/virtual/mac80211_hwsim/hwsim453/net/wlan206/queues/tx-0' [ 976.370470] ? _raw_spin_unlock_bh+0x30/0x40 [ 976.370485] ? release_sock+0x1ec/0x2c0 [ 976.370498] ? lock_sock_nested+0x9a/0x120 [ 976.370529] ? __release_sock+0x3a0/0x3a0 [ 976.370565] ? udp_v6_get_port+0x273/0x660 [ 976.370618] inet_sendmsg+0x1a1/0x690 [ 976.370635] ? udp6_unicast_rcv_skb.isra.24+0x320/0x320 [ 976.370648] ? inet_sendmsg+0x1a1/0x690 [ 976.370666] ? ipip_gro_receive+0x100/0x100 [ 976.375080] kobject: 'tx-1' (00000000482392f5): kobject_add_internal: parent: 'queues', set: 'queues' [ 976.378770] ? apparmor_socket_sendmsg+0x29/0x30 [ 976.378788] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 976.378807] ? security_socket_sendmsg+0x94/0xc0 [ 976.378823] ? ipip_gro_receive+0x100/0x100 [ 976.378843] sock_sendmsg+0xd5/0x120 [ 976.378862] ___sys_sendmsg+0x51d/0x930 [ 976.378884] ? copy_msghdr_from_user+0x580/0x580 [ 976.383898] kobject: 'tx-1' (00000000482392f5): kobject_uevent_env [ 976.388040] ? __fget_light+0x2e9/0x430 [ 976.388058] ? fget_raw+0x20/0x20 [ 976.388073] ? zap_class+0x640/0x640 [ 976.388117] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 976.388135] ? sockfd_lookup_light+0xc5/0x160 [ 976.393513] kobject: 'tx-1' (00000000482392f5): fill_kobj_path: path = '/devices/virtual/mac80211_hwsim/hwsim453/net/wlan206/queues/tx-1' [ 976.396842] __sys_sendmmsg+0x246/0x6d0 [ 976.396869] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 976.396908] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 976.396924] ? put_timespec64+0x10f/0x1b0 [ 976.396958] ? nsecs_to_jiffies+0x30/0x30 [ 976.402407] kobject: 'tx-2' (000000006c3e6054): kobject_add_internal: parent: 'queues', set: 'queues' [ 976.405849] ? do_syscall_64+0x9a/0x820 [ 976.405866] ? do_syscall_64+0x9a/0x820 [ 976.405884] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 976.405903] ? trace_hardirqs_on+0xbd/0x310 [ 976.405919] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 976.405942] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 976.405962] ? trace_hardirqs_off_caller+0x310/0x310 [ 976.411780] kobject: 'tx-2' (000000006c3e6054): kobject_uevent_env [ 976.415889] __x64_sys_sendmmsg+0x9d/0x100 [ 976.415911] do_syscall_64+0x1b9/0x820 [ 976.415926] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 976.415946] ? syscall_return_slowpath+0x5e0/0x5e0 [ 976.415962] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 976.415981] ? trace_hardirqs_on_caller+0x310/0x310 [ 976.416000] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 976.420834] kobject: 'tx-2' (000000006c3e6054): fill_kobj_path: path = '/devices/virtual/mac80211_hwsim/hwsim453/net/wlan206/queues/tx-2' [ 976.425403] ? prepare_exit_to_usermode+0x291/0x3b0 [ 976.425428] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 976.425452] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 976.425465] RIP: 0033:0x457569 [ 976.425482] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 976.425490] RSP: 002b:00007ff4865bec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 976.430140] kobject: 'tx-3' (00000000b9617e90): kobject_add_internal: parent: 'queues', set: 'queues' [ 976.434642] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000457569 [ 976.434651] RDX: 0000000000000001 RSI: 0000000020000a80 RDI: 000000000000000a [ 976.434661] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 976.434671] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4865bf6d4 [ 976.434681] R13: 00000000004c3c33 R14: 00000000004d63e8 R15: 00000000ffffffff [ 976.434712] [ 976.434718] The buggy address belongs to the page: [ 976.434732] page:ffffea000659b7c0 count:0 mapcount:0 mapping:0000000000000000 index:0x0 [ 976.434742] flags: 0x2fffc0000000000() [ 976.434761] raw: 02fffc0000000000 0000000000000000 ffffffff06590101 0000000000000000 [ 976.444751] kobject: 'tx-3' (00000000b9617e90): kobject_uevent_env [ 976.445060] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 976.450366] kobject: 'tx-3' (00000000b9617e90): fill_kobj_path: path = '/devices/virtual/mac80211_hwsim/hwsim453/net/wlan206/queues/tx-3' [ 976.453603] page dumped because: kasan: bad access detected [ 976.453608] [ 976.453613] Memory state around the buggy address: [ 976.453626] ffff8881966df200: f2 f2 00 00 00 00 00 f2 f2 f2 f2 f2 f2 f2 00 00 [ 976.453639] ffff8881966df280: 00 00 00 00 f2 f2 f2 f2 f2 f2 00 00 00 00 00 00 [ 976.453651] >ffff8881966df300: 00 f2 f2 f2 f2 f2 04 f2 f2 f2 f2 f2 f2 f2 f8 f2 [ 976.453657] ^ [ 976.453670] ffff8881966df380: f2 f2 f2 f2 f2 f2 00 00 00 00 00 00 00 00 00 f2 [ 976.453682] ffff8881966df400: f2 f2 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 976.453694] ================================================================== [ 976.453700] Disabling lock debugging due to kernel taint [ 976.476613] Kernel panic - not syncing: panic_on_warn set ... [ 976.483172] kobject: 'loop1' (00000000d62a35db): kobject_uevent_env [ 976.486460] CPU: 1 PID: 11619 Comm: syz-executor0 Tainted: G B 4.20.0-rc4+ #212 [ 976.497026] kobject: 'loop1' (00000000d62a35db): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 976.501028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 976.501033] Call Trace: [ 976.501054] dump_stack+0x244/0x39d [ 976.501073] ? dump_stack_print_info.cold.1+0x20/0x20 [ 976.501093] panic+0x2ad/0x55c [ 976.524353] kobject: 'hwsim454' (00000000fb247abc): kobject_add_internal: parent: 'mac80211_hwsim', set: 'devices' [ 976.529584] ? add_taint.cold.5+0x16/0x16 [ 976.529602] ? preempt_schedule+0x4d/0x60 [ 976.529624] ? ___preempt_schedule+0x16/0x18 [ 976.529645] ? trace_hardirqs_on+0xb4/0x310 [ 976.534403] kobject: 'hwsim454' (00000000fb247abc): kobject_uevent_env [ 976.537670] kasan_end_report+0x47/0x4f [ 976.537685] kasan_report.cold.8+0x76/0x309 [ 976.537708] ? xfrm_state_find+0x396b/0x3eb0 [ 976.537726] __asan_report_load4_noabort+0x14/0x20 [ 976.558764] kobject: 'hwsim454' (00000000fb247abc): fill_kobj_path: path = '/devices/virtual/mac80211_hwsim/hwsim454' [ 976.562630] xfrm_state_find+0x396b/0x3eb0 [ 976.562674] ? rb_erase_cached+0xc78/0x3720 [ 976.562723] ? xfrm_state_afinfo_get_rcu+0x1b0/0x1b0 [ 976.562739] ? rb_erase_cached+0xc78/0x3720 [ 976.573559] kobject: 'hwsim454' (00000000fb247abc): kobject_uevent_env [ 976.575248] ? mem_cgroup_commit_charge+0x2c1/0xa50 [ 976.575267] ? rb_next+0x140/0x140 [ 976.575284] ? lru_cache_add+0xa50/0xa50 [ 976.575304] ? cpumask_any_but+0xb1/0xe0 [ 976.580973] kobject: 'loop3' (000000004101f1a4): kobject_uevent_env [ 976.588883] ? print_usage_bug+0xc0/0xc0 [ 976.604978] kobject: 'loop3' (000000004101f1a4): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 976.605509] ? zap_class+0x640/0x640 [ 976.605525] ? find_held_lock+0x36/0x1c0 [ 976.605540] ? __update_load_avg_se+0x5eb/0xae0 [ 976.605561] ? __lock_acquire+0x62f/0x4c20 [ 976.610369] kobject: 'hwsim454' (00000000fb247abc): fill_kobj_path: path = '/devices/virtual/mac80211_hwsim/hwsim454' [ 976.614008] ? __update_load_avg_se+0xae0/0xae0 [ 976.614030] ? print_usage_bug+0xc0/0xc0 [ 976.614050] ? mark_held_locks+0x130/0x130 [ 976.614071] ? is_bpf_text_address+0xac/0x170 [ 976.614089] xfrm_tmpl_resolve+0x3c0/0xe50 [ 976.621410] kobject: 'ieee80211' (00000000aae10c46): kobject_add_internal: parent: 'hwsim454', set: '(null)' [ 976.624461] ? __xfrm_decode_session+0x140/0x140 [ 976.624478] ? kernel_text_address+0x79/0xf0 [ 976.624494] ? zap_class+0x640/0x640 [ 976.624521] ? unwind_get_return_address+0x61/0xa0 [ 976.628908] kobject: 'â«´ìvE VÕ!' (00000000592f5cd5): kobject_add_internal: parent: 'ieee80211', set: 'devices' [ 976.633416] ? __save_stack_trace+0x8d/0xf0 [ 976.633443] xfrm_resolve_and_create_bundle+0x184/0x2800 [ 976.633462] ? __local_bh_enable_ip+0x160/0x260 [ 976.633478] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 976.633495] ? zap_class+0x640/0x640 [ 976.640051] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 976.642470] ? _raw_spin_unlock_bh+0x30/0x40 [ 976.642488] ? xfrm_migrate+0x19d0/0x19d0 [ 976.642506] ? check_preemption_disabled+0x48/0x280 [ 976.642522] ? rt_add_uncached_list+0x1e1/0x280 [ 976.642540] ? find_held_lock+0x36/0x1c0 [ 977.543342] ? xfrm_sk_policy_lookup+0x484/0x640 [ 977.548105] ? lock_downgrade+0x900/0x900 [ 977.552262] ? check_preemption_disabled+0x48/0x280 [ 977.557287] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 977.562221] ? kasan_check_read+0x11/0x20 [ 977.566372] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 977.571668] ? rcu_softirq_qs+0x20/0x20 [ 977.575664] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 977.580898] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 977.586452] ? xfrm_sk_policy_lookup+0x4ab/0x640 [ 977.591222] ? xfrm_selector_match+0xf90/0xf90 [ 977.595835] ? rt_dst_alloc+0x41a/0x540 [ 977.599817] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 977.604849] ? xfrm_expand_policies+0x2ab/0x6f0 [ 977.609527] xfrm_lookup_with_ifid+0x39e/0x2b80 [ 977.614206] ? xfrm_lookup_with_ifid+0x39e/0x2b80 [ 977.619057] ? xfrm_policy_lookup+0x80/0x80 [ 977.623387] ? zap_class+0x640/0x640 [ 977.627104] ? ip_route_input_noref+0x260/0x260 [ 977.631773] ? print_usage_bug+0xc0/0xc0 [ 977.635842] ? find_held_lock+0x36/0x1c0 [ 977.639914] ? ip_route_output_key_hash+0x270/0x3b0 [ 977.644937] ? lock_downgrade+0x900/0x900 [ 977.649092] ? check_preemption_disabled+0x48/0x280 [ 977.654126] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 977.659099] ? kasan_check_read+0x11/0x20 [ 977.663249] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 977.668528] ? rcu_softirq_qs+0x20/0x20 [ 977.672508] ? find_held_lock+0x36/0x1c0 [ 977.676582] ? ip_route_output_key_hash+0x297/0x3b0 [ 977.681601] ? ip_route_output_key_hash_rcu+0x3490/0x3490 [ 977.687144] xfrm_lookup_route+0x3c/0x1f0 [ 977.691305] ip_route_output_flow+0xb1/0xc0 [ 977.695632] udp_sendmsg+0x223a/0x3c70 [ 977.699532] ? ip_reply_glue_bits+0xc0/0xc0 [ 977.703859] ? udp_v4_get_port+0x180/0x180 [ 977.708104] ? __lock_acquire+0x62f/0x4c20 [ 977.712344] ? __lock_acquire+0x62f/0x4c20 [ 977.716583] ? print_usage_bug+0xc0/0xc0 [ 977.720643] ? mark_held_locks+0xc7/0x130 [ 977.724803] ? mark_held_locks+0x130/0x130 [ 977.729037] ? mark_held_locks+0x130/0x130 [ 977.733282] ? find_held_lock+0x36/0x1c0 [ 977.737385] ? mark_held_locks+0x130/0x130 [ 977.741621] ? __local_bh_enable_ip+0x160/0x260 [ 977.746305] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 977.750912] ? _raw_spin_unlock_bh+0x30/0x40 [ 977.755336] ? trace_hardirqs_off_caller+0x310/0x310 [ 977.760445] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 977.765985] ? check_preemption_disabled+0x48/0x280 [ 977.771007] ? udp_lib_get_port+0x8e8/0x1b80 [ 977.775422] ? udp_lib_get_port+0x8e8/0x1b80 [ 977.779830] ? __local_bh_enable_ip+0x160/0x260 [ 977.784506] udpv6_sendmsg+0x182f/0x36b0 [ 977.788569] ? udpv6_sendmsg+0x182f/0x36b0 [ 977.792827] ? udp6_unicast_rcv_skb.isra.24+0x320/0x320 [ 977.798248] ? find_held_lock+0x36/0x1c0 [ 977.802325] ? __local_bh_enable_ip+0x160/0x260 [ 977.806997] ? __local_bh_enable_ip+0x160/0x260 [ 977.811668] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 977.816274] ? trace_hardirqs_on+0xbd/0x310 [ 977.820602] ? _raw_spin_unlock_bh+0x30/0x40 [ 977.825013] ? trace_hardirqs_off_caller+0x310/0x310 [ 977.830118] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 977.835661] ? check_preemption_disabled+0x48/0x280 [ 977.840686] ? release_sock+0x1ec/0x2c0 [ 977.844676] ? release_sock+0x1ec/0x2c0 [ 977.848662] ? __local_bh_enable_ip+0x160/0x260 [ 977.853341] ? _raw_spin_unlock_bh+0x30/0x40 [ 977.857753] ? release_sock+0x1ec/0x2c0 [ 977.861726] ? lock_sock_nested+0x9a/0x120 [ 977.865964] ? __release_sock+0x3a0/0x3a0 [ 977.870131] ? udp_v6_get_port+0x273/0x660 [ 977.874377] inet_sendmsg+0x1a1/0x690 [ 977.878191] ? udp6_unicast_rcv_skb.isra.24+0x320/0x320 [ 977.883557] ? inet_sendmsg+0x1a1/0x690 [ 977.887534] ? ipip_gro_receive+0x100/0x100 [ 977.891861] ? apparmor_socket_sendmsg+0x29/0x30 [ 977.896624] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 977.902225] ? security_socket_sendmsg+0x94/0xc0 [ 977.906997] ? ipip_gro_receive+0x100/0x100 [ 977.911328] sock_sendmsg+0xd5/0x120 [ 977.915044] ___sys_sendmsg+0x51d/0x930 [ 977.919028] ? copy_msghdr_from_user+0x580/0x580 [ 977.923826] ? __fget_light+0x2e9/0x430 [ 977.927800] ? fget_raw+0x20/0x20 [ 977.931259] ? zap_class+0x640/0x640 [ 977.934993] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 977.940534] ? sockfd_lookup_light+0xc5/0x160 [ 977.945034] __sys_sendmmsg+0x246/0x6d0 [ 977.949021] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 977.953361] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 977.958905] ? put_timespec64+0x10f/0x1b0 [ 977.963060] ? nsecs_to_jiffies+0x30/0x30 [ 977.967223] ? do_syscall_64+0x9a/0x820 [ 977.971205] ? do_syscall_64+0x9a/0x820 [ 977.975196] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 977.979782] ? trace_hardirqs_on+0xbd/0x310 [ 977.984107] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 977.989648] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 977.995013] ? trace_hardirqs_off_caller+0x310/0x310 [ 978.000128] __x64_sys_sendmmsg+0x9d/0x100 [ 978.004367] do_syscall_64+0x1b9/0x820 [ 978.008259] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 978.013625] ? syscall_return_slowpath+0x5e0/0x5e0 [ 978.018556] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 978.023402] ? trace_hardirqs_on_caller+0x310/0x310 [ 978.028425] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 978.033443] ? prepare_exit_to_usermode+0x291/0x3b0 [ 978.038463] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 978.043313] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 978.048504] RIP: 0033:0x457569 [ 978.051708] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 978.070627] RSP: 002b:00007ff4865bec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 978.078334] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000457569 [ 978.085604] RDX: 0000000000000001 RSI: 0000000020000a80 RDI: 000000000000000a [ 978.092875] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 978.100140] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4865bf6d4 [ 978.107411] R13: 00000000004c3c33 R14: 00000000004d63e8 R15: 00000000ffffffff [ 978.114698] CPU: 0 PID: 11627 Comm: syz-executor4 Tainted: G B 4.20.0-rc4+ #212 [ 978.123463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 978.132808] Call Trace: [ 978.135399] dump_stack+0x244/0x39d [ 978.139031] ? dump_stack_print_info.cold.1+0x20/0x20 [ 978.144227] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 978.149337] sysfs_warn_dup.cold.3+0x1c/0x2b [ 978.153745] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 978.159108] sysfs_create_link+0x65/0xc0 [ 978.163175] device_add+0x64a/0x18e0 [ 978.166902] ? genl_family_rcv_msg+0x8a7/0x11a0 [ 978.171567] ? genl_rcv_msg+0xc6/0x168 [ 978.175462] ? get_device_parent.isra.25+0x5a0/0x5a0 [ 978.180566] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 978.185931] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 978.191140] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 978.196683] wiphy_register+0x1a5b/0x2770 [ 978.200839] ? wiphy_rfkill_set_hw_state+0xf0/0xf0 [ 978.205789] ? kasan_unpoison_shadow+0x35/0x50 [ 978.210392] ? kasan_kmalloc+0xc7/0xe0 [ 978.214283] ? __kmalloc+0x328/0x760 [ 978.217998] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 978.223538] ? ieee80211_cs_list_valid+0x7c/0x440 [ 978.228387] ? ieee80211_register_hw+0xce9/0x3f10 [ 978.233236] ieee80211_register_hw+0x159b/0x3f10 [ 978.238004] ? ieee80211_ifa_changed+0xed0/0xed0 [ 978.242774] mac80211_hwsim_new_radio+0x1e48/0x3460 [ 978.247807] ? __rhashtable_insert_fast.constprop.52+0xf00/0xf00 [ 978.254006] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 978.259579] ? vsnprintf+0x20d/0x1b60 [ 978.263385] ? pointer+0x900/0x900 [ 978.266931] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 978.271950] ? kvasprintf+0xee/0x150 [ 978.275681] ? bust_spinlocks+0xe0/0xe0 [ 978.279676] ? validate_nla+0x29a/0x1650 [ 978.283740] ? kasprintf+0xab/0xe0 [ 978.287280] ? kvasprintf_const+0x190/0x190 [ 978.291604] ? cap_capable+0x1f9/0x260 [ 978.295496] hwsim_new_radio_nl+0x7dc/0xb20 [ 978.299821] ? mac80211_hwsim_new_radio+0x3460/0x3460 [ 978.305011] ? __nla_parse+0x12c/0x3e0 [ 978.308906] genl_family_rcv_msg+0x8a7/0x11a0 [ 978.313409] ? genl_unregister_family+0x8a0/0x8a0 [ 978.318255] ? lock_downgrade+0x900/0x900 [ 978.322406] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 978.327424] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 978.332352] ? lock_downgrade+0x900/0x900 [ 978.336517] genl_rcv_msg+0xc6/0x168 [ 978.340246] netlink_rcv_skb+0x172/0x440 [ 978.344308] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 978.349065] ? netlink_ack+0xb80/0xb80 [ 978.352950] ? down_read+0x8d/0x120 [ 978.356588] genl_rcv+0x28/0x40 [ 978.359870] netlink_unicast+0x5a5/0x760 [ 978.363936] ? netlink_attachskb+0x9a0/0x9a0 [ 978.368346] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 978.373888] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 978.378912] netlink_sendmsg+0xa18/0xfc0 [ 978.382992] ? netlink_unicast+0x760/0x760 [ 978.387229] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 978.392160] ? apparmor_socket_sendmsg+0x29/0x30 [ 978.396933] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 978.402475] ? security_socket_sendmsg+0x94/0xc0 [ 978.407233] ? netlink_unicast+0x760/0x760 [ 978.411476] sock_sendmsg+0xd5/0x120 [ 978.415202] ___sys_sendmsg+0x7fd/0x930 [ 978.419194] ? copy_msghdr_from_user+0x580/0x580 [ 978.423967] ? retint_kernel+0x2d/0x2d [ 978.427866] ? trace_hardirqs_on_caller+0xc0/0x310 [ 978.432795] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 978.437559] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 978.442317] ? retint_kernel+0x2d/0x2d [ 978.446220] ? sockfd_lookup_light+0x65/0x160 [ 978.450714] ? sockfd_lookup_light+0x6f/0x160 [ 978.455219] ? __sanitizer_cov_trace_pc+0x26/0x50 [ 978.460070] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 978.465618] ? sockfd_lookup_light+0xc5/0x160 [ 978.470119] __sys_sendmsg+0x11d/0x280 [ 978.474006] ? __ia32_sys_shutdown+0x80/0x80 [ 978.478419] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 978.483960] ? put_timespec64+0x10f/0x1b0 [ 978.488122] ? trace_hardirqs_off_caller+0x310/0x310 [ 978.493231] __x64_sys_sendmsg+0x78/0xb0 [ 978.497311] do_syscall_64+0x1b9/0x820 [ 978.501206] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 978.506573] ? syscall_return_slowpath+0x5e0/0x5e0 [ 978.511505] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 978.516363] ? trace_hardirqs_on_caller+0x310/0x310 [ 978.521378] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 978.526394] ? prepare_exit_to_usermode+0x291/0x3b0 [ 978.531414] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 978.536258] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 978.541445] RIP: 0033:0x457569 [ 978.544639] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 978.563540] RSP: 002b:00007fef3bf71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 978.571278] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 978.578547] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 978.585816] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 978.593080] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fef3bf726d4 [ 978.600346] R13: 00000000004c3fd7 R14: 00000000004d6808 R15: 00000000ffffffff [ 978.608720] Kernel Offset: disabled [ 978.612344] Rebooting in 86400 seconds..