bda5f27a283c2e373d086e23c346cacd35ed92591c472016ee01b304c154822897e365f057005f8a2bfb4759ac24269efb47d3b230dedcc5668ede3d0e821da46c1d649b41ecbb34d76ead6e3391022e0aeda11ee79365d7ee2e27d583c0e5903839e5650c904170a60e08eb21ab640a9ce4758315971387af8e6e75637e2052b858cde7095b1b24e89b668d8417097e6c5f6fd99ffb60a4506e22536e88af35d54147fda39ca15694a554c3400075981f2c5e4be316521d0a27f88d51a0787adc844ec31fa823bf3dbdf1d746ac3cd9d2fd75c75e5c0d5cf69c0b7d808d743160054572c98c1fb6e76002ce8045acc0d2735a9d73b410215a2084e41df4a6a918a9ca020b5a12c7a61dc6eb44447c28ce0296b86497419eef281cd137cbbd42b30258b458345d8161bd3d5dc814145806d23eebd475e0f6769afe75eda12a421176f0309d4df920ecf09eacab4e0671f3c8299cccf9ffa812341d587f6f7af94af4004abc6bb51aaecf27670fad3034b8e88c529b0b33a5981480b80090f39cd5c3ab886e3f569781e4d9807595dd7125088a80cba96c78e2d0266acaec32fb7891aa439f3b1fbb7d3d404c6c4473fc922c366ed543ea6f848ca69cb12ccd75445f2b50091db7ac0c81cabef047812625b06f27789ed266045a0c0895e97eabb940ba09345d097f214b82d9c9db7a8578e45a611314b13f0d2e8a6928422950972643f5cf0e2661e7eabae2dafc32864f58c2ee871c520bc48afa54534df21005fc93808d66d96ddc39e107e900714f21171fc57a4ab5e9e7a2adbb7764b67fb29cf1ecb05547cba7d512bff165e6edd662ed801774f7460915634ff5135ec427e64251d8fb213cb08057e0af3a2ca0e6ed5d1c81ec82931c51c3e8bb91d5d8281ed8e352ea855fa0df6e2cec273feed4b985dc574af4cd266011e802933a399e89a3cc7d76de33e7804e6a0bdd0a3dd919b081d6f512fdd9a502d40d51d4ac268791430f16c4806d8d77c84815276a69c9e230e72ca5673a6b073e2d10aa398ee397688293b3bb017ad7802f9f57db0b191a5a04a50169ed43aee16269014fd6b0e20dfdb47b55e451e1ca69adea387cf562371c112b3089d0780c8353671f0a8e1be296aacb8fb9c66240f09017d50d7bc3e1ec9ab3dff9d7a771956d41d1446699d9418a019d59fa612df1243598e30d3a75a0c07691fc3cc930a4980eff979064f8da3a3c9d63dff0a794714c2cd6be9ea6f91a9a1064dd519fbc5c8cefb34f91b540ef6df44049bf9c0ccfe9dcaa66faad5943e10bfaaf554bde06794165c4ea131a507be1cdc51cbd2619053e01c81670b67d2ef077f4e8bdc986d65531d9647ced9c1fb1bcf11c12814d969d84a2da2c5e32cc5c94fe4578693ba20d3e055240704db4374c13fb8cc40a91cf4209746301ef1ca69b27d5a26c528ad07ca56cb99524608e973d900b35e665a36c1d2fb751d823ffd28afea2e737232e87a8457b54c3cd27c2449f685404798ccf79b594716900cfd9c5def82a6f3bc125c784f84ee609d52b8cb1614d0fe2bac5aed7acfdf2b90ecbd45389601a74ccbf37030983c7326e7ca71f942ce71e4e485a8efc053c3601285e2453e5968142196a4f1c0dd288664a45d53a902dabadf6c3050bf006d94596fe0536f0b33fac79ac53baf2a11f88e10d5f46b1b4e44fa44345018811a684f7210501d074ed2d145419ef7bd7a9ef80cfd597f7f637cd328ef5e659702f2c1380e9c7a45715beac5d863d16d3926d3bf31b21afa91a76b6b3e1a99b751adaa76dfc0e100e442048e5c5e1e9e022f436d991e17f769063fa3d3743bea8123a33aa01ad5d0a828c3b0d602ede1658918d5a4336c81e918ce869e93c97fa2b0792d982bc88fe4df87066d238283514024ab155fe97824a36ea401189ad505ff728ca7e23da4e5fc97ba7acd56169489d60bdaecd375a52f1b2116e1f2aaf07bc4ef4b3a2e793f628dc543d1596c0cbefc79aaf24e40d6b8ebddd5c2bb6c1a2724de1b76aa7e20ee01490ac469601a4233ff81bf65b364c22a9b421f48b79331bc5aa3e03eeb0b47be0194c2f3bc4bf0a54e7c899732c91b3ebb2fb130a15e80ebcd26f81f474d5eb0cc43446d5b7647f75c32ce6979e23b025a70aef70f7ef8d1c914ee93818ea704ba0c70c0a0756d8afb42b2217253c55e86f668c5f18e09af91f975b6855cbc23d5eaa24dfce69df3b4fcc82eae3a8173f0529be619a72fd8fd2d2bc626a1bcf923aba598a5c31771b9e5656c71abd8001e4c9e41744dbaf3a2053c2511262c6dc4709a6be0deee724b8d5a40a3ff1cbd69b6efead95692b185f5085f45a78ea9a079cb2e2e7d6da00de5d07a76120b59291f8ae8ea79095a5a692d9941fde914642d5ab01c096ce0f0f52f47a8a9cc48eec4d9a495f10600793718c10c0030b59bccda5cbbde7bfb2e54e6aeafd0efcc67f05416b61c5d768893bbe20047eab1e2adf08e5828c3254921d0fbf9012dcbe01d0344daf0cfb7d7b0a2da9d73aad6c79620d908080d09a7be7f0ae1c689ec390a25f1db08c4e09a4b5fb97045250aa025ed25408f8616adeb79f51a0130e413344f3950efa8d60151760e9f0a25474c5424091f407bee0ab0482557ce0d28373e455dea536d8d5179c76551b3b0675c7c6b3d44a490288cc01d338e1765cf4139ac85ec0481291265632be9ccc2cc946ca3d150626f6856b86189495e76154734424bd1def79a3839ad5f5f559912c64ca10d3a2b9eb56fba52a6bee56b8d167dc82fb61b7bf987d332d42ca54087c3bb1af0391fc711da650b8d673b1b51cb7dbe844c36a26a47688260ee125eb510394ac1227519d6217ae2fcb9b832c887a4685ca8804ca140bfcb4e1be70276d5a587635f1d23ce389715553f609e4618e6ded86d39c567ad87fc6b1529858b80fb"})
close(0xffffffffffffffff)

[ 1587.913665][T24226] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1587.936302][T24226] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
22:51:17 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x84, 0x6, 0x0, 0x0)

[ 1587.971983][T24226] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1587.971983][T24226] !'
[ 1588.002052][T24226] CPU: 1 PID: 24226 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1588.010867][T24226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
22:51:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000200))
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f00000000c0)=[{&(0x7f0000001940)=""/4076, 0xfec}], 0x1)

[ 1588.020952][T24226] Call Trace:
[ 1588.024276][T24226]  <TASK>
[ 1588.027224][T24226]  dump_stack_lvl+0x201/0x2d8
[ 1588.031928][T24226]  ? show_regs_print_info+0x12/0x12
[ 1588.037150][T24226]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1588.042913][T24226]  sysfs_warn_dup+0x8c/0xa0
[ 1588.047441][T24226]  sysfs_do_create_link_sd+0xbe/0x100
[ 1588.052839][T24226]  device_add+0x9ea/0x16d0
[ 1588.057269][T24226]  ? wiphy_register+0x1b93/0x2a50
[ 1588.062347][T24226]  ? virtual_device_parent+0x50/0x50
22:51:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000200))
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f00000000c0)=[{&(0x7f0000001940)=""/4076, 0xfec}], 0x1)

[ 1588.067654][T24226]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1588.073668][T24226]  wiphy_register+0x1ba2/0x2a50
[ 1588.078568][T24226]  ? cfg80211_event_work+0x40/0x40
[ 1588.083709][T24226]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1588.089801][T24226]  ieee80211_register_hw+0x3063/0x3e10
[ 1588.095302][T24226]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1588.101142][T24226]  ? memset+0x1f/0x40
[ 1588.105140][T24226]  ? __hrtimer_init+0x173/0x250
[ 1588.110014][T24226]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1588.115781][T24226]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1588.120931][T24226]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1588.127294][T24226]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1588.133665][T24226]  genl_rcv_msg+0x1032/0x1480
[ 1588.138375][T24226]  ? genl_bind+0x360/0x360
[ 1588.142820][T24226]  ? __lock_acquire+0x1382/0x2b00
[ 1588.147901][T24226]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1588.153643][T24226]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1588.160099][T24226]  netlink_rcv_skb+0x200/0x470
[ 1588.164976][T24226]  ? genl_bind+0x360/0x360
[ 1588.169417][T24226]  ? netlink_ack+0xb70/0xb70
[ 1588.174020][T24226]  ? __down_read_common+0x1b0/0x450
[ 1588.179238][T24226]  ? up_read_non_owner+0x1c0/0x1c0
[ 1588.184362][T24226]  ? netlink_deliver_tap+0x130/0x880
[ 1588.189680][T24226]  genl_rcv+0x24/0x40
[ 1588.193686][T24226]  netlink_unicast+0x814/0x9f0
[ 1588.198565][T24226]  ? netlink_detachskb+0xa0/0xa0
[ 1588.203522][T24226]  ? __virt_addr_valid+0xb8/0x2d0
[ 1588.208569][T24226]  ? __phys_addr_symbol+0x2b/0x70
[ 1588.213619][T24226]  ? __check_object_size+0x2f3/0x3f0
[ 1588.218930][T24226]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1588.224066][T24226]  netlink_sendmsg+0xaea/0xe60
[ 1588.228852][T24226]  ? memcpy+0x3c/0x60
[ 1588.232864][T24226]  ? netlink_getsockopt+0xa60/0xa60
[ 1588.238090][T24226]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1588.243388][T24226]  ? security_socket_sendmsg+0x9d/0xb0
[ 1588.248865][T24226]  ? netlink_getsockopt+0xa60/0xa60
[ 1588.254081][T24226]  ____sys_sendmsg+0x5b9/0x910
[ 1588.258876][T24226]  ? __sys_sendmsg_sock+0x30/0x30
[ 1588.263945][T24226]  __sys_sendmsg+0x280/0x370
[ 1588.268566][T24226]  ? ____sys_sendmsg+0x910/0x910
[ 1588.273555][T24226]  ? __context_tracking_exit+0x7a/0xd0
[ 1588.279051][T24226]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1588.285056][T24226]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1588.291074][T24226]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1588.297164][T24226]  ? lockdep_hardirqs_on+0x95/0x140
[ 1588.302380][T24226]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1588.308383][T24226]  do_syscall_64+0x44/0xd0
[ 1588.312824][T24226]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1588.318732][T24226] RIP: 0033:0x7f3e3559fe99
[ 1588.323168][T24226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1588.342793][T24226] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1588.351326][T24226] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1588.359315][T24226] RDX: 0000000000600300 RSI: 0000000020000000 RDI: 0000000000000003
[ 1588.367303][T24226] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1588.375292][T24226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1588.383289][T24226] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1588.391297][T24226]  </TASK>
[ 1588.413787][T24225] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1588.435078][T24225] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1588.464978][T24225] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1588.464978][T24225] !'
[ 1588.481502][T24225] CPU: 0 PID: 24225 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1588.490306][T24225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1588.500380][T24225] Call Trace:
[ 1588.503671][T24225]  <TASK>
[ 1588.506614][T24225]  dump_stack_lvl+0x201/0x2d8
[ 1588.511296][T24225]  ? show_regs_print_info+0x12/0x12
[ 1588.516506][T24225]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1588.522247][T24225]  sysfs_warn_dup+0x8c/0xa0
[ 1588.526758][T24225]  sysfs_do_create_link_sd+0xbe/0x100
[ 1588.532124][T24225]  device_add+0x9ea/0x16d0
[ 1588.536540][T24225]  ? wiphy_register+0x1b93/0x2a50
[ 1588.541571][T24225]  ? virtual_device_parent+0x50/0x50
[ 1588.546848][T24225]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1588.552837][T24225]  wiphy_register+0x1ba2/0x2a50
[ 1588.557690][T24225]  ? cfg80211_event_work+0x40/0x40
[ 1588.562800][T24225]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1588.568865][T24225]  ieee80211_register_hw+0x3063/0x3e10
[ 1588.574337][T24225]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1588.580144][T24225]  ? memset+0x1f/0x40
[ 1588.584204][T24225]  ? __hrtimer_init+0x173/0x250
[ 1588.589054][T24225]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1588.594788][T24225]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1588.599897][T24225]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1588.606227][T24225]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1588.612576][T24225]  genl_rcv_msg+0x1032/0x1480
[ 1588.617265][T24225]  ? genl_bind+0x360/0x360
[ 1588.621685][T24225]  ? __lock_acquire+0x1382/0x2b00
[ 1588.626724][T24225]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1588.632347][T24225]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1588.638685][T24225]  netlink_rcv_skb+0x200/0x470
[ 1588.643448][T24225]  ? genl_bind+0x360/0x360
[ 1588.647860][T24225]  ? netlink_ack+0xb70/0xb70
[ 1588.652454][T24225]  ? __down_read_common+0x1b0/0x450
[ 1588.657732][T24225]  ? up_read_non_owner+0x1c0/0x1c0
[ 1588.662831][T24225]  ? netlink_deliver_tap+0x130/0x880
[ 1588.668121][T24225]  genl_rcv+0x24/0x40
[ 1588.672096][T24225]  netlink_unicast+0x814/0x9f0
[ 1588.676860][T24225]  ? netlink_detachskb+0xa0/0xa0
[ 1588.681790][T24225]  ? __virt_addr_valid+0xb8/0x2d0
[ 1588.686809][T24225]  ? __phys_addr_symbol+0x2b/0x70
[ 1588.691821][T24225]  ? __check_object_size+0x2f3/0x3f0
[ 1588.697100][T24225]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1588.702204][T24225]  netlink_sendmsg+0xaea/0xe60
[ 1588.706961][T24225]  ? memcpy+0x3c/0x60
[ 1588.710959][T24225]  ? netlink_getsockopt+0xa60/0xa60
[ 1588.716165][T24225]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1588.721527][T24225]  ? security_socket_sendmsg+0x9d/0xb0
[ 1588.726976][T24225]  ? netlink_getsockopt+0xa60/0xa60
[ 1588.732171][T24225]  ____sys_sendmsg+0x5b9/0x910
[ 1588.736937][T24225]  ? __sys_sendmsg_sock+0x30/0x30
[ 1588.741970][T24225]  __sys_sendmsg+0x280/0x370
[ 1588.746567][T24225]  ? ____sys_sendmsg+0x910/0x910
[ 1588.751511][T24225]  ? __context_tracking_exit+0x7a/0xd0
[ 1588.756972][T24225]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1588.762948][T24225]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1588.768933][T24225]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1588.774902][T24225]  ? lockdep_hardirqs_on+0x95/0x140
[ 1588.780089][T24225]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1588.786062][T24225]  do_syscall_64+0x44/0xd0
[ 1588.790478][T24225]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1588.796367][T24225] RIP: 0033:0x7fda9f984e99
[ 1588.800774][T24225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1588.820369][T24225] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1588.828774][T24225] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
22:51:18 executing program 3:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCADDRT(r0, 0x890b, 0x0)

22:51:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000200))
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f00000000c0)=[{&(0x7f0000001940)=""/4076, 0xfec}], 0x1)

22:51:18 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe0ffff)

[ 1588.836801][T24225] RDX: 000000000000004c RSI: 0000000020000000 RDI: 0000000000000003
[ 1588.844765][T24225] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1588.852726][T24225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1588.860686][T24225] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1588.868665][T24225]  </TASK>
[ 1588.939833][T24227] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1588.951627][T24227] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1588.976559][T24227] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1588.976559][T24227] !'
[ 1588.992610][T24227] CPU: 1 PID: 24227 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1589.001409][T24227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1589.011482][T24227] Call Trace:
[ 1589.014780][T24227]  <TASK>
[ 1589.017732][T24227]  dump_stack_lvl+0x201/0x2d8
[ 1589.022442][T24227]  ? show_regs_print_info+0x12/0x12
[ 1589.027672][T24227]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1589.033431][T24227]  sysfs_warn_dup+0x8c/0xa0
[ 1589.037959][T24227]  sysfs_do_create_link_sd+0xbe/0x100
[ 1589.043525][T24227]  device_add+0x9ea/0x16d0
[ 1589.047967][T24227]  ? wiphy_register+0x1b93/0x2a50
[ 1589.053023][T24227]  ? virtual_device_parent+0x50/0x50
[ 1589.058322][T24227]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1589.064309][T24227]  wiphy_register+0x1ba2/0x2a50
[ 1589.069164][T24227]  ? cfg80211_event_work+0x40/0x40
[ 1589.074274][T24227]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1589.080334][T24227]  ieee80211_register_hw+0x3063/0x3e10
[ 1589.085804][T24227]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1589.091609][T24227]  ? memset+0x1f/0x40
[ 1589.095580][T24227]  ? __hrtimer_init+0x173/0x250
[ 1589.100426][T24227]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1589.106178][T24227]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1589.111285][T24227]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1589.117616][T24227]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1589.123942][T24227]  genl_rcv_msg+0x1032/0x1480
[ 1589.128622][T24227]  ? genl_bind+0x360/0x360
[ 1589.133036][T24227]  ? __lock_acquire+0x1382/0x2b00
[ 1589.138072][T24227]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1589.143691][T24227]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1589.150035][T24227]  netlink_rcv_skb+0x200/0x470
[ 1589.154811][T24227]  ? genl_bind+0x360/0x360
[ 1589.159230][T24227]  ? netlink_ack+0xb70/0xb70
[ 1589.163823][T24227]  ? __down_read_common+0x1b0/0x450
[ 1589.169020][T24227]  ? up_read_non_owner+0x1c0/0x1c0
[ 1589.174130][T24227]  ? netlink_deliver_tap+0x130/0x880
[ 1589.179426][T24227]  genl_rcv+0x24/0x40
[ 1589.183410][T24227]  netlink_unicast+0x814/0x9f0
[ 1589.188172][T24227]  ? netlink_detachskb+0xa0/0xa0
[ 1589.193099][T24227]  ? __virt_addr_valid+0xb8/0x2d0
[ 1589.198164][T24227]  ? __phys_addr_symbol+0x2b/0x70
[ 1589.203180][T24227]  ? __check_object_size+0x2f3/0x3f0
[ 1589.208457][T24227]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1589.213573][T24227]  netlink_sendmsg+0xaea/0xe60
[ 1589.218505][T24227]  ? memcpy+0x3c/0x60
[ 1589.222485][T24227]  ? netlink_getsockopt+0xa60/0xa60
[ 1589.227683][T24227]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1589.232955][T24227]  ? security_socket_sendmsg+0x9d/0xb0
[ 1589.238409][T24227]  ? netlink_getsockopt+0xa60/0xa60
[ 1589.243597][T24227]  ____sys_sendmsg+0x5b9/0x910
[ 1589.248362][T24227]  ? __sys_sendmsg_sock+0x30/0x30
[ 1589.253392][T24227]  __sys_sendmsg+0x280/0x370
[ 1589.257979][T24227]  ? ____sys_sendmsg+0x910/0x910
[ 1589.262921][T24227]  ? __context_tracking_exit+0x7a/0xd0
[ 1589.268384][T24227]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1589.274352][T24227]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1589.280341][T24227]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1589.286330][T24227]  ? lockdep_hardirqs_on+0x95/0x140
[ 1589.291524][T24227]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1589.297503][T24227]  do_syscall_64+0x44/0xd0
[ 1589.301922][T24227]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1589.307811][T24227] RIP: 0033:0x7ffbc7e82e99
[ 1589.312225][T24227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1589.331829][T24227] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1589.340248][T24227] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1589.348216][T24227] RDX: 0000000000000300 RSI: 0000000020000000 RDI: 0000000000000003
[ 1589.356186][T24227] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1589.364163][T24227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1589.372130][T24227] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1589.380110][T24227]  </TASK>
22:51:19 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x3e7)

22:51:19 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000200))
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f00000000c0)=[{&(0x7f0000001940)=""/4076, 0xfec}], 0x1)

22:51:19 executing program 3:
pselect6(0x0, 0x0, &(0x7f0000000040), 0x0, 0x0, 0x0)

22:51:19 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x60)

22:51:19 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="9c0000000201050000009e6f384bdfe323530006080008"], 0x9c}}, 0x0)

22:51:19 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1000000)

[ 1589.485801][T24350] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1589.517507][T24353] netlink: 128 bytes leftover after parsing attributes in process `syz-executor.1'.
22:51:19 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000200))
syz_open_pts(r0, 0x0)

22:51:19 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x448)

[ 1589.518612][T24350] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:51:19 executing program 1:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCGIFMTU(r0, 0x8903, &(0x7f00000000c0)={'sit0\x00'})

[ 1589.591276][T24350] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1589.591276][T24350] !'
[ 1589.628806][T24350] CPU: 1 PID: 24350 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1589.637623][T24350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1589.647691][T24350] Call Trace:
[ 1589.650988][T24350]  <TASK>
[ 1589.653935][T24350]  dump_stack_lvl+0x201/0x2d8
[ 1589.658639][T24350]  ? show_regs_print_info+0x12/0x12
[ 1589.663855][T24350]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1589.669613][T24350]  sysfs_warn_dup+0x8c/0xa0
[ 1589.674134][T24350]  sysfs_do_create_link_sd+0xbe/0x100
[ 1589.679658][T24350]  device_add+0x9ea/0x16d0
[ 1589.684090][T24350]  ? wiphy_register+0x1b93/0x2a50
22:51:19 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000200))

22:51:19 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1589.689142][T24350]  ? virtual_device_parent+0x50/0x50
[ 1589.694462][T24350]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1589.700478][T24350]  wiphy_register+0x1ba2/0x2a50
[ 1589.705460][T24350]  ? cfg80211_event_work+0x40/0x40
[ 1589.710609][T24350]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1589.716698][T24350]  ieee80211_register_hw+0x3063/0x3e10
[ 1589.722205][T24350]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1589.728041][T24350]  ? memset+0x1f/0x40
[ 1589.732035][T24350]  ? __hrtimer_init+0x173/0x250
[ 1589.736911][T24350]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1589.742851][T24350]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1589.748081][T24350]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1589.754442][T24350]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1589.760811][T24350]  genl_rcv_msg+0x1032/0x1480
[ 1589.765601][T24350]  ? genl_bind+0x360/0x360
[ 1589.770050][T24350]  ? __lock_acquire+0x1382/0x2b00
[ 1589.775124][T24350]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1589.780778][T24350]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1589.787141][T24350]  netlink_rcv_skb+0x200/0x470
22:51:19 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1589.791935][T24350]  ? genl_bind+0x360/0x360
[ 1589.796388][T24350]  ? netlink_ack+0xb70/0xb70
[ 1589.800999][T24350]  ? __down_read_common+0x1b0/0x450
[ 1589.806217][T24350]  ? up_read_non_owner+0x1c0/0x1c0
[ 1589.811343][T24350]  ? netlink_deliver_tap+0x130/0x880
[ 1589.816663][T24350]  genl_rcv+0x24/0x40
[ 1589.820670][T24350]  netlink_unicast+0x814/0x9f0
[ 1589.825568][T24350]  ? netlink_detachskb+0xa0/0xa0
[ 1589.830527][T24350]  ? __virt_addr_valid+0xb8/0x2d0
[ 1589.835568][T24350]  ? __phys_addr_symbol+0x2b/0x70
22:51:19 executing program 1:
sendmsg$IPVS_CMD_DEL_SERVICE(0xffffffffffffffff, 0x0, 0xcecc57a48f6b20ac)

[ 1589.840610][T24350]  ? __check_object_size+0x2f3/0x3f0
[ 1589.845916][T24350]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1589.851045][T24350]  netlink_sendmsg+0xaea/0xe60
[ 1589.855833][T24350]  ? memcpy+0x3c/0x60
[ 1589.859845][T24350]  ? netlink_getsockopt+0xa60/0xa60
[ 1589.865081][T24350]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1589.870381][T24350]  ? security_socket_sendmsg+0x9d/0xb0
[ 1589.875867][T24350]  ? netlink_getsockopt+0xa60/0xa60
[ 1589.881088][T24350]  ____sys_sendmsg+0x5b9/0x910
[ 1589.885883][T24350]  ? __sys_sendmsg_sock+0x30/0x30
22:51:19 executing program 1:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000140)=0x5)

[ 1589.890960][T24350]  __sys_sendmsg+0x280/0x370
[ 1589.895586][T24350]  ? ____sys_sendmsg+0x910/0x910
[ 1589.900560][T24350]  ? __context_tracking_exit+0x7a/0xd0
[ 1589.906055][T24350]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1589.912053][T24350]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1589.918059][T24350]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1589.924053][T24350]  ? lockdep_hardirqs_on+0x95/0x140
[ 1589.929271][T24350]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1589.935270][T24350]  do_syscall_64+0x44/0xd0
[ 1589.939706][T24350]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1589.945616][T24350] RIP: 0033:0x7fda9f984e99
[ 1589.950044][T24350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1589.969670][T24350] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1589.978108][T24350] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1589.986097][T24350] RDX: 0000000000000060 RSI: 0000000020000000 RDI: 0000000000000003
[ 1589.994083][T24350] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1590.002061][T24350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1590.010044][T24350] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1590.018047][T24350]  </TASK>
[ 1590.054384][T24357] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1590.064168][T24357] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1590.077175][T24357] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1590.077175][T24357] !'
[ 1590.090207][T24357] CPU: 1 PID: 24357 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1590.099006][T24357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1590.109081][T24357] Call Trace:
[ 1590.112376][T24357]  <TASK>
[ 1590.115327][T24357]  dump_stack_lvl+0x201/0x2d8
[ 1590.120033][T24357]  ? show_regs_print_info+0x12/0x12
[ 1590.125268][T24357]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1590.131041][T24357]  sysfs_warn_dup+0x8c/0xa0
[ 1590.135566][T24357]  sysfs_do_create_link_sd+0xbe/0x100
[ 1590.140963][T24357]  device_add+0x9ea/0x16d0
[ 1590.145409][T24357]  ? wiphy_register+0x1b93/0x2a50
[ 1590.150472][T24357]  ? virtual_device_parent+0x50/0x50
[ 1590.155777][T24357]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1590.161791][T24357]  wiphy_register+0x1ba2/0x2a50
[ 1590.166765][T24357]  ? cfg80211_event_work+0x40/0x40
[ 1590.171896][T24357]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1590.177957][T24357]  ieee80211_register_hw+0x3063/0x3e10
[ 1590.183422][T24357]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1590.189222][T24357]  ? memset+0x1f/0x40
[ 1590.193188][T24357]  ? __hrtimer_init+0x173/0x250
[ 1590.198032][T24357]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1590.203755][T24357]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1590.208860][T24357]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1590.215182][T24357]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1590.221502][T24357]  genl_rcv_msg+0x1032/0x1480
[ 1590.226170][T24357]  ? genl_bind+0x360/0x360
[ 1590.230575][T24357]  ? __lock_acquire+0x1382/0x2b00
[ 1590.235597][T24357]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1590.241218][T24357]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1590.247570][T24357]  netlink_rcv_skb+0x200/0x470
[ 1590.252326][T24357]  ? genl_bind+0x360/0x360
[ 1590.256728][T24357]  ? netlink_ack+0xb70/0xb70
[ 1590.261301][T24357]  ? __down_read_common+0x1b0/0x450
[ 1590.266496][T24357]  ? up_read_non_owner+0x1c0/0x1c0
[ 1590.271590][T24357]  ? netlink_deliver_tap+0x130/0x880
[ 1590.276866][T24357]  genl_rcv+0x24/0x40
[ 1590.280834][T24357]  netlink_unicast+0x814/0x9f0
[ 1590.285587][T24357]  ? netlink_detachskb+0xa0/0xa0
[ 1590.290507][T24357]  ? __virt_addr_valid+0xb8/0x2d0
[ 1590.295517][T24357]  ? __phys_addr_symbol+0x2b/0x70
[ 1590.300541][T24357]  ? __check_object_size+0x2f3/0x3f0
[ 1590.305811][T24357]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1590.310911][T24357]  netlink_sendmsg+0xaea/0xe60
[ 1590.315666][T24357]  ? memcpy+0x3c/0x60
[ 1590.319640][T24357]  ? netlink_getsockopt+0xa60/0xa60
[ 1590.324829][T24357]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1590.330096][T24357]  ? security_socket_sendmsg+0x9d/0xb0
[ 1590.335537][T24357]  ? netlink_getsockopt+0xa60/0xa60
[ 1590.340811][T24357]  ____sys_sendmsg+0x5b9/0x910
[ 1590.345639][T24357]  ? __sys_sendmsg_sock+0x30/0x30
[ 1590.350680][T24357]  __sys_sendmsg+0x280/0x370
[ 1590.355283][T24357]  ? ____sys_sendmsg+0x910/0x910
[ 1590.360214][T24357]  ? __context_tracking_exit+0x7a/0xd0
[ 1590.365664][T24357]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1590.371634][T24357]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1590.377605][T24357]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1590.383664][T24357]  ? lockdep_hardirqs_on+0x95/0x140
[ 1590.388844][T24357]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1590.394808][T24357]  do_syscall_64+0x44/0xd0
[ 1590.399211][T24357]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1590.405096][T24357] RIP: 0033:0x7f3e3559fe99
[ 1590.409504][T24357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1590.429100][T24357] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1590.437525][T24357] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1590.445489][T24357] RDX: 0000000001000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1590.453460][T24357] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1590.461509][T24357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1590.469467][T24357] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1590.477434][T24357]  </TASK>
22:51:20 executing program 3:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCGIFMTU(r0, 0x8911, &(0x7f00000000c0)={'sit0\x00'})

22:51:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

22:51:20 executing program 1:
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETISPACE(r0, 0x8010500d, &(0x7f0000000000))

22:51:20 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x68)

22:51:20 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1080000)

[ 1590.515951][T24360] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1590.536410][T24360] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1590.584530][T24360] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1590.584530][T24360] !'
[ 1590.614885][T24360] CPU: 1 PID: 24360 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1590.623697][T24360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1590.633769][T24360] Call Trace:
[ 1590.637064][T24360]  <TASK>
[ 1590.640014][T24360]  dump_stack_lvl+0x201/0x2d8
[ 1590.644718][T24360]  ? show_regs_print_info+0x12/0x12
[ 1590.649944][T24360]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1590.655702][T24360]  sysfs_warn_dup+0x8c/0xa0
[ 1590.660222][T24360]  sysfs_do_create_link_sd+0xbe/0x100
[ 1590.665612][T24360]  device_add+0x9ea/0x16d0
[ 1590.670043][T24360]  ? wiphy_register+0x1b93/0x2a50
[ 1590.675100][T24360]  ? virtual_device_parent+0x50/0x50
[ 1590.680399][T24360]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1590.686406][T24360]  wiphy_register+0x1ba2/0x2a50
[ 1590.691285][T24360]  ? cfg80211_event_work+0x40/0x40
[ 1590.696430][T24360]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1590.702519][T24360]  ieee80211_register_hw+0x3063/0x3e10
[ 1590.708114][T24360]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1590.713966][T24360]  ? memset+0x1f/0x40
[ 1590.717963][T24360]  ? __hrtimer_init+0x173/0x250
[ 1590.722832][T24360]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1590.728590][T24360]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1590.733724][T24360]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1590.740075][T24360]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1590.746426][T24360]  genl_rcv_msg+0x1032/0x1480
[ 1590.751125][T24360]  ? genl_bind+0x360/0x360
[ 1590.755566][T24360]  ? __lock_acquire+0x1382/0x2b00
[ 1590.760638][T24360]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1590.766292][T24360]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1590.772662][T24360]  netlink_rcv_skb+0x200/0x470
[ 1590.777450][T24360]  ? genl_bind+0x360/0x360
[ 1590.781889][T24360]  ? netlink_ack+0xb70/0xb70
[ 1590.786580][T24360]  ? __down_read_common+0x1b0/0x450
[ 1590.791797][T24360]  ? up_read_non_owner+0x1c0/0x1c0
[ 1590.796912][T24360]  ? netlink_deliver_tap+0x130/0x880
[ 1590.802220][T24360]  genl_rcv+0x24/0x40
[ 1590.806222][T24360]  netlink_unicast+0x814/0x9f0
[ 1590.811013][T24360]  ? netlink_detachskb+0xa0/0xa0
[ 1590.815961][T24360]  ? __virt_addr_valid+0xb8/0x2d0
[ 1590.820998][T24360]  ? __phys_addr_symbol+0x2b/0x70
[ 1590.826039][T24360]  ? __check_object_size+0x2f3/0x3f0
[ 1590.831343][T24360]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1590.836475][T24360]  netlink_sendmsg+0xaea/0xe60
[ 1590.841256][T24360]  ? memcpy+0x3c/0x60
[ 1590.845267][T24360]  ? netlink_getsockopt+0xa60/0xa60
[ 1590.850500][T24360]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1590.855793][T24360]  ? security_socket_sendmsg+0x9d/0xb0
[ 1590.861263][T24360]  ? netlink_getsockopt+0xa60/0xa60
[ 1590.866452][T24360]  ____sys_sendmsg+0x5b9/0x910
[ 1590.871214][T24360]  ? __sys_sendmsg_sock+0x30/0x30
[ 1590.876234][T24360]  __sys_sendmsg+0x280/0x370
[ 1590.880817][T24360]  ? ____sys_sendmsg+0x910/0x910
[ 1590.885767][T24360]  ? __context_tracking_exit+0x7a/0xd0
[ 1590.891220][T24360]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1590.897183][T24360]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1590.903155][T24360]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1590.909118][T24360]  ? lockdep_hardirqs_on+0x95/0x140
[ 1590.914301][T24360]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1590.920274][T24360]  do_syscall_64+0x44/0xd0
[ 1590.924713][T24360]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1590.930598][T24360] RIP: 0033:0x7ffbc7e82e99
[ 1590.934996][T24360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1590.954587][T24360] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1590.962996][T24360] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1590.970992][T24360] RDX: 0000000000000448 RSI: 0000000020000000 RDI: 0000000000000003
[ 1590.978964][T24360] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1590.987036][T24360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1590.995101][T24360] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1591.003179][T24360]  </TASK>
[ 1591.021015][T24479] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
22:51:20 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x500)

22:51:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

22:51:20 executing program 1:
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa)
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
syz_genetlink_get_family_id$tipc(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

22:51:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={0x0}}, 0x0)

[ 1591.033632][T24479] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1591.045890][T24479] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1591.045890][T24479] !'
[ 1591.056524][T24479] CPU: 1 PID: 24479 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1591.065313][T24479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1591.075392][T24479] Call Trace:
[ 1591.078704][T24479]  <TASK>
[ 1591.081643][T24479]  dump_stack_lvl+0x201/0x2d8
[ 1591.086351][T24479]  ? show_regs_print_info+0x12/0x12
[ 1591.091571][T24479]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1591.097331][T24479]  sysfs_warn_dup+0x8c/0xa0
[ 1591.101975][T24479]  sysfs_do_create_link_sd+0xbe/0x100
[ 1591.107375][T24479]  device_add+0x9ea/0x16d0
[ 1591.111812][T24479]  ? wiphy_register+0x1b93/0x2a50
[ 1591.116879][T24479]  ? virtual_device_parent+0x50/0x50
[ 1591.122183][T24479]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1591.128197][T24479]  wiphy_register+0x1ba2/0x2a50
22:51:20 executing program 3:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x6, 0x0, 0x0)

[ 1591.133089][T24479]  ? cfg80211_event_work+0x40/0x40
[ 1591.138228][T24479]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1591.144320][T24479]  ieee80211_register_hw+0x3063/0x3e10
[ 1591.149832][T24479]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1591.155666][T24479]  ? memset+0x1f/0x40
[ 1591.159665][T24479]  ? __hrtimer_init+0x173/0x250
[ 1591.164543][T24479]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1591.170311][T24479]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1591.175467][T24479]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1591.181827][T24479]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1591.188188][T24479]  genl_rcv_msg+0x1032/0x1480
[ 1591.192900][T24479]  ? genl_bind+0x360/0x360
[ 1591.197349][T24479]  ? __lock_acquire+0x1382/0x2b00
[ 1591.202424][T24479]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1591.208083][T24479]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1591.214460][T24479]  netlink_rcv_skb+0x200/0x470
[ 1591.219247][T24479]  ? genl_bind+0x360/0x360
[ 1591.223686][T24479]  ? netlink_ack+0xb70/0xb70
[ 1591.228291][T24479]  ? __down_read_common+0x1b0/0x450
[ 1591.233507][T24479]  ? up_read_non_owner+0x1c0/0x1c0
[ 1591.238632][T24479]  ? netlink_deliver_tap+0x130/0x880
[ 1591.243946][T24479]  genl_rcv+0x24/0x40
[ 1591.247947][T24479]  netlink_unicast+0x814/0x9f0
[ 1591.252740][T24479]  ? netlink_detachskb+0xa0/0xa0
[ 1591.257690][T24479]  ? __virt_addr_valid+0xb8/0x2d0
[ 1591.262737][T24479]  ? __phys_addr_symbol+0x2b/0x70
[ 1591.267801][T24479]  ? __check_object_size+0x2f3/0x3f0
[ 1591.273105][T24479]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1591.278336][T24479]  netlink_sendmsg+0xaea/0xe60
[ 1591.283299][T24479]  ? memcpy+0x3c/0x60
[ 1591.287324][T24479]  ? netlink_getsockopt+0xa60/0xa60
[ 1591.292561][T24479]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1591.297859][T24479]  ? security_socket_sendmsg+0x9d/0xb0
[ 1591.303334][T24479]  ? netlink_getsockopt+0xa60/0xa60
[ 1591.308556][T24479]  ____sys_sendmsg+0x5b9/0x910
[ 1591.313356][T24479]  ? __sys_sendmsg_sock+0x30/0x30
[ 1591.318423][T24479]  __sys_sendmsg+0x280/0x370
[ 1591.323034][T24479]  ? ____sys_sendmsg+0x910/0x910
[ 1591.328014][T24479]  ? __context_tracking_exit+0x7a/0xd0
22:51:20 executing program 5:
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1591.333516][T24479]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1591.339518][T24479]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1591.345528][T24479]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1591.351524][T24479]  ? lockdep_hardirqs_on+0x95/0x140
[ 1591.356738][T24479]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1591.362747][T24479]  do_syscall_64+0x44/0xd0
[ 1591.367187][T24479]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1591.373095][T24479] RIP: 0033:0x7fda9f984e99
[ 1591.377523][T24479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1591.397330][T24479] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1591.405767][T24479] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1591.413754][T24479] RDX: 0000000000000068 RSI: 0000000020000000 RDI: 0000000000000003
[ 1591.421737][T24479] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1591.429726][T24479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:51:21 executing program 1:
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000600), 0x141, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r0, 0x800c5011, &(0x7f0000000000))

22:51:21 executing program 5:
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1591.437703][T24479] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1591.445717][T24479]  </TASK>
22:51:21 executing program 3:
rseq(&(0x7f00000001c0), 0x20, 0x1, 0x0)

22:51:21 executing program 5:
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)

22:51:21 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6c)

[ 1591.556094][T24483] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1591.595400][T24483] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1591.630618][T24483] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1591.630618][T24483] !'
[ 1591.649980][T24483] CPU: 0 PID: 24483 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1591.658804][T24483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1591.668872][T24483] Call Trace:
[ 1591.672159][T24483]  <TASK>
[ 1591.675104][T24483]  dump_stack_lvl+0x201/0x2d8
[ 1591.679815][T24483]  ? show_regs_print_info+0x12/0x12
[ 1591.685024][T24483]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1591.690747][T24483]  sysfs_warn_dup+0x8c/0xa0
[ 1591.695242][T24483]  sysfs_do_create_link_sd+0xbe/0x100
[ 1591.700617][T24483]  device_add+0x9ea/0x16d0
[ 1591.705044][T24483]  ? wiphy_register+0x1b93/0x2a50
[ 1591.710066][T24483]  ? virtual_device_parent+0x50/0x50
[ 1591.715335][T24483]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1591.721320][T24483]  wiphy_register+0x1ba2/0x2a50
[ 1591.726195][T24483]  ? cfg80211_event_work+0x40/0x40
[ 1591.731315][T24483]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1591.737382][T24483]  ieee80211_register_hw+0x3063/0x3e10
[ 1591.742855][T24483]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1591.748664][T24483]  ? memset+0x1f/0x40
[ 1591.752640][T24483]  ? __hrtimer_init+0x173/0x250
[ 1591.757489][T24483]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1591.763223][T24483]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1591.768334][T24483]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1591.774673][T24483]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1591.781043][T24483]  genl_rcv_msg+0x1032/0x1480
[ 1591.785737][T24483]  ? genl_bind+0x360/0x360
[ 1591.790160][T24483]  ? __lock_acquire+0x1382/0x2b00
[ 1591.795207][T24483]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1591.800838][T24483]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1591.807286][T24483]  netlink_rcv_skb+0x200/0x470
[ 1591.812056][T24483]  ? genl_bind+0x360/0x360
[ 1591.816478][T24483]  ? netlink_ack+0xb70/0xb70
[ 1591.821060][T24483]  ? __down_read_common+0x1b0/0x450
[ 1591.826264][T24483]  ? up_read_non_owner+0x1c0/0x1c0
[ 1591.831394][T24483]  ? netlink_deliver_tap+0x130/0x880
[ 1591.836684][T24483]  genl_rcv+0x24/0x40
[ 1591.840662][T24483]  netlink_unicast+0x814/0x9f0
[ 1591.845428][T24483]  ? netlink_detachskb+0xa0/0xa0
[ 1591.850370][T24483]  ? __virt_addr_valid+0xb8/0x2d0
[ 1591.855387][T24483]  ? __phys_addr_symbol+0x2b/0x70
[ 1591.860404][T24483]  ? __check_object_size+0x2f3/0x3f0
[ 1591.865681][T24483]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1591.870787][T24483]  netlink_sendmsg+0xaea/0xe60
[ 1591.875542][T24483]  ? memcpy+0x3c/0x60
[ 1591.879523][T24483]  ? netlink_getsockopt+0xa60/0xa60
[ 1591.884723][T24483]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1591.890005][T24483]  ? security_socket_sendmsg+0x9d/0xb0
[ 1591.895458][T24483]  ? netlink_getsockopt+0xa60/0xa60
[ 1591.900648][T24483]  ____sys_sendmsg+0x5b9/0x910
[ 1591.905414][T24483]  ? __sys_sendmsg_sock+0x30/0x30
[ 1591.910446][T24483]  __sys_sendmsg+0x280/0x370
[ 1591.915030][T24483]  ? ____sys_sendmsg+0x910/0x910
[ 1591.919970][T24483]  ? __context_tracking_exit+0x7a/0xd0
[ 1591.925430][T24483]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1591.931410][T24483]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1591.937392][T24483]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1591.943363][T24483]  ? lockdep_hardirqs_on+0x95/0x140
[ 1591.948552][T24483]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1591.954538][T24483]  do_syscall_64+0x44/0xd0
[ 1591.958958][T24483]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1591.964843][T24483] RIP: 0033:0x7f3e3559fe99
[ 1591.969253][T24483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1591.988854][T24483] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1591.997269][T24483] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1592.005234][T24483] RDX: 0000000001080000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1592.013202][T24483] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1592.021163][T24483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1592.029126][T24483] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1592.037104][T24483]  </TASK>
[ 1592.051715][T24487] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1592.072330][T24487] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
22:51:21 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x2000000)

[ 1592.114409][T24487] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1592.114409][T24487] !'
[ 1592.124661][T24487] CPU: 0 PID: 24487 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1592.133561][T24487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1592.143631][T24487] Call Trace:
[ 1592.146931][T24487]  <TASK>
[ 1592.149873][T24487]  dump_stack_lvl+0x201/0x2d8
[ 1592.154569][T24487]  ? show_regs_print_info+0x12/0x12
[ 1592.159769][T24487]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1592.165529][T24487]  sysfs_warn_dup+0x8c/0xa0
[ 1592.170056][T24487]  sysfs_do_create_link_sd+0xbe/0x100
[ 1592.175450][T24487]  device_add+0x9ea/0x16d0
[ 1592.180045][T24487]  ? wiphy_register+0x1b93/0x2a50
[ 1592.185097][T24487]  ? virtual_device_parent+0x50/0x50
[ 1592.190398][T24487]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1592.196400][T24487]  wiphy_register+0x1ba2/0x2a50
[ 1592.201275][T24487]  ? cfg80211_event_work+0x40/0x40
[ 1592.206397][T24487]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1592.212469][T24487]  ieee80211_register_hw+0x3063/0x3e10
[ 1592.217947][T24487]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1592.223761][T24487]  ? memset+0x1f/0x40
[ 1592.227742][T24487]  ? __hrtimer_init+0x173/0x250
[ 1592.232590][T24487]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1592.238325][T24487]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1592.243433][T24487]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1592.249762][T24487]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1592.256091][T24487]  genl_rcv_msg+0x1032/0x1480
[ 1592.260769][T24487]  ? genl_bind+0x360/0x360
[ 1592.265182][T24487]  ? __lock_acquire+0x1382/0x2b00
[ 1592.270220][T24487]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1592.275844][T24487]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1592.282174][T24487]  netlink_rcv_skb+0x200/0x470
[ 1592.286950][T24487]  ? genl_bind+0x360/0x360
[ 1592.291379][T24487]  ? netlink_ack+0xb70/0xb70
[ 1592.296422][T24487]  ? __down_read_common+0x1b0/0x450
[ 1592.301620][T24487]  ? up_read_non_owner+0x1c0/0x1c0
[ 1592.306731][T24487]  ? netlink_deliver_tap+0x130/0x880
[ 1592.312033][T24487]  genl_rcv+0x24/0x40
[ 1592.316014][T24487]  netlink_unicast+0x814/0x9f0
[ 1592.320784][T24487]  ? netlink_detachskb+0xa0/0xa0
[ 1592.325718][T24487]  ? __virt_addr_valid+0xb8/0x2d0
[ 1592.330740][T24487]  ? __phys_addr_symbol+0x2b/0x70
[ 1592.335764][T24487]  ? __check_object_size+0x2f3/0x3f0
[ 1592.341043][T24487]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1592.346148][T24487]  netlink_sendmsg+0xaea/0xe60
[ 1592.351086][T24487]  ? memcpy+0x3c/0x60
[ 1592.355094][T24487]  ? netlink_getsockopt+0xa60/0xa60
[ 1592.360321][T24487]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1592.365611][T24487]  ? security_socket_sendmsg+0x9d/0xb0
[ 1592.371068][T24487]  ? netlink_getsockopt+0xa60/0xa60
[ 1592.376269][T24487]  ____sys_sendmsg+0x5b9/0x910
[ 1592.381081][T24487]  ? __sys_sendmsg_sock+0x30/0x30
[ 1592.386120][T24487]  __sys_sendmsg+0x280/0x370
[ 1592.390711][T24487]  ? ____sys_sendmsg+0x910/0x910
[ 1592.395653][T24487]  ? __context_tracking_exit+0x7a/0xd0
[ 1592.401114][T24487]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1592.407087][T24487]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1592.413069][T24487]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1592.419038][T24487]  ? lockdep_hardirqs_on+0x95/0x140
[ 1592.424229][T24487]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1592.430201][T24487]  do_syscall_64+0x44/0xd0
[ 1592.434613][T24487]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1592.440498][T24487] RIP: 0033:0x7ffbc7e82e99
[ 1592.444907][T24487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1592.464676][T24487] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1592.473088][T24487] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1592.481056][T24487] RDX: 0000000000000500 RSI: 0000000020000000 RDI: 0000000000000003
[ 1592.489017][T24487] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1592.496981][T24487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1592.504944][T24487] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1592.512931][T24487]  </TASK>
22:51:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

22:51:22 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x600)

22:51:22 executing program 1:
syz_open_procfs(0x0, &(0x7f0000000080)='maps\x00')

22:51:22 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x2}, 0x20)

[ 1592.554096][T24605] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1592.564406][T24605] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1592.586812][T24605] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1592.586812][T24605] !'
22:51:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1592.629557][T24605] CPU: 0 PID: 24605 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1592.638373][T24605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1592.648446][T24605] Call Trace:
[ 1592.651745][T24605]  <TASK>
[ 1592.654699][T24605]  dump_stack_lvl+0x201/0x2d8
[ 1592.659404][T24605]  ? show_regs_print_info+0x12/0x12
[ 1592.664637][T24605]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1592.670403][T24605]  sysfs_warn_dup+0x8c/0xa0
22:51:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1592.674933][T24605]  sysfs_do_create_link_sd+0xbe/0x100
[ 1592.680327][T24605]  device_add+0x9ea/0x16d0
[ 1592.684761][T24605]  ? wiphy_register+0x1b93/0x2a50
[ 1592.689828][T24605]  ? virtual_device_parent+0x50/0x50
[ 1592.695139][T24605]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1592.701150][T24605]  wiphy_register+0x1ba2/0x2a50
[ 1592.706037][T24605]  ? cfg80211_event_work+0x40/0x40
[ 1592.711271][T24605]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1592.717367][T24605]  ieee80211_register_hw+0x3063/0x3e10
[ 1592.722872][T24605]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
22:51:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1592.728716][T24605]  ? memset+0x1f/0x40
[ 1592.732716][T24605]  ? __hrtimer_init+0x173/0x250
[ 1592.737597][T24605]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1592.743365][T24605]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1592.748508][T24605]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1592.754874][T24605]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1592.761236][T24605]  genl_rcv_msg+0x1032/0x1480
[ 1592.765950][T24605]  ? genl_bind+0x360/0x360
[ 1592.770401][T24605]  ? __lock_acquire+0x1382/0x2b00
22:51:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1592.775474][T24605]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1592.781127][T24605]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1592.787500][T24605]  netlink_rcv_skb+0x200/0x470
[ 1592.792288][T24605]  ? genl_bind+0x360/0x360
[ 1592.796738][T24605]  ? netlink_ack+0xb70/0xb70
[ 1592.801344][T24605]  ? __down_read_common+0x1b0/0x450
[ 1592.806561][T24605]  ? up_read_non_owner+0x1c0/0x1c0
[ 1592.811680][T24605]  ? netlink_deliver_tap+0x130/0x880
[ 1592.816994][T24605]  genl_rcv+0x24/0x40
[ 1592.820993][T24605]  netlink_unicast+0x814/0x9f0
[ 1592.825793][T24605]  ? netlink_detachskb+0xa0/0xa0
[ 1592.830745][T24605]  ? __virt_addr_valid+0xb8/0x2d0
[ 1592.835791][T24605]  ? __phys_addr_symbol+0x2b/0x70
[ 1592.840832][T24605]  ? __check_object_size+0x2f3/0x3f0
[ 1592.846137][T24605]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1592.851279][T24605]  netlink_sendmsg+0xaea/0xe60
[ 1592.856065][T24605]  ? memcpy+0x3c/0x60
[ 1592.860078][T24605]  ? netlink_getsockopt+0xa60/0xa60
[ 1592.865313][T24605]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1592.870782][T24605]  ? security_socket_sendmsg+0x9d/0xb0
22:51:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1592.876256][T24605]  ? netlink_getsockopt+0xa60/0xa60
[ 1592.881478][T24605]  ____sys_sendmsg+0x5b9/0x910
[ 1592.886279][T24605]  ? __sys_sendmsg_sock+0x30/0x30
[ 1592.891432][T24605]  __sys_sendmsg+0x280/0x370
[ 1592.896132][T24605]  ? ____sys_sendmsg+0x910/0x910
[ 1592.901108][T24605]  ? __context_tracking_exit+0x7a/0xd0
[ 1592.906598][T24605]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1592.912595][T24605]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1592.918686][T24605]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1592.924683][T24605]  ? lockdep_hardirqs_on+0x95/0x140
22:51:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1592.930328][T24605]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1592.936328][T24605]  do_syscall_64+0x44/0xd0
[ 1592.940767][T24605]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1592.946676][T24605] RIP: 0033:0x7fda9f984e99
[ 1592.951106][T24605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1592.970725][T24605] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1592.979158][T24605] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1592.987148][T24605] RDX: 000000000000006c RSI: 0000000020000000 RDI: 0000000000000003
[ 1592.995132][T24605] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1593.003116][T24605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1593.011110][T24605] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1593.019121][T24605]  </TASK>
22:51:22 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x74)

[ 1593.058107][T24607] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1593.079615][T24607] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1593.079615][T24607] !'
[ 1593.138759][T24607] CPU: 0 PID: 24607 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1593.147574][T24607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1593.157652][T24607] Call Trace:
[ 1593.160948][T24607]  <TASK>
[ 1593.163894][T24607]  dump_stack_lvl+0x201/0x2d8
[ 1593.168605][T24607]  ? show_regs_print_info+0x12/0x12
[ 1593.173813][T24607]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1593.179585][T24607]  sysfs_warn_dup+0x8c/0xa0
[ 1593.184106][T24607]  sysfs_do_create_link_sd+0xbe/0x100
[ 1593.189850][T24607]  device_add+0x9ea/0x16d0
[ 1593.194282][T24607]  ? wiphy_register+0x1b93/0x2a50
[ 1593.199347][T24607]  ? virtual_device_parent+0x50/0x50
[ 1593.204735][T24607]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1593.210747][T24607]  wiphy_register+0x1ba2/0x2a50
[ 1593.215621][T24607]  ? cfg80211_event_work+0x40/0x40
[ 1593.220741][T24607]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1593.226823][T24607]  ieee80211_register_hw+0x3063/0x3e10
[ 1593.232317][T24607]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1593.238120][T24607]  ? memset+0x1f/0x40
[ 1593.242098][T24607]  ? __hrtimer_init+0x173/0x250
[ 1593.246963][T24607]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1593.252721][T24607]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1593.257850][T24607]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1593.264190][T24607]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1593.270564][T24607]  genl_rcv_msg+0x1032/0x1480
[ 1593.275262][T24607]  ? genl_bind+0x360/0x360
[ 1593.279707][T24607]  ? __lock_acquire+0x1382/0x2b00
[ 1593.284773][T24607]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1593.290420][T24607]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1593.296786][T24607]  netlink_rcv_skb+0x200/0x470
[ 1593.301578][T24607]  ? genl_bind+0x360/0x360
[ 1593.306015][T24607]  ? netlink_ack+0xb70/0xb70
[ 1593.310626][T24607]  ? __down_read_common+0x1b0/0x450
[ 1593.315849][T24607]  ? up_read_non_owner+0x1c0/0x1c0
[ 1593.320975][T24607]  ? netlink_deliver_tap+0x130/0x880
[ 1593.326305][T24607]  genl_rcv+0x24/0x40
[ 1593.330313][T24607]  netlink_unicast+0x814/0x9f0
[ 1593.335107][T24607]  ? netlink_detachskb+0xa0/0xa0
[ 1593.340150][T24607]  ? __virt_addr_valid+0xb8/0x2d0
[ 1593.345192][T24607]  ? __phys_addr_symbol+0x2b/0x70
[ 1593.350228][T24607]  ? __check_object_size+0x2f3/0x3f0
[ 1593.355524][T24607]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1593.360633][T24607]  netlink_sendmsg+0xaea/0xe60
[ 1593.365406][T24607]  ? memcpy+0x3c/0x60
[ 1593.369402][T24607]  ? netlink_getsockopt+0xa60/0xa60
[ 1593.374612][T24607]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1593.379908][T24607]  ? security_socket_sendmsg+0x9d/0xb0
[ 1593.385552][T24607]  ? netlink_getsockopt+0xa60/0xa60
[ 1593.390744][T24607]  ____sys_sendmsg+0x5b9/0x910
[ 1593.395525][T24607]  ? __sys_sendmsg_sock+0x30/0x30
[ 1593.400562][T24607]  __sys_sendmsg+0x280/0x370
[ 1593.405172][T24607]  ? ____sys_sendmsg+0x910/0x910
[ 1593.410147][T24607]  ? __context_tracking_exit+0x7a/0xd0
[ 1593.415637][T24607]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1593.421636][T24607]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1593.427643][T24607]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1593.433639][T24607]  ? lockdep_hardirqs_on+0x95/0x140
[ 1593.438843][T24607]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1593.444830][T24607]  do_syscall_64+0x44/0xd0
[ 1593.449269][T24607]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1593.455174][T24607] RIP: 0033:0x7f3e3559fe99
[ 1593.459577][T24607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1593.479295][T24607] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1593.487726][T24607] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1593.495712][T24607] RDX: 0000000002000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1593.503677][T24607] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1593.511653][T24607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1593.519703][T24607] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1593.527692][T24607]  </TASK>
22:51:23 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x3000000)

22:51:23 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x2}, 0x20)

[ 1593.558284][T24615] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1593.576035][T24615] __nla_validate_parse: 1 callbacks suppressed
[ 1593.576051][T24615] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1593.623606][T24615] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1593.623606][T24615] !'
[ 1593.644749][T24615] CPU: 0 PID: 24615 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1593.653711][T24615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1593.663885][T24615] Call Trace:
[ 1593.667157][T24615]  <TASK>
[ 1593.670086][T24615]  dump_stack_lvl+0x201/0x2d8
[ 1593.674771][T24615]  ? show_regs_print_info+0x12/0x12
[ 1593.680003][T24615]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1593.685734][T24615]  sysfs_warn_dup+0x8c/0xa0
[ 1593.690271][T24615]  sysfs_do_create_link_sd+0xbe/0x100
[ 1593.695740][T24615]  device_add+0x9ea/0x16d0
[ 1593.700147][T24615]  ? wiphy_register+0x1b93/0x2a50
[ 1593.705258][T24615]  ? virtual_device_parent+0x50/0x50
[ 1593.710535][T24615]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1593.716520][T24615]  wiphy_register+0x1ba2/0x2a50
[ 1593.721371][T24615]  ? cfg80211_event_work+0x40/0x40
[ 1593.726479][T24615]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1593.732539][T24615]  ieee80211_register_hw+0x3063/0x3e10
[ 1593.738004][T24615]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1593.743804][T24615]  ? memset+0x1f/0x40
[ 1593.747777][T24615]  ? __hrtimer_init+0x173/0x250
[ 1593.752635][T24615]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1593.758377][T24615]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1593.763670][T24615]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1593.770003][T24615]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1593.776341][T24615]  genl_rcv_msg+0x1032/0x1480
[ 1593.781023][T24615]  ? genl_bind+0x360/0x360
[ 1593.785455][T24615]  ? __lock_acquire+0x1382/0x2b00
[ 1593.790496][T24615]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1593.796121][T24615]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1593.802465][T24615]  netlink_rcv_skb+0x200/0x470
[ 1593.807223][T24615]  ? genl_bind+0x360/0x360
[ 1593.811651][T24615]  ? netlink_ack+0xb70/0xb70
[ 1593.816229][T24615]  ? __down_read_common+0x1b0/0x450
[ 1593.821511][T24615]  ? up_read_non_owner+0x1c0/0x1c0
[ 1593.826614][T24615]  ? netlink_deliver_tap+0x130/0x880
[ 1593.831995][T24615]  genl_rcv+0x24/0x40
[ 1593.835982][T24615]  netlink_unicast+0x814/0x9f0
[ 1593.840753][T24615]  ? netlink_detachskb+0xa0/0xa0
[ 1593.845682][T24615]  ? __virt_addr_valid+0xb8/0x2d0
[ 1593.850699][T24615]  ? __phys_addr_symbol+0x2b/0x70
[ 1593.855800][T24615]  ? __check_object_size+0x2f3/0x3f0
[ 1593.861165][T24615]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1593.866271][T24615]  netlink_sendmsg+0xaea/0xe60
[ 1593.871029][T24615]  ? memcpy+0x3c/0x60
[ 1593.875011][T24615]  ? netlink_getsockopt+0xa60/0xa60
[ 1593.880208][T24615]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1593.885485][T24615]  ? security_socket_sendmsg+0x9d/0xb0
[ 1593.890937][T24615]  ? netlink_getsockopt+0xa60/0xa60
[ 1593.896128][T24615]  ____sys_sendmsg+0x5b9/0x910
[ 1593.900893][T24615]  ? __sys_sendmsg_sock+0x30/0x30
[ 1593.905927][T24615]  __sys_sendmsg+0x280/0x370
[ 1593.910516][T24615]  ? ____sys_sendmsg+0x910/0x910
[ 1593.915458][T24615]  ? __context_tracking_exit+0x7a/0xd0
[ 1593.920919][T24615]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1593.926892][T24615]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1593.932874][T24615]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1593.938842][T24615]  ? lockdep_hardirqs_on+0x95/0x140
[ 1593.944037][T24615]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1593.950148][T24615]  do_syscall_64+0x44/0xd0
[ 1593.954561][T24615]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1593.960447][T24615] RIP: 0033:0x7ffbc7e82e99
[ 1593.964855][T24615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1593.984448][T24615] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1593.992853][T24615] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1594.000815][T24615] RDX: 0000000000000600 RSI: 0000000020000000 RDI: 0000000000000003
[ 1594.008777][T24615] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1594.016737][T24615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1594.024698][T24615] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1594.032676][T24615]  </TASK>
[ 1594.042936][T24629] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1594.060955][T24629] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:51:23 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x700)

22:51:23 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x10, 0x0, 0x0)

22:51:23 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

22:51:23 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x2}, 0x20)

[ 1594.076525][T24629] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1594.076525][T24629] !'
[ 1594.086999][T24629] CPU: 0 PID: 24629 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1594.095790][T24629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1594.105861][T24629] Call Trace:
[ 1594.109155][T24629]  <TASK>
[ 1594.112100][T24629]  dump_stack_lvl+0x201/0x2d8
[ 1594.116813][T24629]  ? show_regs_print_info+0x12/0x12
22:51:23 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x2}, 0x20)

[ 1594.122034][T24629]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1594.127800][T24629]  sysfs_warn_dup+0x8c/0xa0
[ 1594.132413][T24629]  sysfs_do_create_link_sd+0xbe/0x100
[ 1594.137807][T24629]  device_add+0x9ea/0x16d0
[ 1594.142241][T24629]  ? wiphy_register+0x1b93/0x2a50
[ 1594.147300][T24629]  ? virtual_device_parent+0x50/0x50
[ 1594.152606][T24629]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1594.158621][T24629]  wiphy_register+0x1ba2/0x2a50
[ 1594.163514][T24629]  ? cfg80211_event_work+0x40/0x40
[ 1594.168660][T24629]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1594.174756][T24629]  ieee80211_register_hw+0x3063/0x3e10
[ 1594.180267][T24629]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1594.186117][T24629]  ? memset+0x1f/0x40
[ 1594.190125][T24629]  ? __hrtimer_init+0x173/0x250
[ 1594.195009][T24629]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1594.200866][T24629]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1594.206094][T24629]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1594.212470][T24629]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1594.218842][T24629]  genl_rcv_msg+0x1032/0x1480
22:51:23 executing program 3:
sendto$l2tp6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x2}, 0x20)

[ 1594.223554][T24629]  ? genl_bind+0x360/0x360
[ 1594.228003][T24629]  ? __lock_acquire+0x1382/0x2b00
[ 1594.233080][T24629]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1594.238739][T24629]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1594.245114][T24629]  netlink_rcv_skb+0x200/0x470
[ 1594.249907][T24629]  ? genl_bind+0x360/0x360
[ 1594.254352][T24629]  ? netlink_ack+0xb70/0xb70
[ 1594.258961][T24629]  ? __down_read_common+0x1b0/0x450
[ 1594.264174][T24629]  ? up_read_non_owner+0x1c0/0x1c0
[ 1594.269301][T24629]  ? netlink_deliver_tap+0x130/0x880
[ 1594.274802][T24629]  genl_rcv+0x24/0x40
[ 1594.278911][T24629]  netlink_unicast+0x814/0x9f0
[ 1594.283709][T24629]  ? netlink_detachskb+0xa0/0xa0
[ 1594.288670][T24629]  ? __virt_addr_valid+0xb8/0x2d0
[ 1594.293716][T24629]  ? __phys_addr_symbol+0x2b/0x70
[ 1594.298849][T24629]  ? __check_object_size+0x2f3/0x3f0
[ 1594.304153][T24629]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1594.309289][T24629]  netlink_sendmsg+0xaea/0xe60
[ 1594.314074][T24629]  ? memcpy+0x3c/0x60
[ 1594.318095][T24629]  ? netlink_getsockopt+0xa60/0xa60
22:51:23 executing program 3:
sendto$l2tp6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x2}, 0x20)

[ 1594.323328][T24629]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1594.328633][T24629]  ? security_socket_sendmsg+0x9d/0xb0
[ 1594.334243][T24629]  ? netlink_getsockopt+0xa60/0xa60
[ 1594.339463][T24629]  ____sys_sendmsg+0x5b9/0x910
[ 1594.344264][T24629]  ? __sys_sendmsg_sock+0x30/0x30
[ 1594.349329][T24629]  __sys_sendmsg+0x280/0x370
[ 1594.353940][T24629]  ? ____sys_sendmsg+0x910/0x910
[ 1594.358909][T24629]  ? __context_tracking_exit+0x7a/0xd0
[ 1594.364396][T24629]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1594.370397][T24629]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1594.376408][T24629]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1594.382406][T24629]  ? lockdep_hardirqs_on+0x95/0x140
[ 1594.387622][T24629]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1594.393625][T24629]  do_syscall_64+0x44/0xd0
[ 1594.398093][T24629]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1594.404000][T24629] RIP: 0033:0x7fda9f984e99
[ 1594.408431][T24629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1594.428049][T24629] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1594.436472][T24629] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1594.444442][T24629] RDX: 0000000000000074 RSI: 0000000020000000 RDI: 0000000000000003
[ 1594.452412][T24629] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1594.460376][T24629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1594.468336][T24629] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
22:51:24 executing program 3:
sendto$l2tp6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x2}, 0x20)

22:51:24 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000000)={0x0, 0x2}, 0x8)

[ 1594.476317][T24629]  </TASK>
22:51:24 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x7a)

[ 1594.531674][T24633] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1594.553355][T24633] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1594.585929][T24633] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1594.585929][T24633] !'
[ 1594.639065][T24633] CPU: 0 PID: 24633 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1594.647885][T24633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1594.657957][T24633] Call Trace:
[ 1594.661255][T24633]  <TASK>
[ 1594.664205][T24633]  dump_stack_lvl+0x201/0x2d8
[ 1594.668915][T24633]  ? show_regs_print_info+0x12/0x12
[ 1594.674137][T24633]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1594.679899][T24633]  sysfs_warn_dup+0x8c/0xa0
[ 1594.684419][T24633]  sysfs_do_create_link_sd+0xbe/0x100
[ 1594.689902][T24633]  device_add+0x9ea/0x16d0
[ 1594.694333][T24633]  ? wiphy_register+0x1b93/0x2a50
[ 1594.699393][T24633]  ? virtual_device_parent+0x50/0x50
[ 1594.704694][T24633]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1594.710701][T24633]  wiphy_register+0x1ba2/0x2a50
[ 1594.715590][T24633]  ? cfg80211_event_work+0x40/0x40
[ 1594.720731][T24633]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1594.726906][T24633]  ieee80211_register_hw+0x3063/0x3e10
[ 1594.732399][T24633]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1594.738216][T24633]  ? memset+0x1f/0x40
[ 1594.742190][T24633]  ? __hrtimer_init+0x173/0x250
[ 1594.747065][T24633]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1594.752978][T24633]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1594.758090][T24633]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1594.764420][T24633]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1594.770751][T24633]  genl_rcv_msg+0x1032/0x1480
[ 1594.775432][T24633]  ? genl_bind+0x360/0x360
[ 1594.779859][T24633]  ? __lock_acquire+0x1382/0x2b00
[ 1594.784895][T24633]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1594.790517][T24633]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1594.796851][T24633]  netlink_rcv_skb+0x200/0x470
[ 1594.801616][T24633]  ? genl_bind+0x360/0x360
[ 1594.806047][T24633]  ? netlink_ack+0xb70/0xb70
[ 1594.810636][T24633]  ? __down_read_common+0x1b0/0x450
[ 1594.815832][T24633]  ? up_read_non_owner+0x1c0/0x1c0
[ 1594.820934][T24633]  ? netlink_deliver_tap+0x130/0x880
[ 1594.826222][T24633]  genl_rcv+0x24/0x40
[ 1594.830198][T24633]  netlink_unicast+0x814/0x9f0
[ 1594.834963][T24633]  ? netlink_detachskb+0xa0/0xa0
[ 1594.839892][T24633]  ? __virt_addr_valid+0xb8/0x2d0
[ 1594.844910][T24633]  ? __phys_addr_symbol+0x2b/0x70
[ 1594.849927][T24633]  ? __check_object_size+0x2f3/0x3f0
[ 1594.855205][T24633]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1594.860312][T24633]  netlink_sendmsg+0xaea/0xe60
[ 1594.865071][T24633]  ? memcpy+0x3c/0x60
[ 1594.869401][T24633]  ? netlink_getsockopt+0xa60/0xa60
[ 1594.874611][T24633]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1594.879887][T24633]  ? security_socket_sendmsg+0x9d/0xb0
[ 1594.885341][T24633]  ? netlink_getsockopt+0xa60/0xa60
[ 1594.890530][T24633]  ____sys_sendmsg+0x5b9/0x910
[ 1594.895300][T24633]  ? __sys_sendmsg_sock+0x30/0x30
[ 1594.900332][T24633]  __sys_sendmsg+0x280/0x370
[ 1594.904914][T24633]  ? ____sys_sendmsg+0x910/0x910
[ 1594.909865][T24633]  ? __context_tracking_exit+0x7a/0xd0
[ 1594.915326][T24633]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1594.921296][T24633]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1594.927276][T24633]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1594.933243][T24633]  ? lockdep_hardirqs_on+0x95/0x140
[ 1594.938434][T24633]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1594.944406][T24633]  do_syscall_64+0x44/0xd0
[ 1594.948817][T24633]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1594.954700][T24633] RIP: 0033:0x7f3e3559fe99
[ 1594.959111][T24633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1594.978716][T24633] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1594.987122][T24633] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1594.995092][T24633] RDX: 0000000003000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1595.003056][T24633] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1595.011018][T24633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1595.018978][T24633] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1595.027041][T24633]  </TASK>
22:51:24 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4000000)

22:51:24 executing program 1:
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000007c0), 0x192540, 0x0)

[ 1595.061606][T24640] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1595.089112][T24640] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1595.131006][T24640] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1595.131006][T24640] !'
[ 1595.166846][T24640] CPU: 0 PID: 24640 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1595.175639][T24640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1595.185707][T24640] Call Trace:
[ 1595.188986][T24640]  <TASK>
[ 1595.191929][T24640]  dump_stack_lvl+0x201/0x2d8
[ 1595.196622][T24640]  ? show_regs_print_info+0x12/0x12
[ 1595.201815][T24640]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1595.207555][T24640]  sysfs_warn_dup+0x8c/0xa0
[ 1595.212052][T24640]  sysfs_do_create_link_sd+0xbe/0x100
[ 1595.217415][T24640]  device_add+0x9ea/0x16d0
[ 1595.221825][T24640]  ? wiphy_register+0x1b93/0x2a50
[ 1595.226881][T24640]  ? virtual_device_parent+0x50/0x50
[ 1595.232188][T24640]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1595.238194][T24640]  wiphy_register+0x1ba2/0x2a50
[ 1595.243064][T24640]  ? cfg80211_event_work+0x40/0x40
[ 1595.248199][T24640]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1595.254269][T24640]  ieee80211_register_hw+0x3063/0x3e10
[ 1595.259756][T24640]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1595.265576][T24640]  ? memset+0x1f/0x40
[ 1595.269555][T24640]  ? __hrtimer_init+0x173/0x250
[ 1595.274583][T24640]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1595.280322][T24640]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1595.285433][T24640]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1595.291789][T24640]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1595.298157][T24640]  genl_rcv_msg+0x1032/0x1480
[ 1595.302862][T24640]  ? genl_bind+0x360/0x360
[ 1595.307289][T24640]  ? __lock_acquire+0x1382/0x2b00
[ 1595.312333][T24640]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1595.317973][T24640]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1595.324312][T24640]  netlink_rcv_skb+0x200/0x470
[ 1595.329070][T24640]  ? genl_bind+0x360/0x360
[ 1595.333481][T24640]  ? netlink_ack+0xb70/0xb70
[ 1595.338059][T24640]  ? __down_read_common+0x1b0/0x450
[ 1595.343274][T24640]  ? up_read_non_owner+0x1c0/0x1c0
[ 1595.348377][T24640]  ? netlink_deliver_tap+0x130/0x880
[ 1595.353665][T24640]  genl_rcv+0x24/0x40
[ 1595.357643][T24640]  netlink_unicast+0x814/0x9f0
[ 1595.362413][T24640]  ? netlink_detachskb+0xa0/0xa0
[ 1595.367339][T24640]  ? __virt_addr_valid+0xb8/0x2d0
[ 1595.372354][T24640]  ? __phys_addr_symbol+0x2b/0x70
[ 1595.377366][T24640]  ? __check_object_size+0x2f3/0x3f0
[ 1595.382654][T24640]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1595.387759][T24640]  netlink_sendmsg+0xaea/0xe60
[ 1595.392514][T24640]  ? memcpy+0x3c/0x60
[ 1595.396494][T24640]  ? netlink_getsockopt+0xa60/0xa60
[ 1595.401693][T24640]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1595.406965][T24640]  ? security_socket_sendmsg+0x9d/0xb0
[ 1595.412424][T24640]  ? netlink_getsockopt+0xa60/0xa60
[ 1595.417613][T24640]  ____sys_sendmsg+0x5b9/0x910
[ 1595.422379][T24640]  ? __sys_sendmsg_sock+0x30/0x30
[ 1595.427409][T24640]  __sys_sendmsg+0x280/0x370
[ 1595.431999][T24640]  ? ____sys_sendmsg+0x910/0x910
[ 1595.436943][T24640]  ? __context_tracking_exit+0x7a/0xd0
[ 1595.442506][T24640]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1595.448479][T24640]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1595.454461][T24640]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1595.460433][T24640]  ? lockdep_hardirqs_on+0x95/0x140
[ 1595.465639][T24640]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1595.471610][T24640]  do_syscall_64+0x44/0xd0
[ 1595.476021][T24640]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1595.481905][T24640] RIP: 0033:0x7ffbc7e82e99
[ 1595.486315][T24640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1595.505909][T24640] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1595.514316][T24640] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1595.522973][T24640] RDX: 0000000000000700 RSI: 0000000020000000 RDI: 0000000000000003
[ 1595.530931][T24640] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1595.538892][T24640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1595.546854][T24640] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1595.554833][T24640]  </TASK>
22:51:25 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x801)

22:51:25 executing program 3:
socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x2}, 0x20)

22:51:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

22:51:25 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
r1 = getpgid(0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(0x0, r1, 0x1, 0xffffffffffffffff, 0x1)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='jffs2\x00', 0x1411032, 0x0)
sched_setscheduler(r0, 0x5, &(0x7f00000001c0))
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, r2)
write(r3, &(0x7f0000000000)="05", 0xe7b78)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'})
write$tun(0xffffffffffffffff, 0x0, 0x5a)

[ 1595.608306][T24753] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1595.618155][T24753] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1595.631486][T24753] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1595.631486][T24753] !'
[ 1595.688024][T24753] CPU: 0 PID: 24753 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1595.696837][T24753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1595.706901][T24753] Call Trace:
[ 1595.710183][T24753]  <TASK>
[ 1595.713109][T24753]  dump_stack_lvl+0x201/0x2d8
[ 1595.717788][T24753]  ? show_regs_print_info+0x12/0x12
[ 1595.723012][T24753]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1595.728743][T24753]  sysfs_warn_dup+0x8c/0xa0
[ 1595.733248][T24753]  sysfs_do_create_link_sd+0xbe/0x100
[ 1595.738614][T24753]  device_add+0x9ea/0x16d0
[ 1595.743018][T24753]  ? wiphy_register+0x1b93/0x2a50
[ 1595.748074][T24753]  ? virtual_device_parent+0x50/0x50
[ 1595.753352][T24753]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1595.759331][T24753]  wiphy_register+0x1ba2/0x2a50
[ 1595.764181][T24753]  ? cfg80211_event_work+0x40/0x40
[ 1595.769290][T24753]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1595.775352][T24753]  ieee80211_register_hw+0x3063/0x3e10
[ 1595.780825][T24753]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1595.786635][T24753]  ? memset+0x1f/0x40
[ 1595.790605][T24753]  ? __hrtimer_init+0x173/0x250
[ 1595.795455][T24753]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1595.801220][T24753]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1595.806327][T24753]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1595.812652][T24753]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1595.818975][T24753]  genl_rcv_msg+0x1032/0x1480
[ 1595.823651][T24753]  ? genl_bind+0x360/0x360
[ 1595.828155][T24753]  ? __lock_acquire+0x1382/0x2b00
[ 1595.833197][T24753]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1595.838823][T24753]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1595.845153][T24753]  netlink_rcv_skb+0x200/0x470
[ 1595.850255][T24753]  ? genl_bind+0x360/0x360
[ 1595.854668][T24753]  ? netlink_ack+0xb70/0xb70
[ 1595.859245][T24753]  ? __down_read_common+0x1b0/0x450
[ 1595.864443][T24753]  ? up_read_non_owner+0x1c0/0x1c0
[ 1595.869540][T24753]  ? netlink_deliver_tap+0x130/0x880
[ 1595.874831][T24753]  genl_rcv+0x24/0x40
[ 1595.878802][T24753]  netlink_unicast+0x814/0x9f0
[ 1595.883570][T24753]  ? netlink_detachskb+0xa0/0xa0
[ 1595.888504][T24753]  ? __virt_addr_valid+0xb8/0x2d0
[ 1595.893608][T24753]  ? __phys_addr_symbol+0x2b/0x70
[ 1595.898623][T24753]  ? __check_object_size+0x2f3/0x3f0
[ 1595.903900][T24753]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1595.909001][T24753]  netlink_sendmsg+0xaea/0xe60
[ 1595.913755][T24753]  ? memcpy+0x3c/0x60
[ 1595.917736][T24753]  ? netlink_getsockopt+0xa60/0xa60
[ 1595.922934][T24753]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1595.928216][T24753]  ? security_socket_sendmsg+0x9d/0xb0
[ 1595.933668][T24753]  ? netlink_getsockopt+0xa60/0xa60
[ 1595.938860][T24753]  ____sys_sendmsg+0x5b9/0x910
[ 1595.943630][T24753]  ? __sys_sendmsg_sock+0x30/0x30
[ 1595.948660][T24753]  __sys_sendmsg+0x280/0x370
[ 1595.953246][T24753]  ? ____sys_sendmsg+0x910/0x910
[ 1595.958184][T24753]  ? __context_tracking_exit+0x7a/0xd0
[ 1595.963643][T24753]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1595.969611][T24753]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1595.975588][T24753]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1595.981554][T24753]  ? lockdep_hardirqs_on+0x95/0x140
[ 1595.986740][T24753]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1595.992709][T24753]  do_syscall_64+0x44/0xd0
[ 1595.997117][T24753]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1596.003007][T24753] RIP: 0033:0x7fda9f984e99
[ 1596.007417][T24753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1596.027016][T24753] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
22:51:25 executing program 3:
socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x2}, 0x20)

[ 1596.035495][T24753] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1596.043464][T24753] RDX: 000000000000007a RSI: 0000000020000000 RDI: 0000000000000003
[ 1596.051421][T24753] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1596.059378][T24753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1596.068118][T24753] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1596.076109][T24753]  </TASK>
22:51:25 executing program 3:
socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x2}, 0x20)

22:51:25 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x900)

[ 1596.173551][T24757] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
22:51:25 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x108)

22:51:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1596.216550][T24757] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1596.271507][T24757] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1596.271507][T24757] !'
[ 1596.298763][T24757] CPU: 0 PID: 24757 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1596.307579][T24757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1596.317850][T24757] Call Trace:
[ 1596.321152][T24757]  <TASK>
[ 1596.324178][T24757]  dump_stack_lvl+0x201/0x2d8
[ 1596.328877][T24757]  ? show_regs_print_info+0x12/0x12
[ 1596.334092][T24757]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1596.339838][T24757]  sysfs_warn_dup+0x8c/0xa0
[ 1596.344367][T24757]  sysfs_do_create_link_sd+0xbe/0x100
[ 1596.349740][T24757]  device_add+0x9ea/0x16d0
[ 1596.354159][T24757]  ? wiphy_register+0x1b93/0x2a50
[ 1596.359192][T24757]  ? virtual_device_parent+0x50/0x50
[ 1596.364471][T24757]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1596.370454][T24757]  wiphy_register+0x1ba2/0x2a50
[ 1596.375334][T24757]  ? cfg80211_event_work+0x40/0x40
[ 1596.380447][T24757]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1596.386520][T24757]  ieee80211_register_hw+0x3063/0x3e10
[ 1596.392001][T24757]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1596.397831][T24757]  ? memset+0x1f/0x40
[ 1596.401805][T24757]  ? __hrtimer_init+0x173/0x250
[ 1596.406659][T24757]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1596.412399][T24757]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1596.417517][T24757]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1596.423849][T24757]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1596.430186][T24757]  genl_rcv_msg+0x1032/0x1480
[ 1596.434887][T24757]  ? genl_bind+0x360/0x360
[ 1596.439306][T24757]  ? __lock_acquire+0x1382/0x2b00
[ 1596.444435][T24757]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1596.450062][T24757]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1596.456400][T24757]  netlink_rcv_skb+0x200/0x470
[ 1596.461163][T24757]  ? genl_bind+0x360/0x360
[ 1596.465577][T24757]  ? netlink_ack+0xb70/0xb70
[ 1596.470156][T24757]  ? __down_read_common+0x1b0/0x450
[ 1596.475441][T24757]  ? up_read_non_owner+0x1c0/0x1c0
[ 1596.480540][T24757]  ? netlink_deliver_tap+0x130/0x880
[ 1596.485829][T24757]  genl_rcv+0x24/0x40
[ 1596.489803][T24757]  netlink_unicast+0x814/0x9f0
[ 1596.494568][T24757]  ? netlink_detachskb+0xa0/0xa0
[ 1596.499497][T24757]  ? __virt_addr_valid+0xb8/0x2d0
[ 1596.504516][T24757]  ? __phys_addr_symbol+0x2b/0x70
[ 1596.509531][T24757]  ? __check_object_size+0x2f3/0x3f0
[ 1596.514806][T24757]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1596.519912][T24757]  netlink_sendmsg+0xaea/0xe60
[ 1596.524666][T24757]  ? memcpy+0x3c/0x60
[ 1596.528648][T24757]  ? netlink_getsockopt+0xa60/0xa60
[ 1596.533843][T24757]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1596.539119][T24757]  ? security_socket_sendmsg+0x9d/0xb0
[ 1596.544568][T24757]  ? netlink_getsockopt+0xa60/0xa60
[ 1596.549762][T24757]  ____sys_sendmsg+0x5b9/0x910
[ 1596.554529][T24757]  ? __sys_sendmsg_sock+0x30/0x30
[ 1596.559564][T24757]  __sys_sendmsg+0x280/0x370
[ 1596.564148][T24757]  ? ____sys_sendmsg+0x910/0x910
[ 1596.569090][T24757]  ? __context_tracking_exit+0x7a/0xd0
[ 1596.574571][T24757]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1596.580553][T24757]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1596.589920][T24757]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1596.595892][T24757]  ? lockdep_hardirqs_on+0x95/0x140
[ 1596.601080][T24757]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1596.607052][T24757]  do_syscall_64+0x44/0xd0
[ 1596.611463][T24757]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1596.617346][T24757] RIP: 0033:0x7f3e3559fe99
[ 1596.621752][T24757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1596.641346][T24757] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1596.649752][T24757] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1596.657724][T24757] RDX: 0000000004000000 RSI: 0000000020000000 RDI: 0000000000000003
22:51:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1596.665699][T24757] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1596.673678][T24757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1596.681652][T24757] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1596.689638][T24757]  </TASK>
22:51:26 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x40e0000)

22:51:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

22:51:26 executing program 1:
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000600), 0x141, 0x0)

22:51:26 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1596.949407][T24775] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1596.958666][T24775] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1596.970857][T24775] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1596.970857][T24775] !'
22:51:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

22:51:26 executing program 1:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x20)

[ 1597.024933][T24775] CPU: 0 PID: 24775 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1597.033746][T24775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1597.043820][T24775] Call Trace:
[ 1597.047117][T24775]  <TASK>
[ 1597.050059][T24775]  dump_stack_lvl+0x201/0x2d8
[ 1597.054766][T24775]  ? show_regs_print_info+0x12/0x12
[ 1597.060082][T24775]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1597.065848][T24775]  sysfs_warn_dup+0x8c/0xa0
22:51:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x20)

[ 1597.070380][T24775]  sysfs_do_create_link_sd+0xbe/0x100
[ 1597.075776][T24775]  device_add+0x9ea/0x16d0
[ 1597.080215][T24775]  ? wiphy_register+0x1b93/0x2a50
[ 1597.085276][T24775]  ? virtual_device_parent+0x50/0x50
[ 1597.090580][T24775]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1597.096594][T24775]  wiphy_register+0x1ba2/0x2a50
[ 1597.101481][T24775]  ? cfg80211_event_work+0x40/0x40
[ 1597.106627][T24775]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1597.112725][T24775]  ieee80211_register_hw+0x3063/0x3e10
[ 1597.118233][T24775]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1597.124076][T24775]  ? memset+0x1f/0x40
[ 1597.128076][T24775]  ? __hrtimer_init+0x173/0x250
[ 1597.132956][T24775]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1597.138729][T24775]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1597.143869][T24775]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1597.150222][T24775]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1597.156576][T24775]  genl_rcv_msg+0x1032/0x1480
[ 1597.161287][T24775]  ? genl_bind+0x360/0x360
[ 1597.165738][T24775]  ? __lock_acquire+0x1382/0x2b00
[ 1597.170813][T24775]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1597.176465][T24775]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1597.182840][T24775]  netlink_rcv_skb+0x200/0x470
[ 1597.187638][T24775]  ? genl_bind+0x360/0x360
[ 1597.192083][T24775]  ? netlink_ack+0xb70/0xb70
[ 1597.196784][T24775]  ? __down_read_common+0x1b0/0x450
[ 1597.202003][T24775]  ? up_read_non_owner+0x1c0/0x1c0
[ 1597.207213][T24775]  ? netlink_deliver_tap+0x130/0x880
[ 1597.212533][T24775]  genl_rcv+0x24/0x40
[ 1597.216537][T24775]  netlink_unicast+0x814/0x9f0
[ 1597.221336][T24775]  ? netlink_detachskb+0xa0/0xa0
[ 1597.226295][T24775]  ? __virt_addr_valid+0xb8/0x2d0
[ 1597.231336][T24775]  ? __phys_addr_symbol+0x2b/0x70
[ 1597.236384][T24775]  ? __check_object_size+0x2f3/0x3f0
[ 1597.241688][T24775]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1597.246819][T24775]  netlink_sendmsg+0xaea/0xe60
[ 1597.251599][T24775]  ? memcpy+0x3c/0x60
[ 1597.255607][T24775]  ? netlink_getsockopt+0xa60/0xa60
[ 1597.260831][T24775]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1597.266108][T24775]  ? security_socket_sendmsg+0x9d/0xb0
[ 1597.271579][T24775]  ? netlink_getsockopt+0xa60/0xa60
[ 1597.276875][T24775]  ____sys_sendmsg+0x5b9/0x910
[ 1597.281680][T24775]  ? __sys_sendmsg_sock+0x30/0x30
[ 1597.286720][T24775]  __sys_sendmsg+0x280/0x370
[ 1597.291328][T24775]  ? ____sys_sendmsg+0x910/0x910
[ 1597.296282][T24775]  ? __context_tracking_exit+0x7a/0xd0
[ 1597.301754][T24775]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1597.307747][T24775]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1597.313937][T24775]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1597.319912][T24775]  ? lockdep_hardirqs_on+0x95/0x140
[ 1597.325116][T24775]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1597.331174][T24775]  do_syscall_64+0x44/0xd0
[ 1597.335592][T24775]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1597.341597][T24775] RIP: 0033:0x7ffbc7e82e99
[ 1597.346007][T24775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1597.365697][T24775] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
22:51:26 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1597.374115][T24775] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1597.382104][T24775] RDX: 0000000000000900 RSI: 0000000020000000 RDI: 0000000000000003
[ 1597.390081][T24775] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1597.398164][T24775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1597.406154][T24775] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1597.414164][T24775]  </TASK>
22:51:27 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xa00)

[ 1597.484930][T24877] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1597.503261][T24877] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1597.552532][T24877] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1597.552532][T24877] !'
[ 1597.563740][T24877] CPU: 0 PID: 24877 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1597.572536][T24877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1597.582606][T24877] Call Trace:
[ 1597.585899][T24877]  <TASK>
[ 1597.588841][T24877]  dump_stack_lvl+0x201/0x2d8
[ 1597.593552][T24877]  ? show_regs_print_info+0x12/0x12
[ 1597.598777][T24877]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1597.604520][T24877]  sysfs_warn_dup+0x8c/0xa0
[ 1597.609140][T24877]  sysfs_do_create_link_sd+0xbe/0x100
[ 1597.614540][T24877]  device_add+0x9ea/0x16d0
[ 1597.618969][T24877]  ? wiphy_register+0x1b93/0x2a50
[ 1597.624100][T24877]  ? virtual_device_parent+0x50/0x50
[ 1597.629406][T24877]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1597.635419][T24877]  wiphy_register+0x1ba2/0x2a50
[ 1597.640305][T24877]  ? cfg80211_event_work+0x40/0x40
[ 1597.645449][T24877]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1597.651541][T24877]  ieee80211_register_hw+0x3063/0x3e10
[ 1597.657046][T24877]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1597.663050][T24877]  ? memset+0x1f/0x40
[ 1597.667138][T24877]  ? __hrtimer_init+0x173/0x250
[ 1597.672019][T24877]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1597.677790][T24877]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1597.682932][T24877]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1597.689289][T24877]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1597.695638][T24877]  genl_rcv_msg+0x1032/0x1480
[ 1597.700460][T24877]  ? genl_bind+0x360/0x360
[ 1597.704912][T24877]  ? __lock_acquire+0x1382/0x2b00
[ 1597.709985][T24877]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1597.715635][T24877]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1597.721997][T24877]  netlink_rcv_skb+0x200/0x470
[ 1597.726777][T24877]  ? genl_bind+0x360/0x360
[ 1597.731303][T24877]  ? netlink_ack+0xb70/0xb70
[ 1597.735910][T24877]  ? __down_read_common+0x1b0/0x450
[ 1597.741128][T24877]  ? up_read_non_owner+0x1c0/0x1c0
[ 1597.746247][T24877]  ? netlink_deliver_tap+0x130/0x880
[ 1597.751543][T24877]  genl_rcv+0x24/0x40
[ 1597.755704][T24877]  netlink_unicast+0x814/0x9f0
[ 1597.760487][T24877]  ? netlink_detachskb+0xa0/0xa0
[ 1597.765440][T24877]  ? __virt_addr_valid+0xb8/0x2d0
[ 1597.770482][T24877]  ? __phys_addr_symbol+0x2b/0x70
[ 1597.775525][T24877]  ? __check_object_size+0x2f3/0x3f0
[ 1597.780816][T24877]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1597.785949][T24877]  netlink_sendmsg+0xaea/0xe60
[ 1597.790719][T24877]  ? memcpy+0x3c/0x60
[ 1597.794743][T24877]  ? netlink_getsockopt+0xa60/0xa60
[ 1597.799969][T24877]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1597.805263][T24877]  ? security_socket_sendmsg+0x9d/0xb0
[ 1597.810719][T24877]  ? netlink_getsockopt+0xa60/0xa60
[ 1597.815935][T24877]  ____sys_sendmsg+0x5b9/0x910
[ 1597.820735][T24877]  ? __sys_sendmsg_sock+0x30/0x30
[ 1597.825890][T24877]  __sys_sendmsg+0x280/0x370
[ 1597.830506][T24877]  ? ____sys_sendmsg+0x910/0x910
[ 1597.835480][T24877]  ? __context_tracking_exit+0x7a/0xd0
[ 1597.840956][T24877]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1597.846928][T24877]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1597.852920][T24877]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1597.858920][T24877]  ? lockdep_hardirqs_on+0x95/0x140
[ 1597.864210][T24877]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1597.870279][T24877]  do_syscall_64+0x44/0xd0
[ 1597.874715][T24877]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1597.880707][T24877] RIP: 0033:0x7fda9f984e99
[ 1597.885118][T24877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1597.904717][T24877] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1597.913150][T24877] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1597.921122][T24877] RDX: 0000000000000108 RSI: 0000000020000000 RDI: 0000000000000003
[ 1597.929139][T24877] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1597.937125][T24877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1597.945112][T24877] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1597.953108][T24877]  </TASK>
22:51:27 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x300)

22:51:27 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
getpid()
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000280)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
readv(r0, &(0x7f0000000100)=[{&(0x7f0000000380)=""/163, 0xa3}], 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000180)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)

22:51:27 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x84, 0x84, 0x0, 0x0)

[ 1597.981407][T24885] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1598.000613][T24885] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1598.057834][T24885] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1598.057834][T24885] !'
[ 1598.069214][T24885] CPU: 1 PID: 24885 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1598.078014][T24885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1598.088086][T24885] Call Trace:
[ 1598.091382][T24885]  <TASK>
[ 1598.094316][T24885]  dump_stack_lvl+0x201/0x2d8
[ 1598.099012][T24885]  ? show_regs_print_info+0x12/0x12
[ 1598.104226][T24885]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1598.109955][T24885]  sysfs_warn_dup+0x8c/0xa0
[ 1598.114458][T24885]  sysfs_do_create_link_sd+0xbe/0x100
[ 1598.119824][T24885]  device_add+0x9ea/0x16d0
[ 1598.124232][T24885]  ? wiphy_register+0x1b93/0x2a50
[ 1598.129267][T24885]  ? virtual_device_parent+0x50/0x50
[ 1598.134561][T24885]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1598.140545][T24885]  wiphy_register+0x1ba2/0x2a50
[ 1598.145419][T24885]  ? cfg80211_event_work+0x40/0x40
[ 1598.150531][T24885]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1598.156594][T24885]  ieee80211_register_hw+0x3063/0x3e10
[ 1598.162055][T24885]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1598.167860][T24885]  ? memset+0x1f/0x40
[ 1598.171856][T24885]  ? __hrtimer_init+0x173/0x250
[ 1598.176693][T24885]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1598.182498][T24885]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1598.187684][T24885]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1598.194003][T24885]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1598.200408][T24885]  genl_rcv_msg+0x1032/0x1480
[ 1598.205083][T24885]  ? genl_bind+0x360/0x360
[ 1598.209484][T24885]  ? __lock_acquire+0x1382/0x2b00
[ 1598.214506][T24885]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1598.220129][T24885]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1598.226449][T24885]  netlink_rcv_skb+0x200/0x470
[ 1598.231201][T24885]  ? genl_bind+0x360/0x360
[ 1598.235611][T24885]  ? netlink_ack+0xb70/0xb70
[ 1598.240270][T24885]  ? __down_read_common+0x1b0/0x450
[ 1598.245457][T24885]  ? up_read_non_owner+0x1c0/0x1c0
[ 1598.250553][T24885]  ? netlink_deliver_tap+0x130/0x880
[ 1598.255830][T24885]  genl_rcv+0x24/0x40
[ 1598.259797][T24885]  netlink_unicast+0x814/0x9f0
[ 1598.264557][T24885]  ? netlink_detachskb+0xa0/0xa0
[ 1598.269478][T24885]  ? __virt_addr_valid+0xb8/0x2d0
[ 1598.274592][T24885]  ? __phys_addr_symbol+0x2b/0x70
[ 1598.279597][T24885]  ? __check_object_size+0x2f3/0x3f0
[ 1598.284879][T24885]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1598.289973][T24885]  netlink_sendmsg+0xaea/0xe60
[ 1598.294903][T24885]  ? memcpy+0x3c/0x60
[ 1598.298907][T24885]  ? netlink_getsockopt+0xa60/0xa60
[ 1598.304148][T24885]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1598.309432][T24885]  ? security_socket_sendmsg+0x9d/0xb0
[ 1598.314890][T24885]  ? netlink_getsockopt+0xa60/0xa60
[ 1598.320075][T24885]  ____sys_sendmsg+0x5b9/0x910
[ 1598.324834][T24885]  ? __sys_sendmsg_sock+0x30/0x30
[ 1598.329864][T24885]  __sys_sendmsg+0x280/0x370
[ 1598.334464][T24885]  ? ____sys_sendmsg+0x910/0x910
[ 1598.339402][T24885]  ? __context_tracking_exit+0x7a/0xd0
[ 1598.344855][T24885]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1598.350818][T24885]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1598.356789][T24885]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1598.362790][T24885]  ? lockdep_hardirqs_on+0x95/0x140
[ 1598.367975][T24885]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1598.373944][T24885]  do_syscall_64+0x44/0xd0
[ 1598.378347][T24885]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1598.384310][T24885] RIP: 0033:0x7f3e3559fe99
[ 1598.388708][T24885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1598.408295][T24885] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1598.416690][T24885] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1598.424643][T24885] RDX: 00000000040e0000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1598.432605][T24885] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1598.440590][T24885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1598.448545][T24885] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1598.456510][T24885]  </TASK>
22:51:28 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4480000)

22:51:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)

22:51:28 executing program 1:
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000000c0), 0xfffffffffffffed7)

[ 1598.490142][T24995] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1598.503907][T24995] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1598.530266][T24995] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1598.530266][T24995] !'
[ 1598.597225][T24995] CPU: 1 PID: 24995 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1598.606048][T24995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1598.616211][T24995] Call Trace:
[ 1598.619501][T24995]  <TASK>
[ 1598.622444][T24995]  dump_stack_lvl+0x201/0x2d8
[ 1598.627151][T24995]  ? show_regs_print_info+0x12/0x12
[ 1598.632376][T24995]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1598.638136][T24995]  sysfs_warn_dup+0x8c/0xa0
22:51:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)

22:51:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1598.642663][T24995]  sysfs_do_create_link_sd+0xbe/0x100
[ 1598.648061][T24995]  device_add+0x9ea/0x16d0
[ 1598.652493][T24995]  ? wiphy_register+0x1b93/0x2a50
[ 1598.657552][T24995]  ? virtual_device_parent+0x50/0x50
[ 1598.662860][T24995]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1598.668876][T24995]  wiphy_register+0x1ba2/0x2a50
[ 1598.673767][T24995]  ? cfg80211_event_work+0x40/0x40
[ 1598.678924][T24995]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1598.685110][T24995]  ieee80211_register_hw+0x3063/0x3e10
[ 1598.690612][T24995]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
22:51:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, 0x0, 0xffffff78)

[ 1598.696442][T24995]  ? memset+0x1f/0x40
[ 1598.700433][T24995]  ? __hrtimer_init+0x173/0x250
[ 1598.705305][T24995]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1598.711080][T24995]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1598.716222][T24995]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1598.722585][T24995]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1598.728944][T24995]  genl_rcv_msg+0x1032/0x1480
[ 1598.733657][T24995]  ? genl_bind+0x360/0x360
[ 1598.738106][T24995]  ? __lock_acquire+0x1382/0x2b00
[ 1598.743181][T24995]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1598.748833][T24995]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1598.755206][T24995]  netlink_rcv_skb+0x200/0x470
[ 1598.760000][T24995]  ? genl_bind+0x360/0x360
[ 1598.764444][T24995]  ? netlink_ack+0xb70/0xb70
[ 1598.769051][T24995]  ? __down_read_common+0x1b0/0x450
[ 1598.774271][T24995]  ? up_read_non_owner+0x1c0/0x1c0
[ 1598.779394][T24995]  ? netlink_deliver_tap+0x130/0x880
[ 1598.784724][T24995]  genl_rcv+0x24/0x40
[ 1598.788725][T24995]  netlink_unicast+0x814/0x9f0
22:51:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, 0x0, 0xffffff78)

[ 1598.793521][T24995]  ? netlink_detachskb+0xa0/0xa0
[ 1598.798467][T24995]  ? __virt_addr_valid+0xb8/0x2d0
[ 1598.803500][T24995]  ? __phys_addr_symbol+0x2b/0x70
[ 1598.808536][T24995]  ? __check_object_size+0x2f3/0x3f0
[ 1598.813838][T24995]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1598.818970][T24995]  netlink_sendmsg+0xaea/0xe60
[ 1598.823751][T24995]  ? memcpy+0x3c/0x60
[ 1598.827770][T24995]  ? netlink_getsockopt+0xa60/0xa60
[ 1598.833008][T24995]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1598.838313][T24995]  ? security_socket_sendmsg+0x9d/0xb0
[ 1598.843791][T24995]  ? netlink_getsockopt+0xa60/0xa60
[ 1598.849007][T24995]  ____sys_sendmsg+0x5b9/0x910
[ 1598.853797][T24995]  ? __sys_sendmsg_sock+0x30/0x30
[ 1598.858858][T24995]  __sys_sendmsg+0x280/0x370
[ 1598.863471][T24995]  ? ____sys_sendmsg+0x910/0x910
[ 1598.868448][T24995]  ? __context_tracking_exit+0x7a/0xd0
[ 1598.873943][T24995]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1598.879943][T24995]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1598.885955][T24995]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1598.891956][T24995]  ? lockdep_hardirqs_on+0x95/0x140
[ 1598.897171][T24995]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1598.903166][T24995]  do_syscall_64+0x44/0xd0
[ 1598.907605][T24995]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1598.913508][T24995] RIP: 0033:0x7ffbc7e82e99
[ 1598.917936][T24995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1598.937638][T24995] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1598.946063][T24995] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1598.954044][T24995] RDX: 0000000000000a00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1598.962026][T24995] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1598.970015][T24995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1598.977997][T24995] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1598.986086][T24995]  </TASK>
22:51:28 executing program 1:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$sock_ifreq(r0, 0x89a2, &(0x7f0000000000)={'rose0\x00', @ifru_addrs=@can})

22:51:28 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xb00)

[ 1599.042195][T25001] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1599.069152][T25001] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1599.104731][T25001] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1599.104731][T25001] !'
[ 1599.150587][T25001] CPU: 0 PID: 25001 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1599.159406][T25001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1599.169479][T25001] Call Trace:
[ 1599.172773][T25001]  <TASK>
[ 1599.175718][T25001]  dump_stack_lvl+0x201/0x2d8
[ 1599.180420][T25001]  ? show_regs_print_info+0x12/0x12
[ 1599.185647][T25001]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1599.191390][T25001]  sysfs_warn_dup+0x8c/0xa0
[ 1599.195998][T25001]  sysfs_do_create_link_sd+0xbe/0x100
[ 1599.201475][T25001]  device_add+0x9ea/0x16d0
[ 1599.206163][T25001]  ? wiphy_register+0x1b93/0x2a50
[ 1599.211219][T25001]  ? virtual_device_parent+0x50/0x50
[ 1599.216512][T25001]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1599.222487][T25001]  wiphy_register+0x1ba2/0x2a50
[ 1599.227339][T25001]  ? cfg80211_event_work+0x40/0x40
[ 1599.232449][T25001]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1599.238519][T25001]  ieee80211_register_hw+0x3063/0x3e10
[ 1599.243993][T25001]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1599.249804][T25001]  ? memset+0x1f/0x40
[ 1599.253775][T25001]  ? __hrtimer_init+0x173/0x250
[ 1599.258626][T25001]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1599.264498][T25001]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1599.269626][T25001]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1599.275967][T25001]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1599.282320][T25001]  genl_rcv_msg+0x1032/0x1480
[ 1599.287010][T25001]  ? genl_bind+0x360/0x360
[ 1599.291426][T25001]  ? __lock_acquire+0x1382/0x2b00
[ 1599.296466][T25001]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1599.302088][T25001]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1599.308427][T25001]  netlink_rcv_skb+0x200/0x470
[ 1599.313188][T25001]  ? genl_bind+0x360/0x360
[ 1599.317604][T25001]  ? netlink_ack+0xb70/0xb70
[ 1599.322185][T25001]  ? __down_read_common+0x1b0/0x450
[ 1599.327391][T25001]  ? up_read_non_owner+0x1c0/0x1c0
[ 1599.332499][T25001]  ? netlink_deliver_tap+0x130/0x880
[ 1599.337788][T25001]  genl_rcv+0x24/0x40
[ 1599.341767][T25001]  netlink_unicast+0x814/0x9f0
[ 1599.346538][T25001]  ? netlink_detachskb+0xa0/0xa0
[ 1599.351474][T25001]  ? __virt_addr_valid+0xb8/0x2d0
[ 1599.356497][T25001]  ? __phys_addr_symbol+0x2b/0x70
[ 1599.361513][T25001]  ? __check_object_size+0x2f3/0x3f0
[ 1599.366792][T25001]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1599.371895][T25001]  netlink_sendmsg+0xaea/0xe60
[ 1599.376648][T25001]  ? memcpy+0x3c/0x60
[ 1599.380629][T25001]  ? netlink_getsockopt+0xa60/0xa60
[ 1599.385826][T25001]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1599.391096][T25001]  ? security_socket_sendmsg+0x9d/0xb0
[ 1599.396551][T25001]  ? netlink_getsockopt+0xa60/0xa60
[ 1599.401741][T25001]  ____sys_sendmsg+0x5b9/0x910
[ 1599.406507][T25001]  ? __sys_sendmsg_sock+0x30/0x30
[ 1599.411538][T25001]  __sys_sendmsg+0x280/0x370
[ 1599.416121][T25001]  ? ____sys_sendmsg+0x910/0x910
[ 1599.421062][T25001]  ? __context_tracking_exit+0x7a/0xd0
[ 1599.426522][T25001]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1599.432493][T25001]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1599.438473][T25001]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1599.444448][T25001]  ? lockdep_hardirqs_on+0x95/0x140
[ 1599.449632][T25001]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1599.455621][T25001]  do_syscall_64+0x44/0xd0
[ 1599.460079][T25001]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1599.465981][T25001] RIP: 0033:0x7fda9f984e99
[ 1599.470405][T25001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1599.490016][T25001] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1599.498434][T25001] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1599.506397][T25001] RDX: 0000000000000300 RSI: 0000000020000000 RDI: 0000000000000003
[ 1599.514360][T25001] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1599.522322][T25001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1599.530280][T25001] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1599.538259][T25001]  </TASK>
22:51:29 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, 0x0, 0xffffff78)

22:51:29 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x3e7)

22:51:29 executing program 3:
openat$vcs(0xffffffffffffff9c, &(0x7f0000001b80), 0x115440, 0x0)

[ 1599.585167][T25091] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1599.604081][T25091] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1599.696322][T25091] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1599.696322][T25091] !'
[ 1599.745274][T25091] CPU: 0 PID: 25091 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1599.754164][T25091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1599.764220][T25091] Call Trace:
[ 1599.767515][T25091]  <TASK>
[ 1599.770456][T25091]  dump_stack_lvl+0x201/0x2d8
[ 1599.775166][T25091]  ? show_regs_print_info+0x12/0x12
[ 1599.780383][T25091]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1599.786103][T25091]  sysfs_warn_dup+0x8c/0xa0
[ 1599.790602][T25091]  sysfs_do_create_link_sd+0xbe/0x100
[ 1599.795974][T25091]  device_add+0x9ea/0x16d0
[ 1599.800381][T25091]  ? wiphy_register+0x1b93/0x2a50
[ 1599.805409][T25091]  ? virtual_device_parent+0x50/0x50
[ 1599.810686][T25091]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1599.816668][T25091]  wiphy_register+0x1ba2/0x2a50
[ 1599.821522][T25091]  ? cfg80211_event_work+0x40/0x40
[ 1599.826638][T25091]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1599.832719][T25091]  ieee80211_register_hw+0x3063/0x3e10
[ 1599.838191][T25091]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1599.844087][T25091]  ? memset+0x1f/0x40
[ 1599.848062][T25091]  ? __hrtimer_init+0x173/0x250
[ 1599.852914][T25091]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1599.858648][T25091]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1599.863753][T25091]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1599.870082][T25091]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1599.876417][T25091]  genl_rcv_msg+0x1032/0x1480
[ 1599.881095][T25091]  ? genl_bind+0x360/0x360
[ 1599.885509][T25091]  ? __lock_acquire+0x1382/0x2b00
[ 1599.890542][T25091]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1599.896165][T25091]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1599.902502][T25091]  netlink_rcv_skb+0x200/0x470
[ 1599.907262][T25091]  ? genl_bind+0x360/0x360
[ 1599.911695][T25091]  ? netlink_ack+0xb70/0xb70
[ 1599.916284][T25091]  ? __down_read_common+0x1b0/0x450
[ 1599.921568][T25091]  ? up_read_non_owner+0x1c0/0x1c0
[ 1599.926666][T25091]  ? netlink_deliver_tap+0x130/0x880
[ 1599.931952][T25091]  genl_rcv+0x24/0x40
[ 1599.935927][T25091]  netlink_unicast+0x814/0x9f0
[ 1599.940694][T25091]  ? netlink_detachskb+0xa0/0xa0
[ 1599.945619][T25091]  ? __virt_addr_valid+0xb8/0x2d0
[ 1599.950633][T25091]  ? __phys_addr_symbol+0x2b/0x70
[ 1599.955649][T25091]  ? __check_object_size+0x2f3/0x3f0
[ 1599.960923][T25091]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1599.966028][T25091]  netlink_sendmsg+0xaea/0xe60
[ 1599.970781][T25091]  ? memcpy+0x3c/0x60
[ 1599.974761][T25091]  ? netlink_getsockopt+0xa60/0xa60
[ 1599.979956][T25091]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1599.985228][T25091]  ? security_socket_sendmsg+0x9d/0xb0
[ 1599.990690][T25091]  ? netlink_getsockopt+0xa60/0xa60
[ 1599.995883][T25091]  ____sys_sendmsg+0x5b9/0x910
[ 1600.000645][T25091]  ? __sys_sendmsg_sock+0x30/0x30
[ 1600.005676][T25091]  __sys_sendmsg+0x280/0x370
[ 1600.010261][T25091]  ? ____sys_sendmsg+0x910/0x910
[ 1600.015204][T25091]  ? __context_tracking_exit+0x7a/0xd0
[ 1600.020664][T25091]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1600.026630][T25091]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1600.032615][T25091]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1600.038588][T25091]  ? lockdep_hardirqs_on+0x95/0x140
[ 1600.043774][T25091]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1600.049745][T25091]  do_syscall_64+0x44/0xd0
[ 1600.054157][T25091]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1600.060044][T25091] RIP: 0033:0x7f3e3559fe99
[ 1600.064450][T25091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1600.084046][T25091] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1600.092452][T25091] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1600.100412][T25091] RDX: 0000000004480000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1600.108372][T25091] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1600.116331][T25091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1600.124292][T25091] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1600.132270][T25091]  </TASK>
22:51:29 executing program 3:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000016c0), 0x2, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0x40086602, 0x0)

22:51:29 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x5000000)

22:51:29 executing program 1:
syz_open_procfs(0xffffffffffffffff, &(0x7f00000013c0)='smaps_rollup\x00')

22:51:29 executing program 5:
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setrlimit(0x7, &(0x7f0000000000))
pipe2$9p(0x0, 0x0)

22:51:29 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x448)

[ 1600.159195][T25120] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1600.167472][T25120] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
22:51:29 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="9c000000020105"], 0x9c}}, 0x0)

22:51:29 executing program 1:
socket(0x0, 0x8000e, 0x0)

22:51:29 executing program 5:
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)

[ 1600.256283][T25120] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1600.256283][T25120] !'
[ 1600.289181][T25120] CPU: 0 PID: 25120 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1600.297993][T25120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1600.308177][T25120] Call Trace:
[ 1600.311472][T25120]  <TASK>
[ 1600.314417][T25120]  dump_stack_lvl+0x201/0x2d8
[ 1600.319144][T25120]  ? show_regs_print_info+0x12/0x12
[ 1600.324374][T25120]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1600.330135][T25120]  sysfs_warn_dup+0x8c/0xa0
[ 1600.334659][T25120]  sysfs_do_create_link_sd+0xbe/0x100
[ 1600.340058][T25120]  device_add+0x9ea/0x16d0
[ 1600.344486][T25120]  ? wiphy_register+0x1b93/0x2a50
[ 1600.349540][T25120]  ? virtual_device_parent+0x50/0x50
[ 1600.354845][T25120]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1600.360861][T25120]  wiphy_register+0x1ba2/0x2a50
[ 1600.365749][T25120]  ? cfg80211_event_work+0x40/0x40
[ 1600.370896][T25120]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1600.376983][T25120]  ieee80211_register_hw+0x3063/0x3e10
[ 1600.382492][T25120]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1600.388346][T25120]  ? memset+0x1f/0x40
[ 1600.392348][T25120]  ? __hrtimer_init+0x173/0x250
[ 1600.397221][T25120]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1600.402985][T25120]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1600.408123][T25120]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1600.414482][T25120]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1600.420835][T25120]  genl_rcv_msg+0x1032/0x1480
[ 1600.425544][T25120]  ? genl_bind+0x360/0x360
[ 1600.429993][T25120]  ? __lock_acquire+0x1382/0x2b00
[ 1600.435063][T25120]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1600.440711][T25120]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1600.447074][T25120]  netlink_rcv_skb+0x200/0x470
[ 1600.451855][T25120]  ? genl_bind+0x360/0x360
[ 1600.456291][T25120]  ? netlink_ack+0xb70/0xb70
[ 1600.460891][T25120]  ? __down_read_common+0x1b0/0x450
[ 1600.466104][T25120]  ? up_read_non_owner+0x1c0/0x1c0
[ 1600.471220][T25120]  ? netlink_deliver_tap+0x130/0x880
[ 1600.476530][T25120]  genl_rcv+0x24/0x40
[ 1600.480524][T25120]  netlink_unicast+0x814/0x9f0
[ 1600.485295][T25120]  ? netlink_detachskb+0xa0/0xa0
[ 1600.490221][T25120]  ? __virt_addr_valid+0xb8/0x2d0
[ 1600.495259][T25120]  ? __phys_addr_symbol+0x2b/0x70
[ 1600.500297][T25120]  ? __check_object_size+0x2f3/0x3f0
[ 1600.505590][T25120]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1600.510726][T25120]  netlink_sendmsg+0xaea/0xe60
[ 1600.515501][T25120]  ? memcpy+0x3c/0x60
[ 1600.519516][T25120]  ? netlink_getsockopt+0xa60/0xa60
[ 1600.524735][T25120]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1600.530029][T25120]  ? security_socket_sendmsg+0x9d/0xb0
[ 1600.535501][T25120]  ? netlink_getsockopt+0xa60/0xa60
[ 1600.540715][T25120]  ____sys_sendmsg+0x5b9/0x910
[ 1600.545507][T25120]  ? __sys_sendmsg_sock+0x30/0x30
[ 1600.550556][T25120]  __sys_sendmsg+0x280/0x370
[ 1600.555161][T25120]  ? ____sys_sendmsg+0x910/0x910
[ 1600.560124][T25120]  ? __context_tracking_exit+0x7a/0xd0
[ 1600.565713][T25120]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1600.571702][T25120]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1600.577713][T25120]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1600.583705][T25120]  ? lockdep_hardirqs_on+0x95/0x140
[ 1600.588918][T25120]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1600.594912][T25120]  do_syscall_64+0x44/0xd0
[ 1600.599349][T25120]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1600.605247][T25120] RIP: 0033:0x7ffbc7e82e99
[ 1600.609666][T25120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1600.629287][T25120] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1600.637716][T25120] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1600.645698][T25120] RDX: 0000000000000b00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1600.653663][T25120] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1600.661679][T25120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1600.669663][T25120] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1600.677690][T25120]  </TASK>
[ 1600.700635][T25142] netlink: 136 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1600.725598][T25132] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
22:51:30 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xb9a)

22:51:30 executing program 5:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0x801c581f, 0x0)

22:51:30 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x84, 0x83, 0x0, 0x0)

[ 1600.745135][T25132] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:51:30 executing program 1:
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000580)=""/96, 0x60)

22:51:30 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="9c000000020105"], 0x9c}}, 0x0)

[ 1600.829469][T25132] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1600.829469][T25132] !'
[ 1600.864962][T25151] netlink: 136 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1600.903884][T25132] CPU: 0 PID: 25132 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1600.912690][T25132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1600.922747][T25132] Call Trace:
[ 1600.926019][T25132]  <TASK>
[ 1600.928941][T25132]  dump_stack_lvl+0x201/0x2d8
[ 1600.933626][T25132]  ? show_regs_print_info+0x12/0x12
[ 1600.938822][T25132]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1600.944546][T25132]  sysfs_warn_dup+0x8c/0xa0
[ 1600.949041][T25132]  sysfs_do_create_link_sd+0xbe/0x100
[ 1600.954409][T25132]  device_add+0x9ea/0x16d0
[ 1600.958814][T25132]  ? wiphy_register+0x1b93/0x2a50
[ 1600.963849][T25132]  ? virtual_device_parent+0x50/0x50
[ 1600.969123][T25132]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1600.975104][T25132]  wiphy_register+0x1ba2/0x2a50
[ 1600.979959][T25132]  ? cfg80211_event_work+0x40/0x40
[ 1600.985073][T25132]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1600.991136][T25132]  ieee80211_register_hw+0x3063/0x3e10
[ 1600.996606][T25132]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1601.002426][T25132]  ? memset+0x1f/0x40
[ 1601.006400][T25132]  ? __hrtimer_init+0x173/0x250
[ 1601.011247][T25132]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1601.016990][T25132]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1601.022100][T25132]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1601.028429][T25132]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1601.034757][T25132]  genl_rcv_msg+0x1032/0x1480
[ 1601.039434][T25132]  ? genl_bind+0x360/0x360
[ 1601.043856][T25132]  ? __lock_acquire+0x1382/0x2b00
[ 1601.048897][T25132]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1601.055230][T25132]  netlink_rcv_skb+0x200/0x470
[ 1601.059990][T25132]  ? genl_bind+0x360/0x360
[ 1601.064401][T25132]  ? netlink_ack+0xb70/0xb70
[ 1601.068979][T25132]  ? __down_read_common+0x1b0/0x450
[ 1601.074169][T25132]  ? up_read_non_owner+0x1c0/0x1c0
[ 1601.079267][T25132]  ? netlink_deliver_tap+0x130/0x880
[ 1601.084554][T25132]  genl_rcv+0x24/0x40
[ 1601.088526][T25132]  netlink_unicast+0x814/0x9f0
[ 1601.093288][T25132]  ? netlink_detachskb+0xa0/0xa0
[ 1601.098213][T25132]  ? __virt_addr_valid+0xb8/0x2d0
[ 1601.103228][T25132]  ? __phys_addr_symbol+0x2b/0x70
[ 1601.108241][T25132]  ? __check_object_size+0x2f3/0x3f0
[ 1601.113514][T25132]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1601.118633][T25132]  netlink_sendmsg+0xaea/0xe60
[ 1601.123413][T25132]  ? memcpy+0x3c/0x60
[ 1601.127416][T25132]  ? netlink_getsockopt+0xa60/0xa60
[ 1601.132626][T25132]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1601.137906][T25132]  ? security_socket_sendmsg+0x9d/0xb0
[ 1601.143360][T25132]  ? netlink_getsockopt+0xa60/0xa60
[ 1601.148550][T25132]  ____sys_sendmsg+0x5b9/0x910
[ 1601.153339][T25132]  ? __sys_sendmsg_sock+0x30/0x30
[ 1601.158394][T25132]  __sys_sendmsg+0x280/0x370
[ 1601.163002][T25132]  ? ____sys_sendmsg+0x910/0x910
[ 1601.167952][T25132]  ? __context_tracking_exit+0x7a/0xd0
[ 1601.173426][T25132]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1601.179406][T25132]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1601.185489][T25132]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1601.191462][T25132]  ? lockdep_hardirqs_on+0x95/0x140
[ 1601.196650][T25132]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1601.202626][T25132]  do_syscall_64+0x44/0xd0
[ 1601.207060][T25132]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1601.212947][T25132] RIP: 0033:0x7fda9f984e99
[ 1601.217381][T25132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1601.236973][T25132] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1601.245377][T25132] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1601.253343][T25132] RDX: 0000000000000448 RSI: 0000000020000000 RDI: 0000000000000003
[ 1601.261310][T25132] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1601.269268][T25132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1601.277227][T25132] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1601.285236][T25132]  </TASK>
[ 1601.325170][T25137] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1601.349012][T25137] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1601.380956][T25137] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1601.380956][T25137] !'
[ 1601.392169][T25137] CPU: 1 PID: 25137 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1601.400961][T25137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1601.411026][T25137] Call Trace:
[ 1601.414311][T25137]  <TASK>
[ 1601.417239][T25137]  dump_stack_lvl+0x201/0x2d8
[ 1601.421932][T25137]  ? show_regs_print_info+0x12/0x12
[ 1601.427124][T25137]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1601.432844][T25137]  sysfs_warn_dup+0x8c/0xa0
[ 1601.437339][T25137]  sysfs_do_create_link_sd+0xbe/0x100
[ 1601.442701][T25137]  device_add+0x9ea/0x16d0
[ 1601.447107][T25137]  ? wiphy_register+0x1b93/0x2a50
[ 1601.452140][T25137]  ? virtual_device_parent+0x50/0x50
[ 1601.457419][T25137]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1601.463417][T25137]  wiphy_register+0x1ba2/0x2a50
[ 1601.468283][T25137]  ? cfg80211_event_work+0x40/0x40
[ 1601.473438][T25137]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1601.479509][T25137]  ieee80211_register_hw+0x3063/0x3e10
[ 1601.485000][T25137]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1601.490808][T25137]  ? memset+0x1f/0x40
[ 1601.494791][T25137]  ? __hrtimer_init+0x173/0x250
[ 1601.499644][T25137]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1601.505390][T25137]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1601.510512][T25137]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1601.516846][T25137]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1601.523188][T25137]  genl_rcv_msg+0x1032/0x1480
[ 1601.527858][T25137]  ? genl_bind+0x360/0x360
[ 1601.532266][T25137]  ? __lock_acquire+0x1382/0x2b00
[ 1601.537302][T25137]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1601.542925][T25137]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1601.549267][T25137]  netlink_rcv_skb+0x200/0x470
[ 1601.554022][T25137]  ? genl_bind+0x360/0x360
[ 1601.558425][T25137]  ? netlink_ack+0xb70/0xb70
[ 1601.562994][T25137]  ? __down_read_common+0x1b0/0x450
[ 1601.568178][T25137]  ? up_read_non_owner+0x1c0/0x1c0
[ 1601.573271][T25137]  ? netlink_deliver_tap+0x130/0x880
[ 1601.578572][T25137]  genl_rcv+0x24/0x40
[ 1601.582555][T25137]  netlink_unicast+0x814/0x9f0
[ 1601.587349][T25137]  ? netlink_detachskb+0xa0/0xa0
[ 1601.592276][T25137]  ? __virt_addr_valid+0xb8/0x2d0
[ 1601.597298][T25137]  ? __phys_addr_symbol+0x2b/0x70
[ 1601.602328][T25137]  ? __check_object_size+0x2f3/0x3f0
[ 1601.607605][T25137]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1601.612776][T25137]  netlink_sendmsg+0xaea/0xe60
[ 1601.618059][T25137]  ? memcpy+0x3c/0x60
[ 1601.622038][T25137]  ? netlink_getsockopt+0xa60/0xa60
[ 1601.627231][T25137]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1601.634094][T25137]  ? security_socket_sendmsg+0x9d/0xb0
[ 1601.639560][T25137]  ? netlink_getsockopt+0xa60/0xa60
[ 1601.644747][T25137]  ____sys_sendmsg+0x5b9/0x910
[ 1601.649506][T25137]  ? __sys_sendmsg_sock+0x30/0x30
[ 1601.654650][T25137]  __sys_sendmsg+0x280/0x370
[ 1601.659226][T25137]  ? ____sys_sendmsg+0x910/0x910
[ 1601.664156][T25137]  ? __context_tracking_exit+0x7a/0xd0
[ 1601.669607][T25137]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1601.675570][T25137]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1601.681629][T25137]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1601.687594][T25137]  ? lockdep_hardirqs_on+0x95/0x140
[ 1601.692774][T25137]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1601.698738][T25137]  do_syscall_64+0x44/0xd0
[ 1601.703143][T25137]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1601.709121][T25137] RIP: 0033:0x7f3e3559fe99
[ 1601.713554][T25137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1601.733141][T25137] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1601.741546][T25137] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1601.749501][T25137] RDX: 0000000005000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1601.757457][T25137] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1601.765511][T25137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1601.773489][T25137] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1601.781555][T25137]  </TASK>
22:51:31 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x50e0000)

22:51:31 executing program 5:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @empty}, 0x20)

22:51:31 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r1 = getpid()
sched_getscheduler(0x0)
sched_setscheduler(r1, 0x0, &(0x7f0000000000)=0xffffffff)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x20, 0x10000}, 0x0, 0x2, 0x3, 0x0, 0xfffffffffffffff7, 0x0, 0x401, 0x0, 0x0, 0x0, 0x79df9dfe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_getscheduler(0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000280)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
readv(r0, &(0x7f0000000100)=[{&(0x7f0000000380)=""/163, 0xa3}], 0x1)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000180)=ANY=[], 0x208e24b)
execve(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)

22:51:31 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_DEL_SERVICE(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="0099"], 0xe8}}, 0x0)

22:51:31 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4a4)

[ 1601.805601][T25149] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1601.819100][T25149] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1601.869939][T25149] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1601.869939][T25149] !'
[ 1601.894139][T25149] CPU: 0 PID: 25149 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1601.902952][T25149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1601.913023][T25149] Call Trace:
[ 1601.916334][T25149]  <TASK>
[ 1601.919341][T25149]  dump_stack_lvl+0x201/0x2d8
[ 1601.924046][T25149]  ? show_regs_print_info+0x12/0x12
[ 1601.929259][T25149]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1601.934982][T25149]  sysfs_warn_dup+0x8c/0xa0
[ 1601.939500][T25149]  sysfs_do_create_link_sd+0xbe/0x100
[ 1601.944885][T25149]  device_add+0x9ea/0x16d0
[ 1601.949304][T25149]  ? wiphy_register+0x1b93/0x2a50
[ 1601.954343][T25149]  ? virtual_device_parent+0x50/0x50
[ 1601.959646][T25149]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1601.965655][T25149]  wiphy_register+0x1ba2/0x2a50
[ 1601.970526][T25149]  ? cfg80211_event_work+0x40/0x40
[ 1601.975631][T25149]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1601.981695][T25149]  ieee80211_register_hw+0x3063/0x3e10
[ 1601.987190][T25149]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1601.992996][T25149]  ? memset+0x1f/0x40
[ 1601.997048][T25149]  ? __hrtimer_init+0x173/0x250
[ 1602.001902][T25149]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1602.007675][T25149]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1602.012803][T25149]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1602.019144][T25149]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1602.025503][T25149]  genl_rcv_msg+0x1032/0x1480
[ 1602.030213][T25149]  ? genl_bind+0x360/0x360
[ 1602.034640][T25149]  ? __lock_acquire+0x1382/0x2b00
[ 1602.039691][T25149]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1602.045333][T25149]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1602.051678][T25149]  netlink_rcv_skb+0x200/0x470
[ 1602.056431][T25149]  ? genl_bind+0x360/0x360
[ 1602.060860][T25149]  ? netlink_ack+0xb70/0xb70
[ 1602.065455][T25149]  ? __down_read_common+0x1b0/0x450
[ 1602.070656][T25149]  ? up_read_non_owner+0x1c0/0x1c0
[ 1602.075763][T25149]  ? netlink_deliver_tap+0x130/0x880
[ 1602.081067][T25149]  genl_rcv+0x24/0x40
[ 1602.085062][T25149]  netlink_unicast+0x814/0x9f0
[ 1602.089849][T25149]  ? netlink_detachskb+0xa0/0xa0
[ 1602.094792][T25149]  ? __virt_addr_valid+0xb8/0x2d0
[ 1602.099827][T25149]  ? __phys_addr_symbol+0x2b/0x70
[ 1602.104860][T25149]  ? __check_object_size+0x2f3/0x3f0
[ 1602.110244][T25149]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1602.115375][T25149]  netlink_sendmsg+0xaea/0xe60
[ 1602.120136][T25149]  ? memcpy+0x3c/0x60
[ 1602.124149][T25149]  ? netlink_getsockopt+0xa60/0xa60
[ 1602.129368][T25149]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1602.134656][T25149]  ? security_socket_sendmsg+0x9d/0xb0
[ 1602.140109][T25149]  ? netlink_getsockopt+0xa60/0xa60
[ 1602.145317][T25149]  ____sys_sendmsg+0x5b9/0x910
[ 1602.150106][T25149]  ? __sys_sendmsg_sock+0x30/0x30
[ 1602.155233][T25149]  __sys_sendmsg+0x280/0x370
[ 1602.159819][T25149]  ? ____sys_sendmsg+0x910/0x910
[ 1602.164783][T25149]  ? __context_tracking_exit+0x7a/0xd0
[ 1602.170267][T25149]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1602.176259][T25149]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1602.182245][T25149]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1602.188238][T25149]  ? lockdep_hardirqs_on+0x95/0x140
[ 1602.193422][T25149]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1602.199396][T25149]  do_syscall_64+0x44/0xd0
[ 1602.203826][T25149]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1602.209727][T25149] RIP: 0033:0x7ffbc7e82e99
[ 1602.214147][T25149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1602.233735][T25149] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1602.242142][T25149] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1602.250129][T25149] RDX: 0000000000000b9a RSI: 0000000020000000 RDI: 0000000000000003
[ 1602.258103][T25149] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
22:51:31 executing program 5:
r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
openat$cgroup_type(r0, &(0x7f0000000000), 0x2, 0x0)

22:51:31 executing program 1:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_int(r0, 0x0, 0x5, &(0x7f0000000000), 0x4)

[ 1602.266066][T25149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1602.274040][T25149] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1602.282033][T25149]  </TASK>
[ 1602.301171][T25162] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
22:51:31 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xc00)

[ 1602.333779][T25162] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
22:51:32 executing program 1:
syz_open_procfs$namespace(0x0, &(0x7f0000000400)='ns/cgroup\x00')

22:51:32 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002040)={&(0x7f0000001fc0)={0x18, 0x1, 0x3, 0x301, 0x0, 0x0, {}, [@NFQA_VLAN={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40800}, 0x810)

[ 1602.413879][T25162] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1602.413879][T25162] !'
[ 1602.462967][T25162] CPU: 0 PID: 25162 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1602.471880][T25162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1602.481957][T25162] Call Trace:
[ 1602.485244][T25162]  <TASK>
[ 1602.488176][T25162]  dump_stack_lvl+0x201/0x2d8
[ 1602.492874][T25162]  ? show_regs_print_info+0x12/0x12
[ 1602.498098][T25162]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1602.503938][T25162]  sysfs_warn_dup+0x8c/0xa0
[ 1602.508451][T25162]  sysfs_do_create_link_sd+0xbe/0x100
[ 1602.513992][T25162]  device_add+0x9ea/0x16d0
[ 1602.518400][T25162]  ? wiphy_register+0x1b93/0x2a50
[ 1602.523429][T25162]  ? virtual_device_parent+0x50/0x50
[ 1602.528713][T25162]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1602.535048][T25162]  wiphy_register+0x1ba2/0x2a50
[ 1602.539906][T25162]  ? cfg80211_event_work+0x40/0x40
[ 1602.545024][T25162]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1602.551087][T25162]  ieee80211_register_hw+0x3063/0x3e10
[ 1602.556556][T25162]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1602.562362][T25162]  ? memset+0x1f/0x40
[ 1602.566334][T25162]  ? __hrtimer_init+0x173/0x250
[ 1602.571184][T25162]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1602.576918][T25162]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1602.582028][T25162]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1602.588356][T25162]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1602.594688][T25162]  genl_rcv_msg+0x1032/0x1480
[ 1602.599375][T25162]  ? genl_bind+0x360/0x360
[ 1602.603789][T25162]  ? __lock_acquire+0x1382/0x2b00
[ 1602.608823][T25162]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1602.614444][T25162]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1602.620783][T25162]  netlink_rcv_skb+0x200/0x470
[ 1602.625553][T25162]  ? genl_bind+0x360/0x360
[ 1602.629966][T25162]  ? netlink_ack+0xb70/0xb70
[ 1602.634547][T25162]  ? __down_read_common+0x1b0/0x450
[ 1602.639739][T25162]  ? up_read_non_owner+0x1c0/0x1c0
[ 1602.644841][T25162]  ? netlink_deliver_tap+0x130/0x880
[ 1602.650129][T25162]  genl_rcv+0x24/0x40
[ 1602.654103][T25162]  netlink_unicast+0x814/0x9f0
[ 1602.658867][T25162]  ? netlink_detachskb+0xa0/0xa0
[ 1602.663801][T25162]  ? __virt_addr_valid+0xb8/0x2d0
[ 1602.668917][T25162]  ? __phys_addr_symbol+0x2b/0x70
[ 1602.674022][T25162]  ? __check_object_size+0x2f3/0x3f0
[ 1602.679296][T25162]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1602.684399][T25162]  netlink_sendmsg+0xaea/0xe60
[ 1602.689155][T25162]  ? memcpy+0x3c/0x60
[ 1602.693139][T25162]  ? netlink_getsockopt+0xa60/0xa60
[ 1602.698333][T25162]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1602.703604][T25162]  ? security_socket_sendmsg+0x9d/0xb0
[ 1602.709056][T25162]  ? netlink_getsockopt+0xa60/0xa60
[ 1602.714245][T25162]  ____sys_sendmsg+0x5b9/0x910
[ 1602.719009][T25162]  ? __sys_sendmsg_sock+0x30/0x30
[ 1602.724041][T25162]  __sys_sendmsg+0x280/0x370
[ 1602.728628][T25162]  ? ____sys_sendmsg+0x910/0x910
[ 1602.733571][T25162]  ? __context_tracking_exit+0x7a/0xd0
[ 1602.739032][T25162]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1602.745006][T25162]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1602.750982][T25162]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1602.756953][T25162]  ? lockdep_hardirqs_on+0x95/0x140
[ 1602.762139][T25162]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1602.768108][T25162]  do_syscall_64+0x44/0xd0
[ 1602.772531][T25162]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1602.778422][T25162] RIP: 0033:0x7f3e3559fe99
[ 1602.782831][T25162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1602.802426][T25162] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1602.810833][T25162] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1602.818792][T25162] RDX: 00000000050e0000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1602.826753][T25162] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1602.834713][T25162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1602.842674][T25162] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1602.850654][T25162]  </TASK>
22:51:32 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14}, 0x14}}, 0x0)
sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0xd, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)

22:51:32 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
r1 = getpgid(0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, r1, 0x1, 0xffffffffffffffff, 0x1)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='jffs2\x00', 0x1411032, 0x0)
sched_setscheduler(r0, 0x5, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, r0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r2, &(0x7f00000002c0)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
write(r2, &(0x7f0000000000)="05", 0xe7b78)
sendmmsg(0xffffffffffffffff, &(0x7f00000000c0)=[{{0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe8d846be6e3098e4ee32fb6e7e17", 0x11}], 0x1, 0x0, 0x0, 0xffffffe0}}], 0x1, 0x0)

[ 1602.920779][T25163] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
22:51:32 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6000000)

22:51:32 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, 0x0, 0x0)

22:51:32 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f00000006c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x14}, 0x14}}, 0x0)

[ 1602.989067][T25163] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:51:32 executing program 5:
socketpair(0x28, 0x0, 0x0, &(0x7f0000000400))

[ 1603.035745][T25163] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1603.035745][T25163] !'
[ 1603.090682][T25163] CPU: 0 PID: 25163 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1603.099492][T25163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1603.109648][T25163] Call Trace:
[ 1603.112935][T25163]  <TASK>
[ 1603.115879][T25163]  dump_stack_lvl+0x201/0x2d8
[ 1603.120592][T25163]  ? show_regs_print_info+0x12/0x12
[ 1603.125814][T25163]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1603.131591][T25163]  sysfs_warn_dup+0x8c/0xa0
[ 1603.136107][T25163]  sysfs_do_create_link_sd+0xbe/0x100
[ 1603.141489][T25163]  device_add+0x9ea/0x16d0
[ 1603.145930][T25163]  ? wiphy_register+0x1b93/0x2a50
[ 1603.150967][T25163]  ? virtual_device_parent+0x50/0x50
[ 1603.156253][T25163]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1603.162245][T25163]  wiphy_register+0x1ba2/0x2a50
[ 1603.167208][T25163]  ? cfg80211_event_work+0x40/0x40
[ 1603.172343][T25163]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1603.178462][T25163]  ieee80211_register_hw+0x3063/0x3e10
[ 1603.183949][T25163]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1603.189765][T25163]  ? memset+0x1f/0x40
[ 1603.193741][T25163]  ? __hrtimer_init+0x173/0x250
[ 1603.198589][T25163]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1603.204323][T25163]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1603.209436][T25163]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1603.215766][T25163]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1603.222095][T25163]  genl_rcv_msg+0x1032/0x1480
[ 1603.226800][T25163]  ? genl_bind+0x360/0x360
[ 1603.231215][T25163]  ? __lock_acquire+0x1382/0x2b00
[ 1603.236252][T25163]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1603.241870][T25163]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1603.248200][T25163]  netlink_rcv_skb+0x200/0x470
[ 1603.252966][T25163]  ? genl_bind+0x360/0x360
[ 1603.257377][T25163]  ? netlink_ack+0xb70/0xb70
[ 1603.261953][T25163]  ? __down_read_common+0x1b0/0x450
[ 1603.267146][T25163]  ? up_read_non_owner+0x1c0/0x1c0
[ 1603.272259][T25163]  ? netlink_deliver_tap+0x130/0x880
[ 1603.277548][T25163]  genl_rcv+0x24/0x40
[ 1603.281522][T25163]  netlink_unicast+0x814/0x9f0
[ 1603.286286][T25163]  ? netlink_detachskb+0xa0/0xa0
[ 1603.291214][T25163]  ? __virt_addr_valid+0xb8/0x2d0
[ 1603.296234][T25163]  ? __phys_addr_symbol+0x2b/0x70
[ 1603.301334][T25163]  ? __check_object_size+0x2f3/0x3f0
[ 1603.306612][T25163]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1603.311812][T25163]  netlink_sendmsg+0xaea/0xe60
[ 1603.316653][T25163]  ? memcpy+0x3c/0x60
[ 1603.320634][T25163]  ? netlink_getsockopt+0xa60/0xa60
[ 1603.325830][T25163]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1603.331104][T25163]  ? security_socket_sendmsg+0x9d/0xb0
[ 1603.336554][T25163]  ? netlink_getsockopt+0xa60/0xa60
[ 1603.341745][T25163]  ____sys_sendmsg+0x5b9/0x910
[ 1603.346509][T25163]  ? __sys_sendmsg_sock+0x30/0x30
[ 1603.351538][T25163]  __sys_sendmsg+0x280/0x370
[ 1603.356124][T25163]  ? ____sys_sendmsg+0x910/0x910
[ 1603.361498][T25163]  ? __context_tracking_exit+0x7a/0xd0
[ 1603.366963][T25163]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1603.372930][T25163]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1603.378916][T25163]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1603.384887][T25163]  ? lockdep_hardirqs_on+0x95/0x140
[ 1603.390076][T25163]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1603.396045][T25163]  do_syscall_64+0x44/0xd0
[ 1603.400494][T25163]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1603.406376][T25163] RIP: 0033:0x7fda9f984e99
[ 1603.410869][T25163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1603.430459][T25163] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1603.438864][T25163] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1603.446829][T25163] RDX: 00000000000004a4 RSI: 0000000020000000 RDI: 0000000000000003
[ 1603.454791][T25163] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1603.462751][T25163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1603.470712][T25163] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1603.478688][T25163]  </TASK>
[ 1603.581970][T25232] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
22:51:33 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x500)

22:51:33 executing program 5:
socketpair(0x10, 0x2, 0x20, &(0x7f0000000000))

22:51:33 executing program 3:
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2)
r1 = memfd_create(&(0x7f0000000040)='\x00', 0x0)
ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f00000000c0)={0x0, 0x2, [{r1}, {}]})

[ 1603.626439][T25232] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1603.626439][T25232] !'
[ 1603.678236][T25232] CPU: 1 PID: 25232 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1603.687050][T25232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1603.697119][T25232] Call Trace:
[ 1603.700445][T25232]  <TASK>
[ 1603.703393][T25232]  dump_stack_lvl+0x201/0x2d8
[ 1603.708111][T25232]  ? show_regs_print_info+0x12/0x12
[ 1603.713332][T25232]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1603.719096][T25232]  sysfs_warn_dup+0x8c/0xa0
[ 1603.723619][T25232]  sysfs_do_create_link_sd+0xbe/0x100
[ 1603.729005][T25232]  device_add+0x9ea/0x16d0
[ 1603.733431][T25232]  ? wiphy_register+0x1b93/0x2a50
[ 1603.738489][T25232]  ? virtual_device_parent+0x50/0x50
[ 1603.743794][T25232]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1603.749799][T25232]  wiphy_register+0x1ba2/0x2a50
[ 1603.754677][T25232]  ? cfg80211_event_work+0x40/0x40
[ 1603.759813][T25232]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1603.765902][T25232]  ieee80211_register_hw+0x3063/0x3e10
[ 1603.771408][T25232]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1603.777240][T25232]  ? memset+0x1f/0x40
[ 1603.781231][T25232]  ? __hrtimer_init+0x173/0x250
[ 1603.786106][T25232]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1603.791873][T25232]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1603.797013][T25232]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1603.803377][T25232]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1603.809733][T25232]  genl_rcv_msg+0x1032/0x1480
[ 1603.814438][T25232]  ? genl_bind+0x360/0x360
[ 1603.818878][T25232]  ? __lock_acquire+0x1382/0x2b00
[ 1603.823954][T25232]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1603.829602][T25232]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1603.835970][T25232]  netlink_rcv_skb+0x200/0x470
[ 1603.840726][T25232]  ? genl_bind+0x360/0x360
[ 1603.845129][T25232]  ? netlink_ack+0xb70/0xb70
[ 1603.849700][T25232]  ? __down_read_common+0x1b0/0x450
[ 1603.854887][T25232]  ? up_read_non_owner+0x1c0/0x1c0
[ 1603.859985][T25232]  ? netlink_deliver_tap+0x130/0x880
[ 1603.865284][T25232]  genl_rcv+0x24/0x40
[ 1603.869263][T25232]  netlink_unicast+0x814/0x9f0
[ 1603.874019][T25232]  ? netlink_detachskb+0xa0/0xa0
[ 1603.878947][T25232]  ? __virt_addr_valid+0xb8/0x2d0
[ 1603.883976][T25232]  ? __phys_addr_symbol+0x2b/0x70
[ 1603.888984][T25232]  ? __check_object_size+0x2f3/0x3f0
[ 1603.894364][T25232]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1603.899475][T25232]  netlink_sendmsg+0xaea/0xe60
[ 1603.904224][T25232]  ? memcpy+0x3c/0x60
[ 1603.908212][T25232]  ? netlink_getsockopt+0xa60/0xa60
[ 1603.913418][T25232]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1603.918693][T25232]  ? security_socket_sendmsg+0x9d/0xb0
[ 1603.924158][T25232]  ? netlink_getsockopt+0xa60/0xa60
[ 1603.929391][T25232]  ____sys_sendmsg+0x5b9/0x910
[ 1603.934161][T25232]  ? __sys_sendmsg_sock+0x30/0x30
[ 1603.939201][T25232]  __sys_sendmsg+0x280/0x370
[ 1603.943783][T25232]  ? ____sys_sendmsg+0x910/0x910
[ 1603.948716][T25232]  ? __context_tracking_exit+0x7a/0xd0
[ 1603.954186][T25232]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1603.960158][T25232]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1603.966150][T25232]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1603.972115][T25232]  ? lockdep_hardirqs_on+0x95/0x140
[ 1603.977298][T25232]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1603.983264][T25232]  do_syscall_64+0x44/0xd0
[ 1603.987674][T25232]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1603.993686][T25232] RIP: 0033:0x7ffbc7e82e99
[ 1603.998098][T25232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1604.017820][T25232] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1604.026331][T25232] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1604.034292][T25232] RDX: 0000000000000c00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1604.042257][T25232] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1604.050237][T25232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1604.058209][T25232] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1604.066185][T25232]  </TASK>
22:51:33 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xc6e)

22:51:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x14, r1, 0x1}, 0x14}}, 0x0)

22:51:33 executing program 1:
openat$dlm_monitor(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000800)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x14}, 0x14}}, 0x0)

22:51:33 executing program 5:
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000440), 0x240284, 0x0)

[ 1604.094332][T25282] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1604.129066][T25282] __nla_validate_parse: 1 callbacks suppressed
[ 1604.129083][T25282] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
22:51:33 executing program 5:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0x80086601, 0x0)

[ 1604.163812][T25282] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1604.163812][T25282] !'
[ 1604.193154][T25282] CPU: 1 PID: 25282 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1604.201967][T25282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1604.212041][T25282] Call Trace:
[ 1604.215339][T25282]  <TASK>
[ 1604.218290][T25282]  dump_stack_lvl+0x201/0x2d8
[ 1604.223092][T25282]  ? show_regs_print_info+0x12/0x12
[ 1604.228318][T25282]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1604.234081][T25282]  sysfs_warn_dup+0x8c/0xa0
[ 1604.238587][T25282]  sysfs_do_create_link_sd+0xbe/0x100
[ 1604.243971][T25282]  device_add+0x9ea/0x16d0
[ 1604.248405][T25282]  ? wiphy_register+0x1b93/0x2a50
[ 1604.253466][T25282]  ? virtual_device_parent+0x50/0x50
[ 1604.258857][T25282]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1604.264869][T25282]  wiphy_register+0x1ba2/0x2a50
[ 1604.269755][T25282]  ? cfg80211_event_work+0x40/0x40
[ 1604.274898][T25282]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1604.280999][T25282]  ieee80211_register_hw+0x3063/0x3e10
[ 1604.286507][T25282]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1604.292349][T25282]  ? memset+0x1f/0x40
[ 1604.296348][T25282]  ? __hrtimer_init+0x173/0x250
[ 1604.301216][T25282]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1604.306973][T25282]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1604.312101][T25282]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1604.318463][T25282]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1604.324818][T25282]  genl_rcv_msg+0x1032/0x1480
[ 1604.329500][T25282]  ? genl_bind+0x360/0x360
[ 1604.333911][T25282]  ? __lock_acquire+0x1382/0x2b00
[ 1604.339021][T25282]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1604.344664][T25282]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1604.351001][T25282]  netlink_rcv_skb+0x200/0x470
[ 1604.355761][T25282]  ? genl_bind+0x360/0x360
[ 1604.360167][T25282]  ? netlink_ack+0xb70/0xb70
[ 1604.364740][T25282]  ? __down_read_common+0x1b0/0x450
[ 1604.369991][T25282]  ? up_read_non_owner+0x1c0/0x1c0
[ 1604.375090][T25282]  ? netlink_deliver_tap+0x130/0x880
[ 1604.380508][T25282]  genl_rcv+0x24/0x40
[ 1604.384479][T25282]  netlink_unicast+0x814/0x9f0
[ 1604.389232][T25282]  ? netlink_detachskb+0xa0/0xa0
[ 1604.394153][T25282]  ? __virt_addr_valid+0xb8/0x2d0
[ 1604.399162][T25282]  ? __phys_addr_symbol+0x2b/0x70
[ 1604.404167][T25282]  ? __check_object_size+0x2f3/0x3f0
[ 1604.409437][T25282]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1604.414535][T25282]  netlink_sendmsg+0xaea/0xe60
[ 1604.419284][T25282]  ? memcpy+0x3c/0x60
[ 1604.423266][T25282]  ? netlink_getsockopt+0xa60/0xa60
[ 1604.428453][T25282]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1604.433722][T25282]  ? security_socket_sendmsg+0x9d/0xb0
[ 1604.439167][T25282]  ? netlink_getsockopt+0xa60/0xa60
[ 1604.444347][T25282]  ____sys_sendmsg+0x5b9/0x910
[ 1604.449100][T25282]  ? __sys_sendmsg_sock+0x30/0x30
[ 1604.454184][T25282]  __sys_sendmsg+0x280/0x370
[ 1604.458760][T25282]  ? ____sys_sendmsg+0x910/0x910
[ 1604.463689][T25282]  ? __context_tracking_exit+0x7a/0xd0
[ 1604.469142][T25282]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1604.475116][T25282]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1604.481109][T25282]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1604.487078][T25282]  ? lockdep_hardirqs_on+0x95/0x140
[ 1604.492261][T25282]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1604.498225][T25282]  do_syscall_64+0x44/0xd0
[ 1604.502627][T25282]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1604.508502][T25282] RIP: 0033:0x7f3e3559fe99
[ 1604.512897][T25282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1604.532484][T25282] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1604.540882][T25282] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1604.548870][T25282] RDX: 0000000006000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1604.556840][T25282] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1604.564798][T25282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1604.572756][T25282] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1604.580729][T25282]  </TASK>
[ 1604.599135][T25491] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
22:51:34 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x7000000)

22:51:34 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r1 = getpid()
sched_setscheduler(0x0, 0x5, 0x0)
sched_getscheduler(0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = getpid()
kcmp(r1, r2, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000280)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
readv(r0, &(0x7f0000000100)=[{&(0x7f0000000380)=""/163, 0xa3}], 0x1)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000180)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)

22:51:34 executing program 1:
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)

[ 1604.607324][T25491] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1604.683167][T25491] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1604.683167][T25491] !'
[ 1604.710677][T25491] CPU: 0 PID: 25491 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1604.719487][T25491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1604.729561][T25491] Call Trace:
22:51:34 executing program 1:
syz_genetlink_get_family_id$l2tp(&(0x7f0000000500), 0xffffffffffffffff)
keyctl$get_persistent(0x16, 0x0, 0xfffffffffffffffd)
request_key(&(0x7f00000007c0)='ceph\x00', &(0x7f0000000800)={'syz', 0x0}, &(0x7f0000000840)='keyring\x00', 0x0)

[ 1604.732861][T25491]  <TASK>
[ 1604.735804][T25491]  dump_stack_lvl+0x201/0x2d8
[ 1604.740504][T25491]  ? show_regs_print_info+0x12/0x12
[ 1604.745721][T25491]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1604.751477][T25491]  sysfs_warn_dup+0x8c/0xa0
[ 1604.755998][T25491]  sysfs_do_create_link_sd+0xbe/0x100
[ 1604.761389][T25491]  device_add+0x9ea/0x16d0
[ 1604.765830][T25491]  ? wiphy_register+0x1b93/0x2a50
[ 1604.770895][T25491]  ? virtual_device_parent+0x50/0x50
[ 1604.776196][T25491]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1604.782204][T25491]  wiphy_register+0x1ba2/0x2a50
[ 1604.787091][T25491]  ? cfg80211_event_work+0x40/0x40
[ 1604.792232][T25491]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1604.798327][T25491]  ieee80211_register_hw+0x3063/0x3e10
[ 1604.803835][T25491]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1604.809679][T25491]  ? memset+0x1f/0x40
[ 1604.813676][T25491]  ? __hrtimer_init+0x173/0x250
[ 1604.818551][T25491]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1604.824321][T25491]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1604.829457][T25491]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1604.835811][T25491]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1604.842147][T25491]  genl_rcv_msg+0x1032/0x1480
[ 1604.846846][T25491]  ? genl_bind+0x360/0x360
[ 1604.851359][T25491]  ? __lock_acquire+0x1382/0x2b00
[ 1604.856433][T25491]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1604.862083][T25491]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1604.868450][T25491]  netlink_rcv_skb+0x200/0x470
[ 1604.873235][T25491]  ? genl_bind+0x360/0x360
[ 1604.877679][T25491]  ? netlink_ack+0xb70/0xb70
[ 1604.882284][T25491]  ? __down_read_common+0x1b0/0x450
[ 1604.887498][T25491]  ? up_read_non_owner+0x1c0/0x1c0
[ 1604.892620][T25491]  ? netlink_deliver_tap+0x130/0x880
[ 1604.897937][T25491]  genl_rcv+0x24/0x40
[ 1604.901945][T25491]  netlink_unicast+0x814/0x9f0
[ 1604.906745][T25491]  ? netlink_detachskb+0xa0/0xa0
[ 1604.911699][T25491]  ? __virt_addr_valid+0xb8/0x2d0
[ 1604.916740][T25491]  ? __phys_addr_symbol+0x2b/0x70
[ 1604.921778][T25491]  ? __check_object_size+0x2f3/0x3f0
[ 1604.927075][T25491]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1604.932456][T25491]  netlink_sendmsg+0xaea/0xe60
[ 1604.937284][T25491]  ? memcpy+0x3c/0x60
[ 1604.941274][T25491]  ? netlink_getsockopt+0xa60/0xa60
[ 1604.946515][T25491]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1604.951795][T25491]  ? security_socket_sendmsg+0x9d/0xb0
[ 1604.957261][T25491]  ? netlink_getsockopt+0xa60/0xa60
[ 1604.962451][T25491]  ____sys_sendmsg+0x5b9/0x910
[ 1604.967240][T25491]  ? __sys_sendmsg_sock+0x30/0x30
[ 1604.972478][T25491]  __sys_sendmsg+0x280/0x370
[ 1604.977086][T25491]  ? ____sys_sendmsg+0x910/0x910
[ 1604.982035][T25491]  ? __context_tracking_exit+0x7a/0xd0
[ 1604.987532][T25491]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1604.993526][T25491]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1604.999532][T25491]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1605.005694][T25491]  ? lockdep_hardirqs_on+0x95/0x140
[ 1605.010888][T25491]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1605.016881][T25491]  do_syscall_64+0x44/0xd0
[ 1605.021407][T25491]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1605.027330][T25491] RIP: 0033:0x7fda9f984e99
[ 1605.031755][T25491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1605.051376][T25491] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1605.059812][T25491] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1605.067806][T25491] RDX: 0000000000000500 RSI: 0000000020000000 RDI: 0000000000000003
[ 1605.075787][T25491] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1605.083776][T25491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1605.091767][T25491] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1605.099791][T25491]  </TASK>
[ 1605.176208][T25508] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1605.184894][T25508] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1605.206234][T25508] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1605.206234][T25508] !'
[ 1605.217281][T25508] CPU: 1 PID: 25508 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
22:51:34 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x600)

22:51:34 executing program 3:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000016c0), 0x2, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0x5452, &(0x7f0000001700)={0x0, 0x0, "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", "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"})

[ 1605.226065][T25508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1605.236135][T25508] Call Trace:
[ 1605.239431][T25508]  <TASK>
[ 1605.242378][T25508]  dump_stack_lvl+0x201/0x2d8
[ 1605.247076][T25508]  ? show_regs_print_info+0x12/0x12
[ 1605.252327][T25508]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1605.258086][T25508]  sysfs_warn_dup+0x8c/0xa0
[ 1605.262609][T25508]  sysfs_do_create_link_sd+0xbe/0x100
[ 1605.268018][T25508]  device_add+0x9ea/0x16d0
22:51:34 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip_mr_cache\x00')
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0x40305828, 0x0)

22:51:34 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xd00)

[ 1605.268047][T25508]  ? wiphy_register+0x1b93/0x2a50
[ 1605.268083][T25508]  ? virtual_device_parent+0x50/0x50
[ 1605.268104][T25508]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
22:51:34 executing program 1:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0x40049409, 0x0)

22:51:35 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x70e0000)

22:51:35 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x700)

[ 1605.268136][T25508]  wiphy_register+0x1ba2/0x2a50
22:51:35 executing program 3:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0x401c5820, 0x0)

[ 1605.268173][T25508]  ? cfg80211_event_work+0x40/0x40
[ 1605.268208][T25508]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1605.268239][T25508]  ieee80211_register_hw+0x3063/0x3e10
[ 1605.268287][T25508]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1605.268329][T25508]  ? memset+0x1f/0x40
[ 1605.268350][T25508]  ? __hrtimer_init+0x173/0x250
[ 1605.268380][T25508]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1605.268432][T25508]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1605.268463][T25508]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1605.268500][T25508]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1605.268534][T25508]  genl_rcv_msg+0x1032/0x1480
[ 1605.268568][T25508]  ? genl_bind+0x360/0x360
[ 1605.268599][T25508]  ? __lock_acquire+0x1382/0x2b00
[ 1605.268649][T25508]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1605.268669][T25508]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1605.268711][T25508]  netlink_rcv_skb+0x200/0x470
[ 1605.268735][T25508]  ? genl_bind+0x360/0x360
[ 1605.268760][T25508]  ? netlink_ack+0xb70/0xb70
[ 1605.268779][T25508]  ? __down_read_common+0x1b0/0x450
[ 1605.268802][T25508]  ? up_read_non_owner+0x1c0/0x1c0
[ 1605.268820][T25508]  ? netlink_deliver_tap+0x130/0x880
[ 1605.268857][T25508]  genl_rcv+0x24/0x40
[ 1605.268878][T25508]  netlink_unicast+0x814/0x9f0
[ 1605.268908][T25508]  ? netlink_detachskb+0xa0/0xa0
[ 1605.268927][T25508]  ? __virt_addr_valid+0xb8/0x2d0
[ 1605.268949][T25508]  ? __phys_addr_symbol+0x2b/0x70
[ 1605.268970][T25508]  ? __check_object_size+0x2f3/0x3f0
[ 1605.268993][T25508]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1605.269017][T25508]  netlink_sendmsg+0xaea/0xe60
[ 1605.269039][T25508]  ? memcpy+0x3c/0x60
[ 1605.269073][T25508]  ? netlink_getsockopt+0xa60/0xa60
[ 1605.269105][T25508]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1605.269124][T25508]  ? security_socket_sendmsg+0x9d/0xb0
[ 1605.269148][T25508]  ? netlink_getsockopt+0xa60/0xa60
[ 1605.269171][T25508]  ____sys_sendmsg+0x5b9/0x910
[ 1605.269206][T25508]  ? __sys_sendmsg_sock+0x30/0x30
[ 1605.269249][T25508]  __sys_sendmsg+0x280/0x370
[ 1605.269276][T25508]  ? ____sys_sendmsg+0x910/0x910
[ 1605.269322][T25508]  ? __context_tracking_exit+0x7a/0xd0
22:51:35 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x1)
mount(&(0x7f0000000200)=ANY=[], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='jffs2\x00', 0x1411032, 0x0)
sched_setscheduler(0x0, 0x5, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r0)
write(r1, &(0x7f0000000000)="05", 0xe7b78)

22:51:35 executing program 1:
r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x127c, &(0x7f0000000280))

22:51:35 executing program 3:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCGIFMTU(r0, 0x8932, &(0x7f00000000c0)={'sit0\x00'})

[ 1605.269362][T25508]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1605.269384][T25508]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1605.269418][T25508]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1605.269439][T25508]  ? lockdep_hardirqs_on+0x95/0x140
[ 1605.269460][T25508]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1605.269485][T25508]  do_syscall_64+0x44/0xd0
[ 1605.269514][T25508]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1605.269535][T25508] RIP: 0033:0x7ffbc7e82e99
[ 1605.269555][T25508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1605.269573][T25508] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1605.269598][T25508] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1605.269614][T25508] RDX: 0000000000000c6e RSI: 0000000020000000 RDI: 0000000000000003
[ 1605.269628][T25508] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1605.269642][T25508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1605.269656][T25508] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1605.269691][T25508]  </TASK>
[ 1605.339037][T25716] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1605.339062][T25716] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1605.344248][T25716] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1605.344248][T25716] !'
[ 1605.344276][T25716] CPU: 1 PID: 25716 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1605.344299][T25716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1605.344312][T25716] Call Trace:
[ 1605.344318][T25716]  <TASK>
[ 1605.344327][T25716]  dump_stack_lvl+0x201/0x2d8
[ 1605.344361][T25716]  ? show_regs_print_info+0x12/0x12
[ 1605.344385][T25716]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1605.344428][T25716]  sysfs_warn_dup+0x8c/0xa0
[ 1605.344449][T25716]  sysfs_do_create_link_sd+0xbe/0x100
[ 1605.344471][T25716]  device_add+0x9ea/0x16d0
[ 1605.344488][T25716]  ? wiphy_register+0x1b93/0x2a50
[ 1605.344522][T25716]  ? virtual_device_parent+0x50/0x50
[ 1605.344541][T25716]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1605.344572][T25716]  wiphy_register+0x1ba2/0x2a50
[ 1605.344606][T25716]  ? cfg80211_event_work+0x40/0x40
[ 1605.344639][T25716]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1605.344668][T25716]  ieee80211_register_hw+0x3063/0x3e10
[ 1605.344715][T25716]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1605.344750][T25716]  ? memset+0x1f/0x40
[ 1605.344769][T25716]  ? __hrtimer_init+0x173/0x250
[ 1605.344797][T25716]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1605.344849][T25716]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1605.344879][T25716]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1605.344915][T25716]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1605.344949][T25716]  genl_rcv_msg+0x1032/0x1480
[ 1605.344985][T25716]  ? genl_bind+0x360/0x360
[ 1605.345017][T25716]  ? __lock_acquire+0x1382/0x2b00
[ 1605.345065][T25716]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1605.345086][T25716]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1605.345127][T25716]  netlink_rcv_skb+0x200/0x470
[ 1605.345151][T25716]  ? genl_bind+0x360/0x360
[ 1605.345179][T25716]  ? netlink_ack+0xb70/0xb70
[ 1605.345198][T25716]  ? __down_read_common+0x1b0/0x450
[ 1605.345222][T25716]  ? up_read_non_owner+0x1c0/0x1c0
[ 1605.345240][T25716]  ? netlink_deliver_tap+0x130/0x880
[ 1605.345344][T25716]  genl_rcv+0x24/0x40
[ 1605.345368][T25716]  netlink_unicast+0x814/0x9f0
[ 1605.345400][T25716]  ? netlink_detachskb+0xa0/0xa0
[ 1605.345420][T25716]  ? __virt_addr_valid+0xb8/0x2d0
[ 1605.345445][T25716]  ? __phys_addr_symbol+0x2b/0x70
[ 1605.345466][T25716]  ? __check_object_size+0x2f3/0x3f0
[ 1605.345490][T25716]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1605.345515][T25716]  netlink_sendmsg+0xaea/0xe60
[ 1605.345537][T25716]  ? memcpy+0x3c/0x60
[ 1605.345571][T25716]  ? netlink_getsockopt+0xa60/0xa60
[ 1605.345603][T25716]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1605.345621][T25716]  ? security_socket_sendmsg+0x9d/0xb0
[ 1605.345646][T25716]  ? netlink_getsockopt+0xa60/0xa60
[ 1605.345669][T25716]  ____sys_sendmsg+0x5b9/0x910
[ 1605.345705][T25716]  ? __sys_sendmsg_sock+0x30/0x30
[ 1605.345747][T25716]  __sys_sendmsg+0x280/0x370
[ 1605.345774][T25716]  ? ____sys_sendmsg+0x910/0x910
[ 1605.345813][T25716]  ? __context_tracking_exit+0x7a/0xd0
[ 1605.345851][T25716]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1605.345874][T25716]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1605.345907][T25716]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1605.345928][T25716]  ? lockdep_hardirqs_on+0x95/0x140
[ 1605.345949][T25716]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1605.345973][T25716]  do_syscall_64+0x44/0xd0
[ 1605.345998][T25716]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1605.346017][T25716] RIP: 0033:0x7f3e3559fe99
[ 1605.346036][T25716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1605.346053][T25716] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1605.346076][T25716] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1605.346092][T25716] RDX: 0000000007000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1605.346106][T25716] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1605.346120][T25716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1605.346132][T25716] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1605.346167][T25716]  </TASK>
[ 1605.372092][T25813] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1605.372116][T25813] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1605.373702][T25813] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1605.373702][T25813] !'
[ 1605.373719][T25813] CPU: 0 PID: 25813 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1605.373742][T25813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1605.373755][T25813] Call Trace:
[ 1605.373763][T25813]  <TASK>
[ 1605.373780][T25813]  dump_stack_lvl+0x201/0x2d8
[ 1605.373817][T25813]  ? show_regs_print_info+0x12/0x12
[ 1605.373842][T25813]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1605.373886][T25813]  sysfs_warn_dup+0x8c/0xa0
[ 1605.373907][T25813]  sysfs_do_create_link_sd+0xbe/0x100
[ 1605.373931][T25813]  device_add+0x9ea/0x16d0
[ 1605.373950][T25813]  ? wiphy_register+0x1b93/0x2a50
[ 1605.373985][T25813]  ? virtual_device_parent+0x50/0x50
[ 1605.374005][T25813]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1605.374039][T25813]  wiphy_register+0x1ba2/0x2a50
[ 1605.374075][T25813]  ? cfg80211_event_work+0x40/0x40
[ 1605.374109][T25813]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1605.374138][T25813]  ieee80211_register_hw+0x3063/0x3e10
[ 1605.374185][T25813]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1605.374222][T25813]  ? memset+0x1f/0x40
[ 1605.374241][T25813]  ? __hrtimer_init+0x173/0x250
[ 1605.374268][T25813]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1605.374321][T25813]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1605.374351][T25813]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1605.374387][T25813]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1605.374422][T25813]  genl_rcv_msg+0x1032/0x1480
[ 1605.374457][T25813]  ? genl_bind+0x360/0x360
[ 1605.374490][T25813]  ? __lock_acquire+0x1382/0x2b00
[ 1605.374539][T25813]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1605.374560][T25813]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1605.374603][T25813]  netlink_rcv_skb+0x200/0x470
[ 1605.374627][T25813]  ? genl_bind+0x360/0x360
[ 1605.374653][T25813]  ? netlink_ack+0xb70/0xb70
[ 1605.374672][T25813]  ? __down_read_common+0x1b0/0x450
[ 1605.374697][T25813]  ? up_read_non_owner+0x1c0/0x1c0
[ 1605.374715][T25813]  ? netlink_deliver_tap+0x130/0x880
[ 1605.374750][T25813]  genl_rcv+0x24/0x40
[ 1605.374780][T25813]  netlink_unicast+0x814/0x9f0
[ 1605.374816][T25813]  ? netlink_detachskb+0xa0/0xa0
[ 1605.374836][T25813]  ? __virt_addr_valid+0xb8/0x2d0
[ 1605.374857][T25813]  ? __phys_addr_symbol+0x2b/0x70
[ 1605.374878][T25813]  ? __check_object_size+0x2f3/0x3f0
[ 1605.374901][T25813]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1605.374924][T25813]  netlink_sendmsg+0xaea/0xe60
[ 1605.374946][T25813]  ? memcpy+0x3c/0x60
[ 1605.374978][T25813]  ? netlink_getsockopt+0xa60/0xa60
[ 1605.375008][T25813]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1605.375026][T25813]  ? security_socket_sendmsg+0x9d/0xb0
[ 1605.375050][T25813]  ? netlink_getsockopt+0xa60/0xa60
[ 1605.375072][T25813]  ____sys_sendmsg+0x5b9/0x910
[ 1605.375105][T25813]  ? __sys_sendmsg_sock+0x30/0x30
[ 1605.375147][T25813]  __sys_sendmsg+0x280/0x370
[ 1605.375172][T25813]  ? ____sys_sendmsg+0x910/0x910
[ 1605.375209][T25813]  ? __context_tracking_exit+0x7a/0xd0
[ 1605.375244][T25813]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1605.375266][T25813]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1605.375297][T25813]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1605.375316][T25813]  ? lockdep_hardirqs_on+0x95/0x140
[ 1605.375336][T25813]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1605.375358][T25813]  do_syscall_64+0x44/0xd0
[ 1605.375383][T25813]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1605.375402][T25813] RIP: 0033:0x7fda9f984e99
[ 1605.375422][T25813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1605.375439][T25813] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1605.375462][T25813] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1605.375478][T25813] RDX: 0000000000000600 RSI: 0000000020000000 RDI: 0000000000000003
[ 1605.375492][T25813] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1605.375505][T25813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1605.375517][T25813] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1605.375550][T25813]  </TASK>
[ 1605.641676][T25822] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1606.699652][T25822] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:51:36 executing program 1:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405610, 0x0)

[ 1606.732568][T25822] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1606.732568][T25822] !'
[ 1606.773831][T25822] CPU: 0 PID: 25822 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1606.782637][T25822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1606.792706][T25822] Call Trace:
[ 1606.795997][T25822]  <TASK>
[ 1606.798940][T25822]  dump_stack_lvl+0x201/0x2d8
[ 1606.803638][T25822]  ? show_regs_print_info+0x12/0x12
[ 1606.808859][T25822]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1606.814637][T25822]  sysfs_warn_dup+0x8c/0xa0
[ 1606.819164][T25822]  sysfs_do_create_link_sd+0xbe/0x100
[ 1606.824561][T25822]  device_add+0x9ea/0x16d0
[ 1606.828989][T25822]  ? wiphy_register+0x1b93/0x2a50
[ 1606.834021][T25822]  ? virtual_device_parent+0x50/0x50
[ 1606.839305][T25822]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1606.845398][T25822]  wiphy_register+0x1ba2/0x2a50
[ 1606.850272][T25822]  ? cfg80211_event_work+0x40/0x40
[ 1606.855373][T25822]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1606.861440][T25822]  ieee80211_register_hw+0x3063/0x3e10
[ 1606.866933][T25822]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1606.872751][T25822]  ? memset+0x1f/0x40
[ 1606.876745][T25822]  ? __hrtimer_init+0x173/0x250
[ 1606.881607][T25822]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1606.887331][T25822]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1606.892442][T25822]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1606.898784][T25822]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1606.905104][T25822]  genl_rcv_msg+0x1032/0x1480
[ 1606.909788][T25822]  ? genl_bind+0x360/0x360
[ 1606.914216][T25822]  ? __lock_acquire+0x1382/0x2b00
[ 1606.919261][T25822]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1606.924897][T25822]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1606.931497][T25822]  netlink_rcv_skb+0x200/0x470
[ 1606.936283][T25822]  ? genl_bind+0x360/0x360
[ 1606.940725][T25822]  ? netlink_ack+0xb70/0xb70
[ 1606.945322][T25822]  ? __down_read_common+0x1b0/0x450
[ 1606.950513][T25822]  ? up_read_non_owner+0x1c0/0x1c0
[ 1606.955626][T25822]  ? netlink_deliver_tap+0x130/0x880
[ 1606.960917][T25822]  genl_rcv+0x24/0x40
[ 1606.964911][T25822]  netlink_unicast+0x814/0x9f0
[ 1606.969696][T25822]  ? netlink_detachskb+0xa0/0xa0
[ 1606.974641][T25822]  ? __virt_addr_valid+0xb8/0x2d0
[ 1606.979659][T25822]  ? __phys_addr_symbol+0x2b/0x70
[ 1606.984694][T25822]  ? __check_object_size+0x2f3/0x3f0
[ 1606.989992][T25822]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1606.995124][T25822]  netlink_sendmsg+0xaea/0xe60
[ 1606.999911][T25822]  ? memcpy+0x3c/0x60
[ 1607.003920][T25822]  ? netlink_getsockopt+0xa60/0xa60
[ 1607.009143][T25822]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1607.014445][T25822]  ? security_socket_sendmsg+0x9d/0xb0
[ 1607.019924][T25822]  ? netlink_getsockopt+0xa60/0xa60
[ 1607.025146][T25822]  ____sys_sendmsg+0x5b9/0x910
[ 1607.029948][T25822]  ? __sys_sendmsg_sock+0x30/0x30
[ 1607.035005][T25822]  __sys_sendmsg+0x280/0x370
[ 1607.039619][T25822]  ? ____sys_sendmsg+0x910/0x910
[ 1607.044575][T25822]  ? __context_tracking_exit+0x7a/0xd0
[ 1607.050042][T25822]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1607.056037][T25822]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1607.062037][T25822]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1607.068019][T25822]  ? lockdep_hardirqs_on+0x95/0x140
[ 1607.073214][T25822]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1607.079219][T25822]  do_syscall_64+0x44/0xd0
[ 1607.083645][T25822]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1607.089536][T25822] RIP: 0033:0x7fda9f984e99
[ 1607.093957][T25822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1607.113566][T25822] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1607.122000][T25822] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1607.129986][T25822] RDX: 0000000000000700 RSI: 0000000020000000 RDI: 0000000000000003
[ 1607.138074][T25822] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1607.146062][T25822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1607.154050][T25822] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1607.162059][T25822]  </TASK>
[ 1607.181125][ T1229] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.187511][ T1229] ieee802154 phy1 wpan1: encryption failed: -22
[ 1607.220029][T25823] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
22:51:36 executing program 3:
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000003c0), 0x98000, 0x0)

[ 1607.228281][T25823] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1607.240886][T25823] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1607.240886][T25823] !'
[ 1607.253167][T25823] CPU: 0 PID: 25823 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1607.261953][T25823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1607.272021][T25823] Call Trace:
[ 1607.275298][T25823]  <TASK>
[ 1607.278222][T25823]  dump_stack_lvl+0x201/0x2d8
[ 1607.282901][T25823]  ? show_regs_print_info+0x12/0x12
[ 1607.288091][T25823]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1607.293818][T25823]  sysfs_warn_dup+0x8c/0xa0
[ 1607.298313][T25823]  sysfs_do_create_link_sd+0xbe/0x100
[ 1607.303678][T25823]  device_add+0x9ea/0x16d0
[ 1607.308081][T25823]  ? wiphy_register+0x1b93/0x2a50
[ 1607.313105][T25823]  ? virtual_device_parent+0x50/0x50
[ 1607.318390][T25823]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1607.324394][T25823]  wiphy_register+0x1ba2/0x2a50
[ 1607.329269][T25823]  ? cfg80211_event_work+0x40/0x40
[ 1607.334386][T25823]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1607.340476][T25823]  ieee80211_register_hw+0x3063/0x3e10
[ 1607.345964][T25823]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1607.351783][T25823]  ? memset+0x1f/0x40
[ 1607.355777][T25823]  ? __hrtimer_init+0x173/0x250
[ 1607.360629][T25823]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1607.366371][T25823]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1607.371483][T25823]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1607.377815][T25823]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1607.384151][T25823]  genl_rcv_msg+0x1032/0x1480
[ 1607.388833][T25823]  ? genl_bind+0x360/0x360
[ 1607.393257][T25823]  ? __lock_acquire+0x1382/0x2b00
[ 1607.398296][T25823]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1607.403921][T25823]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1607.410266][T25823]  netlink_rcv_skb+0x200/0x470
[ 1607.415026][T25823]  ? genl_bind+0x360/0x360
[ 1607.419437][T25823]  ? netlink_ack+0xb70/0xb70
[ 1607.424114][T25823]  ? __down_read_common+0x1b0/0x450
[ 1607.429305][T25823]  ? up_read_non_owner+0x1c0/0x1c0
[ 1607.434410][T25823]  ? netlink_deliver_tap+0x130/0x880
[ 1607.439708][T25823]  genl_rcv+0x24/0x40
[ 1607.443698][T25823]  netlink_unicast+0x814/0x9f0
[ 1607.448471][T25823]  ? netlink_detachskb+0xa0/0xa0
[ 1607.453421][T25823]  ? __virt_addr_valid+0xb8/0x2d0
[ 1607.458459][T25823]  ? __phys_addr_symbol+0x2b/0x70
[ 1607.463486][T25823]  ? __check_object_size+0x2f3/0x3f0
[ 1607.468772][T25823]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1607.473885][T25823]  netlink_sendmsg+0xaea/0xe60
[ 1607.478739][T25823]  ? memcpy+0x3c/0x60
[ 1607.482726][T25823]  ? netlink_getsockopt+0xa60/0xa60
[ 1607.487938][T25823]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1607.493217][T25823]  ? security_socket_sendmsg+0x9d/0xb0
[ 1607.498670][T25823]  ? netlink_getsockopt+0xa60/0xa60
[ 1607.503860][T25823]  ____sys_sendmsg+0x5b9/0x910
[ 1607.508626][T25823]  ? __sys_sendmsg_sock+0x30/0x30
[ 1607.513661][T25823]  __sys_sendmsg+0x280/0x370
[ 1607.518249][T25823]  ? ____sys_sendmsg+0x910/0x910
[ 1607.523191][T25823]  ? __context_tracking_exit+0x7a/0xd0
[ 1607.528656][T25823]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1607.534625][T25823]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1607.540612][T25823]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1607.546580][T25823]  ? lockdep_hardirqs_on+0x95/0x140
[ 1607.551773][T25823]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1607.557742][T25823]  do_syscall_64+0x44/0xd0
[ 1607.562152][T25823]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1607.568035][T25823] RIP: 0033:0x7f3e3559fe99
[ 1607.572445][T25823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1607.592041][T25823] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1607.600450][T25823] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1607.608416][T25823] RDX: 00000000070e0000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1607.616374][T25823] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1607.624333][T25823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:51:37 executing program 1:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCGIFMTU(r0, 0x80487436, 0x0)

22:51:37 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x801)

[ 1607.632377][T25823] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1607.640356][T25823]  </TASK>
[ 1607.717639][T25825] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1607.746877][T25825] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1607.840479][T25825] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1607.840479][T25825] !'
[ 1607.866394][T25825] CPU: 1 PID: 25825 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1607.875207][T25825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1607.885278][T25825] Call Trace:
[ 1607.888566][T25825]  <TASK>
[ 1607.891501][T25825]  dump_stack_lvl+0x201/0x2d8
[ 1607.896205][T25825]  ? show_regs_print_info+0x12/0x12
[ 1607.901425][T25825]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1607.907184][T25825]  sysfs_warn_dup+0x8c/0xa0
[ 1607.911707][T25825]  sysfs_do_create_link_sd+0xbe/0x100
[ 1607.917094][T25825]  device_add+0x9ea/0x16d0
[ 1607.921497][T25825]  ? wiphy_register+0x1b93/0x2a50
[ 1607.926603][T25825]  ? virtual_device_parent+0x50/0x50
[ 1607.932009][T25825]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1607.937995][T25825]  wiphy_register+0x1ba2/0x2a50
[ 1607.942850][T25825]  ? cfg80211_event_work+0x40/0x40
[ 1607.947958][T25825]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1607.954026][T25825]  ieee80211_register_hw+0x3063/0x3e10
[ 1607.959500][T25825]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1607.965315][T25825]  ? memset+0x1f/0x40
[ 1607.969290][T25825]  ? __hrtimer_init+0x173/0x250
[ 1607.974133][T25825]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1607.979856][T25825]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1607.984961][T25825]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1607.991290][T25825]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1607.997612][T25825]  genl_rcv_msg+0x1032/0x1480
[ 1608.002283][T25825]  ? genl_bind+0x360/0x360
[ 1608.006688][T25825]  ? __lock_acquire+0x1382/0x2b00
[ 1608.011724][T25825]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1608.017358][T25825]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1608.023682][T25825]  netlink_rcv_skb+0x200/0x470
[ 1608.028479][T25825]  ? genl_bind+0x360/0x360
[ 1608.032919][T25825]  ? netlink_ack+0xb70/0xb70
[ 1608.037493][T25825]  ? __down_read_common+0x1b0/0x450
[ 1608.042678][T25825]  ? up_read_non_owner+0x1c0/0x1c0
[ 1608.047855][T25825]  ? netlink_deliver_tap+0x130/0x880
[ 1608.053130][T25825]  genl_rcv+0x24/0x40
[ 1608.057098][T25825]  netlink_unicast+0x814/0x9f0
[ 1608.061901][T25825]  ? netlink_detachskb+0xa0/0xa0
[ 1608.066911][T25825]  ? __virt_addr_valid+0xb8/0x2d0
[ 1608.071921][T25825]  ? __phys_addr_symbol+0x2b/0x70
[ 1608.076928][T25825]  ? __check_object_size+0x2f3/0x3f0
[ 1608.082198][T25825]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1608.087294][T25825]  netlink_sendmsg+0xaea/0xe60
[ 1608.092067][T25825]  ? memcpy+0x3c/0x60
[ 1608.096064][T25825]  ? netlink_getsockopt+0xa60/0xa60
[ 1608.101267][T25825]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1608.106541][T25825]  ? security_socket_sendmsg+0x9d/0xb0
[ 1608.112002][T25825]  ? netlink_getsockopt+0xa60/0xa60
[ 1608.117220][T25825]  ____sys_sendmsg+0x5b9/0x910
[ 1608.121982][T25825]  ? __sys_sendmsg_sock+0x30/0x30
[ 1608.127025][T25825]  __sys_sendmsg+0x280/0x370
[ 1608.131889][T25825]  ? ____sys_sendmsg+0x910/0x910
[ 1608.136830][T25825]  ? __context_tracking_exit+0x7a/0xd0
[ 1608.142294][T25825]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1608.148266][T25825]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1608.154244][T25825]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1608.160337][T25825]  ? lockdep_hardirqs_on+0x95/0x140
[ 1608.165539][T25825]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1608.171512][T25825]  do_syscall_64+0x44/0xd0
[ 1608.175917][T25825]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1608.181794][T25825] RIP: 0033:0x7ffbc7e82e99
[ 1608.186199][T25825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1608.205790][T25825] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1608.214185][T25825] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1608.222145][T25825] RDX: 0000000000000d00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1608.230100][T25825] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
22:51:37 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe00)

22:51:37 executing program 3:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCGIFMTU(r0, 0x8970, &(0x7f00000000c0)={'sit0\x00'})

22:51:37 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x8000000)

22:51:37 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x1)
mount(&(0x7f0000000200)=ANY=[], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='jffs2\x00', 0x1411032, 0x0)
sched_setscheduler(0x0, 0x5, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r0)
write(r1, &(0x7f0000000000)="05", 0xe7b78)

22:51:37 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x1)
mount(&(0x7f0000000200)=ANY=[], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='jffs2\x00', 0x1411032, 0x0)
sched_setscheduler(0x0, 0x5, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r0)
write(r1, &(0x7f0000000000)="05", 0xe7b78)

22:51:37 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x900)

[ 1608.238054][T25825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1608.246092][T25825] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1608.254057][T25825]  </TASK>
[ 1608.325775][T25847] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
22:51:37 executing program 3:
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETDUPLEX(r0, 0x5016, 0x0)

[ 1608.409306][T25847] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1608.425790][T25847] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1608.425790][T25847] !'
[ 1608.435894][T25847] CPU: 1 PID: 25847 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1608.444673][T25847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1608.454829][T25847] Call Trace:
22:51:38 executing program 3:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000016c0), 0x2, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000001700)={0x0, 0x0, "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", "b2358defda5ac07e167eec1c2e986caecefec561d1a9f7c08deae51beb6f29ba459d87d8c51f32bd330500bb09d319db89593c0ec09e6cea407a5354d6105d1477987e183732ac3852c25c53a2870ea3aa7bfadfbe73a03508486cefc5af6b0a1d0c1f2635e9f7fb1dccc4cfd2c64e2e0fc967b73eb432a6449ae06f1f2a30287d0138410505683b9512fb402049945e0252bb042f48c6299410b9ce1b7213e0cd9e1bb2d6a44feb1508315e603457fb3785a86a21ba9b55d3a26b9bb9cd23e164592bebbf08bbf36a17a9277002e851f581c8851d0c58fd10ce35b2572ecdd29349ed493370a18d879b970e2f6dd21719ccb7ff26dd4d37bd274177666f5ab52bffe52011154362b190654c8e509d0b1d78078fe379081956b682ce91a53e235a32d18724b1d2638f375b391e2a7040443007d042e615f087cbc796be93ae48d25df0a66509379224380f208b26433d012ab2df989bc27c2fc84ba388deeb5a9ba834873841453bf2db149d77a0d736f72acf6aff26a5e8c2f656a83d4821f896a6a661d65aa3e3b3bbeb9905e7aec587d4749a51acefe0333e2c7c5441c818e536137ebf3c4070a9842a0a96a6532d8e4e986afe02cfe4b10045b893e92e405951882eae3a04fd7989d905ca92099008471427013c00f89ef99990665a3bcd2c060a3d344a52f9e5b94881b8c4fca0f31fdec694a3a4370f8ef3ea3ab62c36b183adfa915053a0b60c2d584164d703636fa3b569b66c691e6a94f363a6e6a4696703dac7d09be544231ddae28de8f8579533df06371da9d49f5f2896a63dadbb3ff657302f17df803e68317596d5b4a19258ccaded46dad88daecc0fa844f6738e1a8d3a581ad8fb1be47a3bf58db958600905312f02d225d7f6ff0da15b1cd47f02958a31e3d9eec2b1607b5723aa51d3b566004345e35d060fc2aa62fb255d05edabcdfde542a39091ce0362e47293df15d2f25f7149b91673efb901b0713aad74ce54f5feecb075cf187ee1173e09c009c6e3e0e048985af8f92ffaba869240891a2c6a77960a993abad9fab83e1fe80b3985fb73e60a9e8863f3cca5ca3f0ed2b56be38fb93f40ec531e91b263bc5aeeceb52da6264322a7e62564453b5c8e5b63be25aad681c89204f54bf7db2631ed20e61fceabb379d67408af607c4145de6750a8c5a5446cad8f9668be577a723f1c357e66d506c1b6cea1cf4b01b487b269e1f050f86b3ed93c1cadb4626f7b1efd064371708f7eea761f7a18e8ec29e72eb60492910a811115297ee1a04ddc4f457b9f226aa5b55970f32a9ff508427a1a7038d56a1c6d279be8eda0fd5010e586478f79140bee331aadeebc801bc7674e14389a6324cdb3eb909038a89b091874f4fadec0e3071e0c60a0daade4b022df2186c3940483f4fee0dec0415b06dbdac61c4aabd436158efba1139d743367ca75c66b1d6a34a81e0a47f93318d779d0b83ac840ba85f97f3d4dd20bb544899c09b92b1faf1d2771792ff44d8371b55d9fbf1d48d01a59f85f301823e2306f226a3819b465fbfa8e380450539c200b720bf4dfd4333856e745c29f70da276dd16c881f1de2341af73378d2af71573d1c1f4e5a6f62ff313ce302521dc97255e5cea128b593ac58cc030872707d1f09ee65d3ad673069a9a7bb672b9cdf43338074937ea3a90de7ce07c9de4188600e2708b612aef7ca3937432de4138b6a9e1fde6268742fef686f0f3aa815e125cd987d160ac03b1bccc08cebac0c289e9fa2a5d7d3cc8395679a63844a2c819a162223666a219b14469e60dc031d4749b1a9d7ab5fee3b660518f1e014a67d8a055a2ae7102433de23621fbbb833e18ca6cdc6b62778b6899d7861548cdccbbe0b6c7dea02c37aa817576c33b5868e0d8be2c8175527e10ad433f2186e380ced69f51dde1f2452ed5fee5bdece8f616ed577569aae1e151f8b7579f7265bcac8f622fe12ae6240891a405c78b42f3dccbbfb41c924db38f5042688dade784fb7933c059d4ddb2f6a21607b6384b3b55c8759962a78f2d3def840107abea60f1e5f69fedb6985655fdc899d52ca92c93ac9f01758ae7decd00756e5f78f538faa68a46250d2f8f2196688e92822943fc853839d10a714414c30f63e6d8cf9e877e31a41c8427982dc055ac4037a536efbb4865af9d0868ec2af2e8c01d9542e2ccff93851c06adc6e81b207ae60306ee4d81a92c44a34f2e7c9b4f25764543df9009ac7a4770a7fd496fe183c02718ced9d2cf2407e06476ea6f7362c74118c6ae852ff13c22a5ef798d0d405b6e36c73b8dfbc89fb8958fb0c69355412e667db3e8eb11edb68a30e9fc8c24b03db9f5364ffdc29325d8067fb946f50c538a1f32a5bba5f12f4f691ed6457a1fec0a9bfd9fe751e51b3d729f95a65cbb620d3c0cf924d76ffab2a2ac53e02afea98cd7cefccf11df84bb97f570f0170023bea0657e93e71c8117d1e0dea59371559c6e58f37468b0666a54ae669905b98a0b448b7b9574b77d87eebf3ec5e6a0a6c3d1cf858aec06ceb866aab0d23a24502b47d22bc3d6da7c851c7f9f25c701565becc4cad5ca1c6ef5a44dd90edb0c341553b7d55309c858550bfa755a09f648cf2dd9ca6729b71fa9fe66efa826368830ba210c1935d61191a8d0d07d43a4abc5a3e13c0fd5f01fd9164108ab0e9ac336d72cde2c6ccae2f687c5e2b25ed88f3730da80544d99691f14186011d4f27ce9aabbfe1e9deedad0697bf68c724d754462cd5f2721087f4ffcac4e07cc6d90aae13b4f6dd9542a4a136175438335b188ea938252dfb9414cbb69f3f35290bb460c49feedea08038d4d4bfb387b6a03f08a50198b3634d0006824595c537b064105a2294d4946735d0c6ab61cd140f4dfd3ca14ee4d03d4bb6762b04661c10198a9c85f7331745d14b62f34960ee350e3d7e6d3a15ebeb9498581edeeaebc4a40f2770aefe2e99b909c1ccc6b91045030aa8bf1a66d8b1c6d281b5e5c32c994d04d6f7de6fb414f4d7a54132fefdb6d77fbf296aba64e4f0dcc9bc9908ad8e78e829384c12becadd6c1217183810191b18458c5fa71101a016313051838a42c6ed74a870aabce31666883f9e3d1fc0b4bc37d7b22268e4351cac8ff5943b3563be2e7ed506343ae5eb979a99e632a9467e66f2717fd91e9ba0ada04da94a1ac2f3cd37e944086338226b7f628b3805ab08c5c37b1711fe00a0d0682f044dee41323200bcf8c5584392f4e69d36c4f75923e95897b326473e5fca20102d8435e20ecccfefc4e37c67757cb52db351b5dd967a6977152c62ff51a272f4ba622920149567acacddfd68b3a543771600458b899f5eb73a04953e03f02b5c2251b0f94bc2621766deb02fb1c66d1350ce98d66afd2ea59edba09b5e83b265d543006b54a27c66d7612c35b8d6bc180a1d124d4434d794edd8ad24224aa204c8fc526f56959bbcfb2c97515fbe87d0f0e81635a3891a1a0c1bb683fdd582c201a6a3cc56ccf96b0f8481ffc229b46330dff890a2d1ef7c340732cb49fc224b83926616b84b48b93d2d088717fed9c63a323e8ecf9cd37cc3db9a5579a86c9cb1b2079f56c7a7ad5a05be049860382f53dba1356e082573cc7fb9570e56d4626310cfa66dd8e0352cf6cae975771e5844889dc48c46f2fcea59f7471d14bcea57be0616a236694817966537d31156f9ab5aa132c5162d1a0ff9de03eaf83b08aec66555e5ab33334ba13a6604af51f871319fad36ed1046e7a32967a6dccad43060e72373eff462bde4acebfe51cc12530b513de9c1dc9152c3f6c48dd6b4a704cec22174b5e3d6c38691b7e6ee105b140d005c1816b00194adf269d214a34afd8a351b0c9b678acf21108e283e0880bfb87d228b8037b3cff4755ec97fc3bc10be57e0b9db1d013afee49fdd60145b5b9dad7e5c45abefca3fcd1fb8484f5c507df92b02770d7d38a6f101ddb947aabc7167c4d72d7aca153f3adab12856cd6b893f5f63ecdd2ba70765a4efa9f0ba950d564d0c604a600e4b916b9616c4c7a25f4a9092c43036054e9119b39c7647235c6a0edc65b28059159606073b405a479a9cd464c6d226df673c70f7d09572cca620893f3e43e75993e09a3024bf7f7da714ae7a05dcd529630b9fe45b0a7e25e53e7e9edd660a8f1fe4fd8e704686747c2b66d3506d886f4f2ba96ad04dcba7495a4bc0d26c1ddb58c595a7114b33adc5074b1e7a2d16df45dca4304028f31895619f183a41066570bc6e11dba4ddc4bf23d1c408e70f14fb292d348598cdda230b9c15916f0ad9e82307e98065dc58ae0c0414f701a71b61912ddd3f19404466b29db51d921999ef29efd6607b49505f3ebe91d0988a4e973efd04658b86ac631ae23152691232dad2afa111f4734dfb240f995419878e17d3a9696fdcfffae1ed1a2d6540f311a0a40ac2203928fa2bfcc0d683130c8618192f66406b9436e8cf0adc8a399ea598bf4ac7cc33f9829b4c8e61207470dd247c55114e7d04081a6ba0f56c02c72e20aa28b3a046613d2bfce0b407257ea0f456b70fe46af1e116aef17c016b7d824d5316a2a6d9fc920c9f3ff6f406b8bf15bfca44f909bd644c733d392fc014b908ad8380fa15585400b8d48f0d9dfeeb125bbac0deedf7e915fd0c93a19a39d20bc0b703e82d9c9c9c458051f86733916aa009f5fadc7aea580a241bc4f896540eca6441818a16ca7a82be381da7623aa97d512edee13b01ce82ca3ec883687ec3f5077cc7229c450444d3bd4e54a310177ab010b56d5011fb7a80544443e3c75c368bf2b8cc2d7cf30df0913ae2799a03a182c30acaf59a61efd3ee504e294cc0f3ca57bd0ed61d754832f7bab5e1a60a3daef3b787c807d9e858eeab8083bc6f8f126cd516206353abfd6426a30715bf3a5ec52ae769bea73ad84666887e9337fa5ef34f3fb18b7eea13b74f274be4bebd4be73718a5a2b296df7e3adc5f4b9fafefee0479876478faed431504ea77c5a792de8a783a3e927f56b2f6172c1dcf10ea2b07656274147cd05d012a0988feb42b8851b4d5e6f6e80553be16428b5700481a412d893ff2a4299f48dbd7dc30b2faa46a75a3ac2b1a9af97a240dd2f7188f2dd2bca5fb25a047d225d89863a7f12a8d1595fcbf50a059652c592d8b341f63317592c5fe1dff8e7756eb5f45588914cb0bf811942f90c20e24537b68c3f277e23f531b54d81f80a487da9dc18abdf730e344bb3a3757798560cce8bc79b9dfbfe82bd5c42be981ad07330e9b8f18f88249d51001516dd863a519b4a7bac9fd7efe52e295bb67105c59730e97ad66619f5ee3759a5a88c69ef1eecce4a30985171a319b40ef41f7fff3aaba84c8f5c13e6c0981a1d019f05a45dd320a22ed5b3224ecb6663a7233"})

[ 1608.458120][T25847]  <TASK>
[ 1608.461062][T25847]  dump_stack_lvl+0x201/0x2d8
[ 1608.465764][T25847]  ? show_regs_print_info+0x12/0x12
[ 1608.471068][T25847]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1608.476828][T25847]  sysfs_warn_dup+0x8c/0xa0
[ 1608.481347][T25847]  sysfs_do_create_link_sd+0xbe/0x100
[ 1608.486741][T25847]  device_add+0x9ea/0x16d0
[ 1608.491173][T25847]  ? wiphy_register+0x1b93/0x2a50
[ 1608.496227][T25847]  ? virtual_device_parent+0x50/0x50
[ 1608.501532][T25847]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
22:51:38 executing program 3:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCGIFMTU(r0, 0x8927, &(0x7f00000000c0)={'sit0\x00'})

22:51:38 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r0, &(0x7f0000000900)={0xa, 0x0, 0x0, @dev, 0x2}, 0x20)

[ 1608.507552][T25847]  wiphy_register+0x1ba2/0x2a50
[ 1608.512441][T25847]  ? cfg80211_event_work+0x40/0x40
[ 1608.517589][T25847]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1608.523681][T25847]  ieee80211_register_hw+0x3063/0x3e10
[ 1608.529190][T25847]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1608.535032][T25847]  ? memset+0x1f/0x40
[ 1608.539039][T25847]  ? __hrtimer_init+0x173/0x250
[ 1608.543915][T25847]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1608.549682][T25847]  hwsim_new_radio_nl+0xc5f/0x1130
22:51:38 executing program 3:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0x5452, &(0x7f0000000000))

[ 1608.554823][T25847]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1608.561179][T25847]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1608.567554][T25847]  genl_rcv_msg+0x1032/0x1480
[ 1608.572269][T25847]  ? genl_bind+0x360/0x360
[ 1608.576717][T25847]  ? __lock_acquire+0x1382/0x2b00
[ 1608.581790][T25847]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1608.587437][T25847]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1608.593814][T25847]  netlink_rcv_skb+0x200/0x470
[ 1608.598605][T25847]  ? genl_bind+0x360/0x360
[ 1608.603058][T25847]  ? netlink_ack+0xb70/0xb70
[ 1608.607665][T25847]  ? __down_read_common+0x1b0/0x450
[ 1608.612885][T25847]  ? up_read_non_owner+0x1c0/0x1c0
[ 1608.618017][T25847]  ? netlink_deliver_tap+0x130/0x880
[ 1608.623345][T25847]  genl_rcv+0x24/0x40
[ 1608.627338][T25847]  netlink_unicast+0x814/0x9f0
[ 1608.632130][T25847]  ? netlink_detachskb+0xa0/0xa0
[ 1608.637085][T25847]  ? __virt_addr_valid+0xb8/0x2d0
[ 1608.642132][T25847]  ? __phys_addr_symbol+0x2b/0x70
[ 1608.647260][T25847]  ? __check_object_size+0x2f3/0x3f0
[ 1608.652570][T25847]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1608.657705][T25847]  netlink_sendmsg+0xaea/0xe60
[ 1608.662488][T25847]  ? memcpy+0x3c/0x60
[ 1608.666524][T25847]  ? netlink_getsockopt+0xa60/0xa60
[ 1608.671837][T25847]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1608.677136][T25847]  ? security_socket_sendmsg+0x9d/0xb0
[ 1608.682614][T25847]  ? netlink_getsockopt+0xa60/0xa60
[ 1608.687803][T25847]  ____sys_sendmsg+0x5b9/0x910
[ 1608.692565][T25847]  ? __sys_sendmsg_sock+0x30/0x30
[ 1608.697600][T25847]  __sys_sendmsg+0x280/0x370
[ 1608.702202][T25847]  ? ____sys_sendmsg+0x910/0x910
[ 1608.707135][T25847]  ? __context_tracking_exit+0x7a/0xd0
[ 1608.712590][T25847]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1608.718562][T25847]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1608.724562][T25847]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1608.730546][T25847]  ? lockdep_hardirqs_on+0x95/0x140
[ 1608.735738][T25847]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1608.741707][T25847]  do_syscall_64+0x44/0xd0
[ 1608.746722][T25847]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1608.752602][T25847] RIP: 0033:0x7fda9f984e99
[ 1608.757004][T25847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1608.776596][T25847] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1608.784998][T25847] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1608.792967][T25847] RDX: 0000000000000900 RSI: 0000000020000000 RDI: 0000000000000003
[ 1608.800926][T25847] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
22:51:38 executing program 3:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000016c0), 0x2, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xc0205649, &(0x7f0000001700)={0x0, 0x0, "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", "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"})

[ 1608.808886][T25847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1608.816865][T25847] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1608.824867][T25847]  </TASK>
[ 1608.908608][T25849] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1608.929178][T25849] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1608.993469][T25849] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1608.993469][T25849] !'
[ 1609.008352][T25849] CPU: 0 PID: 25849 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1609.017148][T25849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1609.027222][T25849] Call Trace:
[ 1609.030513][T25849]  <TASK>
[ 1609.033446][T25849]  dump_stack_lvl+0x201/0x2d8
[ 1609.038123][T25849]  ? show_regs_print_info+0x12/0x12
[ 1609.043318][T25849]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1609.049112][T25849]  sysfs_warn_dup+0x8c/0xa0
[ 1609.053630][T25849]  sysfs_do_create_link_sd+0xbe/0x100
[ 1609.059097][T25849]  device_add+0x9ea/0x16d0
[ 1609.063500][T25849]  ? wiphy_register+0x1b93/0x2a50
[ 1609.068522][T25849]  ? virtual_device_parent+0x50/0x50
[ 1609.073880][T25849]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1609.079858][T25849]  wiphy_register+0x1ba2/0x2a50
[ 1609.084724][T25849]  ? cfg80211_event_work+0x40/0x40
[ 1609.089840][T25849]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1609.095919][T25849]  ieee80211_register_hw+0x3063/0x3e10
[ 1609.101384][T25849]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1609.107187][T25849]  ? memset+0x1f/0x40
[ 1609.111155][T25849]  ? __hrtimer_init+0x173/0x250
[ 1609.116013][T25849]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1609.121782][T25849]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1609.126905][T25849]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1609.133239][T25849]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1609.139598][T25849]  genl_rcv_msg+0x1032/0x1480
[ 1609.144303][T25849]  ? genl_bind+0x360/0x360
[ 1609.148737][T25849]  ? __lock_acquire+0x1382/0x2b00
[ 1609.153782][T25849]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1609.159427][T25849]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1609.165772][T25849]  netlink_rcv_skb+0x200/0x470
[ 1609.170546][T25849]  ? genl_bind+0x360/0x360
[ 1609.174952][T25849]  ? netlink_ack+0xb70/0xb70
[ 1609.179540][T25849]  ? __down_read_common+0x1b0/0x450
[ 1609.184752][T25849]  ? up_read_non_owner+0x1c0/0x1c0
[ 1609.189864][T25849]  ? netlink_deliver_tap+0x130/0x880
[ 1609.195159][T25849]  genl_rcv+0x24/0x40
[ 1609.199144][T25849]  netlink_unicast+0x814/0x9f0
[ 1609.204032][T25849]  ? netlink_detachskb+0xa0/0xa0
[ 1609.208964][T25849]  ? __virt_addr_valid+0xb8/0x2d0
[ 1609.214150][T25849]  ? __phys_addr_symbol+0x2b/0x70
[ 1609.219167][T25849]  ? __check_object_size+0x2f3/0x3f0
[ 1609.224465][T25849]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1609.229592][T25849]  netlink_sendmsg+0xaea/0xe60
[ 1609.234467][T25849]  ? memcpy+0x3c/0x60
[ 1609.238479][T25849]  ? netlink_getsockopt+0xa60/0xa60
[ 1609.243705][T25849]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1609.249001][T25849]  ? security_socket_sendmsg+0x9d/0xb0
[ 1609.254480][T25849]  ? netlink_getsockopt+0xa60/0xa60
[ 1609.259695][T25849]  ____sys_sendmsg+0x5b9/0x910
[ 1609.264489][T25849]  ? __sys_sendmsg_sock+0x30/0x30
[ 1609.269554][T25849]  __sys_sendmsg+0x280/0x370
[ 1609.274170][T25849]  ? ____sys_sendmsg+0x910/0x910
[ 1609.279149][T25849]  ? __context_tracking_exit+0x7a/0xd0
[ 1609.284639][T25849]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1609.290640][T25849]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1609.296646][T25849]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1609.302641][T25849]  ? lockdep_hardirqs_on+0x95/0x140
[ 1609.308031][T25849]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1609.314009][T25849]  do_syscall_64+0x44/0xd0
[ 1609.318421][T25849]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1609.324298][T25849] RIP: 0033:0x7f3e3559fe99
[ 1609.328715][T25849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1609.348312][T25849] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1609.356720][T25849] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1609.364686][T25849] RDX: 0000000008000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1609.372644][T25849] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1609.380603][T25849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1609.388558][T25849] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1609.396548][T25849]  </TASK>
[ 1609.423765][T25851] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1609.443500][T25851] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1609.460438][T25851] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1609.460438][T25851] !'
[ 1609.472286][T25851] CPU: 0 PID: 25851 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1609.481073][T25851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1609.491135][T25851] Call Trace:
[ 1609.494405][T25851]  <TASK>
[ 1609.497322][T25851]  dump_stack_lvl+0x201/0x2d8
[ 1609.502004][T25851]  ? show_regs_print_info+0x12/0x12
[ 1609.507216][T25851]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1609.512941][T25851]  sysfs_warn_dup+0x8c/0xa0
[ 1609.517447][T25851]  sysfs_do_create_link_sd+0xbe/0x100
[ 1609.522816][T25851]  device_add+0x9ea/0x16d0
[ 1609.527224][T25851]  ? wiphy_register+0x1b93/0x2a50
[ 1609.532251][T25851]  ? virtual_device_parent+0x50/0x50
[ 1609.537528][T25851]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1609.543505][T25851]  wiphy_register+0x1ba2/0x2a50
[ 1609.548359][T25851]  ? cfg80211_event_work+0x40/0x40
[ 1609.553467][T25851]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1609.559530][T25851]  ieee80211_register_hw+0x3063/0x3e10
[ 1609.565001][T25851]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1609.570811][T25851]  ? memset+0x1f/0x40
[ 1609.574784][T25851]  ? __hrtimer_init+0x173/0x250
[ 1609.579630][T25851]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1609.585364][T25851]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1609.590472][T25851]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1609.596801][T25851]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1609.603134][T25851]  genl_rcv_msg+0x1032/0x1480
[ 1609.607920][T25851]  ? genl_bind+0x360/0x360
[ 1609.612340][T25851]  ? __lock_acquire+0x1382/0x2b00
[ 1609.617380][T25851]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1609.623005][T25851]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1609.629347][T25851]  netlink_rcv_skb+0x200/0x470
[ 1609.634107][T25851]  ? genl_bind+0x360/0x360
[ 1609.638521][T25851]  ? netlink_ack+0xb70/0xb70
[ 1609.643102][T25851]  ? __down_read_common+0x1b0/0x450
[ 1609.648294][T25851]  ? up_read_non_owner+0x1c0/0x1c0
[ 1609.653394][T25851]  ? netlink_deliver_tap+0x130/0x880
[ 1609.658682][T25851]  genl_rcv+0x24/0x40
[ 1609.662744][T25851]  netlink_unicast+0x814/0x9f0
[ 1609.667513][T25851]  ? netlink_detachskb+0xa0/0xa0
[ 1609.672440][T25851]  ? __virt_addr_valid+0xb8/0x2d0
[ 1609.677458][T25851]  ? __phys_addr_symbol+0x2b/0x70
[ 1609.682531][T25851]  ? __check_object_size+0x2f3/0x3f0
[ 1609.688329][T25851]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1609.693435][T25851]  netlink_sendmsg+0xaea/0xe60
[ 1609.698190][T25851]  ? memcpy+0x3c/0x60
[ 1609.702175][T25851]  ? netlink_getsockopt+0xa60/0xa60
[ 1609.707370][T25851]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1609.712728][T25851]  ? security_socket_sendmsg+0x9d/0xb0
[ 1609.718178][T25851]  ? netlink_getsockopt+0xa60/0xa60
[ 1609.723367][T25851]  ____sys_sendmsg+0x5b9/0x910
[ 1609.728134][T25851]  ? __sys_sendmsg_sock+0x30/0x30
[ 1609.733165][T25851]  __sys_sendmsg+0x280/0x370
[ 1609.737746][T25851]  ? ____sys_sendmsg+0x910/0x910
[ 1609.742683][T25851]  ? __context_tracking_exit+0x7a/0xd0
[ 1609.748145][T25851]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1609.754116][T25851]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1609.760106][T25851]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1609.766073][T25851]  ? lockdep_hardirqs_on+0x95/0x140
[ 1609.771261][T25851]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1609.777232][T25851]  do_syscall_64+0x44/0xd0
[ 1609.781643][T25851]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1609.787524][T25851] RIP: 0033:0x7ffbc7e82e99
[ 1609.791931][T25851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1609.811528][T25851] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
22:51:39 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xf00)

22:51:39 executing program 3:
sendmsg$L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETDUPLEX(0xffffffffffffffff, 0x5016, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000600), 0x141, 0x0)

22:51:39 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xa00)

22:51:39 executing program 1:
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000600), 0x141, 0x0)
ioctl$SNDCTL_DSP_SETDUPLEX(r0, 0x5016, 0x0)

22:51:39 executing program 5:
syz_genetlink_get_family_id$l2tp(&(0x7f00000004c0), 0xffffffffffffffff)

22:51:39 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x80e0000)

[ 1609.819936][T25851] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1609.827904][T25851] RDX: 0000000000000e00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1609.835970][T25851] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1609.843935][T25851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1609.851897][T25851] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1609.859873][T25851]  </TASK>
22:51:39 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip_mr_cache\x00')
mmap$xdp(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)

22:51:39 executing program 3:
socket$inet_tcp(0x2, 0x1, 0x0)
pselect6(0x40, &(0x7f0000000000), &(0x7f0000000040)={0x9}, 0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100), 0x8})

[ 1609.923226][T25870] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1609.959827][T25870] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
22:51:39 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, 0x3, 0x6, 0x301, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x4000)

[ 1610.029307][T25870] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1610.029307][T25870] !'
[ 1610.057071][T25870] CPU: 1 PID: 25870 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1610.065884][T25870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1610.075958][T25870] Call Trace:
[ 1610.079252][T25870]  <TASK>
[ 1610.082194][T25870]  dump_stack_lvl+0x201/0x2d8
[ 1610.086898][T25870]  ? show_regs_print_info+0x12/0x12
[ 1610.092113][T25870]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1610.097854][T25870]  sysfs_warn_dup+0x8c/0xa0
[ 1610.102360][T25870]  sysfs_do_create_link_sd+0xbe/0x100
[ 1610.107812][T25870]  device_add+0x9ea/0x16d0
[ 1610.112229][T25870]  ? wiphy_register+0x1b93/0x2a50
[ 1610.117257][T25870]  ? virtual_device_parent+0x50/0x50
[ 1610.122534][T25870]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1610.128518][T25870]  wiphy_register+0x1ba2/0x2a50
[ 1610.133372][T25870]  ? cfg80211_event_work+0x40/0x40
[ 1610.138490][T25870]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1610.144661][T25870]  ieee80211_register_hw+0x3063/0x3e10
[ 1610.150151][T25870]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1610.156141][T25870]  ? memset+0x1f/0x40
[ 1610.160122][T25870]  ? __hrtimer_init+0x173/0x250
[ 1610.164979][T25870]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1610.170726][T25870]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1610.175839][T25870]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1610.182174][T25870]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1610.188514][T25870]  genl_rcv_msg+0x1032/0x1480
[ 1610.193191][T25870]  ? genl_bind+0x360/0x360
[ 1610.197607][T25870]  ? __lock_acquire+0x1382/0x2b00
[ 1610.202739][T25870]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1610.208366][T25870]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1610.214703][T25870]  netlink_rcv_skb+0x200/0x470
[ 1610.219476][T25870]  ? genl_bind+0x360/0x360
[ 1610.223893][T25870]  ? netlink_ack+0xb70/0xb70
[ 1610.228470][T25870]  ? __down_read_common+0x1b0/0x450
[ 1610.233659][T25870]  ? up_read_non_owner+0x1c0/0x1c0
[ 1610.238760][T25870]  ? netlink_deliver_tap+0x130/0x880
[ 1610.244050][T25870]  genl_rcv+0x24/0x40
[ 1610.248023][T25870]  netlink_unicast+0x814/0x9f0
[ 1610.252785][T25870]  ? netlink_detachskb+0xa0/0xa0
[ 1610.257711][T25870]  ? __virt_addr_valid+0xb8/0x2d0
[ 1610.262728][T25870]  ? __phys_addr_symbol+0x2b/0x70
[ 1610.267741][T25870]  ? __check_object_size+0x2f3/0x3f0
[ 1610.273017][T25870]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1610.278123][T25870]  netlink_sendmsg+0xaea/0xe60
[ 1610.282967][T25870]  ? memcpy+0x3c/0x60
[ 1610.286949][T25870]  ? netlink_getsockopt+0xa60/0xa60
[ 1610.292143][T25870]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1610.297418][T25870]  ? security_socket_sendmsg+0x9d/0xb0
[ 1610.302868][T25870]  ? netlink_getsockopt+0xa60/0xa60
[ 1610.308061][T25870]  ____sys_sendmsg+0x5b9/0x910
[ 1610.312825][T25870]  ? __sys_sendmsg_sock+0x30/0x30
[ 1610.317857][T25870]  __sys_sendmsg+0x280/0x370
[ 1610.322447][T25870]  ? ____sys_sendmsg+0x910/0x910
[ 1610.327386][T25870]  ? __context_tracking_exit+0x7a/0xd0
[ 1610.332857][T25870]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1610.338860][T25870]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1610.344872][T25870]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1610.350950][T25870]  ? lockdep_hardirqs_on+0x95/0x140
[ 1610.356150][T25870]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1610.362131][T25870]  do_syscall_64+0x44/0xd0
[ 1610.366549][T25870]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1610.372435][T25870] RIP: 0033:0x7f3e3559fe99
[ 1610.376842][T25870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1610.396548][T25870] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1610.404967][T25870] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1610.412929][T25870] RDX: 00000000080e0000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1610.420895][T25870] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
22:51:40 executing program 5:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0x40086602, 0x0)

[ 1610.428853][T25870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1610.436811][T25870] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1610.444785][T25870]  </TASK>
[ 1610.469900][T25873] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
22:51:40 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x0)

22:51:40 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x18, 0x1, 0x7, 0x101, 0x0, 0x0, {}, [@NFACCT_FILTER={0x4}]}, 0x18}}, 0x0)

[ 1610.486310][T25873] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1610.542281][T25873] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1610.542281][T25873] !'
[ 1610.593406][T25873] CPU: 0 PID: 25873 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1610.602745][T25873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1610.612817][T25873] Call Trace:
[ 1610.616118][T25873]  <TASK>
[ 1610.619065][T25873]  dump_stack_lvl+0x201/0x2d8
[ 1610.623772][T25873]  ? show_regs_print_info+0x12/0x12
[ 1610.629003][T25873]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1610.634764][T25873]  sysfs_warn_dup+0x8c/0xa0
[ 1610.639290][T25873]  sysfs_do_create_link_sd+0xbe/0x100
[ 1610.644805][T25873]  device_add+0x9ea/0x16d0
[ 1610.649241][T25873]  ? wiphy_register+0x1b93/0x2a50
[ 1610.654300][T25873]  ? virtual_device_parent+0x50/0x50
[ 1610.659601][T25873]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1610.665613][T25873]  wiphy_register+0x1ba2/0x2a50
[ 1610.670584][T25873]  ? cfg80211_event_work+0x40/0x40
[ 1610.675729][T25873]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1610.681820][T25873]  ieee80211_register_hw+0x3063/0x3e10
[ 1610.687586][T25873]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1610.693515][T25873]  ? memset+0x1f/0x40
[ 1610.697514][T25873]  ? __hrtimer_init+0x173/0x250
[ 1610.702391][T25873]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1610.708172][T25873]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1610.713313][T25873]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1610.719673][T25873]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1610.726034][T25873]  genl_rcv_msg+0x1032/0x1480
[ 1610.730744][T25873]  ? genl_bind+0x360/0x360
[ 1610.735197][T25873]  ? __lock_acquire+0x1382/0x2b00
[ 1610.740271][T25873]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1610.745916][T25873]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1610.752281][T25873]  netlink_rcv_skb+0x200/0x470
[ 1610.757056][T25873]  ? genl_bind+0x360/0x360
[ 1610.761471][T25873]  ? netlink_ack+0xb70/0xb70
[ 1610.766075][T25873]  ? __down_read_common+0x1b0/0x450
[ 1610.771288][T25873]  ? up_read_non_owner+0x1c0/0x1c0
[ 1610.776405][T25873]  ? netlink_deliver_tap+0x130/0x880
[ 1610.781702][T25873]  genl_rcv+0x24/0x40
[ 1610.785704][T25873]  netlink_unicast+0x814/0x9f0
[ 1610.790488][T25873]  ? netlink_detachskb+0xa0/0xa0
[ 1610.795430][T25873]  ? __virt_addr_valid+0xb8/0x2d0
[ 1610.800450][T25873]  ? __phys_addr_symbol+0x2b/0x70
[ 1610.805483][T25873]  ? __check_object_size+0x2f3/0x3f0
[ 1610.810764][T25873]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1610.815883][T25873]  netlink_sendmsg+0xaea/0xe60
[ 1610.820648][T25873]  ? memcpy+0x3c/0x60
[ 1610.824658][T25873]  ? netlink_getsockopt+0xa60/0xa60
[ 1610.829881][T25873]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1610.835179][T25873]  ? security_socket_sendmsg+0x9d/0xb0
[ 1610.840634][T25873]  ? netlink_getsockopt+0xa60/0xa60
[ 1610.846017][T25873]  ____sys_sendmsg+0x5b9/0x910
[ 1610.850789][T25873]  ? __sys_sendmsg_sock+0x30/0x30
[ 1610.855922][T25873]  __sys_sendmsg+0x280/0x370
[ 1610.860508][T25873]  ? ____sys_sendmsg+0x910/0x910
[ 1610.865465][T25873]  ? __context_tracking_exit+0x7a/0xd0
[ 1610.870934][T25873]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1610.876921][T25873]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1610.883013][T25873]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1610.888987][T25873]  ? lockdep_hardirqs_on+0x95/0x140
[ 1610.894193][T25873]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1610.900188][T25873]  do_syscall_64+0x44/0xd0
[ 1610.904617][T25873]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1610.910502][T25873] RIP: 0033:0x7fda9f984e99
[ 1610.914926][T25873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1610.934604][T25873] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1610.943014][T25873] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1610.950996][T25873] RDX: 0000000000000a00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1610.958976][T25873] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1610.966949][T25873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1610.975010][T25873] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1610.983001][T25873]  </TASK>
[ 1610.992177][T25875] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1611.001516][T25875] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1611.026263][T25875] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1611.026263][T25875] !'
[ 1611.038642][T25875] CPU: 0 PID: 25875 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1611.047524][T25875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1611.057596][T25875] Call Trace:
[ 1611.060891][T25875]  <TASK>
[ 1611.063834][T25875]  dump_stack_lvl+0x201/0x2d8
[ 1611.068545][T25875]  ? show_regs_print_info+0x12/0x12
[ 1611.073758][T25875]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1611.079584][T25875]  sysfs_warn_dup+0x8c/0xa0
[ 1611.084096][T25875]  sysfs_do_create_link_sd+0xbe/0x100
[ 1611.089466][T25875]  device_add+0x9ea/0x16d0
[ 1611.093889][T25875]  ? wiphy_register+0x1b93/0x2a50
[ 1611.098975][T25875]  ? virtual_device_parent+0x50/0x50
[ 1611.104285][T25875]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1611.110294][T25875]  wiphy_register+0x1ba2/0x2a50
[ 1611.115251][T25875]  ? cfg80211_event_work+0x40/0x40
[ 1611.120367][T25875]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1611.126522][T25875]  ieee80211_register_hw+0x3063/0x3e10
[ 1611.131996][T25875]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1611.137809][T25875]  ? memset+0x1f/0x40
[ 1611.141789][T25875]  ? __hrtimer_init+0x173/0x250
[ 1611.146649][T25875]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1611.152476][T25875]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1611.157596][T25875]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1611.164804][T25875]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1611.171150][T25875]  genl_rcv_msg+0x1032/0x1480
[ 1611.175847][T25875]  ? genl_bind+0x360/0x360
[ 1611.180278][T25875]  ? __lock_acquire+0x1382/0x2b00
[ 1611.185328][T25875]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1611.191030][T25875]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1611.197368][T25875]  netlink_rcv_skb+0x200/0x470
[ 1611.202142][T25875]  ? genl_bind+0x360/0x360
[ 1611.206556][T25875]  ? netlink_ack+0xb70/0xb70
[ 1611.211134][T25875]  ? __down_read_common+0x1b0/0x450
[ 1611.216412][T25875]  ? up_read_non_owner+0x1c0/0x1c0
[ 1611.221511][T25875]  ? netlink_deliver_tap+0x130/0x880
[ 1611.226808][T25875]  genl_rcv+0x24/0x40
[ 1611.230784][T25875]  netlink_unicast+0x814/0x9f0
[ 1611.235547][T25875]  ? netlink_detachskb+0xa0/0xa0
[ 1611.240473][T25875]  ? __virt_addr_valid+0xb8/0x2d0
[ 1611.245487][T25875]  ? __phys_addr_symbol+0x2b/0x70
[ 1611.250501][T25875]  ? __check_object_size+0x2f3/0x3f0
[ 1611.255776][T25875]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1611.260883][T25875]  netlink_sendmsg+0xaea/0xe60
[ 1611.265645][T25875]  ? memcpy+0x3c/0x60
[ 1611.269660][T25875]  ? netlink_getsockopt+0xa60/0xa60
[ 1611.274867][T25875]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1611.280314][T25875]  ? security_socket_sendmsg+0x9d/0xb0
[ 1611.285773][T25875]  ? netlink_getsockopt+0xa60/0xa60
[ 1611.290970][T25875]  ____sys_sendmsg+0x5b9/0x910
[ 1611.295739][T25875]  ? __sys_sendmsg_sock+0x30/0x30
[ 1611.300771][T25875]  __sys_sendmsg+0x280/0x370
[ 1611.305359][T25875]  ? ____sys_sendmsg+0x910/0x910
[ 1611.310304][T25875]  ? __context_tracking_exit+0x7a/0xd0
[ 1611.315765][T25875]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1611.321738][T25875]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1611.327719][T25875]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1611.333687][T25875]  ? lockdep_hardirqs_on+0x95/0x140
[ 1611.338877][T25875]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1611.344861][T25875]  do_syscall_64+0x44/0xd0
[ 1611.349278][T25875]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1611.355163][T25875] RIP: 0033:0x7ffbc7e82e99
[ 1611.359743][T25875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1611.379340][T25875] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1611.388191][T25875] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1611.396159][T25875] RDX: 0000000000000f00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1611.404118][T25875] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1611.412165][T25875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1611.420126][T25875] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1611.428102][T25875]  </TASK>
22:51:41 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1100)

22:51:41 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x3, 0x6, 0x301}, 0x14}}, 0x0)

22:51:41 executing program 5:
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x44200, 0x0)

22:51:41 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x9000000)

22:51:41 executing program 3:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x12, 0x0, 0x0)

22:51:41 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xb00)

22:51:41 executing program 3:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCGIFMTU(r0, 0x8983, &(0x7f00000000c0)={'sit0\x00'})

22:51:41 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpid()
r0 = getpgid(0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, r0, 0x0, 0xffffffffffffffff, 0x1)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB], &(0x7f00000000c0)='./file0\x00', 0x0, 0x1411032, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r2, &(0x7f00000002c0)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r1)
write(r2, &(0x7f0000000000)="05", 0xe7b78)
sendmmsg(0xffffffffffffffff, &(0x7f00000000c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffe0}}], 0x1, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'})
write$tun(0xffffffffffffffff, 0x0, 0x5a)

[ 1611.520347][T25895] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1611.552152][T25895] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
22:51:41 executing program 5:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0d05605, &(0x7f0000000000))

[ 1611.598355][T25895] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1611.598355][T25895] !'
[ 1611.628700][T25895] CPU: 1 PID: 25895 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1611.637516][T25895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
22:51:41 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002040)={&(0x7f0000001fc0)={0x2c, 0x1, 0x3, 0x301, 0x0, 0x0, {}, [@NFQA_MARK={0x8}, @NFQA_VERDICT_HDR={0xc}, @NFQA_VLAN={0x4}]}, 0x2c}}, 0x0)

[ 1611.647596][T25895] Call Trace:
[ 1611.650894][T25895]  <TASK>
[ 1611.653840][T25895]  dump_stack_lvl+0x201/0x2d8
[ 1611.658641][T25895]  ? show_regs_print_info+0x12/0x12
[ 1611.663863][T25895]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1611.669621][T25895]  sysfs_warn_dup+0x8c/0xa0
[ 1611.674146][T25895]  sysfs_do_create_link_sd+0xbe/0x100
[ 1611.679547][T25895]  device_add+0x9ea/0x16d0
[ 1611.684006][T25895]  ? wiphy_register+0x1b93/0x2a50
[ 1611.689066][T25895]  ? virtual_device_parent+0x50/0x50
22:51:41 executing program 5:
r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000440), 0x240284, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f00000004c0), r0)

[ 1611.694381][T25895]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1611.700394][T25895]  wiphy_register+0x1ba2/0x2a50
[ 1611.705284][T25895]  ? cfg80211_event_work+0x40/0x40
[ 1611.710429][T25895]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1611.716521][T25895]  ieee80211_register_hw+0x3063/0x3e10
[ 1611.722018][T25895]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1611.727859][T25895]  ? memset+0x1f/0x40
[ 1611.731862][T25895]  ? __hrtimer_init+0x173/0x250
[ 1611.736737][T25895]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1611.742595][T25895]  hwsim_new_radio_nl+0xc5f/0x1130
22:51:41 executing program 5:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0x5421, &(0x7f0000000000))

[ 1611.747739][T25895]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1611.754101][T25895]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1611.760463][T25895]  genl_rcv_msg+0x1032/0x1480
[ 1611.765180][T25895]  ? genl_bind+0x360/0x360
[ 1611.769620][T25895]  ? __lock_acquire+0x1382/0x2b00
[ 1611.774687][T25895]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1611.780339][T25895]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1611.786713][T25895]  netlink_rcv_skb+0x200/0x470
[ 1611.791496][T25895]  ? genl_bind+0x360/0x360
[ 1611.795938][T25895]  ? netlink_ack+0xb70/0xb70
[ 1611.800544][T25895]  ? __down_read_common+0x1b0/0x450
[ 1611.805763][T25895]  ? up_read_non_owner+0x1c0/0x1c0
[ 1611.810885][T25895]  ? netlink_deliver_tap+0x130/0x880
[ 1611.816203][T25895]  genl_rcv+0x24/0x40
[ 1611.820201][T25895]  netlink_unicast+0x814/0x9f0
[ 1611.824994][T25895]  ? netlink_detachskb+0xa0/0xa0
[ 1611.829937][T25895]  ? __virt_addr_valid+0xb8/0x2d0
[ 1611.834969][T25895]  ? __phys_addr_symbol+0x2b/0x70
[ 1611.840000][T25895]  ? __check_object_size+0x2f3/0x3f0
[ 1611.845295][T25895]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1611.850424][T25895]  netlink_sendmsg+0xaea/0xe60
[ 1611.855203][T25895]  ? memcpy+0x3c/0x60
[ 1611.859209][T25895]  ? netlink_getsockopt+0xa60/0xa60
[ 1611.864432][T25895]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1611.869722][T25895]  ? security_socket_sendmsg+0x9d/0xb0
[ 1611.875193][T25895]  ? netlink_getsockopt+0xa60/0xa60
[ 1611.880407][T25895]  ____sys_sendmsg+0x5b9/0x910
[ 1611.885198][T25895]  ? __sys_sendmsg_sock+0x30/0x30
[ 1611.890261][T25895]  __sys_sendmsg+0x280/0x370
[ 1611.894890][T25895]  ? ____sys_sendmsg+0x910/0x910
[ 1611.899864][T25895]  ? __context_tracking_exit+0x7a/0xd0
[ 1611.905359][T25895]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1611.911360][T25895]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1611.917378][T25895]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1611.923374][T25895]  ? lockdep_hardirqs_on+0x95/0x140
[ 1611.928594][T25895]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1611.934686][T25895]  do_syscall_64+0x44/0xd0
[ 1611.939140][T25895]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1611.945061][T25895] RIP: 0033:0x7f3e3559fe99
[ 1611.949495][T25895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1611.969105][T25895] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1611.977538][T25895] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1611.985525][T25895] RDX: 0000000009000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1611.993516][T25895] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1612.001502][T25895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1612.009487][T25895] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1612.017497][T25895]  </TASK>
[ 1612.075355][T25893] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1612.084671][T25893] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1612.097087][T25893] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1612.097087][T25893] !'
[ 1612.107635][T25893] CPU: 0 PID: 25893 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1612.116510][T25893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1612.126580][T25893] Call Trace:
[ 1612.129871][T25893]  <TASK>
[ 1612.132812][T25893]  dump_stack_lvl+0x201/0x2d8
[ 1612.137521][T25893]  ? show_regs_print_info+0x12/0x12
[ 1612.142740][T25893]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1612.148508][T25893]  sysfs_warn_dup+0x8c/0xa0
[ 1612.153027][T25893]  sysfs_do_create_link_sd+0xbe/0x100
[ 1612.158404][T25893]  device_add+0x9ea/0x16d0
[ 1612.162818][T25893]  ? wiphy_register+0x1b93/0x2a50
[ 1612.167852][T25893]  ? virtual_device_parent+0x50/0x50
[ 1612.173139][T25893]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1612.179131][T25893]  wiphy_register+0x1ba2/0x2a50
[ 1612.184004][T25893]  ? cfg80211_event_work+0x40/0x40
[ 1612.189121][T25893]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1612.195290][T25893]  ieee80211_register_hw+0x3063/0x3e10
[ 1612.200769][T25893]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1612.206578][T25893]  ? memset+0x1f/0x40
[ 1612.210551][T25893]  ? __hrtimer_init+0x173/0x250
[ 1612.215398][T25893]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1612.221145][T25893]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1612.226255][T25893]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1612.232584][T25893]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1612.238922][T25893]  genl_rcv_msg+0x1032/0x1480
[ 1612.243605][T25893]  ? genl_bind+0x360/0x360
[ 1612.248108][T25893]  ? __lock_acquire+0x1382/0x2b00
[ 1612.253145][T25893]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1612.258767][T25893]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1612.265099][T25893]  netlink_rcv_skb+0x200/0x470
[ 1612.269945][T25893]  ? genl_bind+0x360/0x360
[ 1612.274355][T25893]  ? netlink_ack+0xb70/0xb70
[ 1612.278934][T25893]  ? __down_read_common+0x1b0/0x450
[ 1612.284127][T25893]  ? up_read_non_owner+0x1c0/0x1c0
[ 1612.289226][T25893]  ? netlink_deliver_tap+0x130/0x880
[ 1612.294518][T25893]  genl_rcv+0x24/0x40
[ 1612.298490][T25893]  netlink_unicast+0x814/0x9f0
[ 1612.303253][T25893]  ? netlink_detachskb+0xa0/0xa0
[ 1612.308179][T25893]  ? __virt_addr_valid+0xb8/0x2d0
[ 1612.313198][T25893]  ? __phys_addr_symbol+0x2b/0x70
[ 1612.318228][T25893]  ? __check_object_size+0x2f3/0x3f0
[ 1612.323532][T25893]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1612.328648][T25893]  netlink_sendmsg+0xaea/0xe60
[ 1612.333419][T25893]  ? memcpy+0x3c/0x60
[ 1612.337409][T25893]  ? netlink_getsockopt+0xa60/0xa60
[ 1612.342697][T25893]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1612.347980][T25893]  ? security_socket_sendmsg+0x9d/0xb0
[ 1612.353438][T25893]  ? netlink_getsockopt+0xa60/0xa60
[ 1612.358630][T25893]  ____sys_sendmsg+0x5b9/0x910
[ 1612.363399][T25893]  ? __sys_sendmsg_sock+0x30/0x30
[ 1612.368431][T25893]  __sys_sendmsg+0x280/0x370
[ 1612.373039][T25893]  ? ____sys_sendmsg+0x910/0x910
[ 1612.377998][T25893]  ? __context_tracking_exit+0x7a/0xd0
[ 1612.383661][T25893]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1612.389649][T25893]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1612.395641][T25893]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1612.401632][T25893]  ? lockdep_hardirqs_on+0x95/0x140
[ 1612.406824][T25893]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1612.412803][T25893]  do_syscall_64+0x44/0xd0
[ 1612.417228][T25893]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1612.423118][T25893] RIP: 0033:0x7fda9f984e99
[ 1612.427706][T25893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1612.447304][T25893] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1612.455721][T25893] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1612.463690][T25893] RDX: 0000000000000b00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1612.471654][T25893] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1612.479620][T25893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1612.487579][T25893] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1612.495559][T25893]  </TASK>
[ 1612.556574][T25899] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1612.580286][T25899] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1612.596180][T25899] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1612.596180][T25899] !'
[ 1612.615025][T25899] CPU: 1 PID: 25899 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1612.623845][T25899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1612.633914][T25899] Call Trace:
[ 1612.637205][T25899]  <TASK>
[ 1612.640141][T25899]  dump_stack_lvl+0x201/0x2d8
[ 1612.644848][T25899]  ? show_regs_print_info+0x12/0x12
[ 1612.650062][T25899]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1612.655816][T25899]  sysfs_warn_dup+0x8c/0xa0
[ 1612.660331][T25899]  sysfs_do_create_link_sd+0xbe/0x100
[ 1612.665695][T25899]  device_add+0x9ea/0x16d0
[ 1612.670223][T25899]  ? wiphy_register+0x1b93/0x2a50
[ 1612.675315][T25899]  ? virtual_device_parent+0x50/0x50
[ 1612.680586][T25899]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1612.686554][T25899]  wiphy_register+0x1ba2/0x2a50
[ 1612.691394][T25899]  ? cfg80211_event_work+0x40/0x40
[ 1612.696492][T25899]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1612.702542][T25899]  ieee80211_register_hw+0x3063/0x3e10
[ 1612.707998][T25899]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1612.713792][T25899]  ? memset+0x1f/0x40
[ 1612.717758][T25899]  ? __hrtimer_init+0x173/0x250
[ 1612.722601][T25899]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1612.728319][T25899]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1612.733416][T25899]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1612.739736][T25899]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1612.746057][T25899]  genl_rcv_msg+0x1032/0x1480
[ 1612.750730][T25899]  ? genl_bind+0x360/0x360
[ 1612.755139][T25899]  ? __lock_acquire+0x1382/0x2b00
[ 1612.760162][T25899]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1612.765777][T25899]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1612.772105][T25899]  netlink_rcv_skb+0x200/0x470
[ 1612.776861][T25899]  ? genl_bind+0x360/0x360
[ 1612.781266][T25899]  ? netlink_ack+0xb70/0xb70
[ 1612.785839][T25899]  ? __down_read_common+0x1b0/0x450
[ 1612.791283][T25899]  ? up_read_non_owner+0x1c0/0x1c0
[ 1612.796374][T25899]  ? netlink_deliver_tap+0x130/0x880
[ 1612.801649][T25899]  genl_rcv+0x24/0x40
[ 1612.805621][T25899]  netlink_unicast+0x814/0x9f0
[ 1612.810375][T25899]  ? netlink_detachskb+0xa0/0xa0
[ 1612.815290][T25899]  ? __virt_addr_valid+0xb8/0x2d0
[ 1612.820298][T25899]  ? __phys_addr_symbol+0x2b/0x70
[ 1612.825304][T25899]  ? __check_object_size+0x2f3/0x3f0
[ 1612.830571][T25899]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1612.835783][T25899]  netlink_sendmsg+0xaea/0xe60
[ 1612.840530][T25899]  ? memcpy+0x3c/0x60
[ 1612.844502][T25899]  ? netlink_getsockopt+0xa60/0xa60
[ 1612.849688][T25899]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1612.854953][T25899]  ? security_socket_sendmsg+0x9d/0xb0
[ 1612.860395][T25899]  ? netlink_getsockopt+0xa60/0xa60
[ 1612.865577][T25899]  ____sys_sendmsg+0x5b9/0x910
[ 1612.870332][T25899]  ? __sys_sendmsg_sock+0x30/0x30
[ 1612.875355][T25899]  __sys_sendmsg+0x280/0x370
[ 1612.879938][T25899]  ? ____sys_sendmsg+0x910/0x910
[ 1612.884870][T25899]  ? __context_tracking_exit+0x7a/0xd0
[ 1612.890321][T25899]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1612.896284][T25899]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1612.902256][T25899]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1612.908215][T25899]  ? lockdep_hardirqs_on+0x95/0x140
[ 1612.913393][T25899]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1612.919354][T25899]  do_syscall_64+0x44/0xd0
[ 1612.923759][T25899]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1612.929633][T25899] RIP: 0033:0x7ffbc7e82e99
[ 1612.934029][T25899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1612.953612][T25899] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1612.962005][T25899] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1612.969957][T25899] RDX: 0000000000001100 RSI: 0000000020000000 RDI: 0000000000000003
[ 1612.977912][T25899] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1612.985889][T25899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1612.993845][T25899] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1613.001813][T25899]  </TASK>
22:51:42 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1200)

22:51:42 executing program 5:
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000600), 0x141, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5008, 0x0)

22:51:42 executing program 3:
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc3}, &(0x7f0000000080)={0x0, "466f599e82f5c8db748c48483f31568a0dd4326d03dc7b87a92435ad264587569aa18a83cb7daf861daa04ea47344192022148c8f556ece4183e07ac494f65e5"}, 0x48, 0xfffffffffffffffe)
socket(0x0, 0x0, 0x0)
add_key$keyring(&(0x7f0000000140), 0x0, 0x0, 0x0, r0)

22:51:42 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xa000000)

22:51:42 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpid()
r0 = getpgid(0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, r0, 0x0, 0xffffffffffffffff, 0x1)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB], &(0x7f00000000c0)='./file0\x00', 0x0, 0x1411032, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r2, &(0x7f00000002c0)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r1)
write(r2, &(0x7f0000000000)="05", 0xe7b78)
sendmmsg(0xffffffffffffffff, &(0x7f00000000c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffe0}}], 0x1, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'})
write$tun(0xffffffffffffffff, 0x0, 0x5a)

22:51:42 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xb9a)

[ 1613.085022][T26018] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1613.195554][T26018] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
22:51:42 executing program 5:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCGIFMTU(r0, 0x40086602, &(0x7f00000000c0)={'sit0\x00'})

[ 1613.244203][T26018] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1613.244203][T26018] !'
[ 1613.269762][T26018] CPU: 0 PID: 26018 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1613.278580][T26018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1613.288660][T26018] Call Trace:
[ 1613.291955][T26018]  <TASK>
[ 1613.294900][T26018]  dump_stack_lvl+0x201/0x2d8
[ 1613.299604][T26018]  ? show_regs_print_info+0x12/0x12
[ 1613.304831][T26018]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1613.310596][T26018]  sysfs_warn_dup+0x8c/0xa0
[ 1613.315131][T26018]  sysfs_do_create_link_sd+0xbe/0x100
[ 1613.320522][T26018]  device_add+0x9ea/0x16d0
[ 1613.324950][T26018]  ? wiphy_register+0x1b93/0x2a50
[ 1613.330000][T26018]  ? virtual_device_parent+0x50/0x50
[ 1613.335302][T26018]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1613.341314][T26018]  wiphy_register+0x1ba2/0x2a50
[ 1613.346205][T26018]  ? cfg80211_event_work+0x40/0x40
[ 1613.351352][T26018]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1613.357436][T26018]  ieee80211_register_hw+0x3063/0x3e10
[ 1613.362935][T26018]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1613.368946][T26018]  ? memset+0x1f/0x40
[ 1613.373038][T26018]  ? __hrtimer_init+0x173/0x250
[ 1613.377897][T26018]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1613.383727][T26018]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1613.388843][T26018]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1613.395197][T26018]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1613.401534][T26018]  genl_rcv_msg+0x1032/0x1480
[ 1613.406219][T26018]  ? genl_bind+0x360/0x360
[ 1613.410647][T26018]  ? __lock_acquire+0x1382/0x2b00
[ 1613.415688][T26018]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1613.421327][T26018]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1613.427662][T26018]  netlink_rcv_skb+0x200/0x470
[ 1613.432421][T26018]  ? genl_bind+0x360/0x360
[ 1613.436835][T26018]  ? netlink_ack+0xb70/0xb70
[ 1613.441415][T26018]  ? __down_read_common+0x1b0/0x450
[ 1613.446608][T26018]  ? up_read_non_owner+0x1c0/0x1c0
[ 1613.451711][T26018]  ? netlink_deliver_tap+0x130/0x880
[ 1613.457022][T26018]  genl_rcv+0x24/0x40
[ 1613.461001][T26018]  netlink_unicast+0x814/0x9f0
[ 1613.465765][T26018]  ? netlink_detachskb+0xa0/0xa0
[ 1613.470695][T26018]  ? __virt_addr_valid+0xb8/0x2d0
[ 1613.475723][T26018]  ? __phys_addr_symbol+0x2b/0x70
[ 1613.480739][T26018]  ? __check_object_size+0x2f3/0x3f0
[ 1613.486017][T26018]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1613.491123][T26018]  netlink_sendmsg+0xaea/0xe60
[ 1613.495880][T26018]  ? memcpy+0x3c/0x60
[ 1613.499861][T26018]  ? netlink_getsockopt+0xa60/0xa60
[ 1613.505056][T26018]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1613.510415][T26018]  ? security_socket_sendmsg+0x9d/0xb0
[ 1613.515870][T26018]  ? netlink_getsockopt+0xa60/0xa60
[ 1613.521059][T26018]  ____sys_sendmsg+0x5b9/0x910
[ 1613.525824][T26018]  ? __sys_sendmsg_sock+0x30/0x30
[ 1613.530855][T26018]  __sys_sendmsg+0x280/0x370
[ 1613.535525][T26018]  ? ____sys_sendmsg+0x910/0x910
[ 1613.540466][T26018]  ? __context_tracking_exit+0x7a/0xd0
[ 1613.545927][T26018]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1613.551908][T26018]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1613.557887][T26018]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1613.563860][T26018]  ? lockdep_hardirqs_on+0x95/0x140
[ 1613.569051][T26018]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1613.575021][T26018]  do_syscall_64+0x44/0xd0
[ 1613.579438][T26018]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1613.585323][T26018] RIP: 0033:0x7f3e3559fe99
[ 1613.589733][T26018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1613.609414][T26018] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1613.617819][T26018] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1613.625779][T26018] RDX: 000000000a000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1613.633744][T26018] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1613.641707][T26018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1613.649666][T26018] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1613.657643][T26018]  </TASK>
[ 1613.689071][T26021] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
22:51:43 executing program 3:
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000200), 0x24080, 0x0)

[ 1613.738659][T26021] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:51:43 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "0c0b0142247c7f5b5927966d07489a6724cc1a"})
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000200))
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f00000000c0)=[{&(0x7f0000001940)=""/4076, 0xfec}], 0x1)

22:51:43 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xb000000)

[ 1613.801289][T26021] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1613.801289][T26021] !'
[ 1613.838999][T26021] CPU: 0 PID: 26021 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1613.847814][T26021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1613.857882][T26021] Call Trace:
[ 1613.861169][T26021]  <TASK>
[ 1613.864196][T26021]  dump_stack_lvl+0x201/0x2d8
[ 1613.868896][T26021]  ? show_regs_print_info+0x12/0x12
[ 1613.874108][T26021]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1613.879868][T26021]  sysfs_warn_dup+0x8c/0xa0
[ 1613.884383][T26021]  sysfs_do_create_link_sd+0xbe/0x100
[ 1613.889767][T26021]  device_add+0x9ea/0x16d0
[ 1613.894194][T26021]  ? wiphy_register+0x1b93/0x2a50
[ 1613.899244][T26021]  ? virtual_device_parent+0x50/0x50
[ 1613.904539][T26021]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1613.910529][T26021]  wiphy_register+0x1ba2/0x2a50
[ 1613.915385][T26021]  ? cfg80211_event_work+0x40/0x40
[ 1613.920497][T26021]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1613.926561][T26021]  ieee80211_register_hw+0x3063/0x3e10
[ 1613.932031][T26021]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1613.937839][T26021]  ? memset+0x1f/0x40
[ 1613.941812][T26021]  ? __hrtimer_init+0x173/0x250
[ 1613.946662][T26021]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1613.952404][T26021]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1613.957512][T26021]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1613.963842][T26021]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1613.970205][T26021]  genl_rcv_msg+0x1032/0x1480
[ 1613.974908][T26021]  ? genl_bind+0x360/0x360
[ 1613.979326][T26021]  ? __lock_acquire+0x1382/0x2b00
[ 1613.984373][T26021]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1613.990006][T26021]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1613.996356][T26021]  netlink_rcv_skb+0x200/0x470
[ 1614.001150][T26021]  ? genl_bind+0x360/0x360
[ 1614.005573][T26021]  ? netlink_ack+0xb70/0xb70
[ 1614.010177][T26021]  ? __down_read_common+0x1b0/0x450
[ 1614.015379][T26021]  ? up_read_non_owner+0x1c0/0x1c0
[ 1614.020479][T26021]  ? netlink_deliver_tap+0x130/0x880
[ 1614.025767][T26021]  genl_rcv+0x24/0x40
[ 1614.029742][T26021]  netlink_unicast+0x814/0x9f0
[ 1614.034503][T26021]  ? netlink_detachskb+0xa0/0xa0
[ 1614.039428][T26021]  ? __virt_addr_valid+0xb8/0x2d0
[ 1614.044444][T26021]  ? __phys_addr_symbol+0x2b/0x70
[ 1614.049456][T26021]  ? __check_object_size+0x2f3/0x3f0
[ 1614.054736][T26021]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1614.059838][T26021]  netlink_sendmsg+0xaea/0xe60
[ 1614.064592][T26021]  ? memcpy+0x3c/0x60
[ 1614.068571][T26021]  ? netlink_getsockopt+0xa60/0xa60
[ 1614.073766][T26021]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1614.079037][T26021]  ? security_socket_sendmsg+0x9d/0xb0
[ 1614.084486][T26021]  ? netlink_getsockopt+0xa60/0xa60
[ 1614.089675][T26021]  ____sys_sendmsg+0x5b9/0x910
[ 1614.094442][T26021]  ? __sys_sendmsg_sock+0x30/0x30
[ 1614.099558][T26021]  __sys_sendmsg+0x280/0x370
[ 1614.104139][T26021]  ? ____sys_sendmsg+0x910/0x910
[ 1614.109086][T26021]  ? __context_tracking_exit+0x7a/0xd0
[ 1614.114651][T26021]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1614.120629][T26021]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1614.126616][T26021]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1614.132602][T26021]  ? lockdep_hardirqs_on+0x95/0x140
[ 1614.137797][T26021]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1614.143773][T26021]  do_syscall_64+0x44/0xd0
[ 1614.148199][T26021]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1614.154103][T26021] RIP: 0033:0x7fda9f984e99
[ 1614.158533][T26021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1614.178158][T26021] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1614.186571][T26021] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1614.194532][T26021] RDX: 0000000000000b9a RSI: 0000000020000000 RDI: 0000000000000003
[ 1614.202492][T26021] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1614.210447][T26021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1614.218405][T26021] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1614.226381][T26021]  </TASK>
22:51:43 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "0c0b0142247c7f5b5927966d07489a6724cc1a"})
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000200))
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f00000000c0)=[{&(0x7f0000001940)=""/4076, 0xfec}], 0x1)

22:51:44 executing program 3:
pipe2(&(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$FUSE_ENTRY(r0, &(0x7f00000001c0)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00, 0xee01}}}, 0x90)

[ 1614.384721][T26024] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1614.405514][T26024] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1614.494536][T26024] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1614.494536][T26024] !'
[ 1614.549652][T26024] CPU: 0 PID: 26024 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1614.558473][T26024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1614.568583][T26024] Call Trace:
[ 1614.571877][T26024]  <TASK>
[ 1614.574824][T26024]  dump_stack_lvl+0x201/0x2d8
[ 1614.579529][T26024]  ? show_regs_print_info+0x12/0x12
[ 1614.584744][T26024]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1614.590502][T26024]  sysfs_warn_dup+0x8c/0xa0
[ 1614.595024][T26024]  sysfs_do_create_link_sd+0xbe/0x100
[ 1614.600414][T26024]  device_add+0x9ea/0x16d0
[ 1614.604849][T26024]  ? wiphy_register+0x1b93/0x2a50
[ 1614.609908][T26024]  ? virtual_device_parent+0x50/0x50
[ 1614.615210][T26024]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1614.621224][T26024]  wiphy_register+0x1ba2/0x2a50
[ 1614.626115][T26024]  ? cfg80211_event_work+0x40/0x40
[ 1614.631261][T26024]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1614.637355][T26024]  ieee80211_register_hw+0x3063/0x3e10
[ 1614.642863][T26024]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1614.648700][T26024]  ? memset+0x1f/0x40
[ 1614.652695][T26024]  ? __hrtimer_init+0x173/0x250
[ 1614.657569][T26024]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1614.663339][T26024]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1614.668478][T26024]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1614.674841][T26024]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1614.681199][T26024]  genl_rcv_msg+0x1032/0x1480
[ 1614.685906][T26024]  ? trace_hardirqs_on+0x30/0x80
[ 1614.690871][T26024]  ? genl_bind+0x360/0x360
[ 1614.695308][T26024]  ? swake_up_one+0x82/0x150
[ 1614.699923][T26024]  ? __lock_acquire+0x1382/0x2b00
[ 1614.704997][T26024]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1614.710647][T26024]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1614.717012][T26024]  netlink_rcv_skb+0x200/0x470
[ 1614.721793][T26024]  ? genl_bind+0x360/0x360
[ 1614.726229][T26024]  ? netlink_ack+0xb70/0xb70
[ 1614.730836][T26024]  ? __down_read_common+0x1b0/0x450
[ 1614.736035][T26024]  ? up_read_non_owner+0x1c0/0x1c0
[ 1614.741221][T26024]  ? netlink_deliver_tap+0x130/0x880
[ 1614.746512][T26024]  genl_rcv+0x24/0x40
[ 1614.750486][T26024]  netlink_unicast+0x814/0x9f0
[ 1614.755263][T26024]  ? netlink_detachskb+0xa0/0xa0
[ 1614.760192][T26024]  ? __virt_addr_valid+0xb8/0x2d0
[ 1614.765300][T26024]  ? __phys_addr_symbol+0x2b/0x70
[ 1614.770314][T26024]  ? __check_object_size+0x2f3/0x3f0
[ 1614.775599][T26024]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1614.780712][T26024]  netlink_sendmsg+0xaea/0xe60
[ 1614.785470][T26024]  ? memcpy+0x3c/0x60
[ 1614.789462][T26024]  ? netlink_getsockopt+0xa60/0xa60
[ 1614.794665][T26024]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1614.799936][T26024]  ? security_socket_sendmsg+0x9d/0xb0
[ 1614.805387][T26024]  ? netlink_getsockopt+0xa60/0xa60
[ 1614.810576][T26024]  ____sys_sendmsg+0x5b9/0x910
[ 1614.815343][T26024]  ? __sys_sendmsg_sock+0x30/0x30
[ 1614.820385][T26024]  __sys_sendmsg+0x280/0x370
[ 1614.824978][T26024]  ? ____sys_sendmsg+0x910/0x910
[ 1614.829924][T26024]  ? __context_tracking_exit+0x7a/0xd0
[ 1614.835385][T26024]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1614.841357][T26024]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1614.847335][T26024]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1614.853305][T26024]  ? lockdep_hardirqs_on+0x95/0x140
[ 1614.858494][T26024]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1614.864469][T26024]  do_syscall_64+0x44/0xd0
[ 1614.868884][T26024]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1614.874770][T26024] RIP: 0033:0x7ffbc7e82e99
[ 1614.879177][T26024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1614.898774][T26024] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1614.907177][T26024] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1614.915135][T26024] RDX: 0000000000001200 RSI: 0000000020000000 RDI: 0000000000000003
[ 1614.923096][T26024] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1614.931143][T26024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1614.939188][T26024] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1614.947256][T26024]  </TASK>
22:51:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "0c0b0142247c7f5b5927966d07489a6724cc1a"})
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000200))
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f00000000c0)=[{&(0x7f0000001940)=""/4076, 0xfec}], 0x1)

22:51:44 executing program 1:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='auxv\x00')

22:51:44 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1800)

22:51:44 executing program 3:
syz_open_procfs(0x0, &(0x7f00000002c0)='maps\x00')

22:51:44 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xc00)

[ 1614.982916][T26231] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1615.005287][T26231] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
22:51:44 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
sendmsg$TIPC_CMD_SHOW_STATS(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0)

[ 1615.051956][T26231] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1615.051956][T26231] !'
[ 1615.087286][T26231] CPU: 0 PID: 26231 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
22:51:44 executing program 3:
r0 = semget$private(0x0, 0x3, 0x0)
semop(r0, &(0x7f0000000040)=[{0x0, 0xa125}], 0x1)

[ 1615.096105][T26231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1615.106184][T26231] Call Trace:
[ 1615.109480][T26231]  <TASK>
[ 1615.112512][T26231]  dump_stack_lvl+0x201/0x2d8
[ 1615.117221][T26231]  ? show_regs_print_info+0x12/0x12
[ 1615.122446][T26231]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1615.128220][T26231]  sysfs_warn_dup+0x8c/0xa0
[ 1615.132748][T26231]  sysfs_do_create_link_sd+0xbe/0x100
[ 1615.138149][T26231]  device_add+0x9ea/0x16d0
[ 1615.142593][T26231]  ? wiphy_register+0x1b93/0x2a50
22:51:44 executing program 1:
socket$key(0xf, 0x3, 0x2)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ifreq(r0, 0x8922, &(0x7f0000000000)={'batadv_slave_0\x00', @ifru_mtu})

[ 1615.147653][T26231]  ? virtual_device_parent+0x50/0x50
[ 1615.152958][T26231]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1615.158979][T26231]  wiphy_register+0x1ba2/0x2a50
[ 1615.164003][T26231]  ? cfg80211_event_work+0x40/0x40
[ 1615.169243][T26231]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1615.175337][T26231]  ieee80211_register_hw+0x3063/0x3e10
[ 1615.180851][T26231]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1615.186695][T26231]  ? memset+0x1f/0x40
[ 1615.190697][T26231]  ? __hrtimer_init+0x173/0x250
[ 1615.195573][T26231]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1615.201362][T26231]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1615.206500][T26231]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1615.212946][T26231]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1615.219303][T26231]  genl_rcv_msg+0x1032/0x1480
[ 1615.224015][T26231]  ? genl_bind+0x360/0x360
[ 1615.228462][T26231]  ? __lock_acquire+0x1382/0x2b00
[ 1615.233557][T26231]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1615.239209][T26231]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1615.245588][T26231]  netlink_rcv_skb+0x200/0x470
22:51:44 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x22, 0x0, 0x0)

[ 1615.250380][T26231]  ? genl_bind+0x360/0x360
[ 1615.254820][T26231]  ? netlink_ack+0xb70/0xb70
[ 1615.259431][T26231]  ? __down_read_common+0x1b0/0x450
[ 1615.264646][T26231]  ? up_read_non_owner+0x1c0/0x1c0
[ 1615.269760][T26231]  ? netlink_deliver_tap+0x130/0x880
[ 1615.275081][T26231]  genl_rcv+0x24/0x40
[ 1615.279085][T26231]  netlink_unicast+0x814/0x9f0
[ 1615.283880][T26231]  ? netlink_detachskb+0xa0/0xa0
[ 1615.288835][T26231]  ? __virt_addr_valid+0xb8/0x2d0
[ 1615.293878][T26231]  ? __phys_addr_symbol+0x2b/0x70
[ 1615.298917][T26231]  ? __check_object_size+0x2f3/0x3f0
[ 1615.304215][T26231]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1615.309347][T26231]  netlink_sendmsg+0xaea/0xe60
[ 1615.314128][T26231]  ? memcpy+0x3c/0x60
[ 1615.318144][T26231]  ? netlink_getsockopt+0xa60/0xa60
[ 1615.323373][T26231]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1615.328674][T26231]  ? security_socket_sendmsg+0x9d/0xb0
[ 1615.334153][T26231]  ? netlink_getsockopt+0xa60/0xa60
[ 1615.339367][T26231]  ____sys_sendmsg+0x5b9/0x910
[ 1615.344162][T26231]  ? __sys_sendmsg_sock+0x30/0x30
[ 1615.349226][T26231]  __sys_sendmsg+0x280/0x370
[ 1615.353849][T26231]  ? ____sys_sendmsg+0x910/0x910
[ 1615.358824][T26231]  ? __context_tracking_exit+0x7a/0xd0
[ 1615.364318][T26231]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1615.370314][T26231]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1615.376319][T26231]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1615.382314][T26231]  ? lockdep_hardirqs_on+0x95/0x140
[ 1615.387532][T26231]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1615.393534][T26231]  do_syscall_64+0x44/0xd0
[ 1615.397961][T26231]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1615.403864][T26231] RIP: 0033:0x7f3e3559fe99
[ 1615.408271][T26231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1615.427955][T26231] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1615.436392][T26231] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1615.444474][T26231] RDX: 000000000b000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1615.452463][T26231] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1615.460447][T26231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1615.468425][T26231] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1615.476415][T26231]  </TASK>
22:51:45 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xc000000)

22:51:45 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvfrom$unix(r1, &(0x7f0000000840)=""/162, 0xa2, 0x12102, &(0x7f0000000900)=@abs, 0x6e)
sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)

22:51:45 executing program 3:
syz_emit_ethernet(0xaa, &(0x7f0000000200)={@local, @dev, @void, {@ipv4={0x800, @gre={{0x16, 0x4, 0x0, 0x0, 0x9c, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @empty, {[@rr={0x7, 0x3}, @cipso={0x86, 0x3c, 0x0, [{0x0, 0xc, "90230e0b1ddcd71bbb87"}, {0x0, 0xc, "72392daacde6bcb6aef7"}, {0x0, 0xe, "bcfde5c10160435e9a4a84ab"}, {0x0, 0x10, "b2fa420e5ce904b6effcb9712506"}]}, @end, @noop]}}}}}}, 0x0)

[ 1615.498853][T26251] batadv_slave_0: mtu less than device minimum
[ 1615.510908][T26244] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
22:51:45 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xc6e)

[ 1615.544309][T26244] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1615.571294][T26244] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1615.571294][T26244] !'
[ 1615.632176][T26244] CPU: 1 PID: 26244 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1615.640992][T26244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1615.651062][T26244] Call Trace:
[ 1615.654363][T26244]  <TASK>
[ 1615.657310][T26244]  dump_stack_lvl+0x201/0x2d8
[ 1615.662800][T26244]  ? show_regs_print_info+0x12/0x12
[ 1615.668026][T26244]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1615.674224][T26244]  sysfs_warn_dup+0x8c/0xa0
[ 1615.678736][T26244]  sysfs_do_create_link_sd+0xbe/0x100
[ 1615.684124][T26244]  device_add+0x9ea/0x16d0
[ 1615.688560][T26244]  ? wiphy_register+0x1b93/0x2a50
[ 1615.693623][T26244]  ? virtual_device_parent+0x50/0x50
[ 1615.698937][T26244]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1615.704947][T26244]  wiphy_register+0x1ba2/0x2a50
[ 1615.710615][T26244]  ? cfg80211_event_work+0x40/0x40
[ 1615.715758][T26244]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1615.721855][T26244]  ieee80211_register_hw+0x3063/0x3e10
[ 1615.727366][T26244]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1615.733207][T26244]  ? memset+0x1f/0x40
[ 1615.737208][T26244]  ? __hrtimer_init+0x173/0x250
[ 1615.742067][T26244]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1615.747824][T26244]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1615.752952][T26244]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1615.759380][T26244]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1615.765721][T26244]  genl_rcv_msg+0x1032/0x1480
[ 1615.770397][T26244]  ? genl_bind+0x360/0x360
[ 1615.774806][T26244]  ? __lock_acquire+0x1382/0x2b00
[ 1615.779924][T26244]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1615.785550][T26244]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1615.791910][T26244]  netlink_rcv_skb+0x200/0x470
[ 1615.796804][T26244]  ? genl_bind+0x360/0x360
[ 1615.801219][T26244]  ? netlink_ack+0xb70/0xb70
[ 1615.805870][T26244]  ? __down_read_common+0x1b0/0x450
[ 1615.811063][T26244]  ? up_read_non_owner+0x1c0/0x1c0
[ 1615.816179][T26244]  ? netlink_deliver_tap+0x130/0x880
[ 1615.821463][T26244]  genl_rcv+0x24/0x40
[ 1615.825438][T26244]  netlink_unicast+0x814/0x9f0
[ 1615.830315][T26244]  ? netlink_detachskb+0xa0/0xa0
[ 1615.835266][T26244]  ? __virt_addr_valid+0xb8/0x2d0
[ 1615.840288][T26244]  ? __phys_addr_symbol+0x2b/0x70
[ 1615.845322][T26244]  ? __check_object_size+0x2f3/0x3f0
[ 1615.850607][T26244]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1615.855731][T26244]  netlink_sendmsg+0xaea/0xe60
[ 1615.860490][T26244]  ? memcpy+0x3c/0x60
[ 1615.864486][T26244]  ? netlink_getsockopt+0xa60/0xa60
[ 1615.869715][T26244]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1615.875078][T26244]  ? security_socket_sendmsg+0x9d/0xb0
[ 1615.880526][T26244]  ? netlink_getsockopt+0xa60/0xa60
[ 1615.885717][T26244]  ____sys_sendmsg+0x5b9/0x910
[ 1615.890604][T26244]  ? __sys_sendmsg_sock+0x30/0x30
[ 1615.895650][T26244]  __sys_sendmsg+0x280/0x370
[ 1615.900232][T26244]  ? ____sys_sendmsg+0x910/0x910
[ 1615.905166][T26244]  ? __context_tracking_exit+0x7a/0xd0
[ 1615.910620][T26244]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1615.916598][T26244]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1615.922598][T26244]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1615.928570][T26244]  ? lockdep_hardirqs_on+0x95/0x140
[ 1615.933765][T26244]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1615.939754][T26244]  do_syscall_64+0x44/0xd0
[ 1615.944170][T26244]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1615.950080][T26244] RIP: 0033:0x7ffbc7e82e99
[ 1615.954493][T26244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1615.974150][T26244] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1615.982598][T26244] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1615.990586][T26244] RDX: 0000000000001800 RSI: 0000000020000000 RDI: 0000000000000003
[ 1615.998562][T26244] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1616.006536][T26244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1616.014512][T26244] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1616.022644][T26244]  </TASK>
[ 1616.056500][T26390] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1616.074029][T26390] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1616.085717][T26390] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1616.085717][T26390] !'
[ 1616.098781][T26390] CPU: 0 PID: 26390 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1616.107664][T26390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1616.117800][T26390] Call Trace:
[ 1616.121075][T26390]  <TASK>
[ 1616.124008][T26390]  dump_stack_lvl+0x201/0x2d8
[ 1616.128683][T26390]  ? show_regs_print_info+0x12/0x12
[ 1616.133867][T26390]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1616.139605][T26390]  sysfs_warn_dup+0x8c/0xa0
[ 1616.144125][T26390]  sysfs_do_create_link_sd+0xbe/0x100
[ 1616.149517][T26390]  device_add+0x9ea/0x16d0
[ 1616.153943][T26390]  ? wiphy_register+0x1b93/0x2a50
[ 1616.158992][T26390]  ? virtual_device_parent+0x50/0x50
[ 1616.164290][T26390]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1616.170275][T26390]  wiphy_register+0x1ba2/0x2a50
[ 1616.175145][T26390]  ? cfg80211_event_work+0x40/0x40
[ 1616.180260][T26390]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1616.186345][T26390]  ieee80211_register_hw+0x3063/0x3e10
[ 1616.191861][T26390]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1616.197670][T26390]  ? memset+0x1f/0x40
[ 1616.201652][T26390]  ? __hrtimer_init+0x173/0x250
[ 1616.206515][T26390]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1616.212239][T26390]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1616.217345][T26390]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1616.223704][T26390]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1616.230059][T26390]  genl_rcv_msg+0x1032/0x1480
[ 1616.234749][T26390]  ? genl_bind+0x360/0x360
[ 1616.239170][T26390]  ? __lock_acquire+0x1382/0x2b00
[ 1616.244231][T26390]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1616.249859][T26390]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1616.256207][T26390]  netlink_rcv_skb+0x200/0x470
[ 1616.260974][T26390]  ? genl_bind+0x360/0x360
[ 1616.265399][T26390]  ? netlink_ack+0xb70/0xb70
[ 1616.269980][T26390]  ? __down_read_common+0x1b0/0x450
[ 1616.275182][T26390]  ? up_read_non_owner+0x1c0/0x1c0
[ 1616.280280][T26390]  ? netlink_deliver_tap+0x130/0x880
[ 1616.285587][T26390]  genl_rcv+0x24/0x40
[ 1616.289576][T26390]  netlink_unicast+0x814/0x9f0
[ 1616.294382][T26390]  ? netlink_detachskb+0xa0/0xa0
[ 1616.299407][T26390]  ? __virt_addr_valid+0xb8/0x2d0
[ 1616.304445][T26390]  ? __phys_addr_symbol+0x2b/0x70
[ 1616.309465][T26390]  ? __check_object_size+0x2f3/0x3f0
[ 1616.314864][T26390]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1616.319973][T26390]  netlink_sendmsg+0xaea/0xe60
[ 1616.324749][T26390]  ? memcpy+0x3c/0x60
[ 1616.328727][T26390]  ? netlink_getsockopt+0xa60/0xa60
[ 1616.333916][T26390]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1616.339194][T26390]  ? security_socket_sendmsg+0x9d/0xb0
[ 1616.344697][T26390]  ? netlink_getsockopt+0xa60/0xa60
[ 1616.349907][T26390]  ____sys_sendmsg+0x5b9/0x910
[ 1616.354700][T26390]  ? __sys_sendmsg_sock+0x30/0x30
[ 1616.359749][T26390]  __sys_sendmsg+0x280/0x370
[ 1616.364360][T26390]  ? ____sys_sendmsg+0x910/0x910
[ 1616.369330][T26390]  ? __context_tracking_exit+0x7a/0xd0
[ 1616.374821][T26390]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1616.380815][T26390]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1616.386815][T26390]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1616.392785][T26390]  ? lockdep_hardirqs_on+0x95/0x140
[ 1616.397975][T26390]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1616.403944][T26390]  do_syscall_64+0x44/0xd0
[ 1616.408350][T26390]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1616.414246][T26390] RIP: 0033:0x7f3e3559fe99
[ 1616.418647][T26390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1616.438238][T26390] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1616.446733][T26390] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
22:51:46 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1957)

22:51:46 executing program 1:
recvmsg$unix(0xffffffffffffffff, 0x0, 0xe3bfac6ca1211ded)

22:51:46 executing program 3:
syz_open_procfs(0x0, &(0x7f00000002c0)='net/nf_conntrack_expect\x00')

22:51:46 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_tables_targets\x00')
r1 = syz_open_procfs(0x0, &(0x7f00000008c0)='net/packet\x00')
dup3(r1, r0, 0x0)

22:51:46 executing program 1:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140))

[ 1616.454695][T26390] RDX: 000000000c000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1616.462677][T26390] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1616.470662][T26390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1616.478639][T26390] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1616.486621][T26390]  </TASK>
22:51:46 executing program 5:
syz_open_procfs(0x0, &(0x7f0000000040)='mounts\x00')

22:51:46 executing program 3:
shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000000100)=""/4096)

[ 1616.560173][T26382] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1616.581714][T26382] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:51:46 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xd000000)

22:51:46 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1959)

[ 1616.622850][T26382] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1616.622850][T26382] !'
22:51:46 executing program 5:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000200), 0x84800, 0x0)

22:51:46 executing program 3:
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, 0x0)

[ 1616.685809][T26382] CPU: 1 PID: 26382 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1616.694622][T26382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1616.704695][T26382] Call Trace:
[ 1616.707991][T26382]  <TASK>
[ 1616.710941][T26382]  dump_stack_lvl+0x201/0x2d8
[ 1616.715646][T26382]  ? show_regs_print_info+0x12/0x12
[ 1616.720868][T26382]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1616.726631][T26382]  sysfs_warn_dup+0x8c/0xa0
[ 1616.731154][T26382]  sysfs_do_create_link_sd+0xbe/0x100
[ 1616.736550][T26382]  device_add+0x9ea/0x16d0
[ 1616.740984][T26382]  ? wiphy_register+0x1b93/0x2a50
[ 1616.746045][T26382]  ? virtual_device_parent+0x50/0x50
[ 1616.751359][T26382]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1616.757377][T26382]  wiphy_register+0x1ba2/0x2a50
[ 1616.762271][T26382]  ? cfg80211_event_work+0x40/0x40
[ 1616.767416][T26382]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1616.773512][T26382]  ieee80211_register_hw+0x3063/0x3e10
[ 1616.779360][T26382]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1616.785198][T26382]  ? memset+0x1f/0x40
[ 1616.789200][T26382]  ? __hrtimer_init+0x173/0x250
[ 1616.794077][T26382]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1616.799849][T26382]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1616.804998][T26382]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1616.811357][T26382]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1616.817717][T26382]  genl_rcv_msg+0x1032/0x1480
[ 1616.822427][T26382]  ? genl_bind+0x360/0x360
[ 1616.826872][T26382]  ? __lock_acquire+0x1382/0x2b00
[ 1616.831946][T26382]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1616.837596][T26382]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1616.843963][T26382]  netlink_rcv_skb+0x200/0x470
[ 1616.848751][T26382]  ? genl_bind+0x360/0x360
[ 1616.853186][T26382]  ? netlink_ack+0xb70/0xb70
[ 1616.857789][T26382]  ? __down_read_common+0x1b0/0x450
[ 1616.863003][T26382]  ? up_read_non_owner+0x1c0/0x1c0
[ 1616.868101][T26382]  ? netlink_deliver_tap+0x130/0x880
[ 1616.873382][T26382]  genl_rcv+0x24/0x40
[ 1616.877350][T26382]  netlink_unicast+0x814/0x9f0
[ 1616.882104][T26382]  ? netlink_detachskb+0xa0/0xa0
[ 1616.887024][T26382]  ? __virt_addr_valid+0xb8/0x2d0
[ 1616.892074][T26382]  ? __phys_addr_symbol+0x2b/0x70
[ 1616.897169][T26382]  ? __check_object_size+0x2f3/0x3f0
[ 1616.902438][T26382]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1616.907545][T26382]  netlink_sendmsg+0xaea/0xe60
[ 1616.912301][T26382]  ? memcpy+0x3c/0x60
[ 1616.916280][T26382]  ? netlink_getsockopt+0xa60/0xa60
[ 1616.921469][T26382]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1616.926742][T26382]  ? security_socket_sendmsg+0x9d/0xb0
[ 1616.932203][T26382]  ? netlink_getsockopt+0xa60/0xa60
[ 1616.937394][T26382]  ____sys_sendmsg+0x5b9/0x910
[ 1616.942150][T26382]  ? __sys_sendmsg_sock+0x30/0x30
[ 1616.947169][T26382]  __sys_sendmsg+0x280/0x370
[ 1616.951747][T26382]  ? ____sys_sendmsg+0x910/0x910
[ 1616.957110][T26382]  ? __context_tracking_exit+0x7a/0xd0
[ 1616.962679][T26382]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1616.968654][T26382]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1616.974639][T26382]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1616.980608][T26382]  ? lockdep_hardirqs_on+0x95/0x140
[ 1616.985792][T26382]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1616.991761][T26382]  do_syscall_64+0x44/0xd0
[ 1616.996176][T26382]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1617.002055][T26382] RIP: 0033:0x7fda9f984e99
[ 1617.006456][T26382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1617.026045][T26382] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1617.034567][T26382] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1617.042528][T26382] RDX: 0000000000000c6e RSI: 0000000020000000 RDI: 0000000000000003
[ 1617.050850][T26382] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1617.058807][T26382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1617.066984][T26382] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1617.074978][T26382]  </TASK>
22:51:46 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xd00)

22:51:46 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x195a)

22:51:46 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe000000)

22:51:46 executing program 5:
shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x5000)
shmdt(0x0)

22:51:46 executing program 3:
semctl$SEM_INFO(0x0, 0x0, 0x13, &(0x7f0000000040)=""/23)

22:51:46 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x1, &(0x7f0000000000)=0x3ff, 0x4)

22:51:46 executing program 3:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/class/scsi_disk', 0x0, 0x0)
mknodat$null(r0, &(0x7f0000000340)='./file0\x00', 0xc180, 0x103)

22:51:46 executing program 5:
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f000000b380), 0x20140, 0x0)

22:51:46 executing program 1:
syz_mount_image$hfsplus(0x0, 0x0, 0x0, 0x3, &(0x7f0000000340)=[{&(0x7f0000000080)="91", 0x1}, {&(0x7f0000000100)="8f", 0x1}, {&(0x7f0000000180)='*', 0x1}], 0x0, 0x0)

[ 1617.159977][T26491] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1617.168189][T26491] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1617.234568][T26491] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1617.234568][T26491] !'
[ 1617.261748][T26491] CPU: 1 PID: 26491 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1617.270559][T26491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1617.280627][T26491] Call Trace:
22:51:46 executing program 5:
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, 0x0, 0x3d8ac0548ec7112b)

22:51:46 executing program 5:
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$PTP_SYS_OFFSET(r0, 0x43403d05, &(0x7f0000000100)={0x10})

[ 1617.283919][T26491]  <TASK>
[ 1617.286861][T26491]  dump_stack_lvl+0x201/0x2d8
[ 1617.291563][T26491]  ? show_regs_print_info+0x12/0x12
[ 1617.296782][T26491]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1617.302544][T26491]  sysfs_warn_dup+0x8c/0xa0
[ 1617.307077][T26491]  sysfs_do_create_link_sd+0xbe/0x100
[ 1617.312470][T26491]  device_add+0x9ea/0x16d0
[ 1617.316907][T26491]  ? wiphy_register+0x1b93/0x2a50
[ 1617.321968][T26491]  ? virtual_device_parent+0x50/0x50
[ 1617.327271][T26491]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
22:51:46 executing program 5:
syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='fd/4\x00')

[ 1617.333283][T26491]  wiphy_register+0x1ba2/0x2a50
[ 1617.338173][T26491]  ? cfg80211_event_work+0x40/0x40
[ 1617.343301][T26491]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1617.349499][T26491]  ? ieee80211_register_hw+0x267a/0x3e10
[ 1617.355163][T26491]  ieee80211_register_hw+0x3063/0x3e10
[ 1617.360668][T26491]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1617.366509][T26491]  ? memset+0x1f/0x40
[ 1617.370509][T26491]  ? __hrtimer_init+0x173/0x250
[ 1617.375389][T26491]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1617.381157][T26491]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1617.386295][T26491]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1617.392656][T26491]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1617.399126][T26491]  genl_rcv_msg+0x1032/0x1480
[ 1617.403804][T26491]  ? genl_bind+0x360/0x360
[ 1617.408212][T26491]  ? __lock_acquire+0x1382/0x2b00
[ 1617.413242][T26491]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1617.418864][T26491]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1617.425210][T26491]  netlink_rcv_skb+0x200/0x470
[ 1617.429965][T26491]  ? genl_bind+0x360/0x360
[ 1617.434377][T26491]  ? netlink_ack+0xb70/0xb70
[ 1617.438948][T26491]  ? __down_read_common+0x1b0/0x450
[ 1617.444131][T26491]  ? up_read_non_owner+0x1c0/0x1c0
[ 1617.449227][T26491]  ? netlink_deliver_tap+0x130/0x880
[ 1617.454512][T26491]  genl_rcv+0x24/0x40
[ 1617.458499][T26491]  netlink_unicast+0x814/0x9f0
[ 1617.463257][T26491]  ? netlink_detachskb+0xa0/0xa0
[ 1617.468179][T26491]  ? __virt_addr_valid+0xb8/0x2d0
[ 1617.473188][T26491]  ? __phys_addr_symbol+0x2b/0x70
[ 1617.478198][T26491]  ? __check_object_size+0x2f3/0x3f0
[ 1617.483479][T26491]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1617.488598][T26491]  netlink_sendmsg+0xaea/0xe60
[ 1617.493349][T26491]  ? memcpy+0x3c/0x60
[ 1617.497332][T26491]  ? netlink_getsockopt+0xa60/0xa60
[ 1617.502535][T26491]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1617.507810][T26491]  ? security_socket_sendmsg+0x9d/0xb0
[ 1617.513254][T26491]  ? netlink_getsockopt+0xa60/0xa60
[ 1617.518442][T26491]  ____sys_sendmsg+0x5b9/0x910
[ 1617.523213][T26491]  ? __sys_sendmsg_sock+0x30/0x30
[ 1617.528495][T26491]  __sys_sendmsg+0x280/0x370
[ 1617.533084][T26491]  ? ____sys_sendmsg+0x910/0x910
[ 1617.538020][T26491]  ? __context_tracking_exit+0x7a/0xd0
[ 1617.543477][T26491]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1617.549447][T26491]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1617.555428][T26491]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1617.561395][T26491]  ? lockdep_hardirqs_on+0x95/0x140
[ 1617.566593][T26491]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1617.572754][T26491]  do_syscall_64+0x44/0xd0
[ 1617.577162][T26491]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1617.583045][T26491] RIP: 0033:0x7f3e3559fe99
[ 1617.587569][T26491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1617.607170][T26491] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1617.615597][T26491] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1617.623646][T26491] RDX: 000000000e000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1617.631610][T26491] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1617.639655][T26491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1617.647612][T26491] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1617.655604][T26491]  </TASK>
[ 1617.685631][T26494] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1617.700123][T26494] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1617.718305][T26494] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1617.718305][T26494] !'
[ 1617.742427][T26494] CPU: 0 PID: 26494 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1617.751234][T26494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1617.761391][T26494] Call Trace:
[ 1617.764684][T26494]  <TASK>
[ 1617.767615][T26494]  dump_stack_lvl+0x201/0x2d8
[ 1617.772287][T26494]  ? show_regs_print_info+0x12/0x12
[ 1617.777491][T26494]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1617.783229][T26494]  sysfs_warn_dup+0x8c/0xa0
[ 1617.787750][T26494]  sysfs_do_create_link_sd+0xbe/0x100
[ 1617.793141][T26494]  device_add+0x9ea/0x16d0
[ 1617.797540][T26494]  ? wiphy_register+0x1b93/0x2a50
[ 1617.802576][T26494]  ? virtual_device_parent+0x50/0x50
[ 1617.807864][T26494]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1617.813844][T26494]  wiphy_register+0x1ba2/0x2a50
[ 1617.818691][T26494]  ? cfg80211_event_work+0x40/0x40
[ 1617.823807][T26494]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1617.829975][T26494]  ieee80211_register_hw+0x3063/0x3e10
[ 1617.835436][T26494]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1617.841244][T26494]  ? memset+0x1f/0x40
[ 1617.845231][T26494]  ? __hrtimer_init+0x173/0x250
[ 1617.850088][T26494]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1617.855807][T26494]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1617.860919][T26494]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1617.867260][T26494]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1617.873578][T26494]  genl_rcv_msg+0x1032/0x1480
[ 1617.878246][T26494]  ? genl_bind+0x360/0x360
[ 1617.882663][T26494]  ? __lock_acquire+0x1382/0x2b00
[ 1617.887734][T26494]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1617.893455][T26494]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1617.899800][T26494]  netlink_rcv_skb+0x200/0x470
[ 1617.904578][T26494]  ? genl_bind+0x360/0x360
[ 1617.909006][T26494]  ? netlink_ack+0xb70/0xb70
[ 1617.913600][T26494]  ? __down_read_common+0x1b0/0x450
[ 1617.918783][T26494]  ? up_read_non_owner+0x1c0/0x1c0
[ 1617.923880][T26494]  ? netlink_deliver_tap+0x130/0x880
[ 1617.929195][T26494]  genl_rcv+0x24/0x40
[ 1617.933182][T26494]  netlink_unicast+0x814/0x9f0
[ 1617.937933][T26494]  ? netlink_detachskb+0xa0/0xa0
[ 1617.942856][T26494]  ? __virt_addr_valid+0xb8/0x2d0
[ 1617.947894][T26494]  ? __phys_addr_symbol+0x2b/0x70
[ 1617.953001][T26494]  ? __check_object_size+0x2f3/0x3f0
[ 1617.958271][T26494]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1617.963390][T26494]  netlink_sendmsg+0xaea/0xe60
[ 1617.968160][T26494]  ? memcpy+0x3c/0x60
[ 1617.972135][T26494]  ? netlink_getsockopt+0xa60/0xa60
[ 1617.977327][T26494]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1617.983038][T26494]  ? security_socket_sendmsg+0x9d/0xb0
[ 1617.988500][T26494]  ? netlink_getsockopt+0xa60/0xa60
[ 1617.993692][T26494]  ____sys_sendmsg+0x5b9/0x910
[ 1617.998481][T26494]  ? __sys_sendmsg_sock+0x30/0x30
[ 1618.003520][T26494]  __sys_sendmsg+0x280/0x370
[ 1618.008117][T26494]  ? ____sys_sendmsg+0x910/0x910
[ 1618.013059][T26494]  ? __context_tracking_exit+0x7a/0xd0
[ 1618.018511][T26494]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1618.024485][T26494]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1618.030565][T26494]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1618.036530][T26494]  ? lockdep_hardirqs_on+0x95/0x140
[ 1618.041721][T26494]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1618.047705][T26494]  do_syscall_64+0x44/0xd0
[ 1618.052111][T26494]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1618.057990][T26494] RIP: 0033:0x7ffbc7e82e99
[ 1618.062399][T26494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1618.082014][T26494] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1618.090698][T26494] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1618.098659][T26494] RDX: 000000000000195a RSI: 0000000020000000 RDI: 0000000000000003
[ 1618.106626][T26494] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1618.114606][T26494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1618.122567][T26494] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1618.130553][T26494]  </TASK>
[ 1618.147690][T26498] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1618.171544][T26498] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1618.192921][T26498] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1618.192921][T26498] !'
[ 1618.249201][T26498] CPU: 0 PID: 26498 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1618.258012][T26498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1618.268096][T26498] Call Trace:
[ 1618.271395][T26498]  <TASK>
[ 1618.274342][T26498]  dump_stack_lvl+0x201/0x2d8
[ 1618.279045][T26498]  ? show_regs_print_info+0x12/0x12
[ 1618.284269][T26498]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1618.290013][T26498]  sysfs_warn_dup+0x8c/0xa0
[ 1618.294520][T26498]  sysfs_do_create_link_sd+0xbe/0x100
[ 1618.299895][T26498]  device_add+0x9ea/0x16d0
[ 1618.304318][T26498]  ? wiphy_register+0x1b93/0x2a50
[ 1618.309355][T26498]  ? virtual_device_parent+0x50/0x50
[ 1618.314643][T26498]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1618.320629][T26498]  wiphy_register+0x1ba2/0x2a50
[ 1618.325485][T26498]  ? cfg80211_event_work+0x40/0x40
[ 1618.330599][T26498]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1618.336660][T26498]  ieee80211_register_hw+0x3063/0x3e10
[ 1618.342130][T26498]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1618.347942][T26498]  ? memset+0x1f/0x40
[ 1618.351918][T26498]  ? __hrtimer_init+0x173/0x250
[ 1618.356769][T26498]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1618.362501][T26498]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1618.367608][T26498]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1618.373939][T26498]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1618.380268][T26498]  genl_rcv_msg+0x1032/0x1480
[ 1618.384952][T26498]  ? genl_bind+0x360/0x360
[ 1618.389369][T26498]  ? __lock_acquire+0x1382/0x2b00
[ 1618.394409][T26498]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1618.400029][T26498]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1618.406452][T26498]  netlink_rcv_skb+0x200/0x470
[ 1618.411214][T26498]  ? genl_bind+0x360/0x360
[ 1618.415629][T26498]  ? netlink_ack+0xb70/0xb70
[ 1618.420205][T26498]  ? __down_read_common+0x1b0/0x450
[ 1618.425416][T26498]  ? up_read_non_owner+0x1c0/0x1c0
[ 1618.430516][T26498]  ? netlink_deliver_tap+0x130/0x880
[ 1618.435800][T26498]  genl_rcv+0x24/0x40
[ 1618.439775][T26498]  netlink_unicast+0x814/0x9f0
[ 1618.444539][T26498]  ? netlink_detachskb+0xa0/0xa0
[ 1618.449465][T26498]  ? __virt_addr_valid+0xb8/0x2d0
[ 1618.454482][T26498]  ? __phys_addr_symbol+0x2b/0x70
[ 1618.459497][T26498]  ? __check_object_size+0x2f3/0x3f0
[ 1618.464781][T26498]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1618.469885][T26498]  netlink_sendmsg+0xaea/0xe60
[ 1618.474645][T26498]  ? memcpy+0x3c/0x60
[ 1618.478641][T26498]  ? netlink_getsockopt+0xa60/0xa60
[ 1618.483836][T26498]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1618.489120][T26498]  ? security_socket_sendmsg+0x9d/0xb0
[ 1618.494574][T26498]  ? netlink_getsockopt+0xa60/0xa60
[ 1618.499763][T26498]  ____sys_sendmsg+0x5b9/0x910
[ 1618.504527][T26498]  ? __sys_sendmsg_sock+0x30/0x30
[ 1618.509557][T26498]  __sys_sendmsg+0x280/0x370
[ 1618.514143][T26498]  ? ____sys_sendmsg+0x910/0x910
[ 1618.519083][T26498]  ? __context_tracking_exit+0x7a/0xd0
[ 1618.524547][T26498]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1618.530522][T26498]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1618.536500][T26498]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1618.542470][T26498]  ? lockdep_hardirqs_on+0x95/0x140
[ 1618.547660][T26498]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1618.553631][T26498]  do_syscall_64+0x44/0xd0
[ 1618.558044][T26498]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1618.563947][T26498] RIP: 0033:0x7fda9f984e99
[ 1618.568355][T26498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1618.587952][T26498] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1618.596358][T26498] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1618.604321][T26498] RDX: 0000000000000d00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1618.612280][T26498] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1618.620240][T26498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1618.628288][T26498] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1618.636266][T26498]  </TASK>
22:51:48 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe00)

22:51:48 executing program 5:
openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000))

22:51:48 executing program 3:
io_setup(0x800, &(0x7f0000002140)=<r0=>0x0)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
io_submit(r0, 0x1, &(0x7f0000002840)=[&(0x7f0000002200)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x3ff}])

22:51:48 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xf000000)

22:51:48 executing program 1:
shmat(0x0, &(0x7f0000ff2000/0x3000)=nil, 0x409ed93ccc5ec448)
r0 = shmat(0x0, &(0x7f0000fef000/0x4000)=nil, 0x4000)
shmdt(r0)

22:51:48 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x195b)

[ 1618.747718][T26517] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
22:51:48 executing program 1:
pipe2(&(0x7f0000000680)={<r0=>0xffffffffffffffff}, 0x0)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

22:51:48 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x195c)

22:51:48 executing program 5:
shmat(0x0, &(0x7f0000ff2000/0x3000)=nil, 0x409ed93ccc5ec448)
sched_rr_get_interval(0x0, &(0x7f0000000000))

[ 1618.789130][T26517] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1618.829853][T26517] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1618.829853][T26517] !'
[ 1618.851320][T26517] CPU: 0 PID: 26517 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1618.860134][T26517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1618.870296][T26517] Call Trace:
[ 1618.873593][T26517]  <TASK>
[ 1618.876537][T26517]  dump_stack_lvl+0x201/0x2d8
[ 1618.881246][T26517]  ? show_regs_print_info+0x12/0x12
[ 1618.886469][T26517]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1618.892223][T26517]  sysfs_warn_dup+0x8c/0xa0
[ 1618.896740][T26517]  sysfs_do_create_link_sd+0xbe/0x100
[ 1618.902116][T26517]  device_add+0x9ea/0x16d0
[ 1618.906525][T26517]  ? wiphy_register+0x1b93/0x2a50
[ 1618.911557][T26517]  ? virtual_device_parent+0x50/0x50
[ 1618.916833][T26517]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1618.922913][T26517]  wiphy_register+0x1ba2/0x2a50
[ 1618.927795][T26517]  ? cfg80211_event_work+0x40/0x40
[ 1618.932910][T26517]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1618.938981][T26517]  ieee80211_register_hw+0x3063/0x3e10
[ 1618.944452][T26517]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1618.950259][T26517]  ? memset+0x1f/0x40
[ 1618.954230][T26517]  ? __hrtimer_init+0x173/0x250
[ 1618.959077][T26517]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1618.964815][T26517]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1618.969924][T26517]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1618.976252][T26517]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1618.982592][T26517]  genl_rcv_msg+0x1032/0x1480
[ 1618.987270][T26517]  ? genl_bind+0x360/0x360
[ 1618.991689][T26517]  ? __lock_acquire+0x1382/0x2b00
[ 1618.996725][T26517]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1619.002347][T26517]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1619.008690][T26517]  netlink_rcv_skb+0x200/0x470
[ 1619.013452][T26517]  ? genl_bind+0x360/0x360
[ 1619.017882][T26517]  ? netlink_ack+0xb70/0xb70
[ 1619.022549][T26517]  ? __down_read_common+0x1b0/0x450
[ 1619.027749][T26517]  ? up_read_non_owner+0x1c0/0x1c0
[ 1619.032847][T26517]  ? netlink_deliver_tap+0x130/0x880
[ 1619.038239][T26517]  genl_rcv+0x24/0x40
[ 1619.042213][T26517]  netlink_unicast+0x814/0x9f0
[ 1619.046984][T26517]  ? netlink_detachskb+0xa0/0xa0
[ 1619.051911][T26517]  ? __virt_addr_valid+0xb8/0x2d0
[ 1619.056928][T26517]  ? __phys_addr_symbol+0x2b/0x70
[ 1619.061944][T26517]  ? __check_object_size+0x2f3/0x3f0
[ 1619.067225][T26517]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1619.072333][T26517]  netlink_sendmsg+0xaea/0xe60
[ 1619.077091][T26517]  ? memcpy+0x3c/0x60
[ 1619.081076][T26517]  ? netlink_getsockopt+0xa60/0xa60
[ 1619.086273][T26517]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1619.091546][T26517]  ? security_socket_sendmsg+0x9d/0xb0
[ 1619.096997][T26517]  ? netlink_getsockopt+0xa60/0xa60
[ 1619.102199][T26517]  ____sys_sendmsg+0x5b9/0x910
[ 1619.106979][T26517]  ? __sys_sendmsg_sock+0x30/0x30
[ 1619.112106][T26517]  __sys_sendmsg+0x280/0x370
[ 1619.116701][T26517]  ? ____sys_sendmsg+0x910/0x910
[ 1619.121654][T26517]  ? __context_tracking_exit+0x7a/0xd0
[ 1619.127121][T26517]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1619.133100][T26517]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1619.139085][T26517]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1619.145057][T26517]  ? lockdep_hardirqs_on+0x95/0x140
[ 1619.150248][T26517]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1619.156227][T26517]  do_syscall_64+0x44/0xd0
[ 1619.160647][T26517]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1619.166640][T26517] RIP: 0033:0x7f3e3559fe99
[ 1619.171059][T26517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1619.190835][T26517] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1619.199251][T26517] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1619.207221][T26517] RDX: 000000000f000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1619.215182][T26517] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1619.223240][T26517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:51:48 executing program 3:
pselect6(0x40, &(0x7f0000000000)={0x100}, 0x0, 0x0, 0x0, 0x0)

[ 1619.231201][T26517] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1619.239179][T26517]  </TASK>
22:51:48 executing program 1:
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000240)={0x5}, &(0x7f0000000280), &(0x7f0000000300)={&(0x7f00000002c0)={[0x6]}, 0x8})

22:51:48 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000200))

[ 1619.548638][T26535] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1619.557427][T26535] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1619.575256][T26535] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1619.575256][T26535] !'
[ 1619.586585][T26535] CPU: 1 PID: 26535 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1619.595368][T26535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1619.605429][T26535] Call Trace:
[ 1619.608714][T26535]  <TASK>
[ 1619.611652][T26535]  dump_stack_lvl+0x201/0x2d8
[ 1619.616352][T26535]  ? show_regs_print_info+0x12/0x12
[ 1619.621558][T26535]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1619.627306][T26535]  sysfs_warn_dup+0x8c/0xa0
[ 1619.631821][T26535]  sysfs_do_create_link_sd+0xbe/0x100
[ 1619.637209][T26535]  device_add+0x9ea/0x16d0
[ 1619.641640][T26535]  ? wiphy_register+0x1b93/0x2a50
[ 1619.646685][T26535]  ? virtual_device_parent+0x50/0x50
[ 1619.652072][T26535]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1619.658073][T26535]  wiphy_register+0x1ba2/0x2a50
[ 1619.663208][T26535]  ? cfg80211_event_work+0x40/0x40
[ 1619.668345][T26535]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1619.674424][T26535]  ieee80211_register_hw+0x3063/0x3e10
[ 1619.679920][T26535]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1619.685746][T26535]  ? memset+0x1f/0x40
[ 1619.689738][T26535]  ? __hrtimer_init+0x173/0x250
[ 1619.694609][T26535]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1619.700366][T26535]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1619.705489][T26535]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1619.711847][T26535]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1619.718201][T26535]  genl_rcv_msg+0x1032/0x1480
[ 1619.722906][T26535]  ? genl_bind+0x360/0x360
[ 1619.727338][T26535]  ? __lock_acquire+0x1382/0x2b00
[ 1619.732402][T26535]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1619.738045][T26535]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1619.744412][T26535]  netlink_rcv_skb+0x200/0x470
[ 1619.749195][T26535]  ? genl_bind+0x360/0x360
[ 1619.753631][T26535]  ? netlink_ack+0xb70/0xb70
[ 1619.758243][T26535]  ? __down_read_common+0x1b0/0x450
[ 1619.763459][T26535]  ? up_read_non_owner+0x1c0/0x1c0
[ 1619.768577][T26535]  ? netlink_deliver_tap+0x130/0x880
[ 1619.773885][T26535]  genl_rcv+0x24/0x40
[ 1619.777875][T26535]  netlink_unicast+0x814/0x9f0
[ 1619.782657][T26535]  ? netlink_detachskb+0xa0/0xa0
[ 1619.787602][T26535]  ? __virt_addr_valid+0xb8/0x2d0
[ 1619.792638][T26535]  ? __phys_addr_symbol+0x2b/0x70
[ 1619.797668][T26535]  ? __check_object_size+0x2f3/0x3f0
[ 1619.802960][T26535]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1619.808080][T26535]  netlink_sendmsg+0xaea/0xe60
[ 1619.812854][T26535]  ? memcpy+0x3c/0x60
[ 1619.816861][T26535]  ? netlink_getsockopt+0xa60/0xa60
[ 1619.822078][T26535]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1619.827382][T26535]  ? security_socket_sendmsg+0x9d/0xb0
[ 1619.832853][T26535]  ? netlink_getsockopt+0xa60/0xa60
[ 1619.838063][T26535]  ____sys_sendmsg+0x5b9/0x910
[ 1619.842845][T26535]  ? __sys_sendmsg_sock+0x30/0x30
[ 1619.847872][T26535]  __sys_sendmsg+0x280/0x370
[ 1619.852537][T26535]  ? ____sys_sendmsg+0x910/0x910
[ 1619.857489][T26535]  ? __context_tracking_exit+0x7a/0xd0
[ 1619.862954][T26535]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1619.868936][T26535]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1619.874907][T26535]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1619.880878][T26535]  ? lockdep_hardirqs_on+0x95/0x140
[ 1619.886072][T26535]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1619.892043][T26535]  do_syscall_64+0x44/0xd0
[ 1619.896456][T26535]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1619.902350][T26535] RIP: 0033:0x7fda9f984e99
[ 1619.906748][T26535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1619.927643][T26535] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1619.936068][T26535] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
22:51:49 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xf00)

22:51:49 executing program 3:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000001380)={&(0x7f0000000080)={0xec4, 0x14, 0x0, 0x0, 0x0, {}, [@INET_DIAG_REQ_BYTECODE={0x9, 0x1, "d6194ef716"}, @INET_DIAG_REQ_BYTECODE={0xd, 0x1, "9923115fa268b46ea0"}, @INET_DIAG_REQ_BYTECODE={0xf1, 0x1, "c2e8ed7975e5ebf38be424e13c2b6e8bc88620c6aeba7db337eadb2c3eaee4887880d0b9de2fd6569f30a09b374b31ae5c3073fba02fabf89d82e697299b912ad533689f600dff820a5c2d0b331f4eff3b9fbe892b8ec110566d2d471e4dbee3dde6e453c6c23a1169250624bf6ed28b4c0e9ea01445d24b281d9edef02f6ec13b8cf2ffd32342fb09c193bdca9193066345da27c9c10b24a702e88dc3914333431d08fe41a6ebba622296ab49c2ed1f79d4089876a13623938a9248c9603e6dad7f56834601cb69787cd7ee1ecd1ce82ab3f7532e8f60951a5bac76d9b9b8fdd462e971b54b64bf90784e99d8"}, @INET_DIAG_REQ_BYTECODE={0xdd, 0x1, "e2adb66d863f1c480a1c883187aae66abc232d2153f1c64cc3b4766352b4e22b4dbd84684607b9cb59e8c88c2efaa1328cc0beeba3105dac21b5997001b092ce45841825cb71e67bd6368c234a47bb366e71c042b621a285fe9ea6e0ae0c7e84ba2891ae747b1a96f2549734819178a9903753c3c86c7f4b576e9edf6269a8599e6e898dc9e3f1669b893eef90ac649cd48d3001bd1d7bcaed5f84517f82a4ccc3ffaea801925bfe91b4594b018b5b057d82fe840f71bfb0718c3f7f6bdd7e6d3f65c751bf8225190ce77b291e348947a83ee697f949c9b25a"}, @INET_DIAG_REQ_BYTECODE={0x11, 0x1, "479b1a75b86d33268d6e1339b4"}, @INET_DIAG_REQ_BYTECODE={0xca9, 0x1, "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"}]}, 0xec4}}, 0x0)

22:51:49 executing program 1:
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(0xffffffffffffffff, 0xc01864b0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

22:51:49 executing program 5:
r0 = getpgrp(0xffffffffffffffff)
ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0)

22:51:49 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x10000000)

22:51:49 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x195d)

[ 1619.944037][T26535] RDX: 0000000000000e00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1619.952000][T26535] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1619.959960][T26535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1619.967924][T26535] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1619.975979][T26535]  </TASK>
22:51:49 executing program 5:
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000300), 0x20c0, 0x0)

22:51:49 executing program 3:
clock_gettime(0xda3e604a93e55500, 0x0)

22:51:49 executing program 1:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x840, 0x0)

22:51:49 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x195e)

[ 1620.120014][T26545] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1620.128313][T26545] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:51:49 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockname$unix(r0, 0x0, 0x0)

22:51:49 executing program 3:
socket$inet6_udp(0xa, 0x2, 0x0)
pselect6(0x40, &(0x7f00000002c0)={0x4001}, 0x0, &(0x7f0000000340)={0xc8c}, 0x0, 0x0)

[ 1620.186032][T26545] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1620.186032][T26545] !'
[ 1620.219287][T26545] CPU: 1 PID: 26545 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1620.228105][T26545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1620.238178][T26545] Call Trace:
[ 1620.241544][T26545]  <TASK>
[ 1620.244477][T26545]  dump_stack_lvl+0x201/0x2d8
[ 1620.249163][T26545]  ? show_regs_print_info+0x12/0x12
[ 1620.254388][T26545]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1620.260125][T26545]  sysfs_warn_dup+0x8c/0xa0
[ 1620.264629][T26545]  sysfs_do_create_link_sd+0xbe/0x100
[ 1620.269998][T26545]  device_add+0x9ea/0x16d0
[ 1620.274401][T26545]  ? wiphy_register+0x1b93/0x2a50
[ 1620.279517][T26545]  ? virtual_device_parent+0x50/0x50
[ 1620.284791][T26545]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1620.290774][T26545]  wiphy_register+0x1ba2/0x2a50
[ 1620.295625][T26545]  ? cfg80211_event_work+0x40/0x40
[ 1620.300737][T26545]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1620.306799][T26545]  ieee80211_register_hw+0x3063/0x3e10
[ 1620.312268][T26545]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1620.318231][T26545]  ? memset+0x1f/0x40
[ 1620.322217][T26545]  ? __hrtimer_init+0x173/0x250
[ 1620.327155][T26545]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1620.332902][T26545]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1620.338010][T26545]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1620.344335][T26545]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1620.350669][T26545]  genl_rcv_msg+0x1032/0x1480
[ 1620.355351][T26545]  ? genl_bind+0x360/0x360
[ 1620.359767][T26545]  ? __lock_acquire+0x1382/0x2b00
[ 1620.364804][T26545]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1620.370435][T26545]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1620.376771][T26545]  netlink_rcv_skb+0x200/0x470
[ 1620.381530][T26545]  ? genl_bind+0x360/0x360
[ 1620.385944][T26545]  ? netlink_ack+0xb70/0xb70
[ 1620.390525][T26545]  ? __down_read_common+0x1b0/0x450
[ 1620.395716][T26545]  ? up_read_non_owner+0x1c0/0x1c0
[ 1620.400816][T26545]  ? netlink_deliver_tap+0x130/0x880
[ 1620.406107][T26545]  genl_rcv+0x24/0x40
[ 1620.410080][T26545]  netlink_unicast+0x814/0x9f0
[ 1620.414933][T26545]  ? netlink_detachskb+0xa0/0xa0
[ 1620.419858][T26545]  ? __virt_addr_valid+0xb8/0x2d0
[ 1620.424873][T26545]  ? __phys_addr_symbol+0x2b/0x70
[ 1620.429892][T26545]  ? __check_object_size+0x2f3/0x3f0
[ 1620.435264][T26545]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1620.440372][T26545]  netlink_sendmsg+0xaea/0xe60
[ 1620.445135][T26545]  ? memcpy+0x3c/0x60
[ 1620.449118][T26545]  ? netlink_getsockopt+0xa60/0xa60
[ 1620.454317][T26545]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1620.459605][T26545]  ? security_socket_sendmsg+0x9d/0xb0
[ 1620.465054][T26545]  ? netlink_getsockopt+0xa60/0xa60
[ 1620.470245][T26545]  ____sys_sendmsg+0x5b9/0x910
[ 1620.475014][T26545]  ? __sys_sendmsg_sock+0x30/0x30
[ 1620.480046][T26545]  __sys_sendmsg+0x280/0x370
[ 1620.484629][T26545]  ? ____sys_sendmsg+0x910/0x910
[ 1620.489574][T26545]  ? __context_tracking_exit+0x7a/0xd0
[ 1620.495034][T26545]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1620.501004][T26545]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1620.506984][T26545]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1620.512953][T26545]  ? lockdep_hardirqs_on+0x95/0x140
[ 1620.518145][T26545]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1620.524119][T26545]  do_syscall_64+0x44/0xd0
[ 1620.528536][T26545]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1620.534418][T26545] RIP: 0033:0x7fda9f984e99
[ 1620.538823][T26545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1620.558416][T26545] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1620.566824][T26545] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1620.574788][T26545] RDX: 0000000000000f00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1620.582751][T26545] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1620.590711][T26545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1620.598675][T26545] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1620.606658][T26545]  </TASK>
[ 1620.680386][T26550] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1620.698461][T26550] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1620.710877][T26550] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1620.710877][T26550] !'
[ 1620.722804][T26550] CPU: 0 PID: 26550 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1620.731595][T26550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1620.741668][T26550] Call Trace:
[ 1620.744963][T26550]  <TASK>
[ 1620.747909][T26550]  dump_stack_lvl+0x201/0x2d8
[ 1620.752609][T26550]  ? show_regs_print_info+0x12/0x12
[ 1620.757913][T26550]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1620.763802][T26550]  sysfs_warn_dup+0x8c/0xa0
[ 1620.768324][T26550]  sysfs_do_create_link_sd+0xbe/0x100
[ 1620.773690][T26550]  device_add+0x9ea/0x16d0
[ 1620.778107][T26550]  ? wiphy_register+0x1b93/0x2a50
[ 1620.783147][T26550]  ? virtual_device_parent+0x50/0x50
[ 1620.788423][T26550]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1620.794396][T26550]  wiphy_register+0x1ba2/0x2a50
[ 1620.799256][T26550]  ? cfg80211_event_work+0x40/0x40
[ 1620.804382][T26550]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1620.810447][T26550]  ieee80211_register_hw+0x3063/0x3e10
[ 1620.815926][T26550]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1620.821739][T26550]  ? memset+0x1f/0x40
[ 1620.825726][T26550]  ? __hrtimer_init+0x173/0x250
[ 1620.830584][T26550]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1620.836331][T26550]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1620.841444][T26550]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1620.847786][T26550]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1620.854106][T26550]  genl_rcv_msg+0x1032/0x1480
[ 1620.858797][T26550]  ? genl_bind+0x360/0x360
[ 1620.863236][T26550]  ? __lock_acquire+0x1382/0x2b00
[ 1620.868285][T26550]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1620.873902][T26550]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1620.880244][T26550]  netlink_rcv_skb+0x200/0x470
[ 1620.885016][T26550]  ? genl_bind+0x360/0x360
[ 1620.889427][T26550]  ? netlink_ack+0xb70/0xb70
[ 1620.894106][T26550]  ? __down_read_common+0x1b0/0x450
[ 1620.899307][T26550]  ? up_read_non_owner+0x1c0/0x1c0
[ 1620.904425][T26550]  ? netlink_deliver_tap+0x130/0x880
[ 1620.909717][T26550]  genl_rcv+0x24/0x40
[ 1620.913701][T26550]  netlink_unicast+0x814/0x9f0
[ 1620.918456][T26550]  ? netlink_detachskb+0xa0/0xa0
[ 1620.923375][T26550]  ? __virt_addr_valid+0xb8/0x2d0
[ 1620.928385][T26550]  ? __phys_addr_symbol+0x2b/0x70
[ 1620.933392][T26550]  ? __check_object_size+0x2f3/0x3f0
[ 1620.938664][T26550]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1620.943770][T26550]  netlink_sendmsg+0xaea/0xe60
[ 1620.948526][T26550]  ? memcpy+0x3c/0x60
[ 1620.952520][T26550]  ? netlink_getsockopt+0xa60/0xa60
[ 1620.957730][T26550]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1620.963017][T26550]  ? security_socket_sendmsg+0x9d/0xb0
[ 1620.968487][T26550]  ? netlink_getsockopt+0xa60/0xa60
[ 1620.973674][T26550]  ____sys_sendmsg+0x5b9/0x910
[ 1620.978433][T26550]  ? __sys_sendmsg_sock+0x30/0x30
[ 1620.983454][T26550]  __sys_sendmsg+0x280/0x370
[ 1620.988040][T26550]  ? ____sys_sendmsg+0x910/0x910
[ 1620.993068][T26550]  ? __context_tracking_exit+0x7a/0xd0
[ 1620.998535][T26550]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1621.004510][T26550]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1621.010499][T26550]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1621.016487][T26550]  ? lockdep_hardirqs_on+0x95/0x140
[ 1621.021682][T26550]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1621.027673][T26550]  do_syscall_64+0x44/0xd0
[ 1621.032097][T26550]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1621.038001][T26550] RIP: 0033:0x7ffbc7e82e99
[ 1621.042412][T26550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1621.062031][T26550] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1621.070469][T26550] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
22:51:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='net/snmp\x00')
r1 = syz_open_procfs(0x0, &(0x7f00000008c0)='net/packet\x00')
dup3(r1, r0, 0x0)
dup3(r1, r0, 0x0)

22:51:50 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
recvmmsg$unix(r0, &(0x7f0000004540)=[{{0x0, 0x0, 0x0}}], 0x1, 0x1, 0x0)

22:51:50 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1100)

22:51:50 executing program 3:
syz_mount_image$hfsplus(0x0, 0x0, 0x0, 0x1, &(0x7f0000001480)=[{&(0x7f0000000200)="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", 0xe01, 0xfffffffffffff800}], 0x0, 0x0)

[ 1621.078456][T26550] RDX: 000000000000195e RSI: 0000000020000000 RDI: 0000000000000003
[ 1621.086423][T26550] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1621.094386][T26550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1621.102354][T26550] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1621.110362][T26550]  </TASK>
[ 1621.175132][T26566] loop3: detected capacity change from 0 to 16376
[ 1621.193882][T26556] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1621.223649][T26556] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1621.240914][T26556] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1621.240914][T26556] !'
[ 1621.294495][T26556] CPU: 0 PID: 26556 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1621.303312][T26556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1621.313386][T26556] Call Trace:
[ 1621.316683][T26556]  <TASK>
[ 1621.319615][T26556]  dump_stack_lvl+0x201/0x2d8
[ 1621.324288][T26556]  ? show_regs_print_info+0x12/0x12
[ 1621.329479][T26556]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1621.335199][T26556]  sysfs_warn_dup+0x8c/0xa0
[ 1621.339693][T26556]  sysfs_do_create_link_sd+0xbe/0x100
[ 1621.345059][T26556]  device_add+0x9ea/0x16d0
[ 1621.349466][T26556]  ? wiphy_register+0x1b93/0x2a50
[ 1621.354502][T26556]  ? virtual_device_parent+0x50/0x50
[ 1621.359784][T26556]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1621.365881][T26556]  wiphy_register+0x1ba2/0x2a50
[ 1621.370763][T26556]  ? cfg80211_event_work+0x40/0x40
[ 1621.375886][T26556]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1621.381949][T26556]  ieee80211_register_hw+0x3063/0x3e10
[ 1621.387436][T26556]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1621.393263][T26556]  ? memset+0x1f/0x40
[ 1621.397235][T26556]  ? __hrtimer_init+0x173/0x250
[ 1621.402083][T26556]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1621.407815][T26556]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1621.412916][T26556]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1621.419239][T26556]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1621.425571][T26556]  genl_rcv_msg+0x1032/0x1480
[ 1621.430282][T26556]  ? genl_bind+0x360/0x360
[ 1621.434721][T26556]  ? __lock_acquire+0x1382/0x2b00
[ 1621.439768][T26556]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1621.445386][T26556]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1621.451722][T26556]  netlink_rcv_skb+0x200/0x470
[ 1621.456485][T26556]  ? genl_bind+0x360/0x360
[ 1621.460898][T26556]  ? netlink_ack+0xb70/0xb70
[ 1621.465491][T26556]  ? __down_read_common+0x1b0/0x450
[ 1621.470684][T26556]  ? up_read_non_owner+0x1c0/0x1c0
[ 1621.475787][T26556]  ? netlink_deliver_tap+0x130/0x880
[ 1621.481072][T26556]  genl_rcv+0x24/0x40
[ 1621.485048][T26556]  netlink_unicast+0x814/0x9f0
[ 1621.489804][T26556]  ? netlink_detachskb+0xa0/0xa0
[ 1621.494726][T26556]  ? __virt_addr_valid+0xb8/0x2d0
[ 1621.499747][T26556]  ? __phys_addr_symbol+0x2b/0x70
[ 1621.504778][T26556]  ? __check_object_size+0x2f3/0x3f0
[ 1621.510053][T26556]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1621.515155][T26556]  netlink_sendmsg+0xaea/0xe60
[ 1621.519916][T26556]  ? memcpy+0x3c/0x60
[ 1621.523908][T26556]  ? netlink_getsockopt+0xa60/0xa60
[ 1621.529114][T26556]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1621.534420][T26556]  ? security_socket_sendmsg+0x9d/0xb0
[ 1621.539867][T26556]  ? netlink_getsockopt+0xa60/0xa60
[ 1621.545053][T26556]  ____sys_sendmsg+0x5b9/0x910
[ 1621.549814][T26556]  ? __sys_sendmsg_sock+0x30/0x30
[ 1621.554839][T26556]  __sys_sendmsg+0x280/0x370
[ 1621.559443][T26556]  ? ____sys_sendmsg+0x910/0x910
[ 1621.564396][T26556]  ? __context_tracking_exit+0x7a/0xd0
[ 1621.569862][T26556]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1621.575853][T26556]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1621.581851][T26556]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1621.587825][T26556]  ? lockdep_hardirqs_on+0x95/0x140
[ 1621.593013][T26556]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1621.598991][T26556]  do_syscall_64+0x44/0xd0
[ 1621.603420][T26556]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1621.609304][T26556] RIP: 0033:0x7f3e3559fe99
[ 1621.613726][T26556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1621.633522][T26556] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1621.642129][T26556] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1621.650096][T26556] RDX: 0000000010000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1621.658063][T26556] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1621.666039][T26556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1621.674030][T26556] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1621.682025][T26556]  </TASK>
[ 1621.703341][T26565] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1621.718946][T26565] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:51:51 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x11000000)

22:51:51 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
getsockname$unix(r0, &(0x7f0000000000)=@abs, &(0x7f0000000080)=0xfffffffffffffe24)

22:51:51 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @loopback}})

22:51:51 executing program 3:
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$PTP_SYS_OFFSET(r0, 0x43403d05, 0x0)

22:51:51 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x195f)

[ 1621.746930][T26565] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1621.746930][T26565] !'
[ 1621.829227][T26565] CPU: 0 PID: 26565 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1621.838313][T26565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1621.848397][T26565] Call Trace:
[ 1621.851697][T26565]  <TASK>
[ 1621.854754][T26565]  dump_stack_lvl+0x201/0x2d8
[ 1621.859461][T26565]  ? show_regs_print_info+0x12/0x12
[ 1621.864684][T26565]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1621.870429][T26565]  sysfs_warn_dup+0x8c/0xa0
[ 1621.874958][T26565]  sysfs_do_create_link_sd+0xbe/0x100
[ 1621.880436][T26565]  device_add+0x9ea/0x16d0
[ 1621.884876][T26565]  ? wiphy_register+0x1b93/0x2a50
[ 1621.889945][T26565]  ? virtual_device_parent+0x50/0x50
[ 1621.895251][T26565]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1621.901291][T26565]  wiphy_register+0x1ba2/0x2a50
[ 1621.906183][T26565]  ? cfg80211_event_work+0x40/0x40
[ 1621.911433][T26565]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1621.917513][T26565]  ieee80211_register_hw+0x3063/0x3e10
[ 1621.922992][T26565]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1621.928809][T26565]  ? memset+0x1f/0x40
[ 1621.932871][T26565]  ? __hrtimer_init+0x173/0x250
[ 1621.937720][T26565]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1621.943458][T26565]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1621.948570][T26565]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1621.954987][T26565]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1621.961323][T26565]  genl_rcv_msg+0x1032/0x1480
[ 1621.966004][T26565]  ? genl_bind+0x360/0x360
[ 1621.970431][T26565]  ? __lock_acquire+0x1382/0x2b00
[ 1621.975471][T26565]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1621.981095][T26565]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1621.987432][T26565]  netlink_rcv_skb+0x200/0x470
[ 1621.992197][T26565]  ? genl_bind+0x360/0x360
[ 1621.996611][T26565]  ? netlink_ack+0xb70/0xb70
[ 1622.001194][T26565]  ? __down_read_common+0x1b0/0x450
[ 1622.007026][T26565]  ? up_read_non_owner+0x1c0/0x1c0
[ 1622.012138][T26565]  ? netlink_deliver_tap+0x130/0x880
[ 1622.017429][T26565]  genl_rcv+0x24/0x40
[ 1622.021462][T26565]  netlink_unicast+0x814/0x9f0
[ 1622.026245][T26565]  ? netlink_detachskb+0xa0/0xa0
[ 1622.031188][T26565]  ? __virt_addr_valid+0xb8/0x2d0
[ 1622.036219][T26565]  ? __phys_addr_symbol+0x2b/0x70
[ 1622.041246][T26565]  ? __check_object_size+0x2f3/0x3f0
[ 1622.046531][T26565]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1622.051641][T26565]  netlink_sendmsg+0xaea/0xe60
[ 1622.056401][T26565]  ? memcpy+0x3c/0x60
[ 1622.060388][T26565]  ? netlink_getsockopt+0xa60/0xa60
[ 1622.065587][T26565]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1622.070861][T26565]  ? security_socket_sendmsg+0x9d/0xb0
[ 1622.076314][T26565]  ? netlink_getsockopt+0xa60/0xa60
[ 1622.081505][T26565]  ____sys_sendmsg+0x5b9/0x910
[ 1622.086273][T26565]  ? __sys_sendmsg_sock+0x30/0x30
[ 1622.091309][T26565]  __sys_sendmsg+0x280/0x370
[ 1622.095899][T26565]  ? ____sys_sendmsg+0x910/0x910
[ 1622.100840][T26565]  ? __context_tracking_exit+0x7a/0xd0
[ 1622.106305][T26565]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1622.112278][T26565]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1622.118260][T26565]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1622.124228][T26565]  ? lockdep_hardirqs_on+0x95/0x140
[ 1622.129415][T26565]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1622.135389][T26565]  do_syscall_64+0x44/0xd0
[ 1622.139802][T26565]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1622.145687][T26565] RIP: 0033:0x7fda9f984e99
[ 1622.150106][T26565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1622.169788][T26565] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
22:51:51 executing program 3:
r0 = semget$private(0x0, 0x3, 0x0)
semop(r0, &(0x7f0000000080)=[{0x0, 0x0, 0x1800}], 0x1)

22:51:51 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1960)

22:51:51 executing program 1:
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000003c40)={0x0, 0x989680})
shmat(0x0, &(0x7f0000ff2000/0x3000)=nil, 0x409ed93ccc5ec448)
shmat(0x0, &(0x7f0000ff4000/0x2000)=nil, 0x6000)
shmat(0x0, &(0x7f0000ffd000/0x3000)=nil, 0x6000)

[ 1622.178195][T26565] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1622.186156][T26565] RDX: 0000000000001100 RSI: 0000000020000000 RDI: 0000000000000003
[ 1622.194119][T26565] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1622.202082][T26565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1622.210046][T26565] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1622.218052][T26565]  </TASK>
22:51:51 executing program 5:
shmat(0x0, &(0x7f0000ff2000/0x3000)=nil, 0x409ed93ccc5ec448)
shmat(0x0, &(0x7f0000ffd000/0x3000)=nil, 0x4000)
r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r0, &(0x7f0000ff2000/0x1000)=nil, 0x5000)

22:51:51 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1200)

22:51:51 executing program 1:
pselect6(0x40, &(0x7f0000000000)={0x2}, 0x0, 0x0, &(0x7f0000000100)={0x77359400}, &(0x7f0000000180)={0x0})

22:51:51 executing program 3:
shmat(0x0, &(0x7f0000800000/0x800000)=nil, 0x409ed93ccc5ed448)

[ 1622.306042][T26577] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1622.325324][T26577] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1622.391643][T26577] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1622.391643][T26577] !'
[ 1622.409749][T26577] CPU: 0 PID: 26577 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1622.418556][T26577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1622.428624][T26577] Call Trace:
[ 1622.431916][T26577]  <TASK>
[ 1622.434854][T26577]  dump_stack_lvl+0x201/0x2d8
[ 1622.439655][T26577]  ? show_regs_print_info+0x12/0x12
[ 1622.444874][T26577]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1622.450716][T26577]  sysfs_warn_dup+0x8c/0xa0
[ 1622.455233][T26577]  sysfs_do_create_link_sd+0xbe/0x100
[ 1622.460728][T26577]  device_add+0x9ea/0x16d0
[ 1622.465154][T26577]  ? wiphy_register+0x1b93/0x2a50
[ 1622.470185][T26577]  ? virtual_device_parent+0x50/0x50
[ 1622.475459][T26577]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1622.481434][T26577]  wiphy_register+0x1ba2/0x2a50
[ 1622.486287][T26577]  ? cfg80211_event_work+0x40/0x40
[ 1622.491406][T26577]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1622.497491][T26577]  ieee80211_register_hw+0x3063/0x3e10
[ 1622.502966][T26577]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1622.508848][T26577]  ? memset+0x1f/0x40
[ 1622.512833][T26577]  ? __hrtimer_init+0x173/0x250
[ 1622.517708][T26577]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1622.523476][T26577]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1622.528612][T26577]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1622.534974][T26577]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1622.541343][T26577]  genl_rcv_msg+0x1032/0x1480
[ 1622.546053][T26577]  ? genl_bind+0x360/0x360
[ 1622.550507][T26577]  ? __lock_acquire+0x1382/0x2b00
[ 1622.555577][T26577]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1622.561227][T26577]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1622.567687][T26577]  netlink_rcv_skb+0x200/0x470
[ 1622.572566][T26577]  ? genl_bind+0x360/0x360
[ 1622.577015][T26577]  ? netlink_ack+0xb70/0xb70
[ 1622.581628][T26577]  ? __down_read_common+0x1b0/0x450
[ 1622.586850][T26577]  ? up_read_non_owner+0x1c0/0x1c0
[ 1622.591980][T26577]  ? netlink_deliver_tap+0x130/0x880
[ 1622.597904][T26577]  genl_rcv+0x24/0x40
[ 1622.602017][T26577]  netlink_unicast+0x814/0x9f0
[ 1622.606826][T26577]  ? netlink_detachskb+0xa0/0xa0
[ 1622.611780][T26577]  ? __virt_addr_valid+0xb8/0x2d0
[ 1622.616818][T26577]  ? __phys_addr_symbol+0x2b/0x70
[ 1622.621840][T26577]  ? __check_object_size+0x2f3/0x3f0
[ 1622.627141][T26577]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1622.632272][T26577]  netlink_sendmsg+0xaea/0xe60
[ 1622.637046][T26577]  ? memcpy+0x3c/0x60
[ 1622.641042][T26577]  ? netlink_getsockopt+0xa60/0xa60
[ 1622.646264][T26577]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1622.651545][T26577]  ? security_socket_sendmsg+0x9d/0xb0
[ 1622.657001][T26577]  ? netlink_getsockopt+0xa60/0xa60
[ 1622.662217][T26577]  ____sys_sendmsg+0x5b9/0x910
[ 1622.666992][T26577]  ? __sys_sendmsg_sock+0x30/0x30
[ 1622.672070][T26577]  __sys_sendmsg+0x280/0x370
[ 1622.676683][T26577]  ? ____sys_sendmsg+0x910/0x910
[ 1622.681640][T26577]  ? __context_tracking_exit+0x7a/0xd0
[ 1622.687101][T26577]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1622.693093][T26577]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1622.699228][T26577]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1622.705234][T26577]  ? lockdep_hardirqs_on+0x95/0x140
[ 1622.710443][T26577]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1622.716416][T26577]  do_syscall_64+0x44/0xd0
[ 1622.720941][T26577]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1622.726840][T26577] RIP: 0033:0x7f3e3559fe99
[ 1622.731265][T26577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1622.750867][T26577] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1622.759300][T26577] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1622.767422][T26577] RDX: 0000000011000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1622.775411][T26577] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1622.783398][T26577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1622.791384][T26577] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1622.799394][T26577]  </TASK>
22:51:52 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x12000000)

22:51:52 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f00000008c0)='net/packet\x00')
write$tcp_mem(r0, 0x0, 0xffffffffffffffd0)

22:51:52 executing program 3:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f00000000c0))

[ 1622.848706][T26582] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1622.868253][T26582] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1622.894986][T26582] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1622.894986][T26582] !'
[ 1622.931703][T26582] CPU: 0 PID: 26582 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1622.940519][T26582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1622.950593][T26582] Call Trace:
[ 1622.953886][T26582]  <TASK>
[ 1622.956828][T26582]  dump_stack_lvl+0x201/0x2d8
[ 1622.961534][T26582]  ? show_regs_print_info+0x12/0x12
[ 1622.966758][T26582]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1622.972523][T26582]  sysfs_warn_dup+0x8c/0xa0
[ 1622.977044][T26582]  sysfs_do_create_link_sd+0xbe/0x100
[ 1622.982449][T26582]  device_add+0x9ea/0x16d0
[ 1622.986906][T26582]  ? wiphy_register+0x1b93/0x2a50
[ 1622.991965][T26582]  ? virtual_device_parent+0x50/0x50
[ 1622.997273][T26582]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1623.003291][T26582]  wiphy_register+0x1ba2/0x2a50
[ 1623.008175][T26582]  ? cfg80211_event_work+0x40/0x40
[ 1623.013312][T26582]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1623.019408][T26582]  ieee80211_register_hw+0x3063/0x3e10
[ 1623.024927][T26582]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1623.030767][T26582]  ? memset+0x1f/0x40
[ 1623.034864][T26582]  ? __hrtimer_init+0x173/0x250
[ 1623.039744][T26582]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1623.045523][T26582]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1623.049757][T26601] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1623.050667][T26582]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1623.050712][T26582]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1623.050749][T26582]  genl_rcv_msg+0x1032/0x1480
[ 1623.050785][T26582]  ? genl_bind+0x360/0x360
[ 1623.050815][T26582]  ? __lock_acquire+0x1382/0x2b00
[ 1623.085085][T26582]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1623.090739][T26582]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1623.097105][T26582]  netlink_rcv_skb+0x200/0x470
[ 1623.101893][T26582]  ? genl_bind+0x360/0x360
[ 1623.106327][T26582]  ? netlink_ack+0xb70/0xb70
[ 1623.110930][T26582]  ? __down_read_common+0x1b0/0x450
[ 1623.116144][T26582]  ? up_read_non_owner+0x1c0/0x1c0
[ 1623.121267][T26582]  ? netlink_deliver_tap+0x130/0x880
[ 1623.126587][T26582]  genl_rcv+0x24/0x40
[ 1623.130587][T26582]  netlink_unicast+0x814/0x9f0
[ 1623.135382][T26582]  ? netlink_detachskb+0xa0/0xa0
[ 1623.140336][T26582]  ? __virt_addr_valid+0xb8/0x2d0
22:51:52 executing program 5:
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)="11", 0x1, 0xfffffffffffffffc)

22:51:52 executing program 5:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000100)={0x1, 0x0, {0x0, 0x0, 0x0, 0x2, 0x0, 0x800}})

22:51:52 executing program 5:
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000680), 0xc100, 0x0)

[ 1623.145379][T26582]  ? __phys_addr_symbol+0x2b/0x70
[ 1623.150419][T26582]  ? __check_object_size+0x2f3/0x3f0
[ 1623.155743][T26582]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1623.160889][T26582]  netlink_sendmsg+0xaea/0xe60
[ 1623.165677][T26582]  ? memcpy+0x3c/0x60
[ 1623.169688][T26582]  ? netlink_getsockopt+0xa60/0xa60
[ 1623.174918][T26582]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1623.180231][T26582]  ? security_socket_sendmsg+0x9d/0xb0
[ 1623.185803][T26582]  ? netlink_getsockopt+0xa60/0xa60
[ 1623.191006][T26582]  ____sys_sendmsg+0x5b9/0x910
[ 1623.195782][T26582]  ? __sys_sendmsg_sock+0x30/0x30
[ 1623.200830][T26582]  __sys_sendmsg+0x280/0x370
[ 1623.205416][T26582]  ? ____sys_sendmsg+0x910/0x910
[ 1623.210457][T26582]  ? __context_tracking_exit+0x7a/0xd0
[ 1623.215940][T26582]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1623.221933][T26582]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1623.227929][T26582]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1623.233904][T26582]  ? lockdep_hardirqs_on+0x95/0x140
[ 1623.239118][T26582]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1623.245110][T26582]  do_syscall_64+0x44/0xd0
[ 1623.249545][T26582]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1623.255451][T26582] RIP: 0033:0x7ffbc7e82e99
[ 1623.259894][T26582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1623.279529][T26582] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1623.287968][T26582] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1623.295961][T26582] RDX: 0000000000001960 RSI: 0000000020000000 RDI: 0000000000000003
[ 1623.303955][T26582] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1623.311940][T26582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1623.319910][T26582] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1623.327902][T26582]  </TASK>
22:51:52 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x2000)

22:51:52 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='totmaps\x00')
write$cgroup_int(r0, 0x0, 0x0)

22:51:52 executing program 1:
pipe2(&(0x7f0000000680)={<r0=>0xffffffffffffffff}, 0x0)
read$FUSE(r0, 0x0, 0x0)

[ 1623.355023][T26588] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1623.375230][T26588] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1623.416880][T26588] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1623.416880][T26588] !'
[ 1623.444670][T26588] CPU: 1 PID: 26588 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1623.453496][T26588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1623.463562][T26588] Call Trace:
[ 1623.466833][T26588]  <TASK>
[ 1623.469752][T26588]  dump_stack_lvl+0x201/0x2d8
[ 1623.474424][T26588]  ? show_regs_print_info+0x12/0x12
[ 1623.479982][T26588]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1623.485813][T26588]  sysfs_warn_dup+0x8c/0xa0
[ 1623.490402][T26588]  sysfs_do_create_link_sd+0xbe/0x100
[ 1623.495784][T26588]  device_add+0x9ea/0x16d0
[ 1623.500189][T26588]  ? wiphy_register+0x1b93/0x2a50
[ 1623.505211][T26588]  ? virtual_device_parent+0x50/0x50
[ 1623.510489][T26588]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1623.516486][T26588]  wiphy_register+0x1ba2/0x2a50
[ 1623.521331][T26588]  ? cfg80211_event_work+0x40/0x40
[ 1623.526439][T26588]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1623.532512][T26588]  ieee80211_register_hw+0x3063/0x3e10
[ 1623.537995][T26588]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1623.543817][T26588]  ? memset+0x1f/0x40
[ 1623.547811][T26588]  ? __hrtimer_init+0x173/0x250
[ 1623.552669][T26588]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1623.558396][T26588]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1623.563499][T26588]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1623.569836][T26588]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1623.576184][T26588]  genl_rcv_msg+0x1032/0x1480
[ 1623.581291][T26588]  ? genl_bind+0x360/0x360
[ 1623.585711][T26588]  ? __lock_acquire+0x1382/0x2b00
[ 1623.590756][T26588]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1623.596374][T26588]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1623.602719][T26588]  netlink_rcv_skb+0x200/0x470
[ 1623.607497][T26588]  ? genl_bind+0x360/0x360
[ 1623.611900][T26588]  ? netlink_ack+0xb70/0xb70
[ 1623.616471][T26588]  ? __down_read_common+0x1b0/0x450
[ 1623.621674][T26588]  ? up_read_non_owner+0x1c0/0x1c0
[ 1623.626782][T26588]  ? netlink_deliver_tap+0x130/0x880
[ 1623.632081][T26588]  genl_rcv+0x24/0x40
[ 1623.636079][T26588]  netlink_unicast+0x814/0x9f0
[ 1623.640847][T26588]  ? netlink_detachskb+0xa0/0xa0
[ 1623.645788][T26588]  ? __virt_addr_valid+0xb8/0x2d0
[ 1623.650835][T26588]  ? __phys_addr_symbol+0x2b/0x70
[ 1623.655872][T26588]  ? __check_object_size+0x2f3/0x3f0
[ 1623.661153][T26588]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1623.666261][T26588]  netlink_sendmsg+0xaea/0xe60
[ 1623.671042][T26588]  ? memcpy+0x3c/0x60
[ 1623.675021][T26588]  ? netlink_getsockopt+0xa60/0xa60
[ 1623.680212][T26588]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1623.685488][T26588]  ? security_socket_sendmsg+0x9d/0xb0
[ 1623.690950][T26588]  ? netlink_getsockopt+0xa60/0xa60
[ 1623.696134][T26588]  ____sys_sendmsg+0x5b9/0x910
[ 1623.700896][T26588]  ? __sys_sendmsg_sock+0x30/0x30
[ 1623.705942][T26588]  __sys_sendmsg+0x280/0x370
[ 1623.710546][T26588]  ? ____sys_sendmsg+0x910/0x910
[ 1623.715484][T26588]  ? __context_tracking_exit+0x7a/0xd0
[ 1623.720972][T26588]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1623.726948][T26588]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1623.732925][T26588]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1623.738902][T26588]  ? lockdep_hardirqs_on+0x95/0x140
[ 1623.744212][T26588]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1623.750187][T26588]  do_syscall_64+0x44/0xd0
[ 1623.754606][T26588]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1623.760483][T26588] RIP: 0033:0x7fda9f984e99
[ 1623.764899][T26588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1623.784491][T26588] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1623.793871][T26588] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1623.801834][T26588] RDX: 0000000000001200 RSI: 0000000020000000 RDI: 0000000000000003
[ 1623.809794][T26588] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1623.817755][T26588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1623.825718][T26588] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1623.833694][T26588]  </TASK>
22:51:53 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1800)

22:51:53 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x7, 0x0, 0x3, 0x2}, 0x10}}, 0x44000)

22:51:53 executing program 5:
io_setup(0x80, &(0x7f0000000040))
io_setup(0x4, &(0x7f0000000000)=<r0=>0x0)
io_destroy(r0)

[ 1623.860150][T26597] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1623.875161][T26597] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1623.904577][T26597] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1623.904577][T26597] !'
[ 1623.929079][T26597] CPU: 1 PID: 26597 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1623.937910][T26597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1623.947977][T26597] Call Trace:
[ 1623.951274][T26597]  <TASK>
[ 1623.954222][T26597]  dump_stack_lvl+0x201/0x2d8
[ 1623.958942][T26597]  ? show_regs_print_info+0x12/0x12
[ 1623.964169][T26597]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1623.969929][T26597]  sysfs_warn_dup+0x8c/0xa0
[ 1623.974477][T26597]  sysfs_do_create_link_sd+0xbe/0x100
[ 1623.979874][T26597]  device_add+0x9ea/0x16d0
[ 1623.984393][T26597]  ? wiphy_register+0x1b93/0x2a50
[ 1623.989459][T26597]  ? virtual_device_parent+0x50/0x50
[ 1623.994759][T26597]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1624.000766][T26597]  wiphy_register+0x1ba2/0x2a50
[ 1624.005649][T26597]  ? cfg80211_event_work+0x40/0x40
[ 1624.010788][T26597]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1624.016882][T26597]  ieee80211_register_hw+0x3063/0x3e10
[ 1624.022405][T26597]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1624.028510][T26597]  ? memset+0x1f/0x40
[ 1624.032510][T26597]  ? __hrtimer_init+0x173/0x250
[ 1624.037385][T26597]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1624.043154][T26597]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1624.048294][T26597]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1624.054661][T26597]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1624.061024][T26597]  genl_rcv_msg+0x1032/0x1480
[ 1624.065740][T26597]  ? genl_bind+0x360/0x360
[ 1624.070185][T26597]  ? __lock_acquire+0x1382/0x2b00
[ 1624.075348][T26597]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1624.081008][T26597]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1624.087382][T26597]  netlink_rcv_skb+0x200/0x470
[ 1624.092173][T26597]  ? genl_bind+0x360/0x360
[ 1624.096626][T26597]  ? netlink_ack+0xb70/0xb70
[ 1624.101236][T26597]  ? __down_read_common+0x1b0/0x450
[ 1624.106457][T26597]  ? up_read_non_owner+0x1c0/0x1c0
[ 1624.111582][T26597]  ? netlink_deliver_tap+0x130/0x880
[ 1624.116904][T26597]  genl_rcv+0x24/0x40
[ 1624.120905][T26597]  netlink_unicast+0x814/0x9f0
[ 1624.125699][T26597]  ? netlink_detachskb+0xa0/0xa0
[ 1624.130650][T26597]  ? __virt_addr_valid+0xb8/0x2d0
[ 1624.135696][T26597]  ? __phys_addr_symbol+0x2b/0x70
[ 1624.140736][T26597]  ? __check_object_size+0x2f3/0x3f0
[ 1624.146036][T26597]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1624.151169][T26597]  netlink_sendmsg+0xaea/0xe60
[ 1624.155953][T26597]  ? memcpy+0x3c/0x60
[ 1624.159974][T26597]  ? netlink_getsockopt+0xa60/0xa60
[ 1624.165212][T26597]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1624.170509][T26597]  ? security_socket_sendmsg+0x9d/0xb0
[ 1624.175989][T26597]  ? netlink_getsockopt+0xa60/0xa60
[ 1624.181206][T26597]  ____sys_sendmsg+0x5b9/0x910
[ 1624.186009][T26597]  ? __sys_sendmsg_sock+0x30/0x30
[ 1624.191076][T26597]  __sys_sendmsg+0x280/0x370
[ 1624.195689][T26597]  ? ____sys_sendmsg+0x910/0x910
[ 1624.200666][T26597]  ? __context_tracking_exit+0x7a/0xd0
[ 1624.206156][T26597]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1624.212156][T26597]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1624.218168][T26597]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1624.225037][T26597]  ? lockdep_hardirqs_on+0x95/0x140
[ 1624.230263][T26597]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1624.236275][T26597]  do_syscall_64+0x44/0xd0
[ 1624.240722][T26597]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1624.246630][T26597] RIP: 0033:0x7f3e3559fe99
[ 1624.251067][T26597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1624.270691][T26597] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1624.279659][T26597] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1624.287654][T26597] RDX: 0000000012000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1624.295820][T26597] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1624.303815][T26597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1624.311802][T26597] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1624.319816][T26597]  </TASK>
[ 1624.348372][T26609] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
22:51:53 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x14000000)

22:51:53 executing program 1:
syz_open_procfs(0xffffffffffffffff, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000008c0)='net/packet\x00')
dup3(r0, r1, 0x0)

22:51:54 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$binfmt_elf64(r0, &(0x7f0000000080)={{0xe, 0x9b, 0x7, 0x7, 0x0, 0x32, 0x30, 0x0, 0x468, 0x0, 0x0, 0x0, 0x0, 0x40}}, 0x40)

[ 1624.389087][T26609] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1624.416155][T26609] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1624.416155][T26609] !'
[ 1624.467196][T26609] CPU: 0 PID: 26609 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1624.476013][T26609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1624.486085][T26609] Call Trace:
[ 1624.489387][T26609]  <TASK>
[ 1624.492344][T26609]  dump_stack_lvl+0x201/0x2d8
[ 1624.497055][T26609]  ? show_regs_print_info+0x12/0x12
[ 1624.502280][T26609]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1624.508043][T26609]  sysfs_warn_dup+0x8c/0xa0
[ 1624.512572][T26609]  sysfs_do_create_link_sd+0xbe/0x100
[ 1624.517978][T26609]  device_add+0x9ea/0x16d0
[ 1624.522417][T26609]  ? wiphy_register+0x1b93/0x2a50
[ 1624.527478][T26609]  ? virtual_device_parent+0x50/0x50
[ 1624.532785][T26609]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1624.538841][T26609]  wiphy_register+0x1ba2/0x2a50
[ 1624.543829][T26609]  ? cfg80211_event_work+0x40/0x40
[ 1624.548991][T26609]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1624.555079][T26609]  ieee80211_register_hw+0x3063/0x3e10
[ 1624.560818][T26609]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1624.566646][T26609]  ? memset+0x1f/0x40
[ 1624.570624][T26609]  ? __hrtimer_init+0x173/0x250
[ 1624.575481][T26609]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1624.581218][T26609]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1624.586336][T26609]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1624.592670][T26609]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1624.599001][T26609]  genl_rcv_msg+0x1032/0x1480
[ 1624.603682][T26609]  ? genl_bind+0x360/0x360
[ 1624.608126][T26609]  ? __lock_acquire+0x1382/0x2b00
[ 1624.613168][T26609]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1624.618789][T26609]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1624.625127][T26609]  netlink_rcv_skb+0x200/0x470
[ 1624.629889][T26609]  ? genl_bind+0x360/0x360
[ 1624.634305][T26609]  ? netlink_ack+0xb70/0xb70
[ 1624.638983][T26609]  ? __down_read_common+0x1b0/0x450
[ 1624.644176][T26609]  ? up_read_non_owner+0x1c0/0x1c0
[ 1624.649279][T26609]  ? netlink_deliver_tap+0x130/0x880
[ 1624.654580][T26609]  genl_rcv+0x24/0x40
[ 1624.658567][T26609]  netlink_unicast+0x814/0x9f0
[ 1624.663335][T26609]  ? netlink_detachskb+0xa0/0xa0
[ 1624.668272][T26609]  ? __virt_addr_valid+0xb8/0x2d0
[ 1624.673292][T26609]  ? __phys_addr_symbol+0x2b/0x70
[ 1624.678310][T26609]  ? __check_object_size+0x2f3/0x3f0
[ 1624.683590][T26609]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1624.688697][T26609]  netlink_sendmsg+0xaea/0xe60
[ 1624.693454][T26609]  ? memcpy+0x3c/0x60
[ 1624.697439][T26609]  ? netlink_getsockopt+0xa60/0xa60
[ 1624.702636][T26609]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1624.707932][T26609]  ? security_socket_sendmsg+0x9d/0xb0
[ 1624.713386][T26609]  ? netlink_getsockopt+0xa60/0xa60
[ 1624.718576][T26609]  ____sys_sendmsg+0x5b9/0x910
[ 1624.723349][T26609]  ? __sys_sendmsg_sock+0x30/0x30
[ 1624.728384][T26609]  __sys_sendmsg+0x280/0x370
[ 1624.733345][T26609]  ? ____sys_sendmsg+0x910/0x910
[ 1624.738290][T26609]  ? __context_tracking_exit+0x7a/0xd0
[ 1624.743751][T26609]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1624.749721][T26609]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1624.755704][T26609]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1624.761798][T26609]  ? lockdep_hardirqs_on+0x95/0x140
[ 1624.767022][T26609]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1624.773018][T26609]  do_syscall_64+0x44/0xd0
[ 1624.777468][T26609]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1624.783385][T26609] RIP: 0033:0x7ffbc7e82e99
[ 1624.787821][T26609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1624.807550][T26609] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1624.815987][T26609] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1624.823965][T26609] RDX: 0000000000002000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1624.831929][T26609] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1624.839893][T26609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1624.847860][T26609] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1624.855839][T26609]  </TASK>
22:51:54 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, &(0x7f00000018c0))

22:51:54 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$FOU_CMD_GET(r0, &(0x7f0000000140)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x0, 0x0, 0x0, 0x0, {}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast2}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_IPPROTO={0x5}, @FOU_ATTR_PEER_V6={0x14, 0x9, @private1}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @loopback}, @FOU_ATTR_TYPE={0x5}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0xaf}}, 0x0)

[ 1624.870104][T26616] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1624.878437][T26616] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1624.981297][T26616] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1624.981297][T26616] !'
[ 1625.003381][T26616] CPU: 0 PID: 26616 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1625.012191][T26616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1625.022258][T26616] Call Trace:
[ 1625.025556][T26616]  <TASK>
[ 1625.028498][T26616]  dump_stack_lvl+0x201/0x2d8
[ 1625.033203][T26616]  ? show_regs_print_info+0x12/0x12
[ 1625.038421][T26616]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1625.044165][T26616]  sysfs_warn_dup+0x8c/0xa0
[ 1625.048657][T26616]  sysfs_do_create_link_sd+0xbe/0x100
[ 1625.054026][T26616]  device_add+0x9ea/0x16d0
[ 1625.058453][T26616]  ? wiphy_register+0x1b93/0x2a50
[ 1625.063517][T26616]  ? virtual_device_parent+0x50/0x50
[ 1625.068814][T26616]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1625.074795][T26616]  wiphy_register+0x1ba2/0x2a50
[ 1625.079662][T26616]  ? cfg80211_event_work+0x40/0x40
[ 1625.084798][T26616]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1625.090892][T26616]  ieee80211_register_hw+0x3063/0x3e10
[ 1625.096386][T26616]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1625.102199][T26616]  ? memset+0x1f/0x40
[ 1625.106189][T26616]  ? __hrtimer_init+0x173/0x250
[ 1625.111067][T26616]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1625.116930][T26616]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1625.122055][T26616]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
22:51:54 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x2100)

[ 1625.128404][T26616]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1625.134743][T26616]  genl_rcv_msg+0x1032/0x1480
[ 1625.139461][T26616]  ? genl_bind+0x360/0x360
[ 1625.143907][T26616]  ? __lock_acquire+0x1382/0x2b00
[ 1625.148978][T26616]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1625.154619][T26616]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1625.160967][T26616]  netlink_rcv_skb+0x200/0x470
[ 1625.165750][T26616]  ? genl_bind+0x360/0x360
[ 1625.170166][T26616]  ? netlink_ack+0xb70/0xb70
[ 1625.174765][T26616]  ? __down_read_common+0x1b0/0x450
[ 1625.180143][T26616]  ? up_read_non_owner+0x1c0/0x1c0
[ 1625.185256][T26616]  ? netlink_deliver_tap+0x130/0x880
[ 1625.190547][T26616]  genl_rcv+0x24/0x40
[ 1625.194519][T26616]  netlink_unicast+0x814/0x9f0
[ 1625.199289][T26616]  ? netlink_detachskb+0xa0/0xa0
[ 1625.204234][T26616]  ? __virt_addr_valid+0xb8/0x2d0
[ 1625.209263][T26616]  ? __phys_addr_symbol+0x2b/0x70
[ 1625.214291][T26616]  ? __check_object_size+0x2f3/0x3f0
[ 1625.219571][T26616]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1625.224783][T26616]  netlink_sendmsg+0xaea/0xe60
[ 1625.229544][T26616]  ? memcpy+0x3c/0x60
[ 1625.233527][T26616]  ? netlink_getsockopt+0xa60/0xa60
[ 1625.238724][T26616]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1625.244009][T26616]  ? security_socket_sendmsg+0x9d/0xb0
[ 1625.249478][T26616]  ? netlink_getsockopt+0xa60/0xa60
[ 1625.254686][T26616]  ____sys_sendmsg+0x5b9/0x910
[ 1625.259466][T26616]  ? __sys_sendmsg_sock+0x30/0x30
[ 1625.264506][T26616]  __sys_sendmsg+0x280/0x370
[ 1625.269101][T26616]  ? ____sys_sendmsg+0x910/0x910
[ 1625.274055][T26616]  ? __context_tracking_exit+0x7a/0xd0
[ 1625.279520][T26616]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1625.285497][T26616]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1625.291478][T26616]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1625.297447][T26616]  ? lockdep_hardirqs_on+0x95/0x140
[ 1625.302633][T26616]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1625.308717][T26616]  do_syscall_64+0x44/0xd0
[ 1625.313146][T26616]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1625.319045][T26616] RIP: 0033:0x7fda9f984e99
[ 1625.323466][T26616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1625.343248][T26616] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1625.351662][T26616] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1625.359624][T26616] RDX: 0000000000001800 RSI: 0000000020000000 RDI: 0000000000000003
[ 1625.367591][T26616] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
22:51:54 executing program 1:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000080))

22:51:55 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000008c0)='net/packet\x00')
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
dup3(r0, r1, 0x0)

[ 1625.375555][T26616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1625.383513][T26616] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1625.391492][T26616]  </TASK>
22:51:55 executing program 1:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmmsg(r0, &(0x7f000000d0c0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000180)="66495c04c9e57ff7fea62fe7059fc5ac", 0x10}], 0x1}}], 0x1, 0x0)

[ 1625.498427][T26636] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1625.528691][T26636] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
22:51:55 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x2000)

22:51:55 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
recvmmsg$unix(r0, &(0x7f00000031c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10161, 0x0)

[ 1625.552751][T26636] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1625.552751][T26636] !'
[ 1625.563385][T26636] CPU: 0 PID: 26636 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1625.572180][T26636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1625.582252][T26636] Call Trace:
[ 1625.585550][T26636]  <TASK>
[ 1625.588493][T26636]  dump_stack_lvl+0x201/0x2d8
[ 1625.593200][T26636]  ? show_regs_print_info+0x12/0x12
[ 1625.598424][T26636]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1625.604193][T26636]  sysfs_warn_dup+0x8c/0xa0
[ 1625.608980][T26636]  sysfs_do_create_link_sd+0xbe/0x100
[ 1625.614375][T26636]  device_add+0x9ea/0x16d0
[ 1625.618811][T26636]  ? wiphy_register+0x1b93/0x2a50
[ 1625.623872][T26636]  ? virtual_device_parent+0x50/0x50
[ 1625.629177][T26636]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1625.635282][T26636]  wiphy_register+0x1ba2/0x2a50
[ 1625.640166][T26636]  ? cfg80211_event_work+0x40/0x40
[ 1625.645307][T26636]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
22:51:55 executing program 1:
r0 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000))

[ 1625.651658][T26636]  ieee80211_register_hw+0x3063/0x3e10
[ 1625.657167][T26636]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1625.663010][T26636]  ? memset+0x1f/0x40
[ 1625.667007][T26636]  ? __hrtimer_init+0x173/0x250
[ 1625.671888][T26636]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1625.677655][T26636]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1625.682811][T26636]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1625.689168][T26636]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1625.695528][T26636]  genl_rcv_msg+0x1032/0x1480
[ 1625.700245][T26636]  ? genl_bind+0x360/0x360
[ 1625.704693][T26636]  ? __lock_acquire+0x1382/0x2b00
[ 1625.709761][T26636]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1625.715407][T26636]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1625.721774][T26636]  netlink_rcv_skb+0x200/0x470
[ 1625.726564][T26636]  ? genl_bind+0x360/0x360
[ 1625.731007][T26636]  ? netlink_ack+0xb70/0xb70
[ 1625.735612][T26636]  ? __down_read_common+0x1b0/0x450
[ 1625.740827][T26636]  ? up_read_non_owner+0x1c0/0x1c0
[ 1625.745953][T26636]  ? netlink_deliver_tap+0x130/0x880
[ 1625.751264][T26636]  genl_rcv+0x24/0x40
[ 1625.755267][T26636]  netlink_unicast+0x814/0x9f0
[ 1625.760057][T26636]  ? netlink_detachskb+0xa0/0xa0
[ 1625.765005][T26636]  ? __virt_addr_valid+0xb8/0x2d0
[ 1625.770044][T26636]  ? __phys_addr_symbol+0x2b/0x70
[ 1625.775083][T26636]  ? __check_object_size+0x2f3/0x3f0
[ 1625.780392][T26636]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1625.785519][T26636]  netlink_sendmsg+0xaea/0xe60
[ 1625.790305][T26636]  ? memcpy+0x3c/0x60
[ 1625.794320][T26636]  ? netlink_getsockopt+0xa60/0xa60
[ 1625.799546][T26636]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1625.804849][T26636]  ? security_socket_sendmsg+0x9d/0xb0
[ 1625.810333][T26636]  ? netlink_getsockopt+0xa60/0xa60
[ 1625.815637][T26636]  ____sys_sendmsg+0x5b9/0x910
[ 1625.820433][T26636]  ? __sys_sendmsg_sock+0x30/0x30
[ 1625.825505][T26636]  __sys_sendmsg+0x280/0x370
[ 1625.830122][T26636]  ? ____sys_sendmsg+0x910/0x910
[ 1625.835079][T26636]  ? __context_tracking_exit+0x7a/0xd0
[ 1625.840554][T26636]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1625.846548][T26636]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1625.852543][T26636]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1625.858513][T26636]  ? lockdep_hardirqs_on+0x95/0x140
[ 1625.863704][T26636]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1625.869700][T26636]  do_syscall_64+0x44/0xd0
[ 1625.874127][T26636]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1625.880365][T26636] RIP: 0033:0x7f3e3559fe99
[ 1625.884789][T26636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1625.904389][T26636] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1625.912801][T26636] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1625.920764][T26636] RDX: 0000000014000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1625.928730][T26636] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1625.936691][T26636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1625.944650][T26636] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1625.952637][T26636]  </TASK>
22:51:55 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x18000000)

22:51:55 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)

[ 1625.998693][T26747] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1626.017239][T26747] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1626.051880][T26747] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1626.051880][T26747] !'
[ 1626.099994][T26747] CPU: 1 PID: 26747 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1626.108813][T26747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1626.118879][T26747] Call Trace:
[ 1626.122337][T26747]  <TASK>
[ 1626.125344][T26747]  dump_stack_lvl+0x201/0x2d8
[ 1626.130107][T26747]  ? show_regs_print_info+0x12/0x12
[ 1626.135294][T26747]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1626.141012][T26747]  sysfs_warn_dup+0x8c/0xa0
[ 1626.145511][T26747]  sysfs_do_create_link_sd+0xbe/0x100
[ 1626.150879][T26747]  device_add+0x9ea/0x16d0
[ 1626.155299][T26747]  ? wiphy_register+0x1b93/0x2a50
[ 1626.160339][T26747]  ? virtual_device_parent+0x50/0x50
[ 1626.165612][T26747]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1626.171585][T26747]  wiphy_register+0x1ba2/0x2a50
[ 1626.176431][T26747]  ? cfg80211_event_work+0x40/0x40
[ 1626.181548][T26747]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1626.187614][T26747]  ieee80211_register_hw+0x3063/0x3e10
[ 1626.193086][T26747]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1626.198915][T26747]  ? memset+0x1f/0x40
[ 1626.202902][T26747]  ? __hrtimer_init+0x173/0x250
[ 1626.207754][T26747]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1626.215215][T26747]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1626.220324][T26747]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1626.226731][T26747]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1626.233068][T26747]  genl_rcv_msg+0x1032/0x1480
[ 1626.237781][T26747]  ? genl_bind+0x360/0x360
[ 1626.242201][T26747]  ? __lock_acquire+0x1382/0x2b00
[ 1626.247343][T26747]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1626.252960][T26747]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1626.259287][T26747]  netlink_rcv_skb+0x200/0x470
[ 1626.264044][T26747]  ? genl_bind+0x360/0x360
[ 1626.268462][T26747]  ? netlink_ack+0xb70/0xb70
[ 1626.273038][T26747]  ? __down_read_common+0x1b0/0x450
[ 1626.278499][T26747]  ? up_read_non_owner+0x1c0/0x1c0
[ 1626.283759][T26747]  ? netlink_deliver_tap+0x130/0x880
[ 1626.289065][T26747]  genl_rcv+0x24/0x40
[ 1626.293060][T26747]  netlink_unicast+0x814/0x9f0
[ 1626.297827][T26747]  ? netlink_detachskb+0xa0/0xa0
[ 1626.302766][T26747]  ? __virt_addr_valid+0xb8/0x2d0
[ 1626.307792][T26747]  ? __phys_addr_symbol+0x2b/0x70
[ 1626.312814][T26747]  ? __check_object_size+0x2f3/0x3f0
[ 1626.318260][T26747]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1626.323379][T26747]  netlink_sendmsg+0xaea/0xe60
[ 1626.328152][T26747]  ? memcpy+0x3c/0x60
[ 1626.332135][T26747]  ? netlink_getsockopt+0xa60/0xa60
[ 1626.337439][T26747]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1626.342725][T26747]  ? security_socket_sendmsg+0x9d/0xb0
[ 1626.348189][T26747]  ? netlink_getsockopt+0xa60/0xa60
[ 1626.353378][T26747]  ____sys_sendmsg+0x5b9/0x910
[ 1626.358143][T26747]  ? __sys_sendmsg_sock+0x30/0x30
[ 1626.363180][T26747]  __sys_sendmsg+0x280/0x370
[ 1626.367777][T26747]  ? ____sys_sendmsg+0x910/0x910
[ 1626.372795][T26747]  ? __context_tracking_exit+0x7a/0xd0
[ 1626.378248][T26747]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1626.384214][T26747]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1626.390185][T26747]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1626.396153][T26747]  ? lockdep_hardirqs_on+0x95/0x140
[ 1626.401338][T26747]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1626.407303][T26747]  do_syscall_64+0x44/0xd0
[ 1626.411714][T26747]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1626.417591][T26747] RIP: 0033:0x7ffbc7e82e99
[ 1626.421994][T26747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1626.441592][T26747] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1626.449994][T26747] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1626.458212][T26747] RDX: 0000000000002100 RSI: 0000000020000000 RDI: 0000000000000003
[ 1626.466167][T26747] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1626.474129][T26747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1626.482087][T26747] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1626.490065][T26747]  </TASK>
22:51:56 executing program 5:
io_setup(0x800, &(0x7f0000002140)=<r0=>0x0)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
io_submit(r0, 0x1, &(0x7f0000002840)=[&(0x7f0000002200)={0x0, 0x0, 0x0, 0xf, 0x0, r1, 0x0}])

22:51:56 executing program 3:
add_key$user(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x1}, &(0x7f0000000300)="c3", 0x1, 0xfffffffffffffffc)

22:51:56 executing program 1:
syz_open_procfs(0x0, &(0x7f00000008c0)='net/packet\x00')
pselect6(0x40, &(0x7f0000000040), &(0x7f0000000080)={0x9}, 0x0, 0x0, 0x0)

[ 1626.500837][T26754] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
22:51:56 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x2500)

22:51:56 executing program 3:
clone(0xc812000, 0x0, 0x0, 0x0, 0x0)

22:51:56 executing program 1:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmmsg(r0, &(0x7f000000d0c0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000180)="66495c04c9e57ff7fea62fe7059fc5ac3edf8d7626bd2aff4dc84f7cbd89c690e0cbc085c3ea80a21ecd7dc570a0", 0x2e}, {&(0x7f00000001c0)="86f0d7c707a91b9b579cd45c59aa6b79c5d2f8127ab3946bf380fdbf", 0x1c}, {&(0x7f0000000300)="162729344f412c93a927aeef465c666e228a0883571274a175fbf2bbd661483eaa3a456a14b7ceb6e15849d6a3c58913d2b223214c42bd869eddcb668cfe3b74125856b710f1b975321f595e0f5b35dc657072bcb860a7e163620bcd705a6778bcf168c6c09d2a9f1544e88d5e0bb5a154567f12a5329fac526f31d4fd3c0f0a46e8275fa6253b55c45fd30f2c3a155a526f35c989ef0c043c937f49d9891cddc1926ad886b28abec50aeacce268516ab58cc30d079da5253c3ffa8ca5b6b20db1cc6198c81d6931ab4561fb00d45da3d888aa9fc9adfb0f596050e5a3da41377f8654d53fd4ce986837566eaccc485b287481d3c646956f599589b21735ddd5bb8a261626507117432dde3842c55401ca80e9c53b39b50a38ab6fb703d788661d380379a3792a5c0d07a5d2600ab532ed817bb00dd50a57ef7830d62ef46ec84c4944cd02d709b421c18e2a0582f18e89a688c90763c80d575a5c406dd1362a49e4a8945737cdde51c7d41d70fc8198682010d650249087868b1f444cebe51aa75bfe4e41331458604fe70072c8dd244b0b6ae18c4846f980399533f0b47229ce185f6cc0109ecc4391cc9759024edba7f2bd73c1e28a489a319dd9493dd98ba2b248c0cfba4c2aa69c6c11da5a4489bc82b6f3550f1ebb8425a345888499547a41ed9c45bcd8786559c78ef8e76c6c872424e2f69940ba23378f00af770b170e75cc7f8662d41d7e59e5b8186092e19fa0091d15cc7f581de3f28a772153cb2787abe913038932c7c171ff98cf970d2908b8a69871f7f0cdad8ba5eee6fa8dfaf42a974b6472dfb348229b4ff3c667dac6fcd839f5580674dd1ee493cc9808b5b2dad80a34f77234064aa29dd33f58b5516800a6ccd842da4483ab7eb93a2bd2ae8a248e1eda71dfcf61c309d5feb7cdca7c4a90ffbab3352cb674fead3df07da2c27ad345be7819d997a58f2591d79940d417cd67f1012e4e5f3df2c07b0acc10b87e10eb819f8c82bffce5fedf2de222c5eef36e669f99d870694eea648a72e4e25d199065e31a5735cf809edeecc4b00a778c52c1150ce5a3a01814c42efef1fdab95805806c50e04716901e1c1a4d282d41c2b88105d79e58a6ecb6e44ad0138d13b7efe2b9e7edff25fd5c42b53d12775970e13e29218a715dada0716947dddf77a66095f27241c3772374222017bc8f0dde1d3cc753dfb39d12cc981f101dd2228aa0d9c33521660a9e7cd62889f781611bf3e2f1da3bd4e7a26395d91b8ca0c79d029e54a7f16e3b534ec27ad4e5e98fa9875caea0fa58fb7779d4b0011987f2299b3db75c456bbf7f03cc796066bc9de9b5315d3751a0477c550dabc42d42c4e9a4643c9036bd0397359e42adde608a2a073072aacc60be7ca198688e070062208c7c7ee81d8e3322b0fb096dcc66ea6608ae51cb08b2684f3c7ac05231cca872a1e04a6d97dfda366ef6b20bc65be8d1fc8f23862e74eaf428d8473ed93528e69562eacc98ac0e5b3542bc664f48ee1593a825041c46777f92a3e6c416e6d316f87793c5aa6a0fc46468e3bb960d391bb212d96b725ccaf7e4f5098cefa4e53b1fe51255af5139a630e6922fa1ff2efa8032a7f26dc8e81fcb3f5ea33898b199af205f18fa3561d11346365495e627e70c0f793d52505cab0c1e61cd7e5aafc6c7729130dabf5837ede7812fdead1757aa027b893a8e9878ff8f27971de76fdd50e871b1d18b8d8b61e052b25427bf926dc20884caeea89749f2c92b50274267c1252d68c6fd0e0e682e650042a0106dcbbfdf4a4f5d7916f1b8c52585799b464d8a3bfb4561a4b15ca61edda3be932782c4d5306166fbd1f71bc7cd83a76aa0ebf5574f75fcd4c8e6f6fa739dc86c1f508f0071d32d9aa493dc60fa9c10e1e463d55da8611450655e6efee76b8fabff384935ee0fbbeb4c07445803964f654eac2e63b9a288ecd903ff3231ba3167adbc25bcb0be564de09a7bc6a5acc5a71eed3a1a95e193c63462806c611a820992d7c841e99a47d302428c8e14341d9c987d0e81baf0d983d0cd3c361e4c8c28bcf38ed670e467c224d00cf7aef1f137b8317d479cff352d155f28092f287ef363b042c2bd96b92de1114afbef631bc4c220c27a09e30631e759b4c7af04dfc0d9c47fd627c1c27477e3183f8e8844c9ab9b730c14a60edc7cd36b292be2235350779ac19dab8cde09cef87a3c206898478bcf550bed650e317039c9a62e0dc171d16e9013b0347976615f7501740fe8e89bdf771e0016505baf9d4a3d617686ea92b590566ac9538ce02eb120b403f25ddf82b6cdcdd9e25a42c9402e5f7f1161ddcfa4823e8d8d15b15b3e1b66d327fd00a6f2555cbca1733346e205fe8adb4ab7024e36ec690358e859447357eda9020a7b9dec439a0c477b363814117d395eab566a0407bbc168c5d6b915b331b748a215e475c21e1df30b622ca99e20fbb7fad96fa565d754f844bdcb41b7da18a2841f5bbcf2f89a312757af91c59af2d0d1a9ffcc6a4fa13df5bb8245f9a4a6985c65a0a0d729fa626f74480e3b9fac73be070c36a34e87cc0bfb02371351f0a448e94c931929184fea21bace63dffb061984442fea85fc4834396529cd707592a70ed75710be42d1a4d65fc7a1946da4986b19b67b792d520474c2cfa6fcbcc474deb0d5b80f8ab032fefc54ef572b8512a4b31834b9bbe9661a86d3c5ba200d57251f2a7f0356641cbbcecbe3c2f2888c0118d582f761455fa4317e26d07f3f1004babf4b3cce61b7d740aff303ecd15b40699d982ed6139bc339ce6386cbe57d0f101c8cf494d568080863572adf636e6ec692dc100ea87ed207d96f453fd8f2057f51392c0bb778b12ee5c3c17ce07ad5f8e604d60aecbdb56bd3bf62237fdf6354f0a5ee107e6a3bd9cec21261aa2722d69518994eca6f57133a0f6357dde0f5a3fb7bc063e6e4051a3aa606b5b0e70ba6d35c370a398ad6011dea28a22bc8839e27362c6d460d0bd86a099e4a4a127d369929953625f9d454e81c7b4ff927a48fcfc547f5f0cd3da0b4e2fa5d245f366c5c62961949a8bd3b2ccd77aeb74477b0907d32fb2c133fb0b4e1973c016bf748df5ee889c7b381bd42cbccbb8e57f32f28ebd34300e299d192f4adcb11f4b06b1578aec9be807907f4b3f551cc54021e27678a7918dcebf1994d74e899a511914eaa1a0a463096136f467f27e01a60b4235f8d8341ef50e7f6644a9fe6eb404c5bba4c74f400bd2476d37cd3875c08b23c70112d7622f5d97d50e8b0dec649676cbc7756d64523519cf0896b03b00ba8a8b3269c5a3c8c00a15afb2b42a7509b09c2c0c8b894bf56d214ceb949c042b899dbf67831812a67d6b8dcf973c5c85ff876e75a63018f41c21ea026a6afb31e0db313f795aa31e29087b8eefe0023eb231e4d13f1fbdf64b406e3ae961dabd975757ad5f37b637b9f0cb87db84b88a79b26797b2f5578597e255739d310335e698d91ca2e9e13595ed7397143e971b99a9209355785a559889fa1624fe0a5962325035efcbd8cdde75bef7a7471072a42e11363ef3363bfb7536d723fcec44c1052007e1701ff51f73238f7a3e12336371ab0c2d2e620cf0ed6d379affb95ff979888be3ccb416d277ac04e2ed7b5965a6b5624b9496cc43d041cce2ddde665f461514cbeee4d86a8b7dffcc96286ae74b8b1df0b2c34556ff69ad42d5826a1d435de783169b3a52aa381af241fc928bd7fd6d325e6ed0e1738dc4cc8d72ac8f5d69755c49edb5e13e4804a4dc9864836a701ee56fcbd7be1f3df86dfe3b41f56f382240807160a1acacc948591c47f35bc8fa460c97c8165c7aed4463bd9bfddc793cf782b3de2531c7fa14c4046dc77fec3c7b402f2fb75da172298f869417ee2980a0285266a4c82fcd5c1764cf208b93e4d07a9e8a99b5efaa6beec21a7a775dc3f871ee418915e8f7eee370793ab08dbd831a8bf422dc3edb75fa7005c221a5dc1a57cb7c3b3bc91e57e6056bb783662473ea5c346211cdc8ca230e5ecfdd4e47f01953af601a1eca6734f6f35100e6ba77d44f1accd27efb0073a16b9fe024bf3ce6c043ab9ba8671bf6da4826c20aac278fe8e2a889777190b2cd205a8ce9d4cf62bb06a5f0ff9ab13023e97756d3d6d9ae7f0684e9d4f840a59722efb6d435c2ae2fd6ed6ed1f223e208ecdd227bc3ab8b75df81ed9741664d85a6e5b2c34b1258b31533a32b122aa0e9bc226b521f6c0f77d0001033316510f6e549f9be65971f5e583832eb90532bcd39c5fbbf689f5d1f9da71302192f36d5fc277739f31b87b2587a643dcb2e24783ccce10f10b950f78623df888628f218561214cc30a7655021e29574531a0d150aaee2b4fb5475ad64063652ed1d6140689d07b956ef4cb73aaa2009740fdb95b28ce1148c3a26554f2597f242c65479b7f87108c82a97ca6f8def62f93a13a604dd4bed52ee9ff3b13119d24367d555d3c2af4dee78dca6bb5a548e5a5e0c0c32c60fef3469652efed6e6bde1788f96822f8c6b9ec4be87e99202e8a18e69107e6e7bd3c4e885f486d5561b13c8a64c262f3b09ffda46c6c789ba088a8263df107de21ff5a981299488c168f79f9d4d791a8be0ae695ac5580e4814d80efd757a4fb918a3d462f61d78752b598f8f6cc3a8fd1dffe911bec14a54dd4b734c7ec858ef727f00b34fc8b4f452812febbf7518451d06936d2e1cb7ebd99d4a2c5fdfd5fe504870d695077e83089de2a0a12df9d8635423a6dc512c3604af05813160f331eb8ad08dd650f09aca7462d2f6102ae9a50cfd2867de640e8ee12537ceb367862f8be3b58bed4ccbcbd7f3aa186925832808a9b91b2fedfa382a296c400c5728d3c1d8d51008cc271c587d6c6adc101557df4ebc158f19f5b025166f83e7831647e37314d853bc10fde91530d4b05f933b0faba8c9a0217dbe370aa2ee73e839e8318ec3296e51002b993c4f833a9d67b7ef576487ce85875c1928c386c5d0ed62ba5de8614942e340557ea520653023eeda520338e38b49684f3b977b4ae524c1c98b5ef03fafe2954398f8f2637a1b3b85d8b3c8836ce0067d2218a8e2e16b658a160a3d2f2deb1d3ead4111a8d99464e767cf2fcd3a6a145cc9b0d96728b94102b1424484652e4f34e5db7e58d72d25071283e651b52d65f999db0ec2f139fa5f5cf4ae8bbeed94b6d33e8ee0c734b6d6f133d66e83c01ee5e509b5", 0xe77}], 0x3}}], 0x1, 0x0)

[ 1626.579546][T26754] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1626.625157][T26754] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1626.625157][T26754] !'
[ 1626.635640][T26754] CPU: 1 PID: 26754 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1626.644428][T26754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1626.654589][T26754] Call Trace:
[ 1626.657873][T26754]  <TASK>
[ 1626.660812][T26754]  dump_stack_lvl+0x201/0x2d8
[ 1626.665514][T26754]  ? show_regs_print_info+0x12/0x12
[ 1626.670721][T26754]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1626.676456][T26754]  sysfs_warn_dup+0x8c/0xa0
[ 1626.680954][T26754]  sysfs_do_create_link_sd+0xbe/0x100
[ 1626.686322][T26754]  device_add+0x9ea/0x16d0
[ 1626.690729][T26754]  ? wiphy_register+0x1b93/0x2a50
[ 1626.695777][T26754]  ? virtual_device_parent+0x50/0x50
[ 1626.701066][T26754]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1626.707053][T26754]  wiphy_register+0x1ba2/0x2a50
[ 1626.711909][T26754]  ? cfg80211_event_work+0x40/0x40
[ 1626.717025][T26754]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1626.723088][T26754]  ieee80211_register_hw+0x3063/0x3e10
[ 1626.728562][T26754]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1626.734368][T26754]  ? memset+0x1f/0x40
[ 1626.738338][T26754]  ? __hrtimer_init+0x173/0x250
[ 1626.743193][T26754]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1626.749018][T26754]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1626.754135][T26754]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1626.760464][T26754]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1626.766792][T26754]  genl_rcv_msg+0x1032/0x1480
[ 1626.771469][T26754]  ? genl_bind+0x360/0x360
[ 1626.775882][T26754]  ? __lock_acquire+0x1382/0x2b00
[ 1626.780922][T26754]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1626.786545][T26754]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1626.792881][T26754]  netlink_rcv_skb+0x200/0x470
[ 1626.797639][T26754]  ? genl_bind+0x360/0x360
[ 1626.802063][T26754]  ? netlink_ack+0xb70/0xb70
[ 1626.806642][T26754]  ? __down_read_common+0x1b0/0x450
[ 1626.811834][T26754]  ? up_read_non_owner+0x1c0/0x1c0
[ 1626.816932][T26754]  ? netlink_deliver_tap+0x130/0x880
[ 1626.822220][T26754]  genl_rcv+0x24/0x40
[ 1626.826192][T26754]  netlink_unicast+0x814/0x9f0
[ 1626.830954][T26754]  ? netlink_detachskb+0xa0/0xa0
[ 1626.835881][T26754]  ? __virt_addr_valid+0xb8/0x2d0
[ 1626.840896][T26754]  ? __phys_addr_symbol+0x2b/0x70
[ 1626.845912][T26754]  ? __check_object_size+0x2f3/0x3f0
[ 1626.851188][T26754]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1626.856291][T26754]  netlink_sendmsg+0xaea/0xe60
[ 1626.861046][T26754]  ? memcpy+0x3c/0x60
[ 1626.865025][T26754]  ? netlink_getsockopt+0xa60/0xa60
[ 1626.870221][T26754]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1626.875492][T26754]  ? security_socket_sendmsg+0x9d/0xb0
[ 1626.880944][T26754]  ? netlink_getsockopt+0xa60/0xa60
[ 1626.886132][T26754]  ____sys_sendmsg+0x5b9/0x910
[ 1626.890901][T26754]  ? __sys_sendmsg_sock+0x30/0x30
[ 1626.895933][T26754]  __sys_sendmsg+0x280/0x370
[ 1626.900604][T26754]  ? ____sys_sendmsg+0x910/0x910
[ 1626.905547][T26754]  ? __context_tracking_exit+0x7a/0xd0
[ 1626.911006][T26754]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1626.916977][T26754]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1626.922957][T26754]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1626.928927][T26754]  ? lockdep_hardirqs_on+0x95/0x140
[ 1626.934116][T26754]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1626.940090][T26754]  do_syscall_64+0x44/0xd0
[ 1626.944503][T26754]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1626.950387][T26754] RIP: 0033:0x7fda9f984e99
[ 1626.954820][T26754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1626.974505][T26754] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1626.982913][T26754] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1626.990878][T26754] RDX: 0000000000002000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1626.998841][T26754] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1627.006806][T26754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1627.014768][T26754] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1627.022749][T26754]  </TASK>
22:51:56 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x38}}, 0x0)

22:51:56 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x2100)

22:51:56 executing program 5:
pipe2(&(0x7f0000000680)={<r0=>0xffffffffffffffff}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r0, 0x89fa, 0x0)

22:51:56 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='timerslack_ns\x00')
r1 = syz_open_procfs(0x0, &(0x7f00000008c0)='net/packet\x00')
dup3(r1, r0, 0x0)

[ 1627.075088][T26761] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1627.109014][T26761] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1627.172760][T26761] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1627.172760][T26761] !'
[ 1627.224959][T26761] CPU: 1 PID: 26761 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1627.233770][T26761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1627.243942][T26761] Call Trace:
[ 1627.247240][T26761]  <TASK>
[ 1627.250189][T26761]  dump_stack_lvl+0x201/0x2d8
[ 1627.254910][T26761]  ? show_regs_print_info+0x12/0x12
[ 1627.260140][T26761]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1627.265899][T26761]  sysfs_warn_dup+0x8c/0xa0
[ 1627.270409][T26761]  sysfs_do_create_link_sd+0xbe/0x100
[ 1627.275781][T26761]  device_add+0x9ea/0x16d0
[ 1627.280189][T26761]  ? wiphy_register+0x1b93/0x2a50
[ 1627.285225][T26761]  ? virtual_device_parent+0x50/0x50
[ 1627.290522][T26761]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1627.296527][T26761]  wiphy_register+0x1ba2/0x2a50
[ 1627.301385][T26761]  ? cfg80211_event_work+0x40/0x40
[ 1627.306508][T26761]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1627.312587][T26761]  ieee80211_register_hw+0x3063/0x3e10
[ 1627.318065][T26761]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1627.323883][T26761]  ? memset+0x1f/0x40
[ 1627.327862][T26761]  ? __hrtimer_init+0x173/0x250
[ 1627.332708][T26761]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1627.338445][T26761]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1627.343558][T26761]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1627.349883][T26761]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1627.356211][T26761]  genl_rcv_msg+0x1032/0x1480
[ 1627.360889][T26761]  ? genl_bind+0x360/0x360
[ 1627.365305][T26761]  ? __lock_acquire+0x1382/0x2b00
[ 1627.370361][T26761]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1627.375980][T26761]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1627.382314][T26761]  netlink_rcv_skb+0x200/0x470
[ 1627.387071][T26761]  ? genl_bind+0x360/0x360
[ 1627.391485][T26761]  ? netlink_ack+0xb70/0xb70
[ 1627.396065][T26761]  ? __down_read_common+0x1b0/0x450
[ 1627.401700][T26761]  ? up_read_non_owner+0x1c0/0x1c0
[ 1627.406803][T26761]  ? netlink_deliver_tap+0x130/0x880
[ 1627.412089][T26761]  genl_rcv+0x24/0x40
[ 1627.416072][T26761]  netlink_unicast+0x814/0x9f0
[ 1627.420839][T26761]  ? netlink_detachskb+0xa0/0xa0
[ 1627.425767][T26761]  ? __virt_addr_valid+0xb8/0x2d0
[ 1627.430873][T26761]  ? __phys_addr_symbol+0x2b/0x70
[ 1627.435888][T26761]  ? __check_object_size+0x2f3/0x3f0
[ 1627.441164][T26761]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1627.446265][T26761]  netlink_sendmsg+0xaea/0xe60
[ 1627.451024][T26761]  ? memcpy+0x3c/0x60
[ 1627.455010][T26761]  ? netlink_getsockopt+0xa60/0xa60
[ 1627.460556][T26761]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1627.465828][T26761]  ? security_socket_sendmsg+0x9d/0xb0
[ 1627.471279][T26761]  ? netlink_getsockopt+0xa60/0xa60
[ 1627.476468][T26761]  ____sys_sendmsg+0x5b9/0x910
[ 1627.481233][T26761]  ? __sys_sendmsg_sock+0x30/0x30
[ 1627.486274][T26761]  __sys_sendmsg+0x280/0x370
[ 1627.490861][T26761]  ? ____sys_sendmsg+0x910/0x910
[ 1627.495808][T26761]  ? __context_tracking_exit+0x7a/0xd0
[ 1627.501282][T26761]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1627.507255][T26761]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1627.513236][T26761]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1627.519207][T26761]  ? lockdep_hardirqs_on+0x95/0x140
[ 1627.524393][T26761]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1627.530361][T26761]  do_syscall_64+0x44/0xd0
[ 1627.534871][T26761]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1627.540761][T26761] RIP: 0033:0x7f3e3559fe99
[ 1627.545169][T26761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1627.564765][T26761] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1627.573175][T26761] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1627.581139][T26761] RDX: 0000000018000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1627.589098][T26761] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1627.597056][T26761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1627.605015][T26761] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1627.612990][T26761]  </TASK>
22:51:57 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x20000000)

22:51:57 executing program 3:
add_key(&(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd)

22:51:57 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ifreq(r0, 0x8946, &(0x7f0000000040)={'ip6tnl0\x00', @ifru_mtu})

22:51:57 executing program 1:
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f000000b380), 0x38f640, 0x0)

22:51:57 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x2500)

[ 1627.646740][T26772] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1627.679274][T26772] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1627.732940][T26772] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1627.732940][T26772] !'
[ 1627.743689][T26772] CPU: 0 PID: 26772 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1627.752487][T26772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1627.762551][T26772] Call Trace:
[ 1627.765839][T26772]  <TASK>
[ 1627.768775][T26772]  dump_stack_lvl+0x201/0x2d8
[ 1627.773476][T26772]  ? show_regs_print_info+0x12/0x12
[ 1627.778690][T26772]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1627.784448][T26772]  sysfs_warn_dup+0x8c/0xa0
[ 1627.788969][T26772]  sysfs_do_create_link_sd+0xbe/0x100
[ 1627.794355][T26772]  device_add+0x9ea/0x16d0
[ 1627.798783][T26772]  ? wiphy_register+0x1b93/0x2a50
[ 1627.803840][T26772]  ? virtual_device_parent+0x50/0x50
[ 1627.809138][T26772]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1627.815145][T26772]  wiphy_register+0x1ba2/0x2a50
[ 1627.820031][T26772]  ? cfg80211_event_work+0x40/0x40
[ 1627.825172][T26772]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1627.831264][T26772]  ieee80211_register_hw+0x3063/0x3e10
[ 1627.836852][T26772]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1627.842685][T26772]  ? memset+0x1f/0x40
[ 1627.846708][T26772]  ? __hrtimer_init+0x173/0x250
[ 1627.851585][T26772]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1627.857352][T26772]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1627.862491][T26772]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1627.868848][T26772]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1627.875202][T26772]  genl_rcv_msg+0x1032/0x1480
[ 1627.879992][T26772]  ? genl_bind+0x360/0x360
[ 1627.884417][T26772]  ? __lock_acquire+0x1382/0x2b00
[ 1627.889454][T26772]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1627.895076][T26772]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1627.901410][T26772]  netlink_rcv_skb+0x200/0x470
[ 1627.906167][T26772]  ? genl_bind+0x360/0x360
[ 1627.910576][T26772]  ? netlink_ack+0xb70/0xb70
[ 1627.915175][T26772]  ? __down_read_common+0x1b0/0x450
[ 1627.920367][T26772]  ? up_read_non_owner+0x1c0/0x1c0
[ 1627.925473][T26772]  ? netlink_deliver_tap+0x130/0x880
[ 1627.930770][T26772]  genl_rcv+0x24/0x40
[ 1627.934749][T26772]  netlink_unicast+0x814/0x9f0
[ 1627.939512][T26772]  ? netlink_detachskb+0xa0/0xa0
[ 1627.944442][T26772]  ? __virt_addr_valid+0xb8/0x2d0
[ 1627.949458][T26772]  ? __phys_addr_symbol+0x2b/0x70
[ 1627.954567][T26772]  ? __check_object_size+0x2f3/0x3f0
[ 1627.959845][T26772]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1627.964951][T26772]  netlink_sendmsg+0xaea/0xe60
[ 1627.969707][T26772]  ? memcpy+0x3c/0x60
[ 1627.973691][T26772]  ? netlink_getsockopt+0xa60/0xa60
[ 1627.978900][T26772]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1627.984178][T26772]  ? security_socket_sendmsg+0x9d/0xb0
[ 1627.989650][T26772]  ? netlink_getsockopt+0xa60/0xa60
[ 1627.994924][T26772]  ____sys_sendmsg+0x5b9/0x910
[ 1627.999688][T26772]  ? __sys_sendmsg_sock+0x30/0x30
[ 1628.004722][T26772]  __sys_sendmsg+0x280/0x370
[ 1628.009310][T26772]  ? ____sys_sendmsg+0x910/0x910
[ 1628.014248][T26772]  ? __context_tracking_exit+0x7a/0xd0
[ 1628.019710][T26772]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1628.025683][T26772]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1628.031671][T26772]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1628.037643][T26772]  ? lockdep_hardirqs_on+0x95/0x140
[ 1628.042828][T26772]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1628.049150][T26772]  do_syscall_64+0x44/0xd0
[ 1628.053563][T26772]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1628.059484][T26772] RIP: 0033:0x7ffbc7e82e99
[ 1628.063894][T26772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1628.083489][T26772] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1628.091893][T26772] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1628.099854][T26772] RDX: 0000000000002500 RSI: 0000000020000000 RDI: 0000000000000003
[ 1628.107815][T26772] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1628.115775][T26772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1628.123737][T26772] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1628.131726][T26772]  </TASK>
22:51:57 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x3500)

22:51:57 executing program 3:
r0 = socket$unix(0x1, 0x1, 0x0)
accept4$unix(r0, 0x0, 0x0, 0x80000)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)

22:51:57 executing program 1:
sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
r0 = shmat(0x0, &(0x7f0000ff2000/0x3000)=nil, 0x409ed93ccc5ec448)
shmdt(r0)

22:51:57 executing program 5:
setgid(0xee01)
syz_open_procfs(0x0, &(0x7f00000008c0)='net/packet\x00')

[ 1628.191667][T26792] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1628.222625][T26792] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:51:57 executing program 1:
add_key$keyring(&(0x7f0000000b40), &(0x7f0000000f80)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)

[ 1628.284777][T26792] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1628.284777][T26792] !'
[ 1628.303021][T26792] CPU: 0 PID: 26792 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1628.311826][T26792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1628.321899][T26792] Call Trace:
[ 1628.325190][T26792]  <TASK>
[ 1628.328135][T26792]  dump_stack_lvl+0x201/0x2d8
[ 1628.332850][T26792]  ? show_regs_print_info+0x12/0x12
[ 1628.338072][T26792]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1628.343849][T26792]  sysfs_warn_dup+0x8c/0xa0
[ 1628.348376][T26792]  sysfs_do_create_link_sd+0xbe/0x100
[ 1628.353773][T26792]  device_add+0x9ea/0x16d0
[ 1628.358207][T26792]  ? wiphy_register+0x1b93/0x2a50
[ 1628.363265][T26792]  ? virtual_device_parent+0x50/0x50
[ 1628.368566][T26792]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1628.374558][T26792]  wiphy_register+0x1ba2/0x2a50
[ 1628.379420][T26792]  ? cfg80211_event_work+0x40/0x40
[ 1628.384532][T26792]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1628.390598][T26792]  ieee80211_register_hw+0x3063/0x3e10
[ 1628.396070][T26792]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1628.401884][T26792]  ? memset+0x1f/0x40
[ 1628.405854][T26792]  ? __hrtimer_init+0x173/0x250
[ 1628.410702][T26792]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1628.416437][T26792]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1628.421545][T26792]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1628.427962][T26792]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1628.434379][T26792]  genl_rcv_msg+0x1032/0x1480
[ 1628.439075][T26792]  ? genl_bind+0x360/0x360
[ 1628.443505][T26792]  ? __lock_acquire+0x1382/0x2b00
[ 1628.448540][T26792]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1628.454159][T26792]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1628.460495][T26792]  netlink_rcv_skb+0x200/0x470
[ 1628.465257][T26792]  ? genl_bind+0x360/0x360
[ 1628.469669][T26792]  ? netlink_ack+0xb70/0xb70
[ 1628.474249][T26792]  ? __down_read_common+0x1b0/0x450
[ 1628.479437][T26792]  ? up_read_non_owner+0x1c0/0x1c0
[ 1628.484537][T26792]  ? netlink_deliver_tap+0x130/0x880
[ 1628.489911][T26792]  genl_rcv+0x24/0x40
[ 1628.493886][T26792]  netlink_unicast+0x814/0x9f0
[ 1628.498650][T26792]  ? netlink_detachskb+0xa0/0xa0
[ 1628.503576][T26792]  ? __virt_addr_valid+0xb8/0x2d0
[ 1628.508592][T26792]  ? __phys_addr_symbol+0x2b/0x70
[ 1628.513612][T26792]  ? __check_object_size+0x2f3/0x3f0
[ 1628.518895][T26792]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1628.524010][T26792]  netlink_sendmsg+0xaea/0xe60
[ 1628.528852][T26792]  ? memcpy+0x3c/0x60
[ 1628.532841][T26792]  ? netlink_getsockopt+0xa60/0xa60
[ 1628.538046][T26792]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1628.543317][T26792]  ? security_socket_sendmsg+0x9d/0xb0
[ 1628.548766][T26792]  ? netlink_getsockopt+0xa60/0xa60
[ 1628.553957][T26792]  ____sys_sendmsg+0x5b9/0x910
[ 1628.558718][T26792]  ? __sys_sendmsg_sock+0x30/0x30
[ 1628.563748][T26792]  __sys_sendmsg+0x280/0x370
[ 1628.568332][T26792]  ? ____sys_sendmsg+0x910/0x910
[ 1628.573274][T26792]  ? __context_tracking_exit+0x7a/0xd0
[ 1628.578735][T26792]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1628.584706][T26792]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1628.590683][T26792]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1628.596654][T26792]  ? lockdep_hardirqs_on+0x95/0x140
[ 1628.601841][T26792]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1628.607812][T26792]  do_syscall_64+0x44/0xd0
[ 1628.612230][T26792]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1628.618113][T26792] RIP: 0033:0x7fda9f984e99
[ 1628.622520][T26792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1628.642117][T26792] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1628.650522][T26792] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1628.658483][T26792] RDX: 0000000000002500 RSI: 0000000020000000 RDI: 0000000000000003
[ 1628.666444][T26792] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1628.674404][T26792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:51:58 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x3ff, 0x0, "dab957012dabe84868cc0607b1f7adbabb0019"})

22:51:58 executing program 3:
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x40, &(0x7f0000001540))

[ 1628.682361][T26792] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1628.690342][T26792]  </TASK>
[ 1628.780631][T26793] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1628.793526][T26793] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1628.869450][T26793] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1628.869450][T26793] !'
[ 1628.891868][T26793] CPU: 0 PID: 26793 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1628.900682][T26793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1628.910758][T26793] Call Trace:
[ 1628.914054][T26793]  <TASK>
[ 1628.917008][T26793]  dump_stack_lvl+0x201/0x2d8
[ 1628.921721][T26793]  ? show_regs_print_info+0x12/0x12
[ 1628.927028][T26793]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1628.932795][T26793]  sysfs_warn_dup+0x8c/0xa0
[ 1628.937317][T26793]  sysfs_do_create_link_sd+0xbe/0x100
[ 1628.942711][T26793]  device_add+0x9ea/0x16d0
[ 1628.947142][T26793]  ? wiphy_register+0x1b93/0x2a50
[ 1628.952188][T26793]  ? virtual_device_parent+0x50/0x50
[ 1628.957508][T26793]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1628.963548][T26793]  wiphy_register+0x1ba2/0x2a50
[ 1628.968497][T26793]  ? cfg80211_event_work+0x40/0x40
[ 1628.973608][T26793]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1628.979676][T26793]  ieee80211_register_hw+0x3063/0x3e10
[ 1628.985151][T26793]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1628.990957][T26793]  ? memset+0x1f/0x40
[ 1628.994930][T26793]  ? __hrtimer_init+0x173/0x250
[ 1628.999773][T26793]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1629.005504][T26793]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1629.010610][T26793]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1629.016936][T26793]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1629.023263][T26793]  genl_rcv_msg+0x1032/0x1480
[ 1629.027942][T26793]  ? genl_bind+0x360/0x360
[ 1629.032354][T26793]  ? __lock_acquire+0x1382/0x2b00
[ 1629.037392][T26793]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1629.043012][T26793]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1629.049344][T26793]  netlink_rcv_skb+0x200/0x470
[ 1629.054107][T26793]  ? genl_bind+0x360/0x360
[ 1629.058520][T26793]  ? netlink_ack+0xb70/0xb70
[ 1629.063102][T26793]  ? __down_read_common+0x1b0/0x450
[ 1629.068295][T26793]  ? up_read_non_owner+0x1c0/0x1c0
[ 1629.073396][T26793]  ? netlink_deliver_tap+0x130/0x880
[ 1629.078683][T26793]  genl_rcv+0x24/0x40
[ 1629.082659][T26793]  netlink_unicast+0x814/0x9f0
[ 1629.087422][T26793]  ? netlink_detachskb+0xa0/0xa0
[ 1629.092350][T26793]  ? __virt_addr_valid+0xb8/0x2d0
[ 1629.097366][T26793]  ? __phys_addr_symbol+0x2b/0x70
[ 1629.102376][T26793]  ? __check_object_size+0x2f3/0x3f0
[ 1629.107736][T26793]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1629.112841][T26793]  netlink_sendmsg+0xaea/0xe60
[ 1629.117598][T26793]  ? memcpy+0x3c/0x60
[ 1629.121583][T26793]  ? netlink_getsockopt+0xa60/0xa60
[ 1629.126778][T26793]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1629.132053][T26793]  ? security_socket_sendmsg+0x9d/0xb0
[ 1629.137505][T26793]  ? netlink_getsockopt+0xa60/0xa60
[ 1629.142695][T26793]  ____sys_sendmsg+0x5b9/0x910
[ 1629.147474][T26793]  ? __sys_sendmsg_sock+0x30/0x30
[ 1629.152523][T26793]  __sys_sendmsg+0x280/0x370
[ 1629.157127][T26793]  ? ____sys_sendmsg+0x910/0x910
[ 1629.162083][T26793]  ? __context_tracking_exit+0x7a/0xd0
[ 1629.167551][T26793]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1629.173550][T26793]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1629.179528][T26793]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1629.185514][T26793]  ? lockdep_hardirqs_on+0x95/0x140
[ 1629.190702][T26793]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1629.196673][T26793]  do_syscall_64+0x44/0xd0
[ 1629.201086][T26793]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1629.206976][T26793] RIP: 0033:0x7f3e3559fe99
[ 1629.212708][T26793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1629.232303][T26793] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1629.240709][T26793] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1629.248671][T26793] RDX: 0000000020000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1629.256630][T26793] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1629.264587][T26793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1629.272550][T26793] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1629.280540][T26793]  </TASK>
22:51:58 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x21000000)

22:51:58 executing program 1:
io_setup(0x9, &(0x7f0000000100)=<r0=>0x0)
io_cancel(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)

22:51:58 executing program 3:
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

22:51:58 executing program 5:
syz_open_procfs(0x0, &(0x7f00000001c0)='map_files\x00')

22:51:58 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x3500)

[ 1629.320926][T26806] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1629.337946][T26806] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1629.384333][T26806] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1629.384333][T26806] !'
[ 1629.412134][T26806] CPU: 1 PID: 26806 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1629.420954][T26806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1629.431036][T26806] Call Trace:
[ 1629.434332][T26806]  <TASK>
[ 1629.437280][T26806]  dump_stack_lvl+0x201/0x2d8
[ 1629.441993][T26806]  ? show_regs_print_info+0x12/0x12
[ 1629.447226][T26806]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1629.452991][T26806]  sysfs_warn_dup+0x8c/0xa0
[ 1629.457522][T26806]  sysfs_do_create_link_sd+0xbe/0x100
[ 1629.462925][T26806]  device_add+0x9ea/0x16d0
[ 1629.467389][T26806]  ? wiphy_register+0x1b93/0x2a50
[ 1629.472419][T26806]  ? virtual_device_parent+0x50/0x50
[ 1629.477701][T26806]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1629.483687][T26806]  wiphy_register+0x1ba2/0x2a50
[ 1629.488542][T26806]  ? cfg80211_event_work+0x40/0x40
[ 1629.493662][T26806]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1629.499748][T26806]  ieee80211_register_hw+0x3063/0x3e10
[ 1629.505221][T26806]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1629.511036][T26806]  ? memset+0x1f/0x40
[ 1629.515019][T26806]  ? __hrtimer_init+0x173/0x250
[ 1629.519880][T26806]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1629.525648][T26806]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1629.530771][T26806]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1629.537096][T26806]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1629.543427][T26806]  genl_rcv_msg+0x1032/0x1480
[ 1629.548127][T26806]  ? genl_bind+0x360/0x360
[ 1629.552555][T26806]  ? __lock_acquire+0x1382/0x2b00
[ 1629.557589][T26806]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1629.563217][T26806]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1629.569571][T26806]  netlink_rcv_skb+0x200/0x470
[ 1629.574415][T26806]  ? genl_bind+0x360/0x360
[ 1629.578823][T26806]  ? netlink_ack+0xb70/0xb70
[ 1629.583402][T26806]  ? __down_read_common+0x1b0/0x450
[ 1629.588603][T26806]  ? up_read_non_owner+0x1c0/0x1c0
[ 1629.593699][T26806]  ? netlink_deliver_tap+0x130/0x880
[ 1629.598991][T26806]  genl_rcv+0x24/0x40
[ 1629.602995][T26806]  netlink_unicast+0x814/0x9f0
[ 1629.607778][T26806]  ? netlink_detachskb+0xa0/0xa0
[ 1629.612702][T26806]  ? __virt_addr_valid+0xb8/0x2d0
[ 1629.617719][T26806]  ? __phys_addr_symbol+0x2b/0x70
[ 1629.622750][T26806]  ? __check_object_size+0x2f3/0x3f0
[ 1629.628034][T26806]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1629.633160][T26806]  netlink_sendmsg+0xaea/0xe60
[ 1629.637922][T26806]  ? memcpy+0x3c/0x60
[ 1629.641917][T26806]  ? netlink_getsockopt+0xa60/0xa60
[ 1629.647108][T26806]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1629.652383][T26806]  ? security_socket_sendmsg+0x9d/0xb0
[ 1629.657845][T26806]  ? netlink_getsockopt+0xa60/0xa60
[ 1629.663048][T26806]  ____sys_sendmsg+0x5b9/0x910
[ 1629.667825][T26806]  ? __sys_sendmsg_sock+0x30/0x30
[ 1629.672873][T26806]  __sys_sendmsg+0x280/0x370
[ 1629.677469][T26806]  ? ____sys_sendmsg+0x910/0x910
[ 1629.682408][T26806]  ? __context_tracking_exit+0x7a/0xd0
[ 1629.687880][T26806]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1629.693852][T26806]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1629.699838][T26806]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1629.705832][T26806]  ? lockdep_hardirqs_on+0x95/0x140
[ 1629.711040][T26806]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1629.717030][T26806]  do_syscall_64+0x44/0xd0
[ 1629.721454][T26806]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1629.727348][T26806] RIP: 0033:0x7ffbc7e82e99
[ 1629.731748][T26806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1629.751346][T26806] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1629.759797][T26806] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1629.767771][T26806] RDX: 0000000000003500 RSI: 0000000020000000 RDI: 0000000000000003
[ 1629.775762][T26806] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1629.783752][T26806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1629.791763][T26806] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1629.799737][T26806]  </TASK>
[ 1629.819342][T26816] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1629.827539][T26816] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1629.856604][T26816] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1629.856604][T26816] !'
[ 1629.873313][T26816] CPU: 0 PID: 26816 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1629.882127][T26816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1629.892285][T26816] Call Trace:
[ 1629.895573][T26816]  <TASK>
[ 1629.898511][T26816]  dump_stack_lvl+0x201/0x2d8
[ 1629.903192][T26816]  ? show_regs_print_info+0x12/0x12
[ 1629.908398][T26816]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1629.914483][T26816]  sysfs_warn_dup+0x8c/0xa0
[ 1629.918982][T26816]  sysfs_do_create_link_sd+0xbe/0x100
[ 1629.924370][T26816]  device_add+0x9ea/0x16d0
[ 1629.928805][T26816]  ? wiphy_register+0x1b93/0x2a50
[ 1629.933847][T26816]  ? virtual_device_parent+0x50/0x50
[ 1629.939124][T26816]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1629.945118][T26816]  wiphy_register+0x1ba2/0x2a50
[ 1629.949978][T26816]  ? cfg80211_event_work+0x40/0x40
[ 1629.955101][T26816]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1629.961161][T26816]  ieee80211_register_hw+0x3063/0x3e10
[ 1629.966640][T26816]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1629.972458][T26816]  ? memset+0x1f/0x40
[ 1629.976455][T26816]  ? __hrtimer_init+0x173/0x250
[ 1629.981311][T26816]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1629.987061][T26816]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1629.992170][T26816]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1629.998512][T26816]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1630.004836][T26816]  genl_rcv_msg+0x1032/0x1480
[ 1630.009522][T26816]  ? genl_bind+0x360/0x360
[ 1630.013956][T26816]  ? __lock_acquire+0x1382/0x2b00
[ 1630.018998][T26816]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1630.024722][T26816]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1630.031061][T26816]  netlink_rcv_skb+0x200/0x470
[ 1630.035834][T26816]  ? genl_bind+0x360/0x360
[ 1630.040242][T26816]  ? netlink_ack+0xb70/0xb70
[ 1630.044919][T26816]  ? __down_read_common+0x1b0/0x450
[ 1630.050109][T26816]  ? up_read_non_owner+0x1c0/0x1c0
[ 1630.055218][T26816]  ? netlink_deliver_tap+0x130/0x880
[ 1630.060513][T26816]  genl_rcv+0x24/0x40
[ 1630.064499][T26816]  netlink_unicast+0x814/0x9f0
[ 1630.069269][T26816]  ? netlink_detachskb+0xa0/0xa0
[ 1630.074222][T26816]  ? __virt_addr_valid+0xb8/0x2d0
[ 1630.079258][T26816]  ? __phys_addr_symbol+0x2b/0x70
[ 1630.084288][T26816]  ? __check_object_size+0x2f3/0x3f0
[ 1630.089566][T26816]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1630.094684][T26816]  netlink_sendmsg+0xaea/0xe60
[ 1630.099440][T26816]  ? memcpy+0x3c/0x60
[ 1630.103438][T26816]  ? netlink_getsockopt+0xa60/0xa60
[ 1630.108630][T26816]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1630.113897][T26816]  ? security_socket_sendmsg+0x9d/0xb0
[ 1630.119348][T26816]  ? netlink_getsockopt+0xa60/0xa60
[ 1630.124552][T26816]  ____sys_sendmsg+0x5b9/0x910
[ 1630.129320][T26816]  ? __sys_sendmsg_sock+0x30/0x30
[ 1630.134381][T26816]  __sys_sendmsg+0x280/0x370
[ 1630.138982][T26816]  ? ____sys_sendmsg+0x910/0x910
[ 1630.143931][T26816]  ? __context_tracking_exit+0x7a/0xd0
[ 1630.149398][T26816]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1630.155384][T26816]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1630.161368][T26816]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1630.167353][T26816]  ? lockdep_hardirqs_on+0x95/0x140
[ 1630.172539][T26816]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1630.178525][T26816]  do_syscall_64+0x44/0xd0
[ 1630.182935][T26816]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1630.188812][T26816] RIP: 0033:0x7fda9f984e99
[ 1630.193209][T26816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1630.212886][T26816] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1630.221292][T26816] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1630.229297][T26816] RDX: 0000000000003500 RSI: 0000000020000000 RDI: 0000000000000003
[ 1630.237267][T26816] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1630.245229][T26816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:51:59 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x3f00)

22:51:59 executing program 3:
pipe2(&(0x7f0000000680)={<r0=>0xffffffffffffffff}, 0x0)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000001, 0x10, r0, 0x0)

22:51:59 executing program 5:
add_key$fscrypt_v1(&(0x7f0000000340), 0x0, 0x0, 0x0, 0xfffffffffffffff9)

22:51:59 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, "dab957012dabe84868cc0607b1f7adbabb0019"})

[ 1630.253206][T26816] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1630.261193][T26816]  </TASK>
22:51:59 executing program 5:
creat(&(0x7f0000000000)='./file0\x00', 0x0)
lchown(&(0x7f00000000c0)='./file0\x00', 0x0, 0xffffffffffffffff)

22:51:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=[{0x10}, {0x10}], 0x20}}], 0x1, 0x0)

22:51:59 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x3f00)

[ 1630.317074][T26818] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1630.334765][T26818] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1630.387380][T26818] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1630.387380][T26818] !'
[ 1630.415587][T26818] CPU: 0 PID: 26818 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1630.424395][T26818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1630.434467][T26818] Call Trace:
[ 1630.437743][T26818]  <TASK>
[ 1630.440666][T26818]  dump_stack_lvl+0x201/0x2d8
[ 1630.445343][T26818]  ? show_regs_print_info+0x12/0x12
[ 1630.450533][T26818]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1630.456256][T26818]  sysfs_warn_dup+0x8c/0xa0
[ 1630.460755][T26818]  sysfs_do_create_link_sd+0xbe/0x100
[ 1630.466119][T26818]  device_add+0x9ea/0x16d0
[ 1630.470524][T26818]  ? wiphy_register+0x1b93/0x2a50
[ 1630.475731][T26818]  ? virtual_device_parent+0x50/0x50
[ 1630.481004][T26818]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1630.486981][T26818]  wiphy_register+0x1ba2/0x2a50
[ 1630.491844][T26818]  ? cfg80211_event_work+0x40/0x40
[ 1630.496964][T26818]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1630.503029][T26818]  ieee80211_register_hw+0x3063/0x3e10
[ 1630.508512][T26818]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1630.514326][T26818]  ? memset+0x1f/0x40
[ 1630.518299][T26818]  ? __hrtimer_init+0x173/0x250
[ 1630.523144][T26818]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1630.528878][T26818]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1630.533991][T26818]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1630.540317][T26818]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1630.546642][T26818]  genl_rcv_msg+0x1032/0x1480
[ 1630.551325][T26818]  ? genl_bind+0x360/0x360
[ 1630.555739][T26818]  ? __lock_acquire+0x1382/0x2b00
[ 1630.560783][T26818]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1630.566408][T26818]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1630.572755][T26818]  netlink_rcv_skb+0x200/0x470
[ 1630.577513][T26818]  ? genl_bind+0x360/0x360
[ 1630.581925][T26818]  ? netlink_ack+0xb70/0xb70
[ 1630.586504][T26818]  ? __down_read_common+0x1b0/0x450
[ 1630.591697][T26818]  ? up_read_non_owner+0x1c0/0x1c0
[ 1630.596796][T26818]  ? netlink_deliver_tap+0x130/0x880
[ 1630.602082][T26818]  genl_rcv+0x24/0x40
[ 1630.606054][T26818]  netlink_unicast+0x814/0x9f0
[ 1630.610815][T26818]  ? netlink_detachskb+0xa0/0xa0
[ 1630.615740][T26818]  ? __virt_addr_valid+0xb8/0x2d0
[ 1630.620756][T26818]  ? __phys_addr_symbol+0x2b/0x70
[ 1630.625769][T26818]  ? __check_object_size+0x2f3/0x3f0
[ 1630.631046][T26818]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1630.636149][T26818]  netlink_sendmsg+0xaea/0xe60
[ 1630.640904][T26818]  ? memcpy+0x3c/0x60
[ 1630.644884][T26818]  ? netlink_getsockopt+0xa60/0xa60
[ 1630.650077][T26818]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1630.655347][T26818]  ? security_socket_sendmsg+0x9d/0xb0
[ 1630.660795][T26818]  ? netlink_getsockopt+0xa60/0xa60
[ 1630.665985][T26818]  ____sys_sendmsg+0x5b9/0x910
[ 1630.670747][T26818]  ? __sys_sendmsg_sock+0x30/0x30
[ 1630.675774][T26818]  __sys_sendmsg+0x280/0x370
[ 1630.680358][T26818]  ? ____sys_sendmsg+0x910/0x910
[ 1630.685298][T26818]  ? __context_tracking_exit+0x7a/0xd0
[ 1630.690760][T26818]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1630.696815][T26818]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1630.702811][T26818]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1630.708778][T26818]  ? lockdep_hardirqs_on+0x95/0x140
[ 1630.713965][T26818]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1630.719949][T26818]  do_syscall_64+0x44/0xd0
[ 1630.724360][T26818]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1630.730245][T26818] RIP: 0033:0x7f3e3559fe99
[ 1630.734651][T26818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1630.754249][T26818] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1630.762653][T26818] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1630.770615][T26818] RDX: 0000000021000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1630.778576][T26818] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1630.786535][T26818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1630.794490][T26818] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1630.802469][T26818]  </TASK>
22:52:00 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x25000000)

22:52:00 executing program 1:
syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_mr_vif\x00')

22:52:00 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x7, 0x0, 0x3, 0x2, 0x0, 0x70bd29, 0x25dfdbff}, 0x10}}, 0x44000)

22:52:00 executing program 5:
socketpair(0x2, 0x3, 0x9, 0x0)

[ 1630.872454][T26826] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1630.884372][T26826] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1630.901171][T26826] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1630.901171][T26826] !'
[ 1630.928746][T26826] CPU: 1 PID: 26826 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1630.937564][T26826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1630.947635][T26826] Call Trace:
[ 1630.950929][T26826]  <TASK>
[ 1630.953868][T26826]  dump_stack_lvl+0x201/0x2d8
[ 1630.958580][T26826]  ? show_regs_print_info+0x12/0x12
[ 1630.963805][T26826]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1630.969570][T26826]  sysfs_warn_dup+0x8c/0xa0
[ 1630.974093][T26826]  sysfs_do_create_link_sd+0xbe/0x100
[ 1630.979491][T26826]  device_add+0x9ea/0x16d0
[ 1630.983930][T26826]  ? wiphy_register+0x1b93/0x2a50
[ 1630.988987][T26826]  ? virtual_device_parent+0x50/0x50
[ 1630.994321][T26826]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1631.000340][T26826]  wiphy_register+0x1ba2/0x2a50
[ 1631.005224][T26826]  ? cfg80211_event_work+0x40/0x40
[ 1631.010362][T26826]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1631.016452][T26826]  ieee80211_register_hw+0x3063/0x3e10
[ 1631.022006][T26826]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1631.027847][T26826]  ? memset+0x1f/0x40
[ 1631.031862][T26826]  ? __hrtimer_init+0x173/0x250
[ 1631.036744][T26826]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1631.042517][T26826]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1631.047658][T26826]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1631.054021][T26826]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1631.060379][T26826]  genl_rcv_msg+0x1032/0x1480
[ 1631.065092][T26826]  ? genl_bind+0x360/0x360
[ 1631.069545][T26826]  ? __lock_acquire+0x1382/0x2b00
[ 1631.074617][T26826]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1631.080272][T26826]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1631.086645][T26826]  netlink_rcv_skb+0x200/0x470
[ 1631.091430][T26826]  ? genl_bind+0x360/0x360
[ 1631.095865][T26826]  ? netlink_ack+0xb70/0xb70
[ 1631.100481][T26826]  ? __down_read_common+0x1b0/0x450
[ 1631.105696][T26826]  ? up_read_non_owner+0x1c0/0x1c0
[ 1631.110825][T26826]  ? netlink_deliver_tap+0x130/0x880
[ 1631.116143][T26826]  genl_rcv+0x24/0x40
[ 1631.120144][T26826]  netlink_unicast+0x814/0x9f0
[ 1631.124938][T26826]  ? netlink_detachskb+0xa0/0xa0
[ 1631.129900][T26826]  ? __virt_addr_valid+0xb8/0x2d0
[ 1631.134946][T26826]  ? __phys_addr_symbol+0x2b/0x70
[ 1631.140003][T26826]  ? __check_object_size+0x2f3/0x3f0
[ 1631.145307][T26826]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1631.150440][T26826]  netlink_sendmsg+0xaea/0xe60
[ 1631.155224][T26826]  ? memcpy+0x3c/0x60
[ 1631.159241][T26826]  ? netlink_getsockopt+0xa60/0xa60
[ 1631.164467][T26826]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1631.169763][T26826]  ? security_socket_sendmsg+0x9d/0xb0
[ 1631.175245][T26826]  ? netlink_getsockopt+0xa60/0xa60
[ 1631.180462][T26826]  ____sys_sendmsg+0x5b9/0x910
[ 1631.185261][T26826]  ? __sys_sendmsg_sock+0x30/0x30
[ 1631.190328][T26826]  __sys_sendmsg+0x280/0x370
[ 1631.194936][T26826]  ? ____sys_sendmsg+0x910/0x910
[ 1631.199910][T26826]  ? __context_tracking_exit+0x7a/0xd0
[ 1631.205411][T26826]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1631.211410][T26826]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1631.217422][T26826]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1631.223418][T26826]  ? lockdep_hardirqs_on+0x95/0x140
[ 1631.228635][T26826]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1631.234634][T26826]  do_syscall_64+0x44/0xd0
[ 1631.239068][T26826]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1631.244977][T26826] RIP: 0033:0x7ffbc7e82e99
[ 1631.249409][T26826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1631.269029][T26826] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
22:52:00 executing program 1:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ip_tables_targets\x00')

[ 1631.277467][T26826] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1631.285460][T26826] RDX: 0000000000003f00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1631.293455][T26826] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1631.301444][T26826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1631.309433][T26826] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1631.317446][T26826]  </TASK>
22:52:01 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4000)

22:52:01 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)={0x3c, 0x2, 0x1, 0x201, 0x0, 0x0, {}, [@CTA_TUPLE_REPLY={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_LABELS_MASK={0x18, 0x17, [0x0, 0x0, 0x0, 0x0, 0x0]}]}, 0x3c}}, 0x0)

22:52:01 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000140)=[{0x3}]})

22:52:01 executing program 3:
rt_sigqueueinfo(0x0, 0x0, &(0x7f0000000780))

[ 1631.386923][T26832] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1631.402252][T26832] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:52:01 executing program 1:
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
pselect6(0x40, &(0x7f00000002c0), 0x0, &(0x7f0000000340)={0xc8c}, 0x0, 0x0)

[ 1631.442782][T26832] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1631.442782][T26832] !'
22:52:01 executing program 5:
openat$pfkey(0xffffffffffffff9c, &(0x7f00000002c0), 0x8061, 0x0)

[ 1631.503365][T26832] CPU: 1 PID: 26832 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1631.512174][T26832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1631.522245][T26832] Call Trace:
[ 1631.525543][T26832]  <TASK>
[ 1631.528495][T26832]  dump_stack_lvl+0x201/0x2d8
[ 1631.533199][T26832]  ? show_regs_print_info+0x12/0x12
[ 1631.538419][T26832]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1631.544176][T26832]  sysfs_warn_dup+0x8c/0xa0
[ 1631.548701][T26832]  sysfs_do_create_link_sd+0xbe/0x100
[ 1631.554095][T26832]  device_add+0x9ea/0x16d0
[ 1631.558528][T26832]  ? wiphy_register+0x1b93/0x2a50
[ 1631.563592][T26832]  ? virtual_device_parent+0x50/0x50
[ 1631.568894][T26832]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1631.574915][T26832]  wiphy_register+0x1ba2/0x2a50
[ 1631.579806][T26832]  ? cfg80211_event_work+0x40/0x40
[ 1631.584949][T26832]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1631.591039][T26832]  ieee80211_register_hw+0x3063/0x3e10
[ 1631.596544][T26832]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1631.602468][T26832]  ? memset+0x1f/0x40
[ 1631.606465][T26832]  ? __hrtimer_init+0x173/0x250
[ 1631.611342][T26832]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1631.617109][T26832]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1631.622245][T26832]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1631.628610][T26832]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1631.634965][T26832]  genl_rcv_msg+0x1032/0x1480
[ 1631.639677][T26832]  ? genl_bind+0x360/0x360
[ 1631.644127][T26832]  ? __lock_acquire+0x1382/0x2b00
[ 1631.649199][T26832]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1631.654849][T26832]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1631.661221][T26832]  netlink_rcv_skb+0x200/0x470
[ 1631.666010][T26832]  ? genl_bind+0x360/0x360
[ 1631.670443][T26832]  ? netlink_ack+0xb70/0xb70
[ 1631.675049][T26832]  ? __down_read_common+0x1b0/0x450
[ 1631.680260][T26832]  ? up_read_non_owner+0x1c0/0x1c0
[ 1631.685377][T26832]  ? netlink_deliver_tap+0x130/0x880
[ 1631.690664][T26832]  genl_rcv+0x24/0x40
[ 1631.694650][T26832]  netlink_unicast+0x814/0x9f0
[ 1631.699408][T26832]  ? netlink_detachskb+0xa0/0xa0
[ 1631.704330][T26832]  ? __virt_addr_valid+0xb8/0x2d0
[ 1631.709338][T26832]  ? __phys_addr_symbol+0x2b/0x70
[ 1631.714370][T26832]  ? __check_object_size+0x2f3/0x3f0
[ 1631.719656][T26832]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1631.724766][T26832]  netlink_sendmsg+0xaea/0xe60
[ 1631.729534][T26832]  ? memcpy+0x3c/0x60
[ 1631.733531][T26832]  ? netlink_getsockopt+0xa60/0xa60
[ 1631.738737][T26832]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1631.744029][T26832]  ? security_socket_sendmsg+0x9d/0xb0
[ 1631.749484][T26832]  ? netlink_getsockopt+0xa60/0xa60
[ 1631.754680][T26832]  ____sys_sendmsg+0x5b9/0x910
[ 1631.759467][T26832]  ? __sys_sendmsg_sock+0x30/0x30
[ 1631.764491][T26832]  __sys_sendmsg+0x280/0x370
[ 1631.769071][T26832]  ? ____sys_sendmsg+0x910/0x910
[ 1631.774022][T26832]  ? __context_tracking_exit+0x7a/0xd0
[ 1631.779490][T26832]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1631.785481][T26832]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1631.791458][T26832]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1631.797430][T26832]  ? lockdep_hardirqs_on+0x95/0x140
[ 1631.802636][T26832]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1631.808606][T26832]  do_syscall_64+0x44/0xd0
[ 1631.813012][T26832]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1631.818899][T26832] RIP: 0033:0x7fda9f984e99
[ 1631.823335][T26832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1631.843021][T26832] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1631.851438][T26832] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1631.859399][T26832] RDX: 0000000000003f00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1631.867364][T26832] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1631.875339][T26832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1631.883315][T26832] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1631.891296][T26832]  </TASK>
22:52:01 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4000)

[ 1631.911271][T26848] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1631.927427][T26848] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1631.951098][T26848] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1631.951098][T26848] !'
[ 1631.979217][T26848] CPU: 1 PID: 26848 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1631.988031][T26848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1631.998093][T26848] Call Trace:
[ 1632.001377][T26848]  <TASK>
[ 1632.004310][T26848]  dump_stack_lvl+0x201/0x2d8
[ 1632.009019][T26848]  ? show_regs_print_info+0x12/0x12
[ 1632.014207][T26848]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1632.020029][T26848]  sysfs_warn_dup+0x8c/0xa0
[ 1632.024543][T26848]  sysfs_do_create_link_sd+0xbe/0x100
[ 1632.029927][T26848]  device_add+0x9ea/0x16d0
[ 1632.034337][T26848]  ? wiphy_register+0x1b93/0x2a50
[ 1632.039370][T26848]  ? virtual_device_parent+0x50/0x50
[ 1632.044656][T26848]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1632.050734][T26848]  wiphy_register+0x1ba2/0x2a50
[ 1632.055581][T26848]  ? cfg80211_event_work+0x40/0x40
[ 1632.060691][T26848]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1632.066747][T26848]  ieee80211_register_hw+0x3063/0x3e10
[ 1632.072210][T26848]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1632.078009][T26848]  ? memset+0x1f/0x40
[ 1632.081979][T26848]  ? __hrtimer_init+0x173/0x250
[ 1632.086820][T26848]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1632.092631][T26848]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1632.097733][T26848]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1632.104157][T26848]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1632.110578][T26848]  genl_rcv_msg+0x1032/0x1480
[ 1632.115274][T26848]  ? genl_bind+0x360/0x360
[ 1632.119698][T26848]  ? __lock_acquire+0x1382/0x2b00
[ 1632.124735][T26848]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1632.130357][T26848]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1632.136688][T26848]  netlink_rcv_skb+0x200/0x470
[ 1632.141563][T26848]  ? genl_bind+0x360/0x360
[ 1632.145986][T26848]  ? netlink_ack+0xb70/0xb70
[ 1632.150586][T26848]  ? __down_read_common+0x1b0/0x450
[ 1632.155790][T26848]  ? up_read_non_owner+0x1c0/0x1c0
[ 1632.160884][T26848]  ? netlink_deliver_tap+0x130/0x880
[ 1632.166259][T26848]  genl_rcv+0x24/0x40
[ 1632.170239][T26848]  netlink_unicast+0x814/0x9f0
[ 1632.175010][T26848]  ? netlink_detachskb+0xa0/0xa0
[ 1632.179956][T26848]  ? __virt_addr_valid+0xb8/0x2d0
[ 1632.184970][T26848]  ? __phys_addr_symbol+0x2b/0x70
[ 1632.189979][T26848]  ? __check_object_size+0x2f3/0x3f0
[ 1632.195253][T26848]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1632.200377][T26848]  netlink_sendmsg+0xaea/0xe60
[ 1632.208523][T26848]  ? memcpy+0x3c/0x60
[ 1632.212500][T26848]  ? netlink_getsockopt+0xa60/0xa60
[ 1632.217691][T26848]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1632.222971][T26848]  ? security_socket_sendmsg+0x9d/0xb0
[ 1632.228420][T26848]  ? netlink_getsockopt+0xa60/0xa60
[ 1632.233622][T26848]  ____sys_sendmsg+0x5b9/0x910
[ 1632.238401][T26848]  ? __sys_sendmsg_sock+0x30/0x30
[ 1632.243442][T26848]  __sys_sendmsg+0x280/0x370
[ 1632.248120][T26848]  ? ____sys_sendmsg+0x910/0x910
[ 1632.253056][T26848]  ? __context_tracking_exit+0x7a/0xd0
[ 1632.258522][T26848]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1632.264514][T26848]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1632.270509][T26848]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1632.276480][T26848]  ? lockdep_hardirqs_on+0x95/0x140
[ 1632.281683][T26848]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1632.287650][T26848]  do_syscall_64+0x44/0xd0
[ 1632.292055][T26848]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1632.298023][T26848] RIP: 0033:0x7f3e3559fe99
[ 1632.302447][T26848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1632.322056][T26848] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1632.330471][T26848] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1632.338441][T26848] RDX: 0000000025000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1632.346502][T26848] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1632.354569][T26848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1632.362536][T26848] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1632.370512][T26848]  </TASK>
22:52:02 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x28000000)

22:52:02 executing program 5:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000087c0), 0x1, 0x0)

22:52:02 executing program 3:
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x3, 0x0, 0x0, 0x7ff}]})

22:52:02 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000480), r0)

22:52:02 executing program 3:
inotify_add_watch(0xffffffffffffffff, 0x0, 0x5000001)

[ 1632.393222][T26857] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1632.415670][T26857] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1632.452509][T26857] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1632.452509][T26857] !'
[ 1632.495823][T26857] CPU: 1 PID: 26857 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1632.504810][T26857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1632.515031][T26857] Call Trace:
[ 1632.518326][T26857]  <TASK>
[ 1632.521283][T26857]  dump_stack_lvl+0x201/0x2d8
[ 1632.525986][T26857]  ? show_regs_print_info+0x12/0x12
[ 1632.531204][T26857]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1632.537054][T26857]  sysfs_warn_dup+0x8c/0xa0
[ 1632.541575][T26857]  sysfs_do_create_link_sd+0xbe/0x100
[ 1632.546968][T26857]  device_add+0x9ea/0x16d0
[ 1632.551393][T26857]  ? wiphy_register+0x1b93/0x2a50
[ 1632.556450][T26857]  ? virtual_device_parent+0x50/0x50
[ 1632.561748][T26857]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1632.567757][T26857]  wiphy_register+0x1ba2/0x2a50
[ 1632.572647][T26857]  ? cfg80211_event_work+0x40/0x40
[ 1632.577789][T26857]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1632.583881][T26857]  ieee80211_register_hw+0x3063/0x3e10
[ 1632.589382][T26857]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1632.595225][T26857]  ? memset+0x1f/0x40
[ 1632.599232][T26857]  ? __hrtimer_init+0x173/0x250
[ 1632.604115][T26857]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1632.609884][T26857]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1632.615023][T26857]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1632.621386][T26857]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1632.627746][T26857]  genl_rcv_msg+0x1032/0x1480
[ 1632.632458][T26857]  ? genl_bind+0x360/0x360
[ 1632.636911][T26857]  ? __lock_acquire+0x1382/0x2b00
[ 1632.641981][T26857]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1632.647629][T26857]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1632.653999][T26857]  netlink_rcv_skb+0x200/0x470
[ 1632.658794][T26857]  ? genl_bind+0x360/0x360
[ 1632.663236][T26857]  ? netlink_ack+0xb70/0xb70
[ 1632.667845][T26857]  ? __down_read_common+0x1b0/0x450
[ 1632.673041][T26857]  ? up_read_non_owner+0x1c0/0x1c0
[ 1632.678138][T26857]  ? netlink_deliver_tap+0x130/0x880
[ 1632.683435][T26857]  genl_rcv+0x24/0x40
[ 1632.687426][T26857]  netlink_unicast+0x814/0x9f0
[ 1632.692183][T26857]  ? netlink_detachskb+0xa0/0xa0
[ 1632.697111][T26857]  ? __virt_addr_valid+0xb8/0x2d0
[ 1632.702124][T26857]  ? __phys_addr_symbol+0x2b/0x70
[ 1632.707136][T26857]  ? __check_object_size+0x2f3/0x3f0
[ 1632.712441][T26857]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1632.717546][T26857]  netlink_sendmsg+0xaea/0xe60
[ 1632.722303][T26857]  ? memcpy+0x3c/0x60
[ 1632.726290][T26857]  ? netlink_getsockopt+0xa60/0xa60
[ 1632.731496][T26857]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1632.736769][T26857]  ? security_socket_sendmsg+0x9d/0xb0
[ 1632.742240][T26857]  ? netlink_getsockopt+0xa60/0xa60
[ 1632.747448][T26857]  ____sys_sendmsg+0x5b9/0x910
[ 1632.752214][T26857]  ? __sys_sendmsg_sock+0x30/0x30
[ 1632.757331][T26857]  __sys_sendmsg+0x280/0x370
[ 1632.762001][T26857]  ? ____sys_sendmsg+0x910/0x910
[ 1632.766937][T26857]  ? __context_tracking_exit+0x7a/0xd0
[ 1632.772389][T26857]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1632.778356][T26857]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1632.784337][T26857]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1632.790320][T26857]  ? lockdep_hardirqs_on+0x95/0x140
[ 1632.795510][T26857]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1632.801492][T26857]  do_syscall_64+0x44/0xd0
[ 1632.805899][T26857]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1632.811777][T26857] RIP: 0033:0x7ffbc7e82e99
[ 1632.816182][T26857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1632.835778][T26857] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1632.844388][T26857] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1632.853477][T26857] RDX: 0000000000004000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1632.861437][T26857] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1632.869392][T26857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1632.877371][T26857] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1632.885379][T26857]  </TASK>
22:52:02 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4100)

22:52:02 executing program 5:
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x443, 0x0)

22:52:02 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e)

22:52:02 executing program 3:
semctl$GETNCNT(0x0, 0x4, 0xe, 0x0)

22:52:02 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x2, 0xa, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, [@sadb_x_sec_ctx={0x1}]}, 0x18}}, 0x0)

22:52:02 executing program 5:
sendmsg$TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, 0x0, 0xf3ba9949de5061b6)

[ 1632.912567][T26863] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1632.951116][T26863] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1632.987711][T26863] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1632.987711][T26863] !'
[ 1633.034009][T26863] CPU: 1 PID: 26863 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1633.042822][T26863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1633.052894][T26863] Call Trace:
[ 1633.056190][T26863]  <TASK>
[ 1633.059139][T26863]  dump_stack_lvl+0x201/0x2d8
[ 1633.063844][T26863]  ? show_regs_print_info+0x12/0x12
[ 1633.069066][T26863]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1633.074826][T26863]  sysfs_warn_dup+0x8c/0xa0
[ 1633.079347][T26863]  sysfs_do_create_link_sd+0xbe/0x100
[ 1633.084743][T26863]  device_add+0x9ea/0x16d0
[ 1633.089186][T26863]  ? wiphy_register+0x1b93/0x2a50
[ 1633.094266][T26863]  ? virtual_device_parent+0x50/0x50
[ 1633.099658][T26863]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1633.105669][T26863]  wiphy_register+0x1ba2/0x2a50
[ 1633.110560][T26863]  ? cfg80211_event_work+0x40/0x40
[ 1633.115768][T26863]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1633.121891][T26863]  ieee80211_register_hw+0x3063/0x3e10
[ 1633.127399][T26863]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1633.133234][T26863]  ? memset+0x1f/0x40
[ 1633.137232][T26863]  ? __hrtimer_init+0x173/0x250
[ 1633.142108][T26863]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1633.147881][T26863]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1633.153025][T26863]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1633.159391][T26863]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1633.165743][T26863]  genl_rcv_msg+0x1032/0x1480
[ 1633.170440][T26863]  ? genl_bind+0x360/0x360
[ 1633.174868][T26863]  ? __lock_acquire+0x1382/0x2b00
[ 1633.179914][T26863]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1633.185535][T26863]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1633.191874][T26863]  netlink_rcv_skb+0x200/0x470
[ 1633.196639][T26863]  ? genl_bind+0x360/0x360
[ 1633.201045][T26863]  ? netlink_ack+0xb70/0xb70
[ 1633.205617][T26863]  ? __down_read_common+0x1b0/0x450
[ 1633.210802][T26863]  ? up_read_non_owner+0x1c0/0x1c0
[ 1633.215895][T26863]  ? netlink_deliver_tap+0x130/0x880
[ 1633.222393][T26863]  genl_rcv+0x24/0x40
[ 1633.226368][T26863]  netlink_unicast+0x814/0x9f0
[ 1633.231127][T26863]  ? netlink_detachskb+0xa0/0xa0
[ 1633.236044][T26863]  ? __virt_addr_valid+0xb8/0x2d0
[ 1633.241058][T26863]  ? __phys_addr_symbol+0x2b/0x70
[ 1633.246073][T26863]  ? __check_object_size+0x2f3/0x3f0
[ 1633.251356][T26863]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1633.256718][T26863]  netlink_sendmsg+0xaea/0xe60
[ 1633.261472][T26863]  ? memcpy+0x3c/0x60
[ 1633.265458][T26863]  ? netlink_getsockopt+0xa60/0xa60
[ 1633.270646][T26863]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1633.275911][T26863]  ? security_socket_sendmsg+0x9d/0xb0
[ 1633.281354][T26863]  ? netlink_getsockopt+0xa60/0xa60
[ 1633.286549][T26863]  ____sys_sendmsg+0x5b9/0x910
[ 1633.291320][T26863]  ? __sys_sendmsg_sock+0x30/0x30
[ 1633.296360][T26863]  __sys_sendmsg+0x280/0x370
[ 1633.300936][T26863]  ? ____sys_sendmsg+0x910/0x910
[ 1633.305962][T26863]  ? __context_tracking_exit+0x7a/0xd0
[ 1633.311424][T26863]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1633.317395][T26863]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1633.323426][T26863]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1633.329395][T26863]  ? lockdep_hardirqs_on+0x95/0x140
[ 1633.334588][T26863]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1633.340579][T26863]  do_syscall_64+0x44/0xd0
[ 1633.344989][T26863]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1633.350872][T26863] RIP: 0033:0x7fda9f984e99
[ 1633.355294][T26863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1633.374905][T26863] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1633.383319][T26863] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1633.391292][T26863] RDX: 0000000000004000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1633.399253][T26863] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1633.407209][T26863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1633.415162][T26863] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1633.423134][T26863]  </TASK>
22:52:03 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4100)

[ 1633.451220][T26873] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1633.479721][T26873] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1633.500367][T26873] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1633.500367][T26873] !'
[ 1633.534001][T26873] CPU: 0 PID: 26873 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1633.542816][T26873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1633.552889][T26873] Call Trace:
[ 1633.556188][T26873]  <TASK>
[ 1633.559129][T26873]  dump_stack_lvl+0x201/0x2d8
[ 1633.563835][T26873]  ? show_regs_print_info+0x12/0x12
[ 1633.569047][T26873]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1633.574767][T26873]  sysfs_warn_dup+0x8c/0xa0
[ 1633.579264][T26873]  sysfs_do_create_link_sd+0xbe/0x100
[ 1633.584644][T26873]  device_add+0x9ea/0x16d0
[ 1633.589054][T26873]  ? wiphy_register+0x1b93/0x2a50
[ 1633.594077][T26873]  ? virtual_device_parent+0x50/0x50
[ 1633.599354][T26873]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1633.605360][T26873]  wiphy_register+0x1ba2/0x2a50
[ 1633.610224][T26873]  ? cfg80211_event_work+0x40/0x40
[ 1633.615341][T26873]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1633.621431][T26873]  ieee80211_register_hw+0x3063/0x3e10
[ 1633.626915][T26873]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1633.632716][T26873]  ? memset+0x1f/0x40
[ 1633.636685][T26873]  ? __hrtimer_init+0x173/0x250
[ 1633.641536][T26873]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1633.647284][T26873]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1633.652399][T26873]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1633.658824][T26873]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1633.665172][T26873]  genl_rcv_msg+0x1032/0x1480
[ 1633.669847][T26873]  ? genl_bind+0x360/0x360
[ 1633.674258][T26873]  ? __lock_acquire+0x1382/0x2b00
[ 1633.679300][T26873]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1633.684938][T26873]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1633.691281][T26873]  netlink_rcv_skb+0x200/0x470
[ 1633.696039][T26873]  ? genl_bind+0x360/0x360
[ 1633.700462][T26873]  ? netlink_ack+0xb70/0xb70
[ 1633.705415][T26873]  ? __down_read_common+0x1b0/0x450
[ 1633.710609][T26873]  ? up_read_non_owner+0x1c0/0x1c0
[ 1633.715706][T26873]  ? netlink_deliver_tap+0x130/0x880
[ 1633.720994][T26873]  genl_rcv+0x24/0x40
[ 1633.724982][T26873]  netlink_unicast+0x814/0x9f0
[ 1633.729737][T26873]  ? netlink_detachskb+0xa0/0xa0
[ 1633.734667][T26873]  ? __virt_addr_valid+0xb8/0x2d0
[ 1633.739702][T26873]  ? __phys_addr_symbol+0x2b/0x70
[ 1633.744796][T26873]  ? __check_object_size+0x2f3/0x3f0
[ 1633.750087][T26873]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1633.755188][T26873]  netlink_sendmsg+0xaea/0xe60
[ 1633.760018][T26873]  ? memcpy+0x3c/0x60
[ 1633.764028][T26873]  ? netlink_getsockopt+0xa60/0xa60
[ 1633.769243][T26873]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1633.774608][T26873]  ? security_socket_sendmsg+0x9d/0xb0
[ 1633.780064][T26873]  ? netlink_getsockopt+0xa60/0xa60
[ 1633.785270][T26873]  ____sys_sendmsg+0x5b9/0x910
[ 1633.790033][T26873]  ? __sys_sendmsg_sock+0x30/0x30
[ 1633.795072][T26873]  __sys_sendmsg+0x280/0x370
[ 1633.799672][T26873]  ? ____sys_sendmsg+0x910/0x910
[ 1633.804629][T26873]  ? __context_tracking_exit+0x7a/0xd0
[ 1633.810085][T26873]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1633.816052][T26873]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1633.822033][T26873]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1633.828028][T26873]  ? lockdep_hardirqs_on+0x95/0x140
[ 1633.833415][T26873]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1633.839416][T26873]  do_syscall_64+0x44/0xd0
[ 1633.843852][T26873]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1633.850027][T26873] RIP: 0033:0x7f3e3559fe99
[ 1633.854517][T26873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1633.874110][T26873] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1633.882614][T26873] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1633.890604][T26873] RDX: 0000000028000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1633.898584][T26873] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1633.906728][T26873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1633.914686][T26873] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1633.922675][T26873]  </TASK>
22:52:03 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x35000000)

22:52:03 executing program 3:
recvmsg$unix(0xffffffffffffffff, 0x0, 0x80010152)

22:52:03 executing program 5:
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000000080)={0x100}, &(0x7f00000000c0)={0x77359400}, 0x0)

22:52:03 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4800)

22:52:03 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0xffffffffffffff98}}, 0x0)

[ 1633.947128][T26889] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1633.960265][T26889] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:52:03 executing program 3:
r0 = semget$private(0x0, 0x3, 0x0)
semop(r0, &(0x7f0000000040)=[{0x1, 0x3, 0x1800}, {0x1}], 0x2)

22:52:03 executing program 1:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000006540))

[ 1634.014478][T26889] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1634.014478][T26889] !'
[ 1634.071417][T26889] CPU: 0 PID: 26889 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1634.080320][T26889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1634.090568][T26889] Call Trace:
[ 1634.093884][T26889]  <TASK>
[ 1634.093898][T26889]  dump_stack_lvl+0x201/0x2d8
[ 1634.093933][T26889]  ? show_regs_print_info+0x12/0x12
[ 1634.093958][T26889]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1634.094001][T26889]  sysfs_warn_dup+0x8c/0xa0
[ 1634.094026][T26889]  sysfs_do_create_link_sd+0xbe/0x100
[ 1634.094050][T26889]  device_add+0x9ea/0x16d0
[ 1634.094070][T26889]  ? wiphy_register+0x1b93/0x2a50
[ 1634.094108][T26889]  ? virtual_device_parent+0x50/0x50
[ 1634.094130][T26889]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1634.094168][T26889]  wiphy_register+0x1ba2/0x2a50
[ 1634.148053][T26889]  ? cfg80211_event_work+0x40/0x40
[ 1634.148104][T26889]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1634.148138][T26889]  ieee80211_register_hw+0x3063/0x3e10
[ 1634.148199][T26889]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1634.148236][T26889]  ? memset+0x1f/0x40
[ 1634.148257][T26889]  ? __hrtimer_init+0x173/0x250
[ 1634.148288][T26889]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1634.148347][T26889]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1634.148379][T26889]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1634.148417][T26889]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1634.148454][T26889]  genl_rcv_msg+0x1032/0x1480
[ 1634.148491][T26889]  ? genl_bind+0x360/0x360
[ 1634.148526][T26889]  ? __lock_acquire+0x1382/0x2b00
[ 1634.148580][T26889]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1634.148600][T26889]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
22:52:03 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4804)

[ 1634.148645][T26889]  netlink_rcv_skb+0x200/0x470
[ 1634.148670][T26889]  ? genl_bind+0x360/0x360
[ 1634.148697][T26889]  ? netlink_ack+0xb70/0xb70
[ 1634.148719][T26889]  ? __down_read_common+0x1b0/0x450
[ 1634.148746][T26889]  ? up_read_non_owner+0x1c0/0x1c0
22:52:03 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4800)

[ 1634.148765][T26889]  ? netlink_deliver_tap+0x130/0x880
22:52:03 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x36030000)

[ 1634.148805][T26889]  genl_rcv+0x24/0x40
[ 1634.148828][T26889]  netlink_unicast+0x814/0x9f0
[ 1634.148864][T26889]  ? netlink_detachskb+0xa0/0xa0
[ 1634.148882][T26889]  ? __virt_addr_valid+0xb8/0x2d0
22:52:04 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4c00)

[ 1634.148905][T26889]  ? __phys_addr_symbol+0x2b/0x70
22:52:04 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4804)

22:52:04 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x3f000000)

[ 1634.148925][T26889]  ? __check_object_size+0x2f3/0x3f0
[ 1634.148947][T26889]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1634.148971][T26889]  netlink_sendmsg+0xaea/0xe60
[ 1634.148995][T26889]  ? memcpy+0x3c/0x60
[ 1634.149030][T26889]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.149063][T26889]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1634.149081][T26889]  ? security_socket_sendmsg+0x9d/0xb0
[ 1634.149107][T26889]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.149131][T26889]  ____sys_sendmsg+0x5b9/0x910
[ 1634.149181][T26889]  ? __sys_sendmsg_sock+0x30/0x30
[ 1634.149229][T26889]  __sys_sendmsg+0x280/0x370
[ 1634.149256][T26889]  ? ____sys_sendmsg+0x910/0x910
[ 1634.149300][T26889]  ? __context_tracking_exit+0x7a/0xd0
[ 1634.149341][T26889]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1634.149363][T26889]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1634.149398][T26889]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.149419][T26889]  ? lockdep_hardirqs_on+0x95/0x140
[ 1634.149442][T26889]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.149467][T26889]  do_syscall_64+0x44/0xd0
[ 1634.149496][T26889]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1634.149518][T26889] RIP: 0033:0x7fda9f984e99
[ 1634.149541][T26889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1634.149560][T26889] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1634.149586][T26889] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1634.149603][T26889] RDX: 0000000000004100 RSI: 0000000020000000 RDI: 0000000000000003
[ 1634.149618][T26889] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1634.149633][T26889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1634.149647][T26889] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1634.149687][T26889]  </TASK>
[ 1634.278013][T26896] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1634.278037][T26896] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1634.279697][T26896] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1634.279697][T26896] !'
22:52:04 executing program 1:
syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')

[ 1634.279715][T26896] CPU: 0 PID: 26896 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1634.279740][T26896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1634.279753][T26896] Call Trace:
[ 1634.279761][T26896]  <TASK>
[ 1634.279770][T26896]  dump_stack_lvl+0x201/0x2d8
[ 1634.279806][T26896]  ? show_regs_print_info+0x12/0x12
[ 1634.279831][T26896]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1634.279873][T26896]  sysfs_warn_dup+0x8c/0xa0
[ 1634.279894][T26896]  sysfs_do_create_link_sd+0xbe/0x100
[ 1634.279917][T26896]  device_add+0x9ea/0x16d0
[ 1634.279936][T26896]  ? wiphy_register+0x1b93/0x2a50
[ 1634.279972][T26896]  ? virtual_device_parent+0x50/0x50
[ 1634.279992][T26896]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1634.280026][T26896]  wiphy_register+0x1ba2/0x2a50
[ 1634.280062][T26896]  ? cfg80211_event_work+0x40/0x40
[ 1634.280094][T26896]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1634.280122][T26896]  ieee80211_register_hw+0x3063/0x3e10
[ 1634.280178][T26896]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1634.280213][T26896]  ? memset+0x1f/0x40
[ 1634.280232][T26896]  ? __hrtimer_init+0x173/0x250
[ 1634.280261][T26896]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1634.280313][T26896]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1634.280342][T26896]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1634.280377][T26896]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1634.280411][T26896]  genl_rcv_msg+0x1032/0x1480
[ 1634.280446][T26896]  ? genl_bind+0x360/0x360
[ 1634.280476][T26896]  ? __lock_acquire+0x1382/0x2b00
[ 1634.280522][T26896]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1634.280543][T26896]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1634.280583][T26896]  netlink_rcv_skb+0x200/0x470
[ 1634.280606][T26896]  ? genl_bind+0x360/0x360
[ 1634.280631][T26896]  ? netlink_ack+0xb70/0xb70
[ 1634.280649][T26896]  ? __down_read_common+0x1b0/0x450
[ 1634.280672][T26896]  ? up_read_non_owner+0x1c0/0x1c0
[ 1634.280689][T26896]  ? netlink_deliver_tap+0x130/0x880
[ 1634.280725][T26896]  genl_rcv+0x24/0x40
[ 1634.280746][T26896]  netlink_unicast+0x814/0x9f0
[ 1634.280780][T26896]  ? netlink_detachskb+0xa0/0xa0
[ 1634.280799][T26896]  ? __virt_addr_valid+0xb8/0x2d0
[ 1634.280823][T26896]  ? __phys_addr_symbol+0x2b/0x70
[ 1634.280844][T26896]  ? __check_object_size+0x2f3/0x3f0
[ 1634.280867][T26896]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1634.280892][T26896]  netlink_sendmsg+0xaea/0xe60
[ 1634.280915][T26896]  ? memcpy+0x3c/0x60
[ 1634.280950][T26896]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.280983][T26896]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1634.281003][T26896]  ? security_socket_sendmsg+0x9d/0xb0
[ 1634.281027][T26896]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.281050][T26896]  ____sys_sendmsg+0x5b9/0x910
22:52:04 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
recvmmsg$unix(r0, &(0x7f00000024c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x20}}], 0x1, 0x40000142, 0x0)

22:52:04 executing program 1:
shmat(0x0, &(0x7f0000ff2000/0x3000)=nil, 0x409ed93ccc5ec448)
r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000feb000/0x4000)=nil)
shmat(r0, &(0x7f0000ffd000/0x3000)=nil, 0x4000)
shmat(0x0, &(0x7f0000ff2000/0x1000)=nil, 0x5000)

22:52:04 executing program 3:
socket$inet6(0xa, 0x0, 0xfffffff9)

[ 1634.281085][T26896]  ? __sys_sendmsg_sock+0x30/0x30
[ 1634.281128][T26896]  __sys_sendmsg+0x280/0x370
[ 1634.281163][T26896]  ? ____sys_sendmsg+0x910/0x910
[ 1634.281204][T26896]  ? __context_tracking_exit+0x7a/0xd0
[ 1634.281242][T26896]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1634.281265][T26896]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1634.281298][T26896]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.281319][T26896]  ? lockdep_hardirqs_on+0x95/0x140
[ 1634.281340][T26896]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.281363][T26896]  do_syscall_64+0x44/0xd0
[ 1634.281389][T26896]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1634.281412][T26896] RIP: 0033:0x7ffbc7e82e99
[ 1634.281431][T26896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1634.281450][T26896] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1634.281475][T26896] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
22:52:04 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r0, 0x89f7, &(0x7f0000000100)={'sit0\x00', 0x0})

[ 1634.281492][T26896] RDX: 0000000000004800 RSI: 0000000020000000 RDI: 0000000000000003
[ 1634.281507][T26896] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1634.281522][T26896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1634.281535][T26896] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1634.281573][T26896]  </TASK>
[ 1634.283461][T26900] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1634.283481][T26900] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1634.284914][T26900] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1634.284914][T26900] !'
[ 1634.284931][T26900] CPU: 1 PID: 26900 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1634.284953][T26900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1634.284965][T26900] Call Trace:
[ 1634.284973][T26900]  <TASK>
[ 1634.284982][T26900]  dump_stack_lvl+0x201/0x2d8
[ 1634.285014][T26900]  ? show_regs_print_info+0x12/0x12
[ 1634.285039][T26900]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1634.285080][T26900]  sysfs_warn_dup+0x8c/0xa0
[ 1634.285102][T26900]  sysfs_do_create_link_sd+0xbe/0x100
[ 1634.285125][T26900]  device_add+0x9ea/0x16d0
[ 1634.285143][T26900]  ? wiphy_register+0x1b93/0x2a50
[ 1634.285180][T26900]  ? virtual_device_parent+0x50/0x50
[ 1634.285201][T26900]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1634.285235][T26900]  wiphy_register+0x1ba2/0x2a50
[ 1634.285271][T26900]  ? cfg80211_event_work+0x40/0x40
[ 1634.285303][T26900]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1634.285331][T26900]  ieee80211_register_hw+0x3063/0x3e10
[ 1634.285377][T26900]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1634.285408][T26900]  ? memset+0x1f/0x40
[ 1634.285426][T26900]  ? __hrtimer_init+0x173/0x250
[ 1634.285454][T26900]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1634.285506][T26900]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1634.285535][T26900]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1634.285571][T26900]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1634.285605][T26900]  genl_rcv_msg+0x1032/0x1480
[ 1634.285645][T26900]  ? genl_bind+0x360/0x360
[ 1634.285676][T26900]  ? __lock_acquire+0x1382/0x2b00
[ 1634.285724][T26900]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1634.285745][T26900]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1634.285786][T26900]  netlink_rcv_skb+0x200/0x470
[ 1634.285810][T26900]  ? genl_bind+0x360/0x360
[ 1634.285835][T26900]  ? netlink_ack+0xb70/0xb70
[ 1634.285854][T26900]  ? __down_read_common+0x1b0/0x450
[ 1634.285877][T26900]  ? up_read_non_owner+0x1c0/0x1c0
[ 1634.285894][T26900]  ? netlink_deliver_tap+0x130/0x880
[ 1634.285930][T26900]  genl_rcv+0x24/0x40
[ 1634.285950][T26900]  netlink_unicast+0x814/0x9f0
[ 1634.285983][T26900]  ? netlink_detachskb+0xa0/0xa0
[ 1634.286002][T26900]  ? __virt_addr_valid+0xb8/0x2d0
[ 1634.286025][T26900]  ? __phys_addr_symbol+0x2b/0x70
[ 1634.286045][T26900]  ? __check_object_size+0x2f3/0x3f0
[ 1634.286067][T26900]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1634.286091][T26900]  netlink_sendmsg+0xaea/0xe60
[ 1634.286113][T26900]  ? memcpy+0x3c/0x60
[ 1634.286145][T26900]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.286175][T26900]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1634.286193][T26900]  ? security_socket_sendmsg+0x9d/0xb0
[ 1634.286217][T26900]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.286240][T26900]  ____sys_sendmsg+0x5b9/0x910
[ 1634.286277][T26900]  ? __sys_sendmsg_sock+0x30/0x30
[ 1634.286327][T26900]  __sys_sendmsg+0x280/0x370
[ 1634.286353][T26900]  ? ____sys_sendmsg+0x910/0x910
[ 1634.286394][T26900]  ? __context_tracking_exit+0x7a/0xd0
[ 1634.286429][T26900]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1634.286450][T26900]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1634.286480][T26900]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.286498][T26900]  ? lockdep_hardirqs_on+0x95/0x140
[ 1634.286520][T26900]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.286546][T26900]  do_syscall_64+0x44/0xd0
[ 1634.286573][T26900]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1634.286595][T26900] RIP: 0033:0x7f3e3559fe99
[ 1634.286614][T26900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1634.286641][T26900] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1634.286667][T26900] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1634.286684][T26900] RDX: 0000000035000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1634.286699][T26900] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1634.286713][T26900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1634.286727][T26900] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1634.286764][T26900]  </TASK>
[ 1634.384339][T26907] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1634.384365][T26907] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1634.394116][T26907] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1634.394116][T26907] !'
[ 1634.394134][T26907] CPU: 1 PID: 26907 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1634.394156][T26907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1634.394169][T26907] Call Trace:
[ 1634.394177][T26907]  <TASK>
[ 1634.394186][T26907]  dump_stack_lvl+0x201/0x2d8
[ 1634.394226][T26907]  ? show_regs_print_info+0x12/0x12
[ 1634.394255][T26907]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1634.394300][T26907]  sysfs_warn_dup+0x8c/0xa0
[ 1634.394322][T26907]  sysfs_do_create_link_sd+0xbe/0x100
[ 1634.394346][T26907]  device_add+0x9ea/0x16d0
[ 1634.394366][T26907]  ? wiphy_register+0x1b93/0x2a50
[ 1634.394402][T26907]  ? virtual_device_parent+0x50/0x50
[ 1634.394423][T26907]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1634.394458][T26907]  wiphy_register+0x1ba2/0x2a50
[ 1634.394496][T26907]  ? cfg80211_event_work+0x40/0x40
[ 1634.394531][T26907]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1634.394561][T26907]  ieee80211_register_hw+0x3063/0x3e10
[ 1634.394610][T26907]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1634.394646][T26907]  ? memset+0x1f/0x40
[ 1634.394665][T26907]  ? __hrtimer_init+0x173/0x250
[ 1634.394698][T26907]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1634.394753][T26907]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1634.394782][T26907]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
22:52:05 executing program 5:
r0 = semget$private(0x0, 0x3, 0x0)
semop(r0, &(0x7f0000000040)=[{0x1, 0x3}, {0x1, 0x8}], 0x2)

[ 1634.394817][T26907]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1634.394852][T26907]  genl_rcv_msg+0x1032/0x1480
[ 1634.394886][T26907]  ? genl_bind+0x360/0x360
[ 1634.394918][T26907]  ? __lock_acquire+0x1382/0x2b00
[ 1634.394966][T26907]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1634.394986][T26907]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1634.395028][T26907]  netlink_rcv_skb+0x200/0x470
[ 1634.395052][T26907]  ? genl_bind+0x360/0x360
[ 1634.395077][T26907]  ? netlink_ack+0xb70/0xb70
[ 1634.395096][T26907]  ? __down_read_common+0x1b0/0x450
[ 1634.395119][T26907]  ? up_read_non_owner+0x1c0/0x1c0
[ 1634.395137][T26907]  ? netlink_deliver_tap+0x130/0x880
[ 1634.395173][T26907]  genl_rcv+0x24/0x40
[ 1634.395194][T26907]  netlink_unicast+0x814/0x9f0
[ 1634.395225][T26907]  ? netlink_detachskb+0xa0/0xa0
[ 1634.395243][T26907]  ? __virt_addr_valid+0xb8/0x2d0
[ 1634.395265][T26907]  ? __phys_addr_symbol+0x2b/0x70
[ 1634.395285][T26907]  ? __check_object_size+0x2f3/0x3f0
[ 1634.395306][T26907]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1634.395329][T26907]  netlink_sendmsg+0xaea/0xe60
22:52:05 executing program 5:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f00000016c0)={&(0x7f0000000400), 0xc, &(0x7f0000001680)={0x0}}, 0x841)

[ 1634.395351][T26907]  ? print_irqtrace_events+0x220/0x220
[ 1634.395390][T26907]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.395421][T26907]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1634.395438][T26907]  ? security_socket_sendmsg+0x9d/0xb0
[ 1634.395461][T26907]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.395483][T26907]  ____sys_sendmsg+0x5b9/0x910
[ 1634.395517][T26907]  ? __sys_sendmsg_sock+0x30/0x30
[ 1634.395558][T26907]  __sys_sendmsg+0x280/0x370
[ 1634.395580][T26907]  ? ____sys_sendmsg+0x910/0x910
[ 1634.395608][T26907]  ? __context_tracking_exit+0x7a/0xd0
[ 1634.395637][T26907]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1634.395655][T26907]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1634.395681][T26907]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.395708][T26907]  ? lockdep_hardirqs_on+0x95/0x140
[ 1634.395725][T26907]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.395743][T26907]  do_syscall_64+0x44/0xd0
[ 1634.395765][T26907]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1634.395782][T26907] RIP: 0033:0x7ffbc7e82e99
[ 1634.395798][T26907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1634.395815][T26907] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1634.395833][T26907] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1634.395847][T26907] RDX: 0000000000004804 RSI: 0000000020000000 RDI: 0000000000000003
[ 1634.395859][T26907] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
22:52:05 executing program 5:
openat$pfkey(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080), 0x2200, 0x0)

[ 1634.395877][T26907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1634.395888][T26907] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1634.395913][T26907]  </TASK>
[ 1634.446964][T26909] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1634.452863][T26909] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1634.452863][T26909] !'
[ 1634.452881][T26909] CPU: 0 PID: 26909 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1634.452903][T26909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1634.452915][T26909] Call Trace:
[ 1634.452923][T26909]  <TASK>
[ 1634.452932][T26909]  dump_stack_lvl+0x201/0x2d8
[ 1634.452967][T26909]  ? show_regs_print_info+0x12/0x12
[ 1634.452994][T26909]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1634.453037][T26909]  sysfs_warn_dup+0x8c/0xa0
[ 1634.453066][T26909]  sysfs_do_create_link_sd+0xbe/0x100
[ 1634.453091][T26909]  device_add+0x9ea/0x16d0
[ 1634.453111][T26909]  ? wiphy_register+0x1b93/0x2a50
[ 1634.453147][T26909]  ? virtual_device_parent+0x50/0x50
[ 1634.453168][T26909]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1634.453239][T26909]  wiphy_register+0x1ba2/0x2a50
[ 1634.453277][T26909]  ? cfg80211_event_work+0x40/0x40
[ 1634.453311][T26909]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1634.453340][T26909]  ieee80211_register_hw+0x3063/0x3e10
[ 1634.453389][T26909]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1634.453427][T26909]  ? memset+0x1f/0x40
[ 1634.453447][T26909]  ? __hrtimer_init+0x173/0x250
[ 1634.453477][T26909]  mac80211_hwsim_new_radio+0x218e/0x3be0
22:52:05 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x40000000)

[ 1634.453530][T26909]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1634.453559][T26909]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1634.453597][T26909]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1634.453633][T26909]  genl_rcv_msg+0x1032/0x1480
[ 1634.453669][T26909]  ? genl_bind+0x360/0x360
[ 1634.453699][T26909]  ? __lock_acquire+0x1382/0x2b00
[ 1634.453749][T26909]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1634.453770][T26909]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1634.453813][T26909]  netlink_rcv_skb+0x200/0x470
[ 1634.453836][T26909]  ? genl_bind+0x360/0x360
[ 1634.453862][T26909]  ? netlink_ack+0xb70/0xb70
[ 1634.453881][T26909]  ? __down_read_common+0x1b0/0x450
[ 1634.453906][T26909]  ? up_read_non_owner+0x1c0/0x1c0
[ 1634.453923][T26909]  ? netlink_deliver_tap+0x130/0x880
[ 1634.453961][T26909]  genl_rcv+0x24/0x40
[ 1634.453983][T26909]  netlink_unicast+0x814/0x9f0
[ 1634.454017][T26909]  ? netlink_detachskb+0xa0/0xa0
[ 1634.454036][T26909]  ? __virt_addr_valid+0xb8/0x2d0
[ 1634.454060][T26909]  ? __phys_addr_symbol+0x2b/0x70
[ 1634.454080][T26909]  ? __check_object_size+0x2f3/0x3f0
[ 1634.454103][T26909]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1634.454127][T26909]  netlink_sendmsg+0xaea/0xe60
[ 1634.454150][T26909]  ? memcpy+0x3c/0x60
[ 1634.454191][T26909]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.454224][T26909]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1634.454242][T26909]  ? security_socket_sendmsg+0x9d/0xb0
[ 1634.454266][T26909]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.454289][T26909]  ____sys_sendmsg+0x5b9/0x910
[ 1634.454324][T26909]  ? __sys_sendmsg_sock+0x30/0x30
[ 1634.454368][T26909]  __sys_sendmsg+0x280/0x370
[ 1634.454396][T26909]  ? ____sys_sendmsg+0x910/0x910
[ 1634.454434][T26909]  ? __context_tracking_exit+0x7a/0xd0
[ 1634.454472][T26909]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1634.454495][T26909]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1634.454530][T26909]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.454551][T26909]  ? lockdep_hardirqs_on+0x95/0x140
[ 1634.454572][T26909]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.454597][T26909]  do_syscall_64+0x44/0xd0
[ 1634.454622][T26909]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1634.454643][T26909] RIP: 0033:0x7fda9f984e99
[ 1634.454663][T26909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1634.454681][T26909] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1634.454705][T26909] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1634.454721][T26909] RDX: 0000000000004800 RSI: 0000000020000000 RDI: 0000000000000003
[ 1634.454735][T26909] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1634.454749][T26909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1634.454761][T26909] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1634.454796][T26909]  </TASK>
[ 1634.481301][T26911] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1634.482985][T26911] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1634.482985][T26911] !'
[ 1634.483002][T26911] CPU: 0 PID: 26911 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1634.483024][T26911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1634.483037][T26911] Call Trace:
[ 1634.483044][T26911]  <TASK>
[ 1634.483054][T26911]  dump_stack_lvl+0x201/0x2d8
[ 1634.483089][T26911]  ? show_regs_print_info+0x12/0x12
[ 1634.483114][T26911]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1634.483157][T26911]  sysfs_warn_dup+0x8c/0xa0
[ 1634.483187][T26911]  sysfs_do_create_link_sd+0xbe/0x100
[ 1634.483211][T26911]  device_add+0x9ea/0x16d0
[ 1634.483229][T26911]  ? wiphy_register+0x1b93/0x2a50
[ 1634.483265][T26911]  ? virtual_device_parent+0x50/0x50
[ 1634.483286][T26911]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1634.483318][T26911]  wiphy_register+0x1ba2/0x2a50
[ 1634.483354][T26911]  ? cfg80211_event_work+0x40/0x40
[ 1634.483387][T26911]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1634.483419][T26911]  ieee80211_register_hw+0x3063/0x3e10
[ 1634.483464][T26911]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1634.483495][T26911]  ? memset+0x1f/0x40
[ 1634.483512][T26911]  ? __hrtimer_init+0x173/0x250
[ 1634.483539][T26911]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1634.483589][T26911]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1634.483617][T26911]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1634.483653][T26911]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1634.483685][T26911]  genl_rcv_msg+0x1032/0x1480
[ 1634.483716][T26911]  ? genl_bind+0x360/0x360
[ 1634.483746][T26911]  ? __lock_acquire+0x1382/0x2b00
[ 1634.483794][T26911]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1634.483813][T26911]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1634.483853][T26911]  netlink_rcv_skb+0x200/0x470
[ 1634.483876][T26911]  ? genl_bind+0x360/0x360
[ 1634.483900][T26911]  ? netlink_ack+0xb70/0xb70
[ 1634.483920][T26911]  ? __down_read_common+0x1b0/0x450
[ 1634.483944][T26911]  ? up_read_non_owner+0x1c0/0x1c0
[ 1634.483963][T26911]  ? netlink_deliver_tap+0x130/0x880
[ 1634.484000][T26911]  genl_rcv+0x24/0x40
[ 1634.484022][T26911]  netlink_unicast+0x814/0x9f0
[ 1634.484055][T26911]  ? netlink_detachskb+0xa0/0xa0
[ 1634.484074][T26911]  ? __virt_addr_valid+0xb8/0x2d0
[ 1634.484099][T26911]  ? __phys_addr_symbol+0x2b/0x70
[ 1634.484119][T26911]  ? __check_object_size+0x2f3/0x3f0
[ 1634.484140][T26911]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1634.484162][T26911]  netlink_sendmsg+0xaea/0xe60
[ 1634.484189][T26911]  ? memcpy+0x3c/0x60
[ 1634.484221][T26911]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.484252][T26911]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1634.484269][T26911]  ? security_socket_sendmsg+0x9d/0xb0
[ 1634.484291][T26911]  ? netlink_getsockopt+0xa60/0xa60
[ 1634.484312][T26911]  ____sys_sendmsg+0x5b9/0x910
[ 1634.484345][T26911]  ? __sys_sendmsg_sock+0x30/0x30
[ 1634.484384][T26911]  __sys_sendmsg+0x280/0x370
[ 1634.484408][T26911]  ? ____sys_sendmsg+0x910/0x910
[ 1634.484444][T26911]  ? __context_tracking_exit+0x7a/0xd0
[ 1634.484478][T26911]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1634.484500][T26911]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1634.484533][T26911]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.484553][T26911]  ? lockdep_hardirqs_on+0x95/0x140
[ 1634.484574][T26911]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1634.484598][T26911]  do_syscall_64+0x44/0xd0
[ 1634.484624][T26911]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1634.484644][T26911] RIP: 0033:0x7f3e3559fe99
[ 1634.484664][T26911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1634.484682][T26911] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1634.484708][T26911] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1634.484725][T26911] RDX: 0000000036030000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1634.484740][T26911] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1634.484754][T26911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1634.484768][T26911] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1634.484805][T26911]  </TASK>
[ 1634.573095][T26913] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1636.853484][T26913] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1636.853484][T26913] !'
[ 1636.867347][T26913] CPU: 0 PID: 26913 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1636.876142][T26913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1636.886210][T26913] Call Trace:
[ 1636.889504][T26913]  <TASK>
[ 1636.892455][T26913]  dump_stack_lvl+0x201/0x2d8
[ 1636.897165][T26913]  ? show_regs_print_info+0x12/0x12
[ 1636.902386][T26913]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1636.908129][T26913]  sysfs_warn_dup+0x8c/0xa0
[ 1636.912626][T26913]  sysfs_do_create_link_sd+0xbe/0x100
[ 1636.918000][T26913]  device_add+0x9ea/0x16d0
[ 1636.922408][T26913]  ? wiphy_register+0x1b93/0x2a50
[ 1636.927443][T26913]  ? virtual_device_parent+0x50/0x50
[ 1636.932725][T26913]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1636.938714][T26913]  wiphy_register+0x1ba2/0x2a50
[ 1636.943591][T26913]  ? cfg80211_event_work+0x40/0x40
[ 1636.948713][T26913]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1636.954776][T26913]  ieee80211_register_hw+0x3063/0x3e10
[ 1636.960263][T26913]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1636.966072][T26913]  ? memset+0x1f/0x40
[ 1636.970045][T26913]  ? __hrtimer_init+0x173/0x250
[ 1636.974891][T26913]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1636.980627][T26913]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1636.985739][T26913]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1636.992069][T26913]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1636.998398][T26913]  genl_rcv_msg+0x1032/0x1480
[ 1637.003074][T26913]  ? genl_bind+0x360/0x360
[ 1637.007491][T26913]  ? __lock_acquire+0x1382/0x2b00
[ 1637.012529][T26913]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1637.018154][T26913]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1637.024492][T26913]  netlink_rcv_skb+0x200/0x470
[ 1637.029253][T26913]  ? genl_bind+0x360/0x360
[ 1637.033662][T26913]  ? netlink_ack+0xb70/0xb70
[ 1637.038244][T26913]  ? __down_read_common+0x1b0/0x450
[ 1637.043435][T26913]  ? up_read_non_owner+0x1c0/0x1c0
[ 1637.048532][T26913]  ? netlink_deliver_tap+0x130/0x880
[ 1637.053818][T26913]  genl_rcv+0x24/0x40
[ 1637.057793][T26913]  netlink_unicast+0x814/0x9f0
[ 1637.062557][T26913]  ? netlink_detachskb+0xa0/0xa0
[ 1637.067487][T26913]  ? __virt_addr_valid+0xb8/0x2d0
[ 1637.072523][T26913]  ? __phys_addr_symbol+0x2b/0x70
[ 1637.077540][T26913]  ? __check_object_size+0x2f3/0x3f0
[ 1637.082836][T26913]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1637.088001][T26913]  netlink_sendmsg+0xaea/0xe60
[ 1637.092864][T26913]  ? memcpy+0x3c/0x60
[ 1637.096862][T26913]  ? netlink_getsockopt+0xa60/0xa60
[ 1637.102089][T26913]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1637.107460][T26913]  ? security_socket_sendmsg+0x9d/0xb0
[ 1637.112936][T26913]  ? netlink_getsockopt+0xa60/0xa60
[ 1637.118146][T26913]  ____sys_sendmsg+0x5b9/0x910
[ 1637.122933][T26913]  ? __sys_sendmsg_sock+0x30/0x30
[ 1637.128074][T26913]  __sys_sendmsg+0x280/0x370
[ 1637.132680][T26913]  ? ____sys_sendmsg+0x910/0x910
[ 1637.137627][T26913]  ? __context_tracking_exit+0x7a/0xd0
[ 1637.143122][T26913]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1637.149117][T26913]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1637.155114][T26913]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1637.161095][T26913]  ? lockdep_hardirqs_on+0x95/0x140
[ 1637.166292][T26913]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1637.172270][T26913]  do_syscall_64+0x44/0xd0
[ 1637.176695][T26913]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1637.182636][T26913] RIP: 0033:0x7ffbc7e82e99
[ 1637.187049][T26913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1637.206655][T26913] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1637.215068][T26913] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1637.223046][T26913] RDX: 0000000000004c00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1637.231093][T26913] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1637.239055][T26913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1637.247017][T26913] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1637.255012][T26913]  </TASK>
22:52:06 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x5719)

[ 1637.289155][T26926] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1637.300813][T26926] __nla_validate_parse: 3 callbacks suppressed
[ 1637.300830][T26926] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1637.342696][T26926] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1637.342696][T26926] !'
[ 1637.354667][T26926] CPU: 1 PID: 26926 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1637.363458][T26926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1637.373518][T26926] Call Trace:
[ 1637.376786][T26926]  <TASK>
[ 1637.379711][T26926]  dump_stack_lvl+0x201/0x2d8
[ 1637.384386][T26926]  ? show_regs_print_info+0x12/0x12
[ 1637.389602][T26926]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1637.395320][T26926]  sysfs_warn_dup+0x8c/0xa0
[ 1637.399814][T26926]  sysfs_do_create_link_sd+0xbe/0x100
[ 1637.405182][T26926]  device_add+0x9ea/0x16d0
[ 1637.409590][T26926]  ? wiphy_register+0x1b93/0x2a50
[ 1637.414611][T26926]  ? virtual_device_parent+0x50/0x50
[ 1637.419883][T26926]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1637.425858][T26926]  wiphy_register+0x1ba2/0x2a50
[ 1637.430714][T26926]  ? cfg80211_event_work+0x40/0x40
[ 1637.435839][T26926]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1637.441898][T26926]  ieee80211_register_hw+0x3063/0x3e10
[ 1637.447375][T26926]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1637.453206][T26926]  ? memset+0x1f/0x40
[ 1637.457175][T26926]  ? __hrtimer_init+0x173/0x250
[ 1637.462019][T26926]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1637.467744][T26926]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1637.472858][T26926]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1637.479208][T26926]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1637.485536][T26926]  genl_rcv_msg+0x1032/0x1480
[ 1637.490217][T26926]  ? genl_bind+0x360/0x360
[ 1637.494630][T26926]  ? __lock_acquire+0x1382/0x2b00
[ 1637.499669][T26926]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1637.505292][T26926]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1637.511618][T26926]  netlink_rcv_skb+0x200/0x470
[ 1637.516376][T26926]  ? genl_bind+0x360/0x360
[ 1637.520784][T26926]  ? netlink_ack+0xb70/0xb70
[ 1637.525369][T26926]  ? __down_read_common+0x1b0/0x450
[ 1637.530556][T26926]  ? up_read_non_owner+0x1c0/0x1c0
[ 1637.535655][T26926]  ? netlink_deliver_tap+0x130/0x880
[ 1637.540934][T26926]  genl_rcv+0x24/0x40
[ 1637.544922][T26926]  netlink_unicast+0x814/0x9f0
[ 1637.549692][T26926]  ? netlink_detachskb+0xa0/0xa0
[ 1637.554634][T26926]  ? __virt_addr_valid+0xb8/0x2d0
[ 1637.559654][T26926]  ? __phys_addr_symbol+0x2b/0x70
[ 1637.564671][T26926]  ? __check_object_size+0x2f3/0x3f0
[ 1637.569947][T26926]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1637.575048][T26926]  netlink_sendmsg+0xaea/0xe60
[ 1637.579808][T26926]  ? memcpy+0x3c/0x60
[ 1637.583888][T26926]  ? netlink_getsockopt+0xa60/0xa60
[ 1637.589084][T26926]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1637.594366][T26926]  ? security_socket_sendmsg+0x9d/0xb0
[ 1637.599812][T26926]  ? netlink_getsockopt+0xa60/0xa60
[ 1637.604995][T26926]  ____sys_sendmsg+0x5b9/0x910
[ 1637.609751][T26926]  ? __sys_sendmsg_sock+0x30/0x30
[ 1637.614788][T26926]  __sys_sendmsg+0x280/0x370
[ 1637.619374][T26926]  ? ____sys_sendmsg+0x910/0x910
[ 1637.624308][T26926]  ? __context_tracking_exit+0x7a/0xd0
[ 1637.629861][T26926]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1637.635829][T26926]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1637.641912][T26926]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1637.647884][T26926]  ? lockdep_hardirqs_on+0x95/0x140
[ 1637.653070][T26926]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1637.659042][T26926]  do_syscall_64+0x44/0xd0
[ 1637.663452][T26926]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1637.669332][T26926] RIP: 0033:0x7fda9f984e99
[ 1637.673732][T26926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1637.693322][T26926] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1637.701729][T26926] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1637.709705][T26926] RDX: 0000000000004804 RSI: 0000000020000000 RDI: 0000000000000003
[ 1637.717662][T26926] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1637.725620][T26926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1637.733577][T26926] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1637.741546][T26926]  </TASK>
22:52:07 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4c00)

22:52:07 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000080))

22:52:07 executing program 1:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f0000002140)={0x18}, 0x18)

22:52:07 executing program 3:
r0 = socket$unix(0x1, 0x2, 0x0)
recvmsg$unix(r0, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x2)

22:52:07 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x5919)

[ 1637.771635][T26934] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
22:52:07 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x5a19)

22:52:07 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4100)

22:52:07 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4800)

[ 1637.832808][T26934] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1637.870338][T26934] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1637.870338][T26934] !'
22:52:07 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x5b19)

[ 1637.934363][T26934] CPU: 1 PID: 26934 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1637.943178][T26934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1637.953253][T26934] Call Trace:
[ 1637.956544][T26934]  <TASK>
[ 1637.959488][T26934]  dump_stack_lvl+0x201/0x2d8
[ 1637.964193][T26934]  ? show_regs_print_info+0x12/0x12
[ 1637.969508][T26934]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1637.975271][T26934]  sysfs_warn_dup+0x8c/0xa0
22:52:07 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x5c19)

[ 1637.979792][T26934]  sysfs_do_create_link_sd+0xbe/0x100
[ 1637.985186][T26934]  device_add+0x9ea/0x16d0
[ 1637.989617][T26934]  ? wiphy_register+0x1b93/0x2a50
[ 1637.994680][T26934]  ? virtual_device_parent+0x50/0x50
[ 1637.999979][T26934]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1638.005989][T26934]  wiphy_register+0x1ba2/0x2a50
[ 1638.010874][T26934]  ? cfg80211_event_work+0x40/0x40
[ 1638.016035][T26934]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1638.022125][T26934]  ieee80211_register_hw+0x3063/0x3e10
[ 1638.027631][T26934]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1638.033479][T26934]  ? memset+0x1f/0x40
[ 1638.037476][T26934]  ? __hrtimer_init+0x173/0x250
[ 1638.042349][T26934]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1638.048118][T26934]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1638.053249][T26934]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1638.059589][T26934]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1638.065935][T26934]  genl_rcv_msg+0x1032/0x1480
[ 1638.070626][T26934]  ? genl_bind+0x360/0x360
[ 1638.075035][T26934]  ? __lock_acquire+0x1382/0x2b00
[ 1638.080065][T26934]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1638.085680][T26934]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1638.092006][T26934]  netlink_rcv_skb+0x200/0x470
[ 1638.096758][T26934]  ? genl_bind+0x360/0x360
[ 1638.101163][T26934]  ? netlink_ack+0xb70/0xb70
[ 1638.105852][T26934]  ? __down_read_common+0x1b0/0x450
[ 1638.111060][T26934]  ? up_read_non_owner+0x1c0/0x1c0
[ 1638.116237][T26934]  ? netlink_deliver_tap+0x130/0x880
[ 1638.121575][T26934]  genl_rcv+0x24/0x40
[ 1638.125560][T26934]  netlink_unicast+0x814/0x9f0
[ 1638.130341][T26934]  ? netlink_detachskb+0xa0/0xa0
[ 1638.135272][T26934]  ? __virt_addr_valid+0xb8/0x2d0
[ 1638.140309][T26934]  ? __phys_addr_symbol+0x2b/0x70
[ 1638.145429][T26934]  ? __check_object_size+0x2f3/0x3f0
[ 1638.150825][T26934]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1638.156012][T26934]  netlink_sendmsg+0xaea/0xe60
[ 1638.160798][T26934]  ? memcpy+0x3c/0x60
[ 1638.164798][T26934]  ? netlink_getsockopt+0xa60/0xa60
[ 1638.170016][T26934]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1638.175296][T26934]  ? security_socket_sendmsg+0x9d/0xb0
[ 1638.180771][T26934]  ? netlink_getsockopt+0xa60/0xa60
[ 1638.185961][T26934]  ____sys_sendmsg+0x5b9/0x910
[ 1638.190730][T26934]  ? __sys_sendmsg_sock+0x30/0x30
[ 1638.195757][T26934]  __sys_sendmsg+0x280/0x370
[ 1638.200344][T26934]  ? ____sys_sendmsg+0x910/0x910
[ 1638.205290][T26934]  ? __context_tracking_exit+0x7a/0xd0
[ 1638.210763][T26934]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1638.216754][T26934]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1638.222742][T26934]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1638.228737][T26934]  ? lockdep_hardirqs_on+0x95/0x140
[ 1638.233924][T26934]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1638.239891][T26934]  do_syscall_64+0x44/0xd0
[ 1638.244303][T26934]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1638.250189][T26934] RIP: 0033:0x7f3e3559fe99
[ 1638.254610][T26934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1638.274211][T26934] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1638.282648][T26934] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1638.290618][T26934] RDX: 0000000040000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1638.298592][T26934] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1638.306586][T26934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1638.314666][T26934] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1638.322651][T26934]  </TASK>
22:52:07 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x41000000)

22:52:07 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x5d19)

[ 1638.347511][T27048] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1638.356299][T27048] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1638.374050][T27048] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1638.374050][T27048] !'
[ 1638.400384][T27048] CPU: 1 PID: 27048 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1638.409193][T27048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1638.419268][T27048] Call Trace:
[ 1638.422559][T27048]  <TASK>
[ 1638.425512][T27048]  dump_stack_lvl+0x201/0x2d8
[ 1638.430218][T27048]  ? show_regs_print_info+0x12/0x12
[ 1638.435437][T27048]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1638.441195][T27048]  sysfs_warn_dup+0x8c/0xa0
[ 1638.445720][T27048]  sysfs_do_create_link_sd+0xbe/0x100
[ 1638.451120][T27048]  device_add+0x9ea/0x16d0
[ 1638.455551][T27048]  ? wiphy_register+0x1b93/0x2a50
[ 1638.460613][T27048]  ? virtual_device_parent+0x50/0x50
[ 1638.465911][T27048]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1638.471990][T27048]  wiphy_register+0x1ba2/0x2a50
[ 1638.476884][T27048]  ? cfg80211_event_work+0x40/0x40
[ 1638.482013][T27048]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1638.488110][T27048]  ieee80211_register_hw+0x3063/0x3e10
[ 1638.493593][T27048]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1638.499419][T27048]  ? memset+0x1f/0x40
[ 1638.503398][T27048]  ? __hrtimer_init+0x173/0x250
[ 1638.508268][T27048]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1638.514003][T27048]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1638.519113][T27048]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1638.525466][T27048]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1638.531801][T27048]  genl_rcv_msg+0x1032/0x1480
[ 1638.536511][T27048]  ? genl_bind+0x360/0x360
[ 1638.540951][T27048]  ? __lock_acquire+0x1382/0x2b00
[ 1638.545989][T27048]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1638.551606][T27048]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1638.557944][T27048]  netlink_rcv_skb+0x200/0x470
[ 1638.562700][T27048]  ? genl_bind+0x360/0x360
[ 1638.567213][T27048]  ? netlink_ack+0xb70/0xb70
[ 1638.571791][T27048]  ? __down_read_common+0x1b0/0x450
[ 1638.576992][T27048]  ? up_read_non_owner+0x1c0/0x1c0
[ 1638.582191][T27048]  ? netlink_deliver_tap+0x130/0x880
[ 1638.587473][T27048]  genl_rcv+0x24/0x40
[ 1638.591451][T27048]  netlink_unicast+0x814/0x9f0
[ 1638.596227][T27048]  ? netlink_detachskb+0xa0/0xa0
[ 1638.601164][T27048]  ? __virt_addr_valid+0xb8/0x2d0
[ 1638.606182][T27048]  ? __phys_addr_symbol+0x2b/0x70
[ 1638.611197][T27048]  ? __check_object_size+0x2f3/0x3f0
[ 1638.616567][T27048]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1638.621668][T27048]  netlink_sendmsg+0xaea/0xe60
[ 1638.626435][T27048]  ? memcpy+0x3c/0x60
[ 1638.630413][T27048]  ? netlink_getsockopt+0xa60/0xa60
[ 1638.635612][T27048]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1638.640906][T27048]  ? security_socket_sendmsg+0x9d/0xb0
[ 1638.646375][T27048]  ? netlink_getsockopt+0xa60/0xa60
[ 1638.651569][T27048]  ____sys_sendmsg+0x5b9/0x910
[ 1638.656344][T27048]  ? __sys_sendmsg_sock+0x30/0x30
[ 1638.661369][T27048]  __sys_sendmsg+0x280/0x370
[ 1638.665952][T27048]  ? ____sys_sendmsg+0x910/0x910
[ 1638.670884][T27048]  ? __context_tracking_exit+0x7a/0xd0
[ 1638.676355][T27048]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1638.682344][T27048]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1638.688447][T27048]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1638.694435][T27048]  ? lockdep_hardirqs_on+0x95/0x140
[ 1638.699632][T27048]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1638.705646][T27048]  do_syscall_64+0x44/0xd0
[ 1638.710094][T27048]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1638.716003][T27048] RIP: 0033:0x7fda9f984e99
[ 1638.720418][T27048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1638.740285][T27048] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1638.748701][T27048] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1638.756686][T27048] RDX: 0000000000004c00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1638.764680][T27048] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1638.772698][T27048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1638.780680][T27048] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1638.788724][T27048]  </TASK>
22:52:08 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6000)

22:52:08 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x5e19)

22:52:08 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe000000)

[ 1638.842188][T27052] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1638.861771][T27052] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1638.861771][T27052] !'
[ 1638.877446][T27052] CPU: 1 PID: 27052 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1638.886339][T27052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1638.896417][T27052] Call Trace:
[ 1638.899712][T27052]  <TASK>
[ 1638.902667][T27052]  dump_stack_lvl+0x201/0x2d8
[ 1638.907379][T27052]  ? show_regs_print_info+0x12/0x12
[ 1638.912601][T27052]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1638.918360][T27052]  sysfs_warn_dup+0x8c/0xa0
[ 1638.922885][T27052]  sysfs_do_create_link_sd+0xbe/0x100
[ 1638.928281][T27052]  device_add+0x9ea/0x16d0
[ 1638.932710][T27052]  ? wiphy_register+0x1b93/0x2a50
22:52:08 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x5f19)

22:52:08 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6000)

[ 1638.937771][T27052]  ? virtual_device_parent+0x50/0x50
[ 1638.943076][T27052]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1638.949083][T27052]  wiphy_register+0x1ba2/0x2a50
[ 1638.953969][T27052]  ? cfg80211_event_work+0x40/0x40
[ 1638.959111][T27052]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1638.965205][T27052]  ieee80211_register_hw+0x3063/0x3e10
[ 1638.970717][T27052]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1638.976647][T27052]  ? memset+0x1f/0x40
[ 1638.980646][T27052]  ? __hrtimer_init+0x173/0x250
[ 1638.985524][T27052]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1638.991289][T27052]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1638.996429][T27052]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1639.002774][T27052]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1639.009115][T27052]  genl_rcv_msg+0x1032/0x1480
[ 1639.013793][T27052]  ? genl_bind+0x360/0x360
[ 1639.018207][T27052]  ? __lock_acquire+0x1382/0x2b00
[ 1639.023257][T27052]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1639.028902][T27052]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1639.035245][T27052]  netlink_rcv_skb+0x200/0x470
[ 1639.040010][T27052]  ? genl_bind+0x360/0x360
[ 1639.044443][T27052]  ? netlink_ack+0xb70/0xb70
[ 1639.049046][T27052]  ? __down_read_common+0x1b0/0x450
[ 1639.054248][T27052]  ? up_read_non_owner+0x1c0/0x1c0
[ 1639.059346][T27052]  ? netlink_deliver_tap+0x130/0x880
[ 1639.064632][T27052]  genl_rcv+0x24/0x40
[ 1639.068604][T27052]  netlink_unicast+0x814/0x9f0
[ 1639.073362][T27052]  ? netlink_detachskb+0xa0/0xa0
[ 1639.078289][T27052]  ? __virt_addr_valid+0xb8/0x2d0
[ 1639.083323][T27052]  ? __phys_addr_symbol+0x2b/0x70
[ 1639.088335][T27052]  ? __check_object_size+0x2f3/0x3f0
[ 1639.093619][T27052]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1639.098741][T27052]  netlink_sendmsg+0xaea/0xe60
[ 1639.103504][T27052]  ? memcpy+0x3c/0x60
[ 1639.107497][T27052]  ? netlink_getsockopt+0xa60/0xa60
[ 1639.112688][T27052]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1639.117962][T27052]  ? security_socket_sendmsg+0x9d/0xb0
[ 1639.123602][T27052]  ? netlink_getsockopt+0xa60/0xa60
[ 1639.128807][T27052]  ____sys_sendmsg+0x5b9/0x910
[ 1639.133609][T27052]  ? __sys_sendmsg_sock+0x30/0x30
[ 1639.138668][T27052]  __sys_sendmsg+0x280/0x370
[ 1639.143275][T27052]  ? ____sys_sendmsg+0x910/0x910
[ 1639.148236][T27052]  ? __context_tracking_exit+0x7a/0xd0
[ 1639.153698][T27052]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1639.159680][T27052]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1639.165681][T27052]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1639.171655][T27052]  ? lockdep_hardirqs_on+0x95/0x140
[ 1639.176850][T27052]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1639.182881][T27052]  do_syscall_64+0x44/0xd0
[ 1639.187301][T27052]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1639.193195][T27052] RIP: 0033:0x7f5163f51e99
[ 1639.197610][T27052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1639.217214][T27052] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1639.225778][T27052] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1639.233773][T27052] RDX: 0000000000004100 RSI: 0000000020000000 RDI: 0000000000000003
[ 1639.241760][T27052] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1639.249743][T27052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1639.257735][T27052] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1639.265726][T27052]  </TASK>
22:52:08 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4100)

[ 1639.301091][T27058] nla_validate_range_unsigned: 1 callbacks suppressed
[ 1639.301110][T27058] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 1639.352208][T27058] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1639.378741][T27058] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1639.378741][T27058] !'
[ 1639.396810][T27058] CPU: 0 PID: 27058 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1639.405592][T27058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1639.415644][T27058] Call Trace:
[ 1639.418933][T27058]  <TASK>
[ 1639.421872][T27058]  dump_stack_lvl+0x201/0x2d8
[ 1639.426578][T27058]  ? show_regs_print_info+0x12/0x12
[ 1639.431788][T27058]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1639.437526][T27058]  sysfs_warn_dup+0x8c/0xa0
[ 1639.442034][T27058]  sysfs_do_create_link_sd+0xbe/0x100
[ 1639.447399][T27058]  device_add+0x9ea/0x16d0
[ 1639.451808][T27058]  ? wiphy_register+0x1b93/0x2a50
[ 1639.456849][T27058]  ? virtual_device_parent+0x50/0x50
[ 1639.462157][T27058]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1639.468163][T27058]  wiphy_register+0x1ba2/0x2a50
[ 1639.473022][T27058]  ? cfg80211_event_work+0x40/0x40
[ 1639.478131][T27058]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1639.484199][T27058]  ieee80211_register_hw+0x3063/0x3e10
[ 1639.489684][T27058]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1639.495521][T27058]  ? memset+0x1f/0x40
[ 1639.499512][T27058]  ? __hrtimer_init+0x173/0x250
[ 1639.504361][T27058]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1639.510093][T27058]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1639.515197][T27058]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1639.521525][T27058]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1639.527851][T27058]  genl_rcv_msg+0x1032/0x1480
[ 1639.532536][T27058]  ? genl_bind+0x360/0x360
[ 1639.536963][T27058]  ? __lock_acquire+0x1382/0x2b00
[ 1639.542006][T27058]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1639.547626][T27058]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1639.553967][T27058]  netlink_rcv_skb+0x200/0x470
[ 1639.558742][T27058]  ? genl_bind+0x360/0x360
[ 1639.563154][T27058]  ? netlink_ack+0xb70/0xb70
[ 1639.567728][T27058]  ? __down_read_common+0x1b0/0x450
[ 1639.572925][T27058]  ? up_read_non_owner+0x1c0/0x1c0
[ 1639.578126][T27058]  ? netlink_deliver_tap+0x130/0x880
[ 1639.583407][T27058]  genl_rcv+0x24/0x40
[ 1639.587379][T27058]  netlink_unicast+0x814/0x9f0
[ 1639.592141][T27058]  ? netlink_detachskb+0xa0/0xa0
[ 1639.597072][T27058]  ? __virt_addr_valid+0xb8/0x2d0
[ 1639.602105][T27058]  ? __phys_addr_symbol+0x2b/0x70
[ 1639.607128][T27058]  ? __check_object_size+0x2f3/0x3f0
[ 1639.612403][T27058]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1639.617512][T27058]  netlink_sendmsg+0xaea/0xe60
[ 1639.622282][T27058]  ? memcpy+0x3c/0x60
[ 1639.626265][T27058]  ? netlink_getsockopt+0xa60/0xa60
[ 1639.631460][T27058]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1639.636741][T27058]  ? security_socket_sendmsg+0x9d/0xb0
[ 1639.642197][T27058]  ? netlink_getsockopt+0xa60/0xa60
[ 1639.647386][T27058]  ____sys_sendmsg+0x5b9/0x910
[ 1639.652146][T27058]  ? __sys_sendmsg_sock+0x30/0x30
[ 1639.657192][T27058]  __sys_sendmsg+0x280/0x370
[ 1639.661791][T27058]  ? ____sys_sendmsg+0x910/0x910
[ 1639.666724][T27058]  ? __context_tracking_exit+0x7a/0xd0
[ 1639.672178][T27058]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1639.678144][T27058]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1639.684115][T27058]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1639.690084][T27058]  ? lockdep_hardirqs_on+0x95/0x140
[ 1639.695271][T27058]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1639.701349][T27058]  do_syscall_64+0x44/0xd0
[ 1639.705784][T27058]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1639.711689][T27058] RIP: 0033:0x7fd6114efe99
[ 1639.716113][T27058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1639.735710][T27058] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1639.744117][T27058] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1639.752079][T27058] RDX: 0000000000004800 RSI: 0000000020000000 RDI: 0000000000000003
[ 1639.760042][T27058] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1639.768003][T27058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1639.775987][T27058] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1639.783959][T27058]  </TASK>
22:52:09 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4800)

[ 1639.807886][T27062] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1639.820057][T27062] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1639.840089][T27062] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1639.840089][T27062] !'
[ 1639.859466][T27062] CPU: 1 PID: 27062 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1639.868285][T27062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1639.878363][T27062] Call Trace:
[ 1639.881660][T27062]  <TASK>
[ 1639.884606][T27062]  dump_stack_lvl+0x201/0x2d8
[ 1639.889320][T27062]  ? show_regs_print_info+0x12/0x12
[ 1639.894539][T27062]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1639.900267][T27062]  sysfs_warn_dup+0x8c/0xa0
[ 1639.904779][T27062]  sysfs_do_create_link_sd+0xbe/0x100
[ 1639.910325][T27062]  device_add+0x9ea/0x16d0
[ 1639.914732][T27062]  ? wiphy_register+0x1b93/0x2a50
[ 1639.919761][T27062]  ? virtual_device_parent+0x50/0x50
[ 1639.925041][T27062]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1639.931039][T27062]  wiphy_register+0x1ba2/0x2a50
[ 1639.935888][T27062]  ? cfg80211_event_work+0x40/0x40
[ 1639.941004][T27062]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1639.947087][T27062]  ieee80211_register_hw+0x3063/0x3e10
[ 1639.952554][T27062]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1639.958355][T27062]  ? memset+0x1f/0x40
[ 1639.962334][T27062]  ? __hrtimer_init+0x173/0x250
[ 1639.967197][T27062]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1639.972922][T27062]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1639.978028][T27062]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1639.984350][T27062]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1639.990814][T27062]  genl_rcv_msg+0x1032/0x1480
[ 1639.995699][T27062]  ? genl_bind+0x360/0x360
[ 1640.000119][T27062]  ? __lock_acquire+0x1382/0x2b00
[ 1640.005157][T27062]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1640.010805][T27062]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1640.017149][T27062]  netlink_rcv_skb+0x200/0x470
[ 1640.022018][T27062]  ? genl_bind+0x360/0x360
[ 1640.026437][T27062]  ? netlink_ack+0xb70/0xb70
[ 1640.031042][T27062]  ? __down_read_common+0x1b0/0x450
[ 1640.036248][T27062]  ? up_read_non_owner+0x1c0/0x1c0
[ 1640.041351][T27062]  ? netlink_deliver_tap+0x130/0x880
[ 1640.046643][T27062]  genl_rcv+0x24/0x40
[ 1640.050674][T27062]  netlink_unicast+0x814/0x9f0
[ 1640.055431][T27062]  ? netlink_detachskb+0xa0/0xa0
[ 1640.060358][T27062]  ? __virt_addr_valid+0xb8/0x2d0
[ 1640.065388][T27062]  ? __phys_addr_symbol+0x2b/0x70
[ 1640.070402][T27062]  ? __check_object_size+0x2f3/0x3f0
[ 1640.075701][T27062]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1640.080819][T27062]  netlink_sendmsg+0xaea/0xe60
[ 1640.085580][T27062]  ? memcpy+0x3c/0x60
[ 1640.089587][T27062]  ? netlink_getsockopt+0xa60/0xa60
[ 1640.094805][T27062]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1640.100087][T27062]  ? security_socket_sendmsg+0x9d/0xb0
[ 1640.105559][T27062]  ? netlink_getsockopt+0xa60/0xa60
[ 1640.110774][T27062]  ____sys_sendmsg+0x5b9/0x910
[ 1640.115546][T27062]  ? __sys_sendmsg_sock+0x30/0x30
[ 1640.120567][T27062]  __sys_sendmsg+0x280/0x370
[ 1640.125154][T27062]  ? ____sys_sendmsg+0x910/0x910
[ 1640.130124][T27062]  ? __context_tracking_exit+0x7a/0xd0
[ 1640.135597][T27062]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1640.141574][T27062]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1640.147564][T27062]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1640.153560][T27062]  ? lockdep_hardirqs_on+0x95/0x140
[ 1640.158765][T27062]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1640.164756][T27062]  do_syscall_64+0x44/0xd0
[ 1640.169167][T27062]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1640.175049][T27062] RIP: 0033:0x7f3e3559fe99
[ 1640.179452][T27062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1640.199060][T27062] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1640.207464][T27062] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1640.215426][T27062] RDX: 0000000041000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1640.223390][T27062] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1640.231352][T27062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1640.239312][T27062] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1640.247285][T27062]  </TASK>
22:52:09 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x48000000)

[ 1640.266834][T27065] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1640.299054][T27065] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1640.311622][T27065] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1640.311622][T27065] !'
[ 1640.323795][T27065] CPU: 1 PID: 27065 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1640.332587][T27065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1640.342706][T27065] Call Trace:
[ 1640.345997][T27065]  <TASK>
[ 1640.348919][T27065]  dump_stack_lvl+0x201/0x2d8
[ 1640.353592][T27065]  ? show_regs_print_info+0x12/0x12
[ 1640.358785][T27065]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1640.364520][T27065]  sysfs_warn_dup+0x8c/0xa0
[ 1640.369012][T27065]  sysfs_do_create_link_sd+0xbe/0x100
[ 1640.374376][T27065]  device_add+0x9ea/0x16d0
[ 1640.378785][T27065]  ? wiphy_register+0x1b93/0x2a50
[ 1640.383827][T27065]  ? virtual_device_parent+0x50/0x50
[ 1640.389099][T27065]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1640.395070][T27065]  wiphy_register+0x1ba2/0x2a50
[ 1640.399927][T27065]  ? cfg80211_event_work+0x40/0x40
[ 1640.405048][T27065]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1640.411109][T27065]  ieee80211_register_hw+0x3063/0x3e10
[ 1640.416604][T27065]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1640.422442][T27065]  ? memset+0x1f/0x40
[ 1640.426422][T27065]  ? __hrtimer_init+0x173/0x250
[ 1640.431290][T27065]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1640.437016][T27065]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1640.442130][T27065]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1640.448460][T27065]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1640.454783][T27065]  genl_rcv_msg+0x1032/0x1480
[ 1640.459457][T27065]  ? genl_bind+0x360/0x360
[ 1640.463874][T27065]  ? __lock_acquire+0x1382/0x2b00
[ 1640.468921][T27065]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1640.474566][T27065]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1640.480920][T27065]  netlink_rcv_skb+0x200/0x470
[ 1640.485682][T27065]  ? genl_bind+0x360/0x360
[ 1640.490097][T27065]  ? netlink_ack+0xb70/0xb70
[ 1640.494671][T27065]  ? __down_read_common+0x1b0/0x450
[ 1640.499857][T27065]  ? up_read_non_owner+0x1c0/0x1c0
[ 1640.504954][T27065]  ? netlink_deliver_tap+0x130/0x880
[ 1640.510231][T27065]  genl_rcv+0x24/0x40
[ 1640.514207][T27065]  netlink_unicast+0x814/0x9f0
[ 1640.518995][T27065]  ? netlink_detachskb+0xa0/0xa0
[ 1640.523937][T27065]  ? __virt_addr_valid+0xb8/0x2d0
[ 1640.528967][T27065]  ? __phys_addr_symbol+0x2b/0x70
[ 1640.533983][T27065]  ? __check_object_size+0x2f3/0x3f0
[ 1640.539283][T27065]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1640.544396][T27065]  netlink_sendmsg+0xaea/0xe60
[ 1640.549148][T27065]  ? memcpy+0x3c/0x60
[ 1640.553123][T27065]  ? netlink_getsockopt+0xa60/0xa60
[ 1640.558326][T27065]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1640.563802][T27065]  ? security_socket_sendmsg+0x9d/0xb0
[ 1640.569247][T27065]  ? netlink_getsockopt+0xa60/0xa60
[ 1640.574431][T27065]  ____sys_sendmsg+0x5b9/0x910
[ 1640.579196][T27065]  ? __sys_sendmsg_sock+0x30/0x30
[ 1640.584221][T27065]  __sys_sendmsg+0x280/0x370
[ 1640.588810][T27065]  ? ____sys_sendmsg+0x910/0x910
[ 1640.593777][T27065]  ? __context_tracking_exit+0x7a/0xd0
[ 1640.599243][T27065]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1640.605227][T27065]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1640.611199][T27065]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1640.617168][T27065]  ? lockdep_hardirqs_on+0x95/0x140
[ 1640.622361][T27065]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1640.628350][T27065]  do_syscall_64+0x44/0xd0
[ 1640.632766][T27065]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1640.638664][T27065] RIP: 0033:0x7fbee7a71e99
[ 1640.643070][T27065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1640.662661][T27065] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1640.671068][T27065] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1640.679132][T27065] RDX: 000000000e000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1640.687112][T27065] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1640.695090][T27065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1640.703053][T27065] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1640.711024][T27065]  </TASK>
22:52:10 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe000000)

[ 1640.731991][T27067] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1640.758416][T27067] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1640.770841][T27067] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1640.770841][T27067] !'
[ 1640.788256][T27067] CPU: 0 PID: 27067 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1640.797068][T27067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1640.807137][T27067] Call Trace:
[ 1640.810426][T27067]  <TASK>
[ 1640.813370][T27067]  dump_stack_lvl+0x201/0x2d8
[ 1640.818070][T27067]  ? show_regs_print_info+0x12/0x12
[ 1640.823263][T27067]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1640.829018][T27067]  sysfs_warn_dup+0x8c/0xa0
[ 1640.833544][T27067]  sysfs_do_create_link_sd+0xbe/0x100
[ 1640.838937][T27067]  device_add+0x9ea/0x16d0
[ 1640.843357][T27067]  ? wiphy_register+0x1b93/0x2a50
[ 1640.848392][T27067]  ? virtual_device_parent+0x50/0x50
[ 1640.853690][T27067]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1640.859699][T27067]  wiphy_register+0x1ba2/0x2a50
[ 1640.864584][T27067]  ? cfg80211_event_work+0x40/0x40
[ 1640.869707][T27067]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1640.875785][T27067]  ieee80211_register_hw+0x3063/0x3e10
[ 1640.881278][T27067]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1640.887104][T27067]  ? memset+0x1f/0x40
[ 1640.891085][T27067]  ? __hrtimer_init+0x173/0x250
[ 1640.895947][T27067]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1640.901695][T27067]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1640.906821][T27067]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1640.913161][T27067]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1640.919507][T27067]  genl_rcv_msg+0x1032/0x1480
[ 1640.924217][T27067]  ? genl_bind+0x360/0x360
[ 1640.928661][T27067]  ? __lock_acquire+0x1382/0x2b00
[ 1640.933729][T27067]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1640.939378][T27067]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1640.945915][T27067]  netlink_rcv_skb+0x200/0x470
[ 1640.950689][T27067]  ? genl_bind+0x360/0x360
[ 1640.955115][T27067]  ? netlink_ack+0xb70/0xb70
[ 1640.959696][T27067]  ? __down_read_common+0x1b0/0x450
[ 1640.964910][T27067]  ? up_read_non_owner+0x1c0/0x1c0
[ 1640.970032][T27067]  ? netlink_deliver_tap+0x130/0x880
[ 1640.975354][T27067]  genl_rcv+0x24/0x40
[ 1640.979355][T27067]  netlink_unicast+0x814/0x9f0
[ 1640.984236][T27067]  ? netlink_detachskb+0xa0/0xa0
[ 1640.989184][T27067]  ? __virt_addr_valid+0xb8/0x2d0
[ 1640.994219][T27067]  ? __phys_addr_symbol+0x2b/0x70
[ 1640.999235][T27067]  ? __check_object_size+0x2f3/0x3f0
[ 1641.004534][T27067]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1641.009666][T27067]  netlink_sendmsg+0xaea/0xe60
[ 1641.014456][T27067]  ? memcpy+0x3c/0x60
[ 1641.018452][T27067]  ? netlink_getsockopt+0xa60/0xa60
[ 1641.023657][T27067]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1641.028952][T27067]  ? security_socket_sendmsg+0x9d/0xb0
[ 1641.034421][T27067]  ? netlink_getsockopt+0xa60/0xa60
[ 1641.039619][T27067]  ____sys_sendmsg+0x5b9/0x910
[ 1641.044413][T27067]  ? __sys_sendmsg_sock+0x30/0x30
[ 1641.049478][T27067]  __sys_sendmsg+0x280/0x370
[ 1641.054089][T27067]  ? ____sys_sendmsg+0x910/0x910
[ 1641.059036][T27067]  ? __context_tracking_exit+0x7a/0xd0
[ 1641.064523][T27067]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1641.070515][T27067]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1641.076509][T27067]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1641.082570][T27067]  ? lockdep_hardirqs_on+0x95/0x140
[ 1641.087776][T27067]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1641.093751][T27067]  do_syscall_64+0x44/0xd0
[ 1641.098165][T27067]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1641.104053][T27067] RIP: 0033:0x7fda9f984e99
[ 1641.108525][T27067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1641.128120][T27067] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1641.136528][T27067] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1641.144500][T27067] RDX: 0000000000006000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1641.152491][T27067] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1641.160480][T27067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1641.168466][T27067] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1641.176458][T27067]  </TASK>
22:52:10 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x60ff)

[ 1641.200688][T27072] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1641.219502][T27072] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
22:52:10 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6800)

[ 1641.259753][T27072] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1641.259753][T27072] !'
[ 1641.312739][T27072] CPU: 0 PID: 27072 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1641.321558][T27072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1641.331747][T27072] Call Trace:
[ 1641.335038][T27072]  <TASK>
[ 1641.337974][T27072]  dump_stack_lvl+0x201/0x2d8
[ 1641.342667][T27072]  ? show_regs_print_info+0x12/0x12
[ 1641.347865][T27072]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1641.353715][T27072]  sysfs_warn_dup+0x8c/0xa0
[ 1641.358215][T27072]  sysfs_do_create_link_sd+0xbe/0x100
[ 1641.363594][T27072]  device_add+0x9ea/0x16d0
[ 1641.368115][T27072]  ? wiphy_register+0x1b93/0x2a50
[ 1641.373161][T27072]  ? virtual_device_parent+0x50/0x50
[ 1641.378435][T27072]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1641.384425][T27072]  wiphy_register+0x1ba2/0x2a50
[ 1641.389302][T27072]  ? cfg80211_event_work+0x40/0x40
[ 1641.394428][T27072]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1641.400497][T27072]  ieee80211_register_hw+0x3063/0x3e10
[ 1641.405983][T27072]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1641.411813][T27072]  ? memset+0x1f/0x40
[ 1641.415793][T27072]  ? __hrtimer_init+0x173/0x250
[ 1641.420642][T27072]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1641.426379][T27072]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1641.431581][T27072]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1641.437917][T27072]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1641.444246][T27072]  genl_rcv_msg+0x1032/0x1480
[ 1641.448935][T27072]  ? genl_bind+0x360/0x360
[ 1641.453368][T27072]  ? __lock_acquire+0x1382/0x2b00
[ 1641.458508][T27072]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1641.464318][T27072]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1641.470656][T27072]  netlink_rcv_skb+0x200/0x470
[ 1641.475508][T27072]  ? genl_bind+0x360/0x360
[ 1641.480006][T27072]  ? netlink_ack+0xb70/0xb70
[ 1641.484600][T27072]  ? __down_read_common+0x1b0/0x450
[ 1641.489808][T27072]  ? up_read_non_owner+0x1c0/0x1c0
[ 1641.494918][T27072]  ? netlink_deliver_tap+0x130/0x880
[ 1641.500222][T27072]  genl_rcv+0x24/0x40
[ 1641.504204][T27072]  netlink_unicast+0x814/0x9f0
[ 1641.508973][T27072]  ? netlink_detachskb+0xa0/0xa0
[ 1641.513905][T27072]  ? __virt_addr_valid+0xb8/0x2d0
[ 1641.518924][T27072]  ? __phys_addr_symbol+0x2b/0x70
[ 1641.523941][T27072]  ? __check_object_size+0x2f3/0x3f0
[ 1641.529218][T27072]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1641.534323][T27072]  netlink_sendmsg+0xaea/0xe60
[ 1641.539078][T27072]  ? memcpy+0x3c/0x60
[ 1641.543058][T27072]  ? netlink_getsockopt+0xa60/0xa60
[ 1641.548255][T27072]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1641.553529][T27072]  ? security_socket_sendmsg+0x9d/0xb0
[ 1641.559074][T27072]  ? netlink_getsockopt+0xa60/0xa60
[ 1641.564266][T27072]  ____sys_sendmsg+0x5b9/0x910
[ 1641.569039][T27072]  ? __sys_sendmsg_sock+0x30/0x30
[ 1641.574074][T27072]  __sys_sendmsg+0x280/0x370
[ 1641.578683][T27072]  ? ____sys_sendmsg+0x910/0x910
[ 1641.583625][T27072]  ? __context_tracking_exit+0x7a/0xd0
[ 1641.589094][T27072]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1641.595077][T27072]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1641.601058][T27072]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1641.607026][T27072]  ? lockdep_hardirqs_on+0x95/0x140
[ 1641.612214][T27072]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1641.618189][T27072]  do_syscall_64+0x44/0xd0
[ 1641.622602][T27072]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1641.628577][T27072] RIP: 0033:0x7ffbc7e82e99
[ 1641.632985][T27072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1641.652580][T27072] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1641.660987][T27072] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1641.668949][T27072] RDX: 0000000000006000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1641.676910][T27072] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1641.684870][T27072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1641.692829][T27072] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1641.700806][T27072]  </TASK>
22:52:11 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6019)

[ 1641.725166][T27074] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
[ 1641.737919][T27074] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1641.758812][T27074] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1641.758812][T27074] !'
[ 1641.774069][T27074] CPU: 0 PID: 27074 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1641.782849][T27074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1641.792916][T27074] Call Trace:
[ 1641.796206][T27074]  <TASK>
[ 1641.799144][T27074]  dump_stack_lvl+0x201/0x2d8
[ 1641.803852][T27074]  ? show_regs_print_info+0x12/0x12
[ 1641.809161][T27074]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1641.814924][T27074]  sysfs_warn_dup+0x8c/0xa0
[ 1641.819457][T27074]  sysfs_do_create_link_sd+0xbe/0x100
22:52:11 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x60ff)

[ 1641.824849][T27074]  device_add+0x9ea/0x16d0
[ 1641.829275][T27074]  ? wiphy_register+0x1b93/0x2a50
[ 1641.834317][T27074]  ? virtual_device_parent+0x50/0x50
[ 1641.839600][T27074]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1641.845705][T27074]  wiphy_register+0x1ba2/0x2a50
[ 1641.850592][T27074]  ? cfg80211_event_work+0x40/0x40
[ 1641.855729][T27074]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1641.861800][T27074]  ieee80211_register_hw+0x3063/0x3e10
[ 1641.867290][T27074]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1641.873091][T27074]  ? memset+0x1f/0x40
[ 1641.877062][T27074]  ? __hrtimer_init+0x173/0x250
[ 1641.881915][T27074]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1641.887660][T27074]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1641.892777][T27074]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1641.899141][T27074]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1641.905493][T27074]  genl_rcv_msg+0x1032/0x1480
[ 1641.910184][T27074]  ? genl_bind+0x360/0x360
[ 1641.914630][T27074]  ? __lock_acquire+0x1382/0x2b00
[ 1641.919818][T27074]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1641.925567][T27074]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1641.931939][T27074]  netlink_rcv_skb+0x200/0x470
[ 1641.936729][T27074]  ? genl_bind+0x360/0x360
[ 1641.941167][T27074]  ? netlink_ack+0xb70/0xb70
[ 1641.945767][T27074]  ? __down_read_common+0x1b0/0x450
[ 1641.950956][T27074]  ? up_read_non_owner+0x1c0/0x1c0
[ 1641.956061][T27074]  ? netlink_deliver_tap+0x130/0x880
[ 1641.961382][T27074]  genl_rcv+0x24/0x40
[ 1641.965385][T27074]  netlink_unicast+0x814/0x9f0
[ 1641.970173][T27074]  ? netlink_detachskb+0xa0/0xa0
[ 1641.975121][T27074]  ? __virt_addr_valid+0xb8/0x2d0
[ 1641.980161][T27074]  ? __phys_addr_symbol+0x2b/0x70
[ 1641.985197][T27074]  ? __check_object_size+0x2f3/0x3f0
[ 1641.990496][T27074]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1641.995621][T27074]  netlink_sendmsg+0xaea/0xe60
[ 1642.000492][T27074]  ? memcpy+0x3c/0x60
[ 1642.004502][T27074]  ? netlink_getsockopt+0xa60/0xa60
[ 1642.009724][T27074]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1642.015018][T27074]  ? security_socket_sendmsg+0x9d/0xb0
[ 1642.020478][T27074]  ? netlink_getsockopt+0xa60/0xa60
22:52:11 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6800)

[ 1642.025696][T27074]  ____sys_sendmsg+0x5b9/0x910
[ 1642.030493][T27074]  ? __sys_sendmsg_sock+0x30/0x30
[ 1642.035554][T27074]  __sys_sendmsg+0x280/0x370
[ 1642.040171][T27074]  ? ____sys_sendmsg+0x910/0x910
[ 1642.045236][T27074]  ? __context_tracking_exit+0x7a/0xd0
[ 1642.050905][T27074]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1642.056905][T27074]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1642.062913][T27074]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1642.068912][T27074]  ? lockdep_hardirqs_on+0x95/0x140
[ 1642.074120][T27074]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1642.080096][T27074]  do_syscall_64+0x44/0xd0
[ 1642.084523][T27074]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1642.090407][T27074] RIP: 0033:0x7f5163f51e99
[ 1642.094840][T27074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1642.114455][T27074] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1642.122974][T27074] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1642.130967][T27074] RDX: 0000000000004100 RSI: 0000000020000000 RDI: 0000000000000003
[ 1642.138961][T27074] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1642.146945][T27074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1642.154915][T27074] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1642.162930][T27074]  </TASK>
22:52:11 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4100)

[ 1642.187385][T27076] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 1642.205724][T27076] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1642.205724][T27076] !'
[ 1642.230269][T27076] CPU: 1 PID: 27076 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1642.239092][T27076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1642.249165][T27076] Call Trace:
[ 1642.252458][T27076]  <TASK>
[ 1642.255404][T27076]  dump_stack_lvl+0x201/0x2d8
[ 1642.260114][T27076]  ? show_regs_print_info+0x12/0x12
[ 1642.265332][T27076]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1642.271088][T27076]  sysfs_warn_dup+0x8c/0xa0
[ 1642.275593][T27076]  sysfs_do_create_link_sd+0xbe/0x100
[ 1642.280961][T27076]  device_add+0x9ea/0x16d0
[ 1642.285365][T27076]  ? wiphy_register+0x1b93/0x2a50
[ 1642.290388][T27076]  ? virtual_device_parent+0x50/0x50
[ 1642.295660][T27076]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1642.301645][T27076]  wiphy_register+0x1ba2/0x2a50
[ 1642.306494][T27076]  ? cfg80211_event_work+0x40/0x40
[ 1642.311619][T27076]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1642.317699][T27076]  ieee80211_register_hw+0x3063/0x3e10
[ 1642.323164][T27076]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1642.328983][T27076]  ? memset+0x1f/0x40
[ 1642.332986][T27076]  ? __hrtimer_init+0x173/0x250
[ 1642.337850][T27076]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1642.343601][T27076]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1642.348720][T27076]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1642.355114][T27076]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1642.361442][T27076]  genl_rcv_msg+0x1032/0x1480
[ 1642.366117][T27076]  ? genl_bind+0x360/0x360
[ 1642.370534][T27076]  ? __lock_acquire+0x1382/0x2b00
[ 1642.375566][T27076]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1642.381186][T27076]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1642.387514][T27076]  netlink_rcv_skb+0x200/0x470
[ 1642.392270][T27076]  ? genl_bind+0x360/0x360
[ 1642.396680][T27076]  ? netlink_ack+0xb70/0xb70
[ 1642.401355][T27076]  ? __down_read_common+0x1b0/0x450
[ 1642.406547][T27076]  ? up_read_non_owner+0x1c0/0x1c0
[ 1642.411713][T27076]  ? netlink_deliver_tap+0x130/0x880
[ 1642.417015][T27076]  genl_rcv+0x24/0x40
[ 1642.420992][T27076]  netlink_unicast+0x814/0x9f0
[ 1642.425752][T27076]  ? netlink_detachskb+0xa0/0xa0
[ 1642.430679][T27076]  ? __virt_addr_valid+0xb8/0x2d0
[ 1642.435705][T27076]  ? __phys_addr_symbol+0x2b/0x70
[ 1642.440739][T27076]  ? __check_object_size+0x2f3/0x3f0
[ 1642.446011][T27076]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1642.451119][T27076]  netlink_sendmsg+0xaea/0xe60
[ 1642.455898][T27076]  ? memcpy+0x3c/0x60
[ 1642.459890][T27076]  ? netlink_getsockopt+0xa60/0xa60
[ 1642.465090][T27076]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1642.470385][T27076]  ? security_socket_sendmsg+0x9d/0xb0
[ 1642.475846][T27076]  ? netlink_getsockopt+0xa60/0xa60
[ 1642.481053][T27076]  ____sys_sendmsg+0x5b9/0x910
[ 1642.485935][T27076]  ? __sys_sendmsg_sock+0x30/0x30
[ 1642.490986][T27076]  __sys_sendmsg+0x280/0x370
[ 1642.495598][T27076]  ? ____sys_sendmsg+0x910/0x910
[ 1642.500641][T27076]  ? __context_tracking_exit+0x7a/0xd0
[ 1642.506133][T27076]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1642.512111][T27076]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1642.518090][T27076]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1642.524066][T27076]  ? lockdep_hardirqs_on+0x95/0x140
[ 1642.529266][T27076]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1642.535269][T27076]  do_syscall_64+0x44/0xd0
[ 1642.539724][T27076]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1642.545632][T27076] RIP: 0033:0x7fd6114efe99
[ 1642.550038][T27076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1642.569634][T27076] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1642.578054][T27076] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1642.586017][T27076] RDX: 0000000000004800 RSI: 0000000020000000 RDI: 0000000000000003
[ 1642.593977][T27076] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1642.601938][T27076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1642.609929][T27076] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1642.617904][T27076]  </TASK>
22:52:12 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4800)

[ 1642.644562][T27078] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1642.659084][T27078] __nla_validate_parse: 1 callbacks suppressed
[ 1642.659128][T27078] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1642.693725][T27078] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1642.693725][T27078] !'
[ 1642.704180][T27078] CPU: 0 PID: 27078 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1642.712969][T27078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1642.723013][T27078] Call Trace:
[ 1642.726285][T27078]  <TASK>
[ 1642.729215][T27078]  dump_stack_lvl+0x201/0x2d8
[ 1642.733916][T27078]  ? show_regs_print_info+0x12/0x12
[ 1642.739134][T27078]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1642.744887][T27078]  sysfs_warn_dup+0x8c/0xa0
[ 1642.749387][T27078]  sysfs_do_create_link_sd+0xbe/0x100
[ 1642.754785][T27078]  device_add+0x9ea/0x16d0
[ 1642.759290][T27078]  ? wiphy_register+0x1b93/0x2a50
[ 1642.764333][T27078]  ? virtual_device_parent+0x50/0x50
[ 1642.769628][T27078]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1642.775637][T27078]  wiphy_register+0x1ba2/0x2a50
[ 1642.780526][T27078]  ? cfg80211_event_work+0x40/0x40
[ 1642.785653][T27078]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1642.791712][T27078]  ieee80211_register_hw+0x3063/0x3e10
[ 1642.797181][T27078]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1642.802997][T27078]  ? memset+0x1f/0x40
[ 1642.806990][T27078]  ? __hrtimer_init+0x173/0x250
[ 1642.811834][T27078]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1642.817561][T27078]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1642.822675][T27078]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1642.829036][T27078]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1642.835380][T27078]  genl_rcv_msg+0x1032/0x1480
[ 1642.840067][T27078]  ? genl_bind+0x360/0x360
[ 1642.844507][T27078]  ? __lock_acquire+0x1382/0x2b00
[ 1642.849569][T27078]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1642.855211][T27078]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1642.861579][T27078]  netlink_rcv_skb+0x200/0x470
[ 1642.866404][T27078]  ? genl_bind+0x360/0x360
[ 1642.870821][T27078]  ? netlink_ack+0xb70/0xb70
[ 1642.875420][T27078]  ? __down_read_common+0x1b0/0x450
[ 1642.880639][T27078]  ? up_read_non_owner+0x1c0/0x1c0
[ 1642.885755][T27078]  ? netlink_deliver_tap+0x130/0x880
[ 1642.891053][T27078]  genl_rcv+0x24/0x40
[ 1642.895655][T27078]  netlink_unicast+0x814/0x9f0
[ 1642.900427][T27078]  ? netlink_detachskb+0xa0/0xa0
[ 1642.905374][T27078]  ? __virt_addr_valid+0xb8/0x2d0
[ 1642.910392][T27078]  ? __phys_addr_symbol+0x2b/0x70
[ 1642.915426][T27078]  ? __check_object_size+0x2f3/0x3f0
[ 1642.920727][T27078]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1642.925848][T27078]  netlink_sendmsg+0xaea/0xe60
[ 1642.930612][T27078]  ? memcpy+0x3c/0x60
[ 1642.934624][T27078]  ? netlink_getsockopt+0xa60/0xa60
[ 1642.939849][T27078]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1642.945140][T27078]  ? security_socket_sendmsg+0x9d/0xb0
[ 1642.950595][T27078]  ? netlink_getsockopt+0xa60/0xa60
[ 1642.955891][T27078]  ____sys_sendmsg+0x5b9/0x910
[ 1642.960661][T27078]  ? __sys_sendmsg_sock+0x30/0x30
[ 1642.965725][T27078]  __sys_sendmsg+0x280/0x370
[ 1642.970314][T27078]  ? ____sys_sendmsg+0x910/0x910
[ 1642.975269][T27078]  ? __context_tracking_exit+0x7a/0xd0
[ 1642.980858][T27078]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1642.986849][T27078]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1642.992837][T27078]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1642.998916][T27078]  ? lockdep_hardirqs_on+0x95/0x140
[ 1643.004123][T27078]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1643.010124][T27078]  do_syscall_64+0x44/0xd0
[ 1643.014550][T27078]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1643.020435][T27078] RIP: 0033:0x7f3e3559fe99
[ 1643.024853][T27078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1643.044711][T27078] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1643.053141][T27078] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1643.061112][T27078] RDX: 0000000048000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1643.069098][T27078] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1643.077079][T27078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1643.085054][T27078] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1643.093053][T27078]  </TASK>
22:52:12 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4c000000)

[ 1643.118561][T27080] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1643.127100][T27080] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1643.138710][T27080] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1643.138710][T27080] !'
[ 1643.149048][T27080] CPU: 1 PID: 27080 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1643.157841][T27080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1643.167908][T27080] Call Trace:
[ 1643.171185][T27080]  <TASK>
[ 1643.174116][T27080]  dump_stack_lvl+0x201/0x2d8
[ 1643.178808][T27080]  ? show_regs_print_info+0x12/0x12
[ 1643.184014][T27080]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1643.189756][T27080]  sysfs_warn_dup+0x8c/0xa0
[ 1643.194264][T27080]  sysfs_do_create_link_sd+0xbe/0x100
[ 1643.199777][T27080]  device_add+0x9ea/0x16d0
[ 1643.204201][T27080]  ? wiphy_register+0x1b93/0x2a50
[ 1643.209258][T27080]  ? virtual_device_parent+0x50/0x50
[ 1643.214553][T27080]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1643.220643][T27080]  wiphy_register+0x1ba2/0x2a50
[ 1643.225517][T27080]  ? cfg80211_event_work+0x40/0x40
[ 1643.230622][T27080]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1643.236692][T27080]  ieee80211_register_hw+0x3063/0x3e10
[ 1643.242179][T27080]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1643.248024][T27080]  ? memset+0x1f/0x40
[ 1643.252028][T27080]  ? __hrtimer_init+0x173/0x250
[ 1643.256879][T27080]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1643.262613][T27080]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1643.267725][T27080]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1643.274079][T27080]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1643.280588][T27080]  genl_rcv_msg+0x1032/0x1480
[ 1643.285278][T27080]  ? genl_bind+0x360/0x360
[ 1643.289710][T27080]  ? __lock_acquire+0x1382/0x2b00
[ 1643.294764][T27080]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1643.300388][T27080]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1643.306724][T27080]  netlink_rcv_skb+0x200/0x470
[ 1643.311693][T27080]  ? genl_bind+0x360/0x360
[ 1643.316243][T27080]  ? netlink_ack+0xb70/0xb70
[ 1643.320829][T27080]  ? __down_read_common+0x1b0/0x450
[ 1643.326021][T27080]  ? up_read_non_owner+0x1c0/0x1c0
[ 1643.331120][T27080]  ? netlink_deliver_tap+0x130/0x880
[ 1643.336402][T27080]  genl_rcv+0x24/0x40
[ 1643.340403][T27080]  netlink_unicast+0x814/0x9f0
[ 1643.345182][T27080]  ? netlink_detachskb+0xa0/0xa0
[ 1643.350107][T27080]  ? __virt_addr_valid+0xb8/0x2d0
[ 1643.355129][T27080]  ? __phys_addr_symbol+0x2b/0x70
[ 1643.360151][T27080]  ? __check_object_size+0x2f3/0x3f0
[ 1643.365427][T27080]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1643.370533][T27080]  netlink_sendmsg+0xaea/0xe60
[ 1643.375303][T27080]  ? memcpy+0x3c/0x60
[ 1643.379283][T27080]  ? netlink_getsockopt+0xa60/0xa60
[ 1643.384621][T27080]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1643.389915][T27080]  ? security_socket_sendmsg+0x9d/0xb0
[ 1643.395478][T27080]  ? netlink_getsockopt+0xa60/0xa60
[ 1643.400772][T27080]  ____sys_sendmsg+0x5b9/0x910
[ 1643.405565][T27080]  ? __sys_sendmsg_sock+0x30/0x30
[ 1643.410612][T27080]  __sys_sendmsg+0x280/0x370
[ 1643.415191][T27080]  ? ____sys_sendmsg+0x910/0x910
[ 1643.420126][T27080]  ? __context_tracking_exit+0x7a/0xd0
[ 1643.425586][T27080]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1643.431556][T27080]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1643.437543][T27080]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1643.443536][T27080]  ? lockdep_hardirqs_on+0x95/0x140
[ 1643.448741][T27080]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1643.454717][T27080]  do_syscall_64+0x44/0xd0
[ 1643.459164][T27080]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1643.465070][T27080] RIP: 0033:0x7fbee7a71e99
[ 1643.469487][T27080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1643.489107][T27080] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1643.497536][T27080] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1643.505507][T27080] RDX: 000000000e000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1643.513496][T27080] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1643.521461][T27080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1643.529425][T27080] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1643.537410][T27080]  </TASK>
22:52:13 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe000000)

[ 1643.568805][T27084] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1643.588515][T27084] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1643.614626][T27084] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1643.614626][T27084] !'
[ 1643.642067][T27084] CPU: 1 PID: 27084 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1643.650876][T27084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1643.660950][T27084] Call Trace:
[ 1643.664244][T27084]  <TASK>
[ 1643.667182][T27084]  dump_stack_lvl+0x201/0x2d8
[ 1643.671856][T27084]  ? show_regs_print_info+0x12/0x12
[ 1643.677046][T27084]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1643.682770][T27084]  sysfs_warn_dup+0x8c/0xa0
[ 1643.687266][T27084]  sysfs_do_create_link_sd+0xbe/0x100
[ 1643.692638][T27084]  device_add+0x9ea/0x16d0
[ 1643.697087][T27084]  ? wiphy_register+0x1b93/0x2a50
[ 1643.702114][T27084]  ? virtual_device_parent+0x50/0x50
[ 1643.707402][T27084]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1643.713477][T27084]  wiphy_register+0x1ba2/0x2a50
[ 1643.718341][T27084]  ? cfg80211_event_work+0x40/0x40
[ 1643.723474][T27084]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1643.729546][T27084]  ieee80211_register_hw+0x3063/0x3e10
[ 1643.735048][T27084]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1643.740883][T27084]  ? memset+0x1f/0x40
[ 1643.744871][T27084]  ? __hrtimer_init+0x173/0x250
[ 1643.749725][T27084]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1643.755481][T27084]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1643.760607][T27084]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1643.766939][T27084]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1643.773277][T27084]  genl_rcv_msg+0x1032/0x1480
[ 1643.777964][T27084]  ? genl_bind+0x360/0x360
[ 1643.782394][T27084]  ? __lock_acquire+0x1382/0x2b00
[ 1643.787423][T27084]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1643.793050][T27084]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1643.799406][T27084]  netlink_rcv_skb+0x200/0x470
[ 1643.804197][T27084]  ? genl_bind+0x360/0x360
[ 1643.808611][T27084]  ? netlink_ack+0xb70/0xb70
[ 1643.813206][T27084]  ? __down_read_common+0x1b0/0x450
[ 1643.818410][T27084]  ? up_read_non_owner+0x1c0/0x1c0
[ 1643.823538][T27084]  ? netlink_deliver_tap+0x130/0x880
[ 1643.828822][T27084]  genl_rcv+0x24/0x40
[ 1643.832805][T27084]  netlink_unicast+0x814/0x9f0
[ 1643.837580][T27084]  ? netlink_detachskb+0xa0/0xa0
[ 1643.842525][T27084]  ? __virt_addr_valid+0xb8/0x2d0
[ 1643.847563][T27084]  ? __phys_addr_symbol+0x2b/0x70
[ 1643.852580][T27084]  ? __check_object_size+0x2f3/0x3f0
[ 1643.857855][T27084]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1643.862963][T27084]  netlink_sendmsg+0xaea/0xe60
[ 1643.867727][T27084]  ? memcpy+0x3c/0x60
[ 1643.871707][T27084]  ? netlink_getsockopt+0xa60/0xa60
[ 1643.876901][T27084]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1643.882174][T27084]  ? security_socket_sendmsg+0x9d/0xb0
[ 1643.887622][T27084]  ? netlink_getsockopt+0xa60/0xa60
[ 1643.892809][T27084]  ____sys_sendmsg+0x5b9/0x910
[ 1643.897660][T27084]  ? __sys_sendmsg_sock+0x30/0x30
[ 1643.902716][T27084]  __sys_sendmsg+0x280/0x370
[ 1643.907335][T27084]  ? ____sys_sendmsg+0x910/0x910
[ 1643.912285][T27084]  ? __context_tracking_exit+0x7a/0xd0
[ 1643.917755][T27084]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1643.923768][T27084]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1643.929750][T27084]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1643.935744][T27084]  ? lockdep_hardirqs_on+0x95/0x140
[ 1643.940934][T27084]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1643.946903][T27084]  do_syscall_64+0x44/0xd0
[ 1643.951335][T27084]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1643.957244][T27084] RIP: 0033:0x7fda9f984e99
[ 1643.961670][T27084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1643.981267][T27084] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1643.989682][T27084] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1643.997758][T27084] RDX: 0000000000006800 RSI: 0000000020000000 RDI: 0000000000000003
[ 1644.005731][T27084] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1644.013695][T27084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1644.021655][T27084] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1644.029644][T27084]  </TASK>
22:52:13 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6c00)

[ 1644.062084][T27091] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1644.078715][T27091] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1644.078715][T27091] !'
[ 1644.089498][T27091] CPU: 1 PID: 27091 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1644.098297][T27091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1644.108461][T27091] Call Trace:
[ 1644.111770][T27091]  <TASK>
[ 1644.114712][T27091]  dump_stack_lvl+0x201/0x2d8
[ 1644.119414][T27091]  ? show_regs_print_info+0x12/0x12
[ 1644.124751][T27091]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1644.130517][T27091]  sysfs_warn_dup+0x8c/0xa0
[ 1644.135056][T27091]  sysfs_do_create_link_sd+0xbe/0x100
[ 1644.140463][T27091]  device_add+0x9ea/0x16d0
[ 1644.144902][T27091]  ? wiphy_register+0x1b93/0x2a50
[ 1644.149956][T27091]  ? virtual_device_parent+0x50/0x50
[ 1644.155235][T27091]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1644.161214][T27091]  wiphy_register+0x1ba2/0x2a50
[ 1644.166072][T27091]  ? cfg80211_event_work+0x40/0x40
[ 1644.171182][T27091]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1644.177257][T27091]  ieee80211_register_hw+0x3063/0x3e10
[ 1644.182764][T27091]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1644.188674][T27091]  ? memset+0x1f/0x40
[ 1644.192645][T27091]  ? __hrtimer_init+0x173/0x250
[ 1644.197495][T27091]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1644.203263][T27091]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1644.208395][T27091]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1644.214741][T27091]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1644.221098][T27091]  genl_rcv_msg+0x1032/0x1480
[ 1644.225801][T27091]  ? genl_bind+0x360/0x360
[ 1644.230385][T27091]  ? __lock_acquire+0x1382/0x2b00
[ 1644.235425][T27091]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1644.241051][T27091]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1644.247379][T27091]  netlink_rcv_skb+0x200/0x470
[ 1644.252151][T27091]  ? genl_bind+0x360/0x360
[ 1644.256582][T27091]  ? netlink_ack+0xb70/0xb70
[ 1644.261166][T27091]  ? __down_read_common+0x1b0/0x450
[ 1644.266374][T27091]  ? up_read_non_owner+0x1c0/0x1c0
[ 1644.271525][T27091]  ? netlink_deliver_tap+0x130/0x880
[ 1644.276827][T27091]  genl_rcv+0x24/0x40
[ 1644.280813][T27091]  netlink_unicast+0x814/0x9f0
[ 1644.285585][T27091]  ? netlink_detachskb+0xa0/0xa0
[ 1644.290527][T27091]  ? __virt_addr_valid+0xb8/0x2d0
[ 1644.295542][T27091]  ? __phys_addr_symbol+0x2b/0x70
[ 1644.300550][T27091]  ? __check_object_size+0x2f3/0x3f0
[ 1644.305822][T27091]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1644.310934][T27091]  netlink_sendmsg+0xaea/0xe60
[ 1644.315698][T27091]  ? memcpy+0x3c/0x60
[ 1644.319704][T27091]  ? netlink_getsockopt+0xa60/0xa60
[ 1644.324911][T27091]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1644.330304][T27091]  ? security_socket_sendmsg+0x9d/0xb0
[ 1644.335909][T27091]  ? netlink_getsockopt+0xa60/0xa60
[ 1644.341105][T27091]  ____sys_sendmsg+0x5b9/0x910
[ 1644.345870][T27091]  ? __sys_sendmsg_sock+0x30/0x30
[ 1644.350897][T27091]  __sys_sendmsg+0x280/0x370
[ 1644.355514][T27091]  ? ____sys_sendmsg+0x910/0x910
[ 1644.360470][T27091]  ? __context_tracking_exit+0x7a/0xd0
[ 1644.365966][T27091]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1644.371951][T27091]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1644.377946][T27091]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1644.383918][T27091]  ? lockdep_hardirqs_on+0x95/0x140
[ 1644.389109][T27091]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1644.395080][T27091]  do_syscall_64+0x44/0xd0
[ 1644.399585][T27091]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1644.405480][T27091] RIP: 0033:0x7ffbc7e82e99
[ 1644.409891][T27091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1644.429504][T27091] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1644.437936][T27091] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1644.445898][T27091] RDX: 0000000000006800 RSI: 0000000020000000 RDI: 0000000000000003
[ 1644.453856][T27091] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
22:52:14 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6c00)

[ 1644.461822][T27091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1644.469869][T27091] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1644.477844][T27091]  </TASK>
[ 1644.489503][T27093] nla_validate_range_unsigned: 1 callbacks suppressed
[ 1644.489519][T27093] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
[ 1644.529226][T27093] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1644.543413][T27093] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1644.543413][T27093] !'
[ 1644.553530][T27093] CPU: 0 PID: 27093 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1644.562317][T27093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1644.572384][T27093] Call Trace:
[ 1644.575668][T27093]  <TASK>
[ 1644.578848][T27093]  dump_stack_lvl+0x201/0x2d8
[ 1644.583573][T27093]  ? show_regs_print_info+0x12/0x12
[ 1644.588802][T27093]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1644.594559][T27093]  sysfs_warn_dup+0x8c/0xa0
[ 1644.599088][T27093]  sysfs_do_create_link_sd+0xbe/0x100
[ 1644.604486][T27093]  device_add+0x9ea/0x16d0
[ 1644.608912][T27093]  ? wiphy_register+0x1b93/0x2a50
[ 1644.613969][T27093]  ? virtual_device_parent+0x50/0x50
[ 1644.619271][T27093]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1644.625273][T27093]  wiphy_register+0x1ba2/0x2a50
[ 1644.630137][T27093]  ? cfg80211_event_work+0x40/0x40
[ 1644.635264][T27093]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1644.641437][T27093]  ieee80211_register_hw+0x3063/0x3e10
[ 1644.646924][T27093]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1644.652740][T27093]  ? memset+0x1f/0x40
[ 1644.656836][T27093]  ? __hrtimer_init+0x173/0x250
[ 1644.661693][T27093]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1644.667440][T27093]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1644.672647][T27093]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1644.679006][T27093]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1644.685433][T27093]  genl_rcv_msg+0x1032/0x1480
[ 1644.690123][T27093]  ? genl_bind+0x360/0x360
[ 1644.694557][T27093]  ? __lock_acquire+0x1382/0x2b00
[ 1644.699611][T27093]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1644.705262][T27093]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1644.711633][T27093]  netlink_rcv_skb+0x200/0x470
[ 1644.716416][T27093]  ? genl_bind+0x360/0x360
[ 1644.720847][T27093]  ? netlink_ack+0xb70/0xb70
[ 1644.725453][T27093]  ? __down_read_common+0x1b0/0x450
[ 1644.730674][T27093]  ? up_read_non_owner+0x1c0/0x1c0
[ 1644.735804][T27093]  ? netlink_deliver_tap+0x130/0x880
[ 1644.741110][T27093]  genl_rcv+0x24/0x40
[ 1644.745102][T27093]  netlink_unicast+0x814/0x9f0
[ 1644.749975][T27093]  ? netlink_detachskb+0xa0/0xa0
[ 1644.755010][T27093]  ? __virt_addr_valid+0xb8/0x2d0
[ 1644.760153][T27093]  ? __phys_addr_symbol+0x2b/0x70
[ 1644.765192][T27093]  ? __check_object_size+0x2f3/0x3f0
[ 1644.770499][T27093]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1644.775720][T27093]  netlink_sendmsg+0xaea/0xe60
[ 1644.780490][T27093]  ? memcpy+0x3c/0x60
[ 1644.784500][T27093]  ? netlink_getsockopt+0xa60/0xa60
[ 1644.789722][T27093]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1644.795013][T27093]  ? security_socket_sendmsg+0x9d/0xb0
[ 1644.800573][T27093]  ? netlink_getsockopt+0xa60/0xa60
[ 1644.805781][T27093]  ____sys_sendmsg+0x5b9/0x910
[ 1644.810554][T27093]  ? __sys_sendmsg_sock+0x30/0x30
[ 1644.815616][T27093]  __sys_sendmsg+0x280/0x370
[ 1644.820243][T27093]  ? ____sys_sendmsg+0x910/0x910
[ 1644.825216][T27093]  ? __context_tracking_exit+0x7a/0xd0
[ 1644.830716][T27093]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1644.836706][T27093]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1644.842696][T27093]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1644.848690][T27093]  ? lockdep_hardirqs_on+0x95/0x140
[ 1644.853902][T27093]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1644.859904][T27093]  do_syscall_64+0x44/0xd0
[ 1644.864341][T27093]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1644.870235][T27093] RIP: 0033:0x7f5163f51e99
[ 1644.874662][T27093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1644.894270][T27093] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1644.902711][T27093] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1644.910702][T27093] RDX: 0000000000004100 RSI: 0000000020000000 RDI: 0000000000000003
[ 1644.918699][T27093] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1644.926687][T27093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1644.934673][T27093] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1644.942679][T27093]  </TASK>
[ 1644.963119][T27095] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
22:52:14 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0xffffffef}, 0x0)

[ 1644.983310][T27095] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1645.015315][T27095] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1645.015315][T27095] !'
[ 1645.049241][T27095] CPU: 0 PID: 27095 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1645.058046][T27095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1645.068098][T27095] Call Trace:
[ 1645.071393][T27095]  <TASK>
[ 1645.074328][T27095]  dump_stack_lvl+0x201/0x2d8
[ 1645.079020][T27095]  ? show_regs_print_info+0x12/0x12
[ 1645.084235][T27095]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1645.089996][T27095]  sysfs_warn_dup+0x8c/0xa0
[ 1645.094521][T27095]  sysfs_do_create_link_sd+0xbe/0x100
[ 1645.099894][T27095]  device_add+0x9ea/0x16d0
[ 1645.104311][T27095]  ? wiphy_register+0x1b93/0x2a50
[ 1645.109431][T27095]  ? virtual_device_parent+0x50/0x50
[ 1645.114709][T27095]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1645.120690][T27095]  wiphy_register+0x1ba2/0x2a50
[ 1645.125544][T27095]  ? cfg80211_event_work+0x40/0x40
[ 1645.130660][T27095]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1645.136727][T27095]  ieee80211_register_hw+0x3063/0x3e10
[ 1645.142199][T27095]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1645.148039][T27095]  ? memset+0x1f/0x40
[ 1645.152036][T27095]  ? __hrtimer_init+0x173/0x250
[ 1645.156899][T27095]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1645.162648][T27095]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1645.167767][T27095]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1645.174104][T27095]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1645.180451][T27095]  genl_rcv_msg+0x1032/0x1480
[ 1645.185133][T27095]  ? genl_bind+0x360/0x360
[ 1645.189550][T27095]  ? __lock_acquire+0x1382/0x2b00
[ 1645.194591][T27095]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1645.200218][T27095]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1645.206556][T27095]  netlink_rcv_skb+0x200/0x470
[ 1645.211322][T27095]  ? genl_bind+0x360/0x360
[ 1645.215732][T27095]  ? netlink_ack+0xb70/0xb70
[ 1645.220315][T27095]  ? __down_read_common+0x1b0/0x450
[ 1645.225507][T27095]  ? up_read_non_owner+0x1c0/0x1c0
[ 1645.230604][T27095]  ? netlink_deliver_tap+0x130/0x880
[ 1645.235894][T27095]  genl_rcv+0x24/0x40
[ 1645.239874][T27095]  netlink_unicast+0x814/0x9f0
[ 1645.244642][T27095]  ? netlink_detachskb+0xa0/0xa0
[ 1645.249566][T27095]  ? __virt_addr_valid+0xb8/0x2d0
[ 1645.254587][T27095]  ? __phys_addr_symbol+0x2b/0x70
[ 1645.259601][T27095]  ? __check_object_size+0x2f3/0x3f0
[ 1645.264880][T27095]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1645.270008][T27095]  netlink_sendmsg+0xaea/0xe60
[ 1645.274781][T27095]  ? memcpy+0x3c/0x60
[ 1645.278786][T27095]  ? netlink_getsockopt+0xa60/0xa60
[ 1645.283999][T27095]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1645.289289][T27095]  ? security_socket_sendmsg+0x9d/0xb0
[ 1645.294840][T27095]  ? netlink_getsockopt+0xa60/0xa60
[ 1645.300066][T27095]  ____sys_sendmsg+0x5b9/0x910
[ 1645.304837][T27095]  ? __sys_sendmsg_sock+0x30/0x30
[ 1645.309872][T27095]  __sys_sendmsg+0x280/0x370
[ 1645.314457][T27095]  ? ____sys_sendmsg+0x910/0x910
[ 1645.319400][T27095]  ? __context_tracking_exit+0x7a/0xd0
[ 1645.324863][T27095]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1645.330835][T27095]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1645.336839][T27095]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1645.342832][T27095]  ? lockdep_hardirqs_on+0x95/0x140
[ 1645.348027][T27095]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1645.353999][T27095]  do_syscall_64+0x44/0xd0
[ 1645.358421][T27095]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1645.364330][T27095] RIP: 0033:0x7fd6114efe99
[ 1645.368741][T27095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1645.388335][T27095] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1645.396741][T27095] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1645.404710][T27095] RDX: 0000000000004800 RSI: 0000000020000000 RDI: 0000000000000003
[ 1645.412670][T27095] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1645.420634][T27095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1645.428594][T27095] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1645.436570][T27095]  </TASK>
[ 1645.462617][T27097] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1645.471398][T27097] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1645.483481][T27097] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1645.483481][T27097] !'
[ 1645.493845][T27097] CPU: 0 PID: 27097 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1645.502633][T27097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1645.512700][T27097] Call Trace:
[ 1645.515970][T27097]  <TASK>
[ 1645.518892][T27097]  dump_stack_lvl+0x201/0x2d8
[ 1645.523599][T27097]  ? show_regs_print_info+0x12/0x12
[ 1645.528807][T27097]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1645.534528][T27097]  sysfs_warn_dup+0x8c/0xa0
[ 1645.539037][T27097]  sysfs_do_create_link_sd+0xbe/0x100
[ 1645.544427][T27097]  device_add+0x9ea/0x16d0
[ 1645.548846][T27097]  ? wiphy_register+0x1b93/0x2a50
[ 1645.553898][T27097]  ? virtual_device_parent+0x50/0x50
[ 1645.559246][T27097]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1645.565256][T27097]  wiphy_register+0x1ba2/0x2a50
[ 1645.570231][T27097]  ? cfg80211_event_work+0x40/0x40
[ 1645.575418][T27097]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1645.581487][T27097]  ieee80211_register_hw+0x3063/0x3e10
[ 1645.586971][T27097]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1645.592779][T27097]  ? memset+0x1f/0x40
[ 1645.596751][T27097]  ? __hrtimer_init+0x173/0x250
[ 1645.601605][T27097]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1645.607356][T27097]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1645.612462][T27097]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1645.618787][T27097]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1645.625119][T27097]  genl_rcv_msg+0x1032/0x1480
[ 1645.629825][T27097]  ? genl_bind+0x360/0x360
[ 1645.634256][T27097]  ? __lock_acquire+0x1382/0x2b00
[ 1645.639306][T27097]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1645.644948][T27097]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1645.651329][T27097]  netlink_rcv_skb+0x200/0x470
[ 1645.656085][T27097]  ? genl_bind+0x360/0x360
[ 1645.660501][T27097]  ? netlink_ack+0xb70/0xb70
[ 1645.665104][T27097]  ? __down_read_common+0x1b0/0x450
[ 1645.670321][T27097]  ? up_read_non_owner+0x1c0/0x1c0
[ 1645.675438][T27097]  ? netlink_deliver_tap+0x130/0x880
[ 1645.680732][T27097]  genl_rcv+0x24/0x40
[ 1645.684728][T27097]  netlink_unicast+0x814/0x9f0
[ 1645.689520][T27097]  ? netlink_detachskb+0xa0/0xa0
[ 1645.694469][T27097]  ? __virt_addr_valid+0xb8/0x2d0
[ 1645.699488][T27097]  ? __phys_addr_symbol+0x2b/0x70
[ 1645.704523][T27097]  ? __check_object_size+0x2f3/0x3f0
[ 1645.709831][T27097]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1645.714956][T27097]  netlink_sendmsg+0xaea/0xe60
[ 1645.719719][T27097]  ? memcpy+0x3c/0x60
[ 1645.723728][T27097]  ? netlink_getsockopt+0xa60/0xa60
[ 1645.728946][T27097]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1645.734240][T27097]  ? security_socket_sendmsg+0x9d/0xb0
[ 1645.739700][T27097]  ? netlink_getsockopt+0xa60/0xa60
[ 1645.744916][T27097]  ____sys_sendmsg+0x5b9/0x910
[ 1645.749899][T27097]  ? __sys_sendmsg_sock+0x30/0x30
[ 1645.755009][T27097]  __sys_sendmsg+0x280/0x370
[ 1645.759598][T27097]  ? ____sys_sendmsg+0x910/0x910
[ 1645.764570][T27097]  ? __context_tracking_exit+0x7a/0xd0
[ 1645.770063][T27097]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1645.776057][T27097]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1645.782046][T27097]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1645.788037][T27097]  ? lockdep_hardirqs_on+0x95/0x140
[ 1645.793275][T27097]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1645.799255][T27097]  do_syscall_64+0x44/0xd0
[ 1645.803690][T27097]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1645.809594][T27097] RIP: 0033:0x7f3e3559fe99
[ 1645.814015][T27097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1645.833785][T27097] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1645.842198][T27097] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1645.850186][T27097] RDX: 000000004c000000 RSI: 0000000020000000 RDI: 0000000000000003
22:52:15 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x9a0b0000}, 0x0)

[ 1645.858211][T27097] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1645.866176][T27097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1645.874143][T27097] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1645.882159][T27097]  </TASK>
22:52:15 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x60000000)

[ 1645.912629][T27099] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1645.929428][T27099] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1645.957099][T27099] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1645.957099][T27099] !'
[ 1645.979517][T27099] CPU: 1 PID: 27099 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1645.988326][T27099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1645.998391][T27099] Call Trace:
[ 1646.001672][T27099]  <TASK>
[ 1646.004604][T27099]  dump_stack_lvl+0x201/0x2d8
[ 1646.009289][T27099]  ? show_regs_print_info+0x12/0x12
[ 1646.014487][T27099]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1646.020215][T27099]  sysfs_warn_dup+0x8c/0xa0
[ 1646.024711][T27099]  sysfs_do_create_link_sd+0xbe/0x100
[ 1646.030075][T27099]  device_add+0x9ea/0x16d0
[ 1646.034486][T27099]  ? wiphy_register+0x1b93/0x2a50
[ 1646.039523][T27099]  ? virtual_device_parent+0x50/0x50
[ 1646.044815][T27099]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1646.050813][T27099]  wiphy_register+0x1ba2/0x2a50
[ 1646.055675][T27099]  ? cfg80211_event_work+0x40/0x40
[ 1646.060793][T27099]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1646.066865][T27099]  ieee80211_register_hw+0x3063/0x3e10
[ 1646.072342][T27099]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1646.078153][T27099]  ? memset+0x1f/0x40
[ 1646.082152][T27099]  ? __hrtimer_init+0x173/0x250
[ 1646.087013][T27099]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1646.092746][T27099]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1646.097855][T27099]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1646.104186][T27099]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1646.110526][T27099]  genl_rcv_msg+0x1032/0x1480
[ 1646.115224][T27099]  ? genl_bind+0x360/0x360
[ 1646.119734][T27099]  ? __lock_acquire+0x1382/0x2b00
[ 1646.124778][T27099]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1646.130413][T27099]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1646.136764][T27099]  netlink_rcv_skb+0x200/0x470
[ 1646.141533][T27099]  ? genl_bind+0x360/0x360
[ 1646.145945][T27099]  ? netlink_ack+0xb70/0xb70
[ 1646.150528][T27099]  ? __down_read_common+0x1b0/0x450
[ 1646.155722][T27099]  ? up_read_non_owner+0x1c0/0x1c0
[ 1646.160827][T27099]  ? netlink_deliver_tap+0x130/0x880
[ 1646.166140][T27099]  genl_rcv+0x24/0x40
[ 1646.170114][T27099]  netlink_unicast+0x814/0x9f0
[ 1646.174886][T27099]  ? netlink_detachskb+0xa0/0xa0
[ 1646.179814][T27099]  ? __virt_addr_valid+0xb8/0x2d0
[ 1646.184847][T27099]  ? __phys_addr_symbol+0x2b/0x70
[ 1646.189884][T27099]  ? __check_object_size+0x2f3/0x3f0
[ 1646.195190][T27099]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1646.200396][T27099]  netlink_sendmsg+0xaea/0xe60
[ 1646.205166][T27099]  ? memcpy+0x3c/0x60
[ 1646.209153][T27099]  ? netlink_getsockopt+0xa60/0xa60
[ 1646.214358][T27099]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1646.219636][T27099]  ? security_socket_sendmsg+0x9d/0xb0
[ 1646.225177][T27099]  ? netlink_getsockopt+0xa60/0xa60
[ 1646.230370][T27099]  ____sys_sendmsg+0x5b9/0x910
[ 1646.235135][T27099]  ? __sys_sendmsg_sock+0x30/0x30
[ 1646.240167][T27099]  __sys_sendmsg+0x280/0x370
[ 1646.244837][T27099]  ? ____sys_sendmsg+0x910/0x910
[ 1646.249780][T27099]  ? __context_tracking_exit+0x7a/0xd0
[ 1646.255244][T27099]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1646.261216][T27099]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1646.267197][T27099]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1646.273168][T27099]  ? lockdep_hardirqs_on+0x95/0x140
[ 1646.278368][T27099]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1646.284348][T27099]  do_syscall_64+0x44/0xd0
[ 1646.288761][T27099]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1646.294645][T27099] RIP: 0033:0x7fbee7a71e99
[ 1646.299170][T27099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1646.318789][T27099] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1646.327210][T27099] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1646.335187][T27099] RDX: 000000000e000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1646.343164][T27099] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1646.351129][T27099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:52:16 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0xa404}, 0x0)

[ 1646.359089][T27099] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1646.367067][T27099]  </TASK>
[ 1646.397943][T27101] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1646.418850][T27101] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1646.441963][T27101] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1646.441963][T27101] !'
[ 1646.471235][T27101] CPU: 0 PID: 27101 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1646.480068][T27101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1646.490140][T27101] Call Trace:
[ 1646.493430][T27101]  <TASK>
[ 1646.496352][T27101]  dump_stack_lvl+0x201/0x2d8
[ 1646.501026][T27101]  ? show_regs_print_info+0x12/0x12
[ 1646.506237][T27101]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1646.511976][T27101]  sysfs_warn_dup+0x8c/0xa0
[ 1646.516499][T27101]  sysfs_do_create_link_sd+0xbe/0x100
[ 1646.521892][T27101]  device_add+0x9ea/0x16d0
[ 1646.526314][T27101]  ? wiphy_register+0x1b93/0x2a50
[ 1646.531348][T27101]  ? virtual_device_parent+0x50/0x50
[ 1646.536629][T27101]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1646.542609][T27101]  wiphy_register+0x1ba2/0x2a50
[ 1646.547637][T27101]  ? cfg80211_event_work+0x40/0x40
[ 1646.552750][T27101]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1646.558818][T27101]  ieee80211_register_hw+0x3063/0x3e10
[ 1646.564299][T27101]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1646.570111][T27101]  ? memset+0x1f/0x40
[ 1646.574090][T27101]  ? __hrtimer_init+0x173/0x250
[ 1646.578937][T27101]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1646.584671][T27101]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1646.589779][T27101]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1646.596208][T27101]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1646.602543][T27101]  genl_rcv_msg+0x1032/0x1480
[ 1646.607225][T27101]  ? genl_bind+0x360/0x360
[ 1646.611639][T27101]  ? __lock_acquire+0x1382/0x2b00
[ 1646.616762][T27101]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1646.622385][T27101]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1646.628724][T27101]  netlink_rcv_skb+0x200/0x470
[ 1646.633503][T27101]  ? genl_bind+0x360/0x360
[ 1646.637915][T27101]  ? netlink_ack+0xb70/0xb70
[ 1646.642495][T27101]  ? __down_read_common+0x1b0/0x450
[ 1646.647688][T27101]  ? up_read_non_owner+0x1c0/0x1c0
[ 1646.652788][T27101]  ? netlink_deliver_tap+0x130/0x880
[ 1646.658076][T27101]  genl_rcv+0x24/0x40
[ 1646.662053][T27101]  netlink_unicast+0x814/0x9f0
[ 1646.666817][T27101]  ? netlink_detachskb+0xa0/0xa0
[ 1646.671742][T27101]  ? __virt_addr_valid+0xb8/0x2d0
[ 1646.676759][T27101]  ? __phys_addr_symbol+0x2b/0x70
[ 1646.681777][T27101]  ? __check_object_size+0x2f3/0x3f0
[ 1646.687057][T27101]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1646.692161][T27101]  netlink_sendmsg+0xaea/0xe60
[ 1646.696919][T27101]  ? memcpy+0x3c/0x60
[ 1646.700902][T27101]  ? netlink_getsockopt+0xa60/0xa60
[ 1646.706108][T27101]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1646.711384][T27101]  ? security_socket_sendmsg+0x9d/0xb0
[ 1646.716838][T27101]  ? netlink_getsockopt+0xa60/0xa60
[ 1646.722032][T27101]  ____sys_sendmsg+0x5b9/0x910
[ 1646.726797][T27101]  ? __sys_sendmsg_sock+0x30/0x30
[ 1646.731831][T27101]  __sys_sendmsg+0x280/0x370
[ 1646.736420][T27101]  ? ____sys_sendmsg+0x910/0x910
[ 1646.741361][T27101]  ? __context_tracking_exit+0x7a/0xd0
[ 1646.746823][T27101]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1646.752793][T27101]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1646.758771][T27101]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1646.764740][T27101]  ? lockdep_hardirqs_on+0x95/0x140
[ 1646.769927][T27101]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1646.775899][T27101]  do_syscall_64+0x44/0xd0
[ 1646.780309][T27101]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1646.786193][T27101] RIP: 0033:0x7fda9f984e99
[ 1646.790606][T27101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1646.810205][T27101] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1646.818610][T27101] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1646.826583][T27101] RDX: 0000000000006c00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1646.834576][T27101] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1646.842741][T27101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1646.850718][T27101] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1646.858722][T27101]  </TASK>
22:52:16 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6e0c)

[ 1646.876032][T27103] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1646.891250][T27103] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1646.919278][T27103] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1646.919278][T27103] !'
[ 1646.939395][T27103] CPU: 0 PID: 27103 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1646.948214][T27103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1646.958269][T27103] Call Trace:
[ 1646.961560][T27103]  <TASK>
[ 1646.964486][T27103]  dump_stack_lvl+0x201/0x2d8
[ 1646.969165][T27103]  ? show_regs_print_info+0x12/0x12
[ 1646.974384][T27103]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1646.980153][T27103]  sysfs_warn_dup+0x8c/0xa0
[ 1646.984671][T27103]  sysfs_do_create_link_sd+0xbe/0x100
[ 1646.990046][T27103]  device_add+0x9ea/0x16d0
[ 1646.994473][T27103]  ? wiphy_register+0x1b93/0x2a50
[ 1646.999501][T27103]  ? virtual_device_parent+0x50/0x50
[ 1647.004778][T27103]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1647.010769][T27103]  wiphy_register+0x1ba2/0x2a50
[ 1647.015639][T27103]  ? cfg80211_event_work+0x40/0x40
[ 1647.020774][T27103]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1647.026856][T27103]  ieee80211_register_hw+0x3063/0x3e10
[ 1647.032534][T27103]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1647.038336][T27103]  ? memset+0x1f/0x40
[ 1647.042304][T27103]  ? __hrtimer_init+0x173/0x250
[ 1647.047155][T27103]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1647.052927][T27103]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1647.058046][T27103]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1647.064370][T27103]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1647.070782][T27103]  genl_rcv_msg+0x1032/0x1480
[ 1647.075456][T27103]  ? genl_bind+0x360/0x360
[ 1647.079928][T27103]  ? __lock_acquire+0x1382/0x2b00
[ 1647.084961][T27103]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1647.090591][T27103]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1647.096941][T27103]  netlink_rcv_skb+0x200/0x470
[ 1647.101705][T27103]  ? genl_bind+0x360/0x360
[ 1647.106215][T27103]  ? netlink_ack+0xb70/0xb70
[ 1647.111259][T27103]  ? __down_read_common+0x1b0/0x450
[ 1647.116454][T27103]  ? up_read_non_owner+0x1c0/0x1c0
[ 1647.121556][T27103]  ? netlink_deliver_tap+0x130/0x880
[ 1647.126980][T27103]  genl_rcv+0x24/0x40
[ 1647.131147][T27103]  netlink_unicast+0x814/0x9f0
[ 1647.135943][T27103]  ? netlink_detachskb+0xa0/0xa0
[ 1647.140876][T27103]  ? __virt_addr_valid+0xb8/0x2d0
[ 1647.146243][T27103]  ? __phys_addr_symbol+0x2b/0x70
[ 1647.151259][T27103]  ? __check_object_size+0x2f3/0x3f0
[ 1647.156536][T27103]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1647.161641][T27103]  netlink_sendmsg+0xaea/0xe60
[ 1647.166400][T27103]  ? memcpy+0x3c/0x60
[ 1647.170410][T27103]  ? netlink_getsockopt+0xa60/0xa60
[ 1647.175722][T27103]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1647.181023][T27103]  ? security_socket_sendmsg+0x9d/0xb0
[ 1647.186495][T27103]  ? netlink_getsockopt+0xa60/0xa60
[ 1647.191694][T27103]  ____sys_sendmsg+0x5b9/0x910
[ 1647.196465][T27103]  ? __sys_sendmsg_sock+0x30/0x30
[ 1647.201525][T27103]  __sys_sendmsg+0x280/0x370
[ 1647.206128][T27103]  ? ____sys_sendmsg+0x910/0x910
[ 1647.211085][T27103]  ? __context_tracking_exit+0x7a/0xd0
[ 1647.216560][T27103]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1647.222528][T27103]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1647.228501][T27103]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1647.234468][T27103]  ? lockdep_hardirqs_on+0x95/0x140
[ 1647.239656][T27103]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1647.245629][T27103]  do_syscall_64+0x44/0xd0
[ 1647.250037][T27103]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1647.255921][T27103] RIP: 0033:0x7ffbc7e82e99
[ 1647.260672][T27103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1647.280277][T27103] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1647.288713][T27103] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1647.296687][T27103] RDX: 0000000000006c00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1647.304653][T27103] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1647.312626][T27103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1647.320790][T27103] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1647.328925][T27103]  </TASK>
[ 1647.345858][T27105] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
22:52:16 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6e0c)

[ 1647.366047][T27105] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1647.366047][T27105] !'
[ 1647.385002][T27105] CPU: 1 PID: 27105 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1647.393813][T27105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1647.403885][T27105] Call Trace:
[ 1647.407187][T27105]  <TASK>
[ 1647.410136][T27105]  dump_stack_lvl+0x201/0x2d8
[ 1647.414857][T27105]  ? show_regs_print_info+0x12/0x12
[ 1647.420071][T27105]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1647.425791][T27105]  sysfs_warn_dup+0x8c/0xa0
[ 1647.430284][T27105]  sysfs_do_create_link_sd+0xbe/0x100
[ 1647.435759][T27105]  device_add+0x9ea/0x16d0
[ 1647.440170][T27105]  ? wiphy_register+0x1b93/0x2a50
[ 1647.445193][T27105]  ? virtual_device_parent+0x50/0x50
[ 1647.450472][T27105]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1647.456451][T27105]  wiphy_register+0x1ba2/0x2a50
[ 1647.461314][T27105]  ? cfg80211_event_work+0x40/0x40
[ 1647.466446][T27105]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1647.472516][T27105]  ieee80211_register_hw+0x3063/0x3e10
[ 1647.478003][T27105]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1647.483814][T27105]  ? memset+0x1f/0x40
[ 1647.487787][T27105]  ? __hrtimer_init+0x173/0x250
[ 1647.492646][T27105]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1647.498378][T27105]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1647.503487][T27105]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1647.509825][T27105]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1647.516171][T27105]  genl_rcv_msg+0x1032/0x1480
[ 1647.520849][T27105]  ? genl_bind+0x360/0x360
[ 1647.525275][T27105]  ? __lock_acquire+0x1382/0x2b00
[ 1647.530377][T27105]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1647.536014][T27105]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1647.542339][T27105]  netlink_rcv_skb+0x200/0x470
[ 1647.547205][T27105]  ? genl_bind+0x360/0x360
[ 1647.551636][T27105]  ? netlink_ack+0xb70/0xb70
[ 1647.556233][T27105]  ? __down_read_common+0x1b0/0x450
[ 1647.561528][T27105]  ? up_read_non_owner+0x1c0/0x1c0
[ 1647.566652][T27105]  ? netlink_deliver_tap+0x130/0x880
[ 1647.571958][T27105]  genl_rcv+0x24/0x40
[ 1647.575945][T27105]  netlink_unicast+0x814/0x9f0
[ 1647.580882][T27105]  ? netlink_detachskb+0xa0/0xa0
[ 1647.585990][T27105]  ? __virt_addr_valid+0xb8/0x2d0
[ 1647.591007][T27105]  ? __phys_addr_symbol+0x2b/0x70
[ 1647.596024][T27105]  ? __check_object_size+0x2f3/0x3f0
[ 1647.601321][T27105]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1647.606420][T27105]  netlink_sendmsg+0xaea/0xe60
[ 1647.611172][T27105]  ? memcpy+0x3c/0x60
[ 1647.615174][T27105]  ? netlink_getsockopt+0xa60/0xa60
[ 1647.620364][T27105]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1647.625649][T27105]  ? security_socket_sendmsg+0x9d/0xb0
[ 1647.631127][T27105]  ? netlink_getsockopt+0xa60/0xa60
[ 1647.636495][T27105]  ____sys_sendmsg+0x5b9/0x910
[ 1647.641269][T27105]  ? __sys_sendmsg_sock+0x30/0x30
[ 1647.646298][T27105]  __sys_sendmsg+0x280/0x370
[ 1647.650882][T27105]  ? ____sys_sendmsg+0x910/0x910
[ 1647.655841][T27105]  ? __context_tracking_exit+0x7a/0xd0
[ 1647.661315][T27105]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1647.667360][T27105]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1647.673347][T27105]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1647.679326][T27105]  ? lockdep_hardirqs_on+0x95/0x140
[ 1647.684540][T27105]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1647.690613][T27105]  do_syscall_64+0x44/0xd0
[ 1647.695050][T27105]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1647.700951][T27105] RIP: 0033:0x7f5163f51e99
[ 1647.705357][T27105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1647.724972][T27105] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1647.733390][T27105] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1647.741377][T27105] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1647.749369][T27105] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1647.757353][T27105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1647.765321][T27105] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1647.773319][T27105]  </TASK>
22:52:17 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0xffffffef}, 0x0)

[ 1647.798239][T27107] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1647.821146][T27107] __nla_validate_parse: 1 callbacks suppressed
[ 1647.821162][T27107] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1647.840287][T27107] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1647.840287][T27107] !'
[ 1647.850824][T27107] CPU: 0 PID: 27107 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1647.859609][T27107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1647.869685][T27107] Call Trace:
[ 1647.872989][T27107]  <TASK>
[ 1647.875932][T27107]  dump_stack_lvl+0x201/0x2d8
[ 1647.880639][T27107]  ? show_regs_print_info+0x12/0x12
[ 1647.887854][T27107]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1647.893598][T27107]  sysfs_warn_dup+0x8c/0xa0
[ 1647.898126][T27107]  sysfs_do_create_link_sd+0xbe/0x100
[ 1647.903519][T27107]  device_add+0x9ea/0x16d0
[ 1647.907946][T27107]  ? wiphy_register+0x1b93/0x2a50
[ 1647.912992][T27107]  ? virtual_device_parent+0x50/0x50
[ 1647.918280][T27107]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1647.924290][T27107]  wiphy_register+0x1ba2/0x2a50
[ 1647.929177][T27107]  ? cfg80211_event_work+0x40/0x40
[ 1647.934323][T27107]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1647.940420][T27107]  ieee80211_register_hw+0x3063/0x3e10
[ 1647.945912][T27107]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1647.951851][T27107]  ? memset+0x1f/0x40
[ 1647.955852][T27107]  ? __hrtimer_init+0x173/0x250
[ 1647.960734][T27107]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1647.967111][T27107]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1647.972246][T27107]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1647.978605][T27107]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1647.984971][T27107]  genl_rcv_msg+0x1032/0x1480
[ 1647.989684][T27107]  ? genl_bind+0x360/0x360
[ 1647.994160][T27107]  ? __lock_acquire+0x1382/0x2b00
[ 1647.999234][T27107]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1648.004886][T27107]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1648.011249][T27107]  netlink_rcv_skb+0x200/0x470
[ 1648.016009][T27107]  ? genl_bind+0x360/0x360
[ 1648.020438][T27107]  ? netlink_ack+0xb70/0xb70
[ 1648.025049][T27107]  ? __down_read_common+0x1b0/0x450
[ 1648.030263][T27107]  ? up_read_non_owner+0x1c0/0x1c0
[ 1648.035380][T27107]  ? netlink_deliver_tap+0x130/0x880
[ 1648.040676][T27107]  genl_rcv+0x24/0x40
[ 1648.044672][T27107]  netlink_unicast+0x814/0x9f0
[ 1648.049462][T27107]  ? netlink_detachskb+0xa0/0xa0
[ 1648.054409][T27107]  ? __virt_addr_valid+0xb8/0x2d0
[ 1648.059453][T27107]  ? __phys_addr_symbol+0x2b/0x70
[ 1648.064492][T27107]  ? __check_object_size+0x2f3/0x3f0
[ 1648.069800][T27107]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1648.074931][T27107]  netlink_sendmsg+0xaea/0xe60
[ 1648.079717][T27107]  ? memcpy+0x3c/0x60
[ 1648.083726][T27107]  ? netlink_getsockopt+0xa60/0xa60
[ 1648.088954][T27107]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1648.094256][T27107]  ? security_socket_sendmsg+0x9d/0xb0
22:52:17 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0xffffffef}, 0x0)

[ 1648.099737][T27107]  ? netlink_getsockopt+0xa60/0xa60
[ 1648.104960][T27107]  ____sys_sendmsg+0x5b9/0x910
[ 1648.109756][T27107]  ? __sys_sendmsg_sock+0x30/0x30
[ 1648.114819][T27107]  __sys_sendmsg+0x280/0x370
[ 1648.119431][T27107]  ? ____sys_sendmsg+0x910/0x910
[ 1648.124401][T27107]  ? __context_tracking_exit+0x7a/0xd0
[ 1648.129893][T27107]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1648.135884][T27107]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1648.141871][T27107]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1648.147870][T27107]  ? lockdep_hardirqs_on+0x95/0x140
[ 1648.153066][T27107]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1648.159066][T27107]  do_syscall_64+0x44/0xd0
[ 1648.163504][T27107]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1648.169416][T27107] RIP: 0033:0x7f3e3559fe99
[ 1648.173854][T27107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1648.193557][T27107] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1648.201996][T27107] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1648.209986][T27107] RDX: 0000000060000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1648.218020][T27107] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1648.225983][T27107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1648.234049][T27107] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1648.242139][T27107]  </TASK>
22:52:17 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x68000000)

[ 1648.270946][T27110] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1648.286340][T27110] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1648.298470][T27110] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1648.298470][T27110] !'
[ 1648.310672][T27110] CPU: 1 PID: 27110 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1648.319477][T27110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1648.329553][T27110] Call Trace:
[ 1648.332960][T27110]  <TASK>
[ 1648.335881][T27110]  dump_stack_lvl+0x201/0x2d8
[ 1648.340555][T27110]  ? show_regs_print_info+0x12/0x12
[ 1648.345757][T27110]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1648.351526][T27110]  sysfs_warn_dup+0x8c/0xa0
[ 1648.356024][T27110]  sysfs_do_create_link_sd+0xbe/0x100
[ 1648.361401][T27110]  device_add+0x9ea/0x16d0
[ 1648.365839][T27110]  ? wiphy_register+0x1b93/0x2a50
[ 1648.370878][T27110]  ? virtual_device_parent+0x50/0x50
[ 1648.376153][T27110]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1648.382152][T27110]  wiphy_register+0x1ba2/0x2a50
[ 1648.387005][T27110]  ? cfg80211_event_work+0x40/0x40
[ 1648.392132][T27110]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1648.398226][T27110]  ieee80211_register_hw+0x3063/0x3e10
[ 1648.403704][T27110]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1648.409532][T27110]  ? memset+0x1f/0x40
[ 1648.413509][T27110]  ? __hrtimer_init+0x173/0x250
[ 1648.418351][T27110]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1648.424078][T27110]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1648.429304][T27110]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1648.435769][T27110]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1648.442100][T27110]  genl_rcv_msg+0x1032/0x1480
[ 1648.446784][T27110]  ? genl_bind+0x360/0x360
[ 1648.451199][T27110]  ? __lock_acquire+0x1382/0x2b00
[ 1648.456380][T27110]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1648.462098][T27110]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1648.468471][T27110]  netlink_rcv_skb+0x200/0x470
[ 1648.473264][T27110]  ? genl_bind+0x360/0x360
[ 1648.477691][T27110]  ? netlink_ack+0xb70/0xb70
[ 1648.482296][T27110]  ? __down_read_common+0x1b0/0x450
[ 1648.487563][T27110]  ? up_read_non_owner+0x1c0/0x1c0
[ 1648.492674][T27110]  ? netlink_deliver_tap+0x130/0x880
[ 1648.497971][T27110]  genl_rcv+0x24/0x40
[ 1648.501949][T27110]  netlink_unicast+0x814/0x9f0
[ 1648.506725][T27110]  ? netlink_detachskb+0xa0/0xa0
[ 1648.511742][T27110]  ? __virt_addr_valid+0xb8/0x2d0
[ 1648.516794][T27110]  ? __phys_addr_symbol+0x2b/0x70
[ 1648.521814][T27110]  ? __check_object_size+0x2f3/0x3f0
[ 1648.527093][T27110]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1648.532204][T27110]  netlink_sendmsg+0xaea/0xe60
[ 1648.536967][T27110]  ? memcpy+0x3c/0x60
[ 1648.541097][T27110]  ? netlink_getsockopt+0xa60/0xa60
[ 1648.546316][T27110]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1648.551623][T27110]  ? security_socket_sendmsg+0x9d/0xb0
[ 1648.557074][T27110]  ? netlink_getsockopt+0xa60/0xa60
[ 1648.562281][T27110]  ____sys_sendmsg+0x5b9/0x910
[ 1648.567072][T27110]  ? __sys_sendmsg_sock+0x30/0x30
[ 1648.572118][T27110]  __sys_sendmsg+0x280/0x370
[ 1648.576700][T27110]  ? ____sys_sendmsg+0x910/0x910
[ 1648.581641][T27110]  ? __context_tracking_exit+0x7a/0xd0
[ 1648.587100][T27110]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1648.593087][T27110]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1648.599061][T27110]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1648.605037][T27110]  ? lockdep_hardirqs_on+0x95/0x140
[ 1648.610236][T27110]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1648.616208][T27110]  do_syscall_64+0x44/0xd0
[ 1648.620617][T27110]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1648.626496][T27110] RIP: 0033:0x7fbee7a71e99
[ 1648.630897][T27110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1648.650546][T27110] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1648.658963][T27110] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1648.666951][T27110] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1648.674936][T27110] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1648.682919][T27110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1648.690906][T27110] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1648.698911][T27110]  </TASK>
22:52:18 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0)

[ 1648.723931][T27111] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 1648.736682][T27111] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1648.754346][T27111] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1648.754346][T27111] !'
[ 1648.765041][T27111] CPU: 0 PID: 27111 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1648.773837][T27111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1648.783914][T27111] Call Trace:
[ 1648.787210][T27111]  <TASK>
[ 1648.790162][T27111]  dump_stack_lvl+0x201/0x2d8
[ 1648.794876][T27111]  ? show_regs_print_info+0x12/0x12
[ 1648.800092][T27111]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1648.805849][T27111]  sysfs_warn_dup+0x8c/0xa0
[ 1648.810371][T27111]  sysfs_do_create_link_sd+0xbe/0x100
[ 1648.815764][T27111]  device_add+0x9ea/0x16d0
[ 1648.820198][T27111]  ? wiphy_register+0x1b93/0x2a50
[ 1648.825266][T27111]  ? virtual_device_parent+0x50/0x50
[ 1648.830570][T27111]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1648.836580][T27111]  wiphy_register+0x1ba2/0x2a50
[ 1648.841467][T27111]  ? cfg80211_event_work+0x40/0x40
[ 1648.846605][T27111]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1648.852672][T27111]  ieee80211_register_hw+0x3063/0x3e10
[ 1648.858154][T27111]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1648.864056][T27111]  ? memset+0x1f/0x40
[ 1648.868027][T27111]  ? __hrtimer_init+0x173/0x250
[ 1648.872875][T27111]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1648.878602][T27111]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1648.883718][T27111]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1648.890080][T27111]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1648.896476][T27111]  genl_rcv_msg+0x1032/0x1480
[ 1648.901163][T27111]  ? genl_bind+0x360/0x360
[ 1648.905597][T27111]  ? __lock_acquire+0x1382/0x2b00
[ 1648.910649][T27111]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1648.916298][T27111]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1648.922748][T27111]  netlink_rcv_skb+0x200/0x470
[ 1648.927536][T27111]  ? genl_bind+0x360/0x360
[ 1648.931951][T27111]  ? netlink_ack+0xb70/0xb70
[ 1648.936554][T27111]  ? __down_read_common+0x1b0/0x450
[ 1648.941769][T27111]  ? up_read_non_owner+0x1c0/0x1c0
[ 1648.946888][T27111]  ? netlink_deliver_tap+0x130/0x880
[ 1648.952171][T27111]  genl_rcv+0x24/0x40
[ 1648.956147][T27111]  netlink_unicast+0x814/0x9f0
[ 1648.960937][T27111]  ? netlink_detachskb+0xa0/0xa0
[ 1648.965883][T27111]  ? __virt_addr_valid+0xb8/0x2d0
[ 1648.970896][T27111]  ? __phys_addr_symbol+0x2b/0x70
[ 1648.975997][T27111]  ? __check_object_size+0x2f3/0x3f0
[ 1648.981286][T27111]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1648.986433][T27111]  netlink_sendmsg+0xaea/0xe60
[ 1648.991224][T27111]  ? memcpy+0x3c/0x60
[ 1648.995239][T27111]  ? netlink_getsockopt+0xa60/0xa60
[ 1649.000465][T27111]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1649.005760][T27111]  ? security_socket_sendmsg+0x9d/0xb0
[ 1649.011223][T27111]  ? netlink_getsockopt+0xa60/0xa60
[ 1649.016436][T27111]  ____sys_sendmsg+0x5b9/0x910
[ 1649.021234][T27111]  ? __sys_sendmsg_sock+0x30/0x30
[ 1649.026297][T27111]  __sys_sendmsg+0x280/0x370
[ 1649.030891][T27111]  ? ____sys_sendmsg+0x910/0x910
[ 1649.035863][T27111]  ? __context_tracking_exit+0x7a/0xd0
[ 1649.041353][T27111]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1649.047343][T27111]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1649.053329][T27111]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1649.059350][T27111]  ? lockdep_hardirqs_on+0x95/0x140
[ 1649.064572][T27111]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1649.070564][T27111]  do_syscall_64+0x44/0xd0
[ 1649.075002][T27111]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1649.080896][T27111] RIP: 0033:0x7fd6114efe99
[ 1649.085326][T27111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1649.105035][T27111] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1649.113479][T27111] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1649.121591][T27111] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1649.129671][T27111] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1649.137838][T27111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1649.146101][T27111] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1649.154117][T27111]  </TASK>
22:52:18 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0)

[ 1649.178779][T27113] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1649.197418][T27113] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1649.197418][T27113] !'
[ 1649.214288][T27113] CPU: 0 PID: 27113 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1649.223103][T27113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1649.233175][T27113] Call Trace:
[ 1649.236469][T27113]  <TASK>
[ 1649.239416][T27113]  dump_stack_lvl+0x201/0x2d8
[ 1649.244210][T27113]  ? show_regs_print_info+0x12/0x12
[ 1649.249434][T27113]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1649.255194][T27113]  sysfs_warn_dup+0x8c/0xa0
[ 1649.259722][T27113]  sysfs_do_create_link_sd+0xbe/0x100
[ 1649.265115][T27113]  device_add+0x9ea/0x16d0
[ 1649.269532][T27113]  ? wiphy_register+0x1b93/0x2a50
[ 1649.274581][T27113]  ? virtual_device_parent+0x50/0x50
[ 1649.279861][T27113]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1649.285848][T27113]  wiphy_register+0x1ba2/0x2a50
[ 1649.290711][T27113]  ? cfg80211_event_work+0x40/0x40
[ 1649.295830][T27113]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1649.301896][T27113]  ieee80211_register_hw+0x3063/0x3e10
[ 1649.307385][T27113]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1649.313217][T27113]  ? memset+0x1f/0x40
[ 1649.317198][T27113]  ? __hrtimer_init+0x173/0x250
[ 1649.322059][T27113]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1649.327981][T27113]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1649.333100][T27113]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1649.339543][T27113]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1649.345876][T27113]  genl_rcv_msg+0x1032/0x1480
[ 1649.350557][T27113]  ? genl_bind+0x360/0x360
[ 1649.354974][T27113]  ? __lock_acquire+0x1382/0x2b00
[ 1649.360012][T27113]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1649.365635][T27113]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1649.371971][T27113]  netlink_rcv_skb+0x200/0x470
[ 1649.376731][T27113]  ? genl_bind+0x360/0x360
[ 1649.381145][T27113]  ? netlink_ack+0xb70/0xb70
[ 1649.385726][T27113]  ? __down_read_common+0x1b0/0x450
[ 1649.391092][T27113]  ? up_read_non_owner+0x1c0/0x1c0
[ 1649.396302][T27113]  ? netlink_deliver_tap+0x130/0x880
[ 1649.401585][T27113]  genl_rcv+0x24/0x40
[ 1649.405554][T27113]  netlink_unicast+0x814/0x9f0
[ 1649.410319][T27113]  ? netlink_detachskb+0xa0/0xa0
[ 1649.415244][T27113]  ? __virt_addr_valid+0xb8/0x2d0
[ 1649.420267][T27113]  ? __phys_addr_symbol+0x2b/0x70
[ 1649.425285][T27113]  ? __check_object_size+0x2f3/0x3f0
[ 1649.430559][T27113]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1649.435665][T27113]  netlink_sendmsg+0xaea/0xe60
[ 1649.440420][T27113]  ? memcpy+0x3c/0x60
[ 1649.444409][T27113]  ? netlink_getsockopt+0xa60/0xa60
[ 1649.449605][T27113]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1649.454884][T27113]  ? security_socket_sendmsg+0x9d/0xb0
[ 1649.460338][T27113]  ? netlink_getsockopt+0xa60/0xa60
[ 1649.465526][T27113]  ____sys_sendmsg+0x5b9/0x910
[ 1649.470297][T27113]  ? __sys_sendmsg_sock+0x30/0x30
[ 1649.475326][T27113]  __sys_sendmsg+0x280/0x370
[ 1649.479908][T27113]  ? ____sys_sendmsg+0x910/0x910
[ 1649.484848][T27113]  ? __context_tracking_exit+0x7a/0xd0
[ 1649.490341][T27113]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1649.496331][T27113]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1649.502399][T27113]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1649.508453][T27113]  ? lockdep_hardirqs_on+0x95/0x140
[ 1649.513638][T27113]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1649.519608][T27113]  do_syscall_64+0x44/0xd0
[ 1649.524019][T27113]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1649.529901][T27113] RIP: 0033:0x7fda9f984e99
[ 1649.534309][T27113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1649.553900][T27113] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1649.562306][T27113] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1649.570265][T27113] RDX: 0000000000006e0c RSI: 0000000020000000 RDI: 0000000000000003
22:52:19 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x9a0b0000}, 0x0)

[ 1649.578228][T27113] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1649.586186][T27113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1649.594144][T27113] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1649.602123][T27113]  </TASK>
22:52:19 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x7400)

[ 1649.645691][T27115] nla_validate_range_unsigned: 1 callbacks suppressed
[ 1649.645710][T27115] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1649.697099][T27115] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1649.715205][T27115] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1649.715205][T27115] !'
[ 1649.729910][T27115] CPU: 0 PID: 27115 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
22:52:19 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0)

[ 1649.738707][T27115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1649.748778][T27115] Call Trace:
[ 1649.752079][T27115]  <TASK>
[ 1649.755022][T27115]  dump_stack_lvl+0x201/0x2d8
[ 1649.759720][T27115]  ? show_regs_print_info+0x12/0x12
[ 1649.764943][T27115]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1649.770699][T27115]  sysfs_warn_dup+0x8c/0xa0
[ 1649.775217][T27115]  sysfs_do_create_link_sd+0xbe/0x100
[ 1649.780611][T27115]  device_add+0x9ea/0x16d0
[ 1649.785039][T27115]  ? wiphy_register+0x1b93/0x2a50
[ 1649.790100][T27115]  ? virtual_device_parent+0x50/0x50
[ 1649.795402][T27115]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1649.801417][T27115]  wiphy_register+0x1ba2/0x2a50
[ 1649.806313][T27115]  ? cfg80211_event_work+0x40/0x40
[ 1649.811445][T27115]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1649.817521][T27115]  ieee80211_register_hw+0x3063/0x3e10
[ 1649.823017][T27115]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1649.828836][T27115]  ? memset+0x1f/0x40
[ 1649.832813][T27115]  ? __hrtimer_init+0x173/0x250
[ 1649.837662][T27115]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1649.843399][T27115]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1649.848509][T27115]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1649.854838][T27115]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1649.861170][T27115]  genl_rcv_msg+0x1032/0x1480
[ 1649.865849][T27115]  ? genl_bind+0x360/0x360
[ 1649.870262][T27115]  ? __lock_acquire+0x1382/0x2b00
[ 1649.875296][T27115]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1649.880915][T27115]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1649.887257][T27115]  netlink_rcv_skb+0x200/0x470
[ 1649.892023][T27115]  ? genl_bind+0x360/0x360
[ 1649.896436][T27115]  ? netlink_ack+0xb70/0xb70
[ 1649.901019][T27115]  ? __down_read_common+0x1b0/0x450
[ 1649.906209][T27115]  ? up_read_non_owner+0x1c0/0x1c0
[ 1649.911395][T27115]  ? netlink_deliver_tap+0x130/0x880
[ 1649.916684][T27115]  genl_rcv+0x24/0x40
[ 1649.920672][T27115]  netlink_unicast+0x814/0x9f0
[ 1649.925449][T27115]  ? netlink_detachskb+0xa0/0xa0
[ 1649.930381][T27115]  ? __virt_addr_valid+0xb8/0x2d0
[ 1649.935397][T27115]  ? __phys_addr_symbol+0x2b/0x70
[ 1649.940409][T27115]  ? __check_object_size+0x2f3/0x3f0
[ 1649.945686][T27115]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1649.950788][T27115]  netlink_sendmsg+0xaea/0xe60
[ 1649.955583][T27115]  ? memcpy+0x3c/0x60
[ 1649.959565][T27115]  ? netlink_getsockopt+0xa60/0xa60
[ 1649.964759][T27115]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1649.970030][T27115]  ? security_socket_sendmsg+0x9d/0xb0
[ 1649.975486][T27115]  ? netlink_getsockopt+0xa60/0xa60
[ 1649.980678][T27115]  ____sys_sendmsg+0x5b9/0x910
[ 1649.985447][T27115]  ? __sys_sendmsg_sock+0x30/0x30
[ 1649.990484][T27115]  __sys_sendmsg+0x280/0x370
[ 1649.995067][T27115]  ? ____sys_sendmsg+0x910/0x910
[ 1650.000006][T27115]  ? __context_tracking_exit+0x7a/0xd0
[ 1650.005469][T27115]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1650.011439][T27115]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1650.017423][T27115]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1650.023393][T27115]  ? lockdep_hardirqs_on+0x95/0x140
[ 1650.028581][T27115]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1650.034552][T27115]  do_syscall_64+0x44/0xd0
[ 1650.038965][T27115]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1650.044854][T27115] RIP: 0033:0x7ffbc7e82e99
[ 1650.049260][T27115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1650.068855][T27115] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1650.077280][T27115] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1650.085241][T27115] RDX: 0000000000006e0c RSI: 0000000020000000 RDI: 0000000000000003
[ 1650.093218][T27115] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1650.101178][T27115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1650.109136][T27115] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1650.117121][T27115]  </TASK>
22:52:19 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x7400)

22:52:19 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1650.204189][T27219] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
[ 1650.214924][T27219] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1650.274614][T27219] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1650.274614][T27219] !'
[ 1650.285589][T27219] CPU: 0 PID: 27219 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1650.294381][T27219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1650.304459][T27219] Call Trace:
[ 1650.307744][T27219]  <TASK>
[ 1650.310678][T27219]  dump_stack_lvl+0x201/0x2d8
[ 1650.315385][T27219]  ? show_regs_print_info+0x12/0x12
[ 1650.320614][T27219]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1650.326377][T27219]  sysfs_warn_dup+0x8c/0xa0
[ 1650.331019][T27219]  sysfs_do_create_link_sd+0xbe/0x100
[ 1650.336413][T27219]  device_add+0x9ea/0x16d0
[ 1650.340857][T27219]  ? wiphy_register+0x1b93/0x2a50
[ 1650.345916][T27219]  ? virtual_device_parent+0x50/0x50
[ 1650.351224][T27219]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1650.357234][T27219]  wiphy_register+0x1ba2/0x2a50
[ 1650.362120][T27219]  ? cfg80211_event_work+0x40/0x40
[ 1650.367260][T27219]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1650.373359][T27219]  ieee80211_register_hw+0x3063/0x3e10
[ 1650.378863][T27219]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1650.384700][T27219]  ? memset+0x1f/0x40
[ 1650.388702][T27219]  ? __hrtimer_init+0x173/0x250
[ 1650.393576][T27219]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1650.399340][T27219]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1650.404483][T27219]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1650.410944][T27219]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1650.417388][T27219]  genl_rcv_msg+0x1032/0x1480
[ 1650.422110][T27219]  ? genl_bind+0x360/0x360
[ 1650.426559][T27219]  ? __lock_acquire+0x1382/0x2b00
[ 1650.431632][T27219]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1650.437283][T27219]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1650.443651][T27219]  netlink_rcv_skb+0x200/0x470
[ 1650.448440][T27219]  ? genl_bind+0x360/0x360
[ 1650.452856][T27219]  ? netlink_ack+0xb70/0xb70
[ 1650.457464][T27219]  ? __down_read_common+0x1b0/0x450
[ 1650.462680][T27219]  ? up_read_non_owner+0x1c0/0x1c0
[ 1650.467793][T27219]  ? netlink_deliver_tap+0x130/0x880
[ 1650.473082][T27219]  genl_rcv+0x24/0x40
[ 1650.477058][T27219]  netlink_unicast+0x814/0x9f0
[ 1650.481825][T27219]  ? netlink_detachskb+0xa0/0xa0
[ 1650.486754][T27219]  ? __virt_addr_valid+0xb8/0x2d0
[ 1650.491769][T27219]  ? __phys_addr_symbol+0x2b/0x70
[ 1650.496787][T27219]  ? __check_object_size+0x2f3/0x3f0
[ 1650.502067][T27219]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1650.507173][T27219]  netlink_sendmsg+0xaea/0xe60
[ 1650.511930][T27219]  ? memcpy+0x3c/0x60
[ 1650.515923][T27219]  ? netlink_getsockopt+0xa60/0xa60
[ 1650.521133][T27219]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1650.526543][T27219]  ? security_socket_sendmsg+0x9d/0xb0
[ 1650.531993][T27219]  ? netlink_getsockopt+0xa60/0xa60
[ 1650.537197][T27219]  ____sys_sendmsg+0x5b9/0x910
[ 1650.541964][T27219]  ? __sys_sendmsg_sock+0x30/0x30
[ 1650.546998][T27219]  __sys_sendmsg+0x280/0x370
[ 1650.551585][T27219]  ? ____sys_sendmsg+0x910/0x910
[ 1650.556530][T27219]  ? __context_tracking_exit+0x7a/0xd0
[ 1650.561998][T27219]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1650.567976][T27219]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1650.573963][T27219]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1650.579939][T27219]  ? lockdep_hardirqs_on+0x95/0x140
[ 1650.585127][T27219]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1650.591110][T27219]  do_syscall_64+0x44/0xd0
[ 1650.595527][T27219]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1650.601411][T27219] RIP: 0033:0x7f5163f51e99
[ 1650.605822][T27219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1650.625422][T27219] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1650.633830][T27219] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1650.641794][T27219] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1650.649758][T27219] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1650.657721][T27219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1650.665699][T27219] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1650.673675][T27219]  </TASK>
22:52:20 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1650.683273][T27221] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1650.707962][T27221] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
22:52:20 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1650.754465][T27221] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1650.754465][T27221] !'
[ 1650.765810][T27221] CPU: 0 PID: 27221 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1650.774605][T27221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1650.784702][T27221] Call Trace:
[ 1650.787987][T27221]  <TASK>
[ 1650.790914][T27221]  dump_stack_lvl+0x201/0x2d8
[ 1650.795619][T27221]  ? show_regs_print_info+0x12/0x12
[ 1650.800850][T27221]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1650.806621][T27221]  sysfs_warn_dup+0x8c/0xa0
[ 1650.811148][T27221]  sysfs_do_create_link_sd+0xbe/0x100
[ 1650.816546][T27221]  device_add+0x9ea/0x16d0
[ 1650.820983][T27221]  ? wiphy_register+0x1b93/0x2a50
[ 1650.826046][T27221]  ? virtual_device_parent+0x50/0x50
[ 1650.831438][T27221]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1650.837454][T27221]  wiphy_register+0x1ba2/0x2a50
[ 1650.842342][T27221]  ? cfg80211_event_work+0x40/0x40
[ 1650.847486][T27221]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1650.853573][T27221]  ieee80211_register_hw+0x3063/0x3e10
[ 1650.859061][T27221]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1650.864872][T27221]  ? memset+0x1f/0x40
[ 1650.868846][T27221]  ? __hrtimer_init+0x173/0x250
[ 1650.873703][T27221]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1650.879443][T27221]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1650.884553][T27221]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1650.890882][T27221]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1650.897212][T27221]  genl_rcv_msg+0x1032/0x1480
[ 1650.901891][T27221]  ? genl_bind+0x360/0x360
[ 1650.906308][T27221]  ? __lock_acquire+0x1382/0x2b00
[ 1650.911346][T27221]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1650.916968][T27221]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1650.923300][T27221]  netlink_rcv_skb+0x200/0x470
[ 1650.928061][T27221]  ? genl_bind+0x360/0x360
[ 1650.932473][T27221]  ? netlink_ack+0xb70/0xb70
[ 1650.937058][T27221]  ? __down_read_common+0x1b0/0x450
[ 1650.942253][T27221]  ? up_read_non_owner+0x1c0/0x1c0
[ 1650.947450][T27221]  ? netlink_deliver_tap+0x130/0x880
[ 1650.952746][T27221]  genl_rcv+0x24/0x40
[ 1650.956721][T27221]  netlink_unicast+0x814/0x9f0
[ 1650.961487][T27221]  ? netlink_detachskb+0xa0/0xa0
[ 1650.966415][T27221]  ? __virt_addr_valid+0xb8/0x2d0
[ 1650.971433][T27221]  ? __phys_addr_symbol+0x2b/0x70
[ 1650.976448][T27221]  ? __check_object_size+0x2f3/0x3f0
[ 1650.981725][T27221]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1650.986830][T27221]  netlink_sendmsg+0xaea/0xe60
[ 1650.991589][T27221]  ? memcpy+0x3c/0x60
[ 1650.995571][T27221]  ? netlink_getsockopt+0xa60/0xa60
[ 1651.000865][T27221]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1651.006139][T27221]  ? security_socket_sendmsg+0x9d/0xb0
[ 1651.011591][T27221]  ? netlink_getsockopt+0xa60/0xa60
[ 1651.016781][T27221]  ____sys_sendmsg+0x5b9/0x910
[ 1651.021563][T27221]  ? __sys_sendmsg_sock+0x30/0x30
[ 1651.026624][T27221]  __sys_sendmsg+0x280/0x370
[ 1651.031240][T27221]  ? ____sys_sendmsg+0x910/0x910
[ 1651.036372][T27221]  ? __context_tracking_exit+0x7a/0xd0
[ 1651.041850][T27221]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1651.047822][T27221]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1651.053801][T27221]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1651.059779][T27221]  ? lockdep_hardirqs_on+0x95/0x140
[ 1651.064968][T27221]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1651.070940][T27221]  do_syscall_64+0x44/0xd0
[ 1651.075353][T27221]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1651.081330][T27221] RIP: 0033:0x7f3e3559fe99
[ 1651.085743][T27221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1651.105348][T27221] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1651.113760][T27221] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1651.121724][T27221] RDX: 0000000068000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1651.129724][T27221] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1651.137683][T27221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1651.145643][T27221] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1651.153623][T27221]  </TASK>
22:52:20 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1651.246630][T27344] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 1651.283768][T27344] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.1'.
22:52:20 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6c000000)

[ 1651.310731][T27344] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1651.310731][T27344] !'
[ 1651.327397][T27344] CPU: 1 PID: 27344 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1651.336209][T27344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1651.346284][T27344] Call Trace:
[ 1651.349581][T27344]  <TASK>
[ 1651.352530][T27344]  dump_stack_lvl+0x201/0x2d8
[ 1651.357245][T27344]  ? show_regs_print_info+0x12/0x12
[ 1651.362471][T27344]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1651.368234][T27344]  sysfs_warn_dup+0x8c/0xa0
[ 1651.372758][T27344]  sysfs_do_create_link_sd+0xbe/0x100
[ 1651.378123][T27344]  device_add+0x9ea/0x16d0
[ 1651.382703][T27344]  ? wiphy_register+0x1b93/0x2a50
[ 1651.387729][T27344]  ? virtual_device_parent+0x50/0x50
[ 1651.393005][T27344]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1651.398981][T27344]  wiphy_register+0x1ba2/0x2a50
[ 1651.403852][T27344]  ? cfg80211_event_work+0x40/0x40
[ 1651.408981][T27344]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1651.415058][T27344]  ieee80211_register_hw+0x3063/0x3e10
[ 1651.420635][T27344]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1651.426469][T27344]  ? memset+0x1f/0x40
[ 1651.430438][T27344]  ? __hrtimer_init+0x173/0x250
[ 1651.435497][T27344]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1651.441270][T27344]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1651.446390][T27344]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1651.452723][T27344]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1651.459051][T27344]  genl_rcv_msg+0x1032/0x1480
[ 1651.463730][T27344]  ? genl_bind+0x360/0x360
[ 1651.468142][T27344]  ? __lock_acquire+0x1382/0x2b00
[ 1651.473189][T27344]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1651.478822][T27344]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1651.485159][T27344]  netlink_rcv_skb+0x200/0x470
[ 1651.489917][T27344]  ? genl_bind+0x360/0x360
[ 1651.494320][T27344]  ? netlink_ack+0xb70/0xb70
[ 1651.498896][T27344]  ? __down_read_common+0x1b0/0x450
[ 1651.504093][T27344]  ? up_read_non_owner+0x1c0/0x1c0
[ 1651.509294][T27344]  ? netlink_deliver_tap+0x130/0x880
[ 1651.514574][T27344]  genl_rcv+0x24/0x40
[ 1651.518551][T27344]  netlink_unicast+0x814/0x9f0
[ 1651.523309][T27344]  ? netlink_detachskb+0xa0/0xa0
[ 1651.528228][T27344]  ? __virt_addr_valid+0xb8/0x2d0
[ 1651.533240][T27344]  ? __phys_addr_symbol+0x2b/0x70
[ 1651.538256][T27344]  ? __check_object_size+0x2f3/0x3f0
[ 1651.543557][T27344]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1651.548662][T27344]  netlink_sendmsg+0xaea/0xe60
[ 1651.553412][T27344]  ? memcpy+0x3c/0x60
[ 1651.557396][T27344]  ? netlink_getsockopt+0xa60/0xa60
[ 1651.562585][T27344]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1651.567864][T27344]  ? security_socket_sendmsg+0x9d/0xb0
[ 1651.573338][T27344]  ? netlink_getsockopt+0xa60/0xa60
[ 1651.578537][T27344]  ____sys_sendmsg+0x5b9/0x910
[ 1651.583316][T27344]  ? __sys_sendmsg_sock+0x30/0x30
[ 1651.588359][T27344]  __sys_sendmsg+0x280/0x370
[ 1651.592967][T27344]  ? ____sys_sendmsg+0x910/0x910
[ 1651.597914][T27344]  ? __context_tracking_exit+0x7a/0xd0
[ 1651.603368][T27344]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1651.609354][T27344]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1651.615328][T27344]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1651.621295][T27344]  ? lockdep_hardirqs_on+0x95/0x140
[ 1651.626501][T27344]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1651.632914][T27344]  do_syscall_64+0x44/0xd0
[ 1651.637321][T27344]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1651.643201][T27344] RIP: 0033:0x7fd6114efe99
[ 1651.647602][T27344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1651.667191][T27344] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1651.675596][T27344] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1651.683570][T27344] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1651.691532][T27344] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1651.699493][T27344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:52:21 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1651.707448][T27344] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1651.715525][T27344]  </TASK>
22:52:21 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x9a0b0000}, 0x0)

[ 1651.758244][T27510] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1651.779145][T27510] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1651.795533][T27510] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1651.795533][T27510] !'
[ 1651.807638][T27510] CPU: 1 PID: 27510 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1651.816432][T27510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1651.826500][T27510] Call Trace:
[ 1651.829798][T27510]  <TASK>
[ 1651.832738][T27510]  dump_stack_lvl+0x201/0x2d8
[ 1651.837444][T27510]  ? show_regs_print_info+0x12/0x12
[ 1651.842666][T27510]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1651.848433][T27510]  sysfs_warn_dup+0x8c/0xa0
[ 1651.852955][T27510]  sysfs_do_create_link_sd+0xbe/0x100
[ 1651.858352][T27510]  device_add+0x9ea/0x16d0
[ 1651.862783][T27510]  ? wiphy_register+0x1b93/0x2a50
[ 1651.867834][T27510]  ? virtual_device_parent+0x50/0x50
[ 1651.873131][T27510]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1651.879150][T27510]  wiphy_register+0x1ba2/0x2a50
[ 1651.884042][T27510]  ? cfg80211_event_work+0x40/0x40
[ 1651.889196][T27510]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1651.895301][T27510]  ieee80211_register_hw+0x3063/0x3e10
[ 1651.900808][T27510]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1651.906644][T27510]  ? memset+0x1f/0x40
[ 1651.910613][T27510]  ? __hrtimer_init+0x173/0x250
[ 1651.915452][T27510]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1651.921199][T27510]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1651.926324][T27510]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1651.932654][T27510]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1651.938978][T27510]  genl_rcv_msg+0x1032/0x1480
[ 1651.943651][T27510]  ? genl_bind+0x360/0x360
[ 1651.948061][T27510]  ? __lock_acquire+0x1382/0x2b00
[ 1651.953107][T27510]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1651.958742][T27510]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1651.965083][T27510]  netlink_rcv_skb+0x200/0x470
[ 1651.969839][T27510]  ? genl_bind+0x360/0x360
[ 1651.974248][T27510]  ? netlink_ack+0xb70/0xb70
[ 1651.978824][T27510]  ? __down_read_common+0x1b0/0x450
[ 1651.984014][T27510]  ? up_read_non_owner+0x1c0/0x1c0
[ 1651.989198][T27510]  ? netlink_deliver_tap+0x130/0x880
[ 1651.994491][T27510]  genl_rcv+0x24/0x40
[ 1651.998469][T27510]  netlink_unicast+0x814/0x9f0
[ 1652.003222][T27510]  ? netlink_detachskb+0xa0/0xa0
[ 1652.008146][T27510]  ? __virt_addr_valid+0xb8/0x2d0
[ 1652.013175][T27510]  ? __phys_addr_symbol+0x2b/0x70
[ 1652.018194][T27510]  ? __check_object_size+0x2f3/0x3f0
[ 1652.023489][T27510]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1652.028602][T27510]  netlink_sendmsg+0xaea/0xe60
[ 1652.033352][T27510]  ? memcpy+0x3c/0x60
[ 1652.037325][T27510]  ? netlink_getsockopt+0xa60/0xa60
[ 1652.042526][T27510]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1652.047813][T27510]  ? security_socket_sendmsg+0x9d/0xb0
[ 1652.053256][T27510]  ? netlink_getsockopt+0xa60/0xa60
[ 1652.058450][T27510]  ____sys_sendmsg+0x5b9/0x910
[ 1652.063211][T27510]  ? __sys_sendmsg_sock+0x30/0x30
[ 1652.068233][T27510]  __sys_sendmsg+0x280/0x370
[ 1652.072816][T27510]  ? ____sys_sendmsg+0x910/0x910
[ 1652.077752][T27510]  ? __context_tracking_exit+0x7a/0xd0
[ 1652.083221][T27510]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1652.089216][T27510]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1652.095190][T27510]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1652.101162][T27510]  ? lockdep_hardirqs_on+0x95/0x140
[ 1652.106349][T27510]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1652.112315][T27510]  do_syscall_64+0x44/0xd0
[ 1652.116723][T27510]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1652.122600][T27510] RIP: 0033:0x7fda9f984e99
[ 1652.127007][T27510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1652.146610][T27510] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
22:52:21 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, 0x0, 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1652.155025][T27510] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1652.163010][T27510] RDX: 0000000000007400 RSI: 0000000020000000 RDI: 0000000000000003
[ 1652.170994][T27510] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1652.178975][T27510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1652.186951][T27510] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1652.194930][T27510]  </TASK>
22:52:21 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x7a00)

22:52:21 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, 0x0, 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1652.234829][T27535] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1652.251321][T27535] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1652.314534][T27535] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1652.314534][T27535] !'
[ 1652.353608][T27535] CPU: 1 PID: 27535 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
22:52:21 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, 0x0, 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1652.362427][T27535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1652.372504][T27535] Call Trace:
[ 1652.375804][T27535]  <TASK>
[ 1652.378746][T27535]  dump_stack_lvl+0x201/0x2d8
[ 1652.383455][T27535]  ? show_regs_print_info+0x12/0x12
[ 1652.388678][T27535]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1652.394438][T27535]  sysfs_warn_dup+0x8c/0xa0
[ 1652.398962][T27535]  sysfs_do_create_link_sd+0xbe/0x100
[ 1652.404371][T27535]  device_add+0x9ea/0x16d0
[ 1652.408806][T27535]  ? wiphy_register+0x1b93/0x2a50
[ 1652.413866][T27535]  ? virtual_device_parent+0x50/0x50
[ 1652.419170][T27535]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1652.425183][T27535]  wiphy_register+0x1ba2/0x2a50
[ 1652.430070][T27535]  ? cfg80211_event_work+0x40/0x40
[ 1652.435224][T27535]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1652.441320][T27535]  ieee80211_register_hw+0x3063/0x3e10
[ 1652.446861][T27535]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1652.452706][T27535]  ? memset+0x1f/0x40
[ 1652.456709][T27535]  ? __hrtimer_init+0x173/0x250
[ 1652.461581][T27535]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1652.467352][T27535]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1652.472499][T27535]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1652.478864][T27535]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1652.485213][T27535]  genl_rcv_msg+0x1032/0x1480
[ 1652.489889][T27535]  ? genl_bind+0x360/0x360
[ 1652.494299][T27535]  ? __lock_acquire+0x1382/0x2b00
[ 1652.499438][T27535]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1652.505076][T27535]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1652.511406][T27535]  netlink_rcv_skb+0x200/0x470
[ 1652.516159][T27535]  ? genl_bind+0x360/0x360
[ 1652.520571][T27535]  ? netlink_ack+0xb70/0xb70
[ 1652.525237][T27535]  ? __down_read_common+0x1b0/0x450
[ 1652.530424][T27535]  ? up_read_non_owner+0x1c0/0x1c0
[ 1652.535515][T27535]  ? netlink_deliver_tap+0x130/0x880
[ 1652.540804][T27535]  genl_rcv+0x24/0x40
[ 1652.544798][T27535]  netlink_unicast+0x814/0x9f0
[ 1652.549553][T27535]  ? netlink_detachskb+0xa0/0xa0
[ 1652.554478][T27535]  ? __virt_addr_valid+0xb8/0x2d0
[ 1652.559512][T27535]  ? __phys_addr_symbol+0x2b/0x70
[ 1652.564526][T27535]  ? __check_object_size+0x2f3/0x3f0
[ 1652.569810][T27535]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1652.574923][T27535]  netlink_sendmsg+0xaea/0xe60
[ 1652.579692][T27535]  ? memcpy+0x3c/0x60
[ 1652.583664][T27535]  ? netlink_getsockopt+0xa60/0xa60
[ 1652.588879][T27535]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1652.594165][T27535]  ? security_socket_sendmsg+0x9d/0xb0
[ 1652.599658][T27535]  ? netlink_getsockopt+0xa60/0xa60
[ 1652.604843][T27535]  ____sys_sendmsg+0x5b9/0x910
[ 1652.609610][T27535]  ? __sys_sendmsg_sock+0x30/0x30
[ 1652.614649][T27535]  __sys_sendmsg+0x280/0x370
[ 1652.619258][T27535]  ? ____sys_sendmsg+0x910/0x910
[ 1652.624284][T27535]  ? __context_tracking_exit+0x7a/0xd0
[ 1652.629733][T27535]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1652.635702][T27535]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1652.641698][T27535]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1652.647685][T27535]  ? lockdep_hardirqs_on+0x95/0x140
[ 1652.652868][T27535]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1652.658834][T27535]  do_syscall_64+0x44/0xd0
[ 1652.663266][T27535]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1652.669152][T27535] RIP: 0033:0x7ffbc7e82e99
[ 1652.673555][T27535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1652.693147][T27535] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1652.701549][T27535] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1652.709511][T27535] RDX: 0000000000007400 RSI: 0000000020000000 RDI: 0000000000000003
[ 1652.717480][T27535] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1652.725455][T27535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1652.733410][T27535] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1652.741378][T27535]  </TASK>
22:52:22 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x7a00)

22:52:22 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, 0x0, 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

22:52:22 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x9a0b)

22:52:22 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1652.774939][T27826] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1652.800740][T27826] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1652.800740][T27826] !'
22:52:22 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, 0x0, 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1652.863120][T27826] CPU: 1 PID: 27826 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1652.871934][T27826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1652.882009][T27826] Call Trace:
[ 1652.885307][T27826]  <TASK>
[ 1652.888255][T27826]  dump_stack_lvl+0x201/0x2d8
[ 1652.892966][T27826]  ? show_regs_print_info+0x12/0x12
[ 1652.898191][T27826]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1652.903973][T27826]  sysfs_warn_dup+0x8c/0xa0
[ 1652.908501][T27826]  sysfs_do_create_link_sd+0xbe/0x100
[ 1652.913901][T27826]  device_add+0x9ea/0x16d0
[ 1652.918341][T27826]  ? wiphy_register+0x1b93/0x2a50
[ 1652.923406][T27826]  ? virtual_device_parent+0x50/0x50
[ 1652.928716][T27826]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1652.934731][T27826]  wiphy_register+0x1ba2/0x2a50
[ 1652.939617][T27826]  ? cfg80211_event_work+0x40/0x40
[ 1652.944762][T27826]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1652.950858][T27826]  ieee80211_register_hw+0x3063/0x3e10
[ 1652.956363][T27826]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1652.962200][T27826]  ? memset+0x1f/0x40
[ 1652.966196][T27826]  ? __hrtimer_init+0x173/0x250
[ 1652.971074][T27826]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1652.976862][T27826]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1652.981997][T27826]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1652.988352][T27826]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1652.994706][T27826]  genl_rcv_msg+0x1032/0x1480
[ 1652.999422][T27826]  ? genl_bind+0x360/0x360
[ 1653.003869][T27826]  ? __lock_acquire+0x1382/0x2b00
[ 1653.008944][T27826]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1653.014589][T27826]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1653.020958][T27826]  netlink_rcv_skb+0x200/0x470
[ 1653.025741][T27826]  ? genl_bind+0x360/0x360
[ 1653.030178][T27826]  ? netlink_ack+0xb70/0xb70
[ 1653.034787][T27826]  ? __down_read_common+0x1b0/0x450
[ 1653.040010][T27826]  ? up_read_non_owner+0x1c0/0x1c0
[ 1653.045143][T27826]  ? netlink_deliver_tap+0x130/0x880
[ 1653.050460][T27826]  genl_rcv+0x24/0x40
[ 1653.054452][T27826]  netlink_unicast+0x814/0x9f0
[ 1653.059209][T27826]  ? netlink_detachskb+0xa0/0xa0
[ 1653.064143][T27826]  ? __virt_addr_valid+0xb8/0x2d0
[ 1653.069175][T27826]  ? __phys_addr_symbol+0x2b/0x70
[ 1653.074185][T27826]  ? __check_object_size+0x2f3/0x3f0
[ 1653.079488][T27826]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1653.084597][T27826]  netlink_sendmsg+0xaea/0xe60
[ 1653.089367][T27826]  ? memcpy+0x3c/0x60
[ 1653.093353][T27826]  ? netlink_getsockopt+0xa60/0xa60
[ 1653.098558][T27826]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1653.103832][T27826]  ? security_socket_sendmsg+0x9d/0xb0
[ 1653.109285][T27826]  ? netlink_getsockopt+0xa60/0xa60
[ 1653.114496][T27826]  ____sys_sendmsg+0x5b9/0x910
[ 1653.119278][T27826]  ? __sys_sendmsg_sock+0x30/0x30
[ 1653.124301][T27826]  __sys_sendmsg+0x280/0x370
[ 1653.128890][T27826]  ? ____sys_sendmsg+0x910/0x910
[ 1653.133832][T27826]  ? __context_tracking_exit+0x7a/0xd0
[ 1653.139291][T27826]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1653.145271][T27826]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1653.151264][T27826]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1653.157233][T27826]  ? lockdep_hardirqs_on+0x95/0x140
[ 1653.162424][T27826]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1653.168396][T27826]  do_syscall_64+0x44/0xd0
[ 1653.172811][T27826]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1653.178778][T27826] RIP: 0033:0x7f3e3559fe99
[ 1653.183181][T27826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1653.202773][T27826] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1653.211202][T27826] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1653.219178][T27826] RDX: 000000006c000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1653.227138][T27826] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1653.235118][T27826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1653.243074][T27826] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1653.251041][T27826]  </TASK>
22:52:22 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6e0c0000)

22:52:22 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, 0x0, 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1653.286681][T27947] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 1653.309076][T27947] __nla_validate_parse: 1 callbacks suppressed
[ 1653.309093][T27947] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1653.352002][T27947] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1653.352002][T27947] !'
[ 1653.372242][T27947] CPU: 1 PID: 27947 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1653.381046][T27947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1653.391116][T27947] Call Trace:
[ 1653.394409][T27947]  <TASK>
[ 1653.397351][T27947]  dump_stack_lvl+0x201/0x2d8
[ 1653.402044][T27947]  ? show_regs_print_info+0x12/0x12
[ 1653.407258][T27947]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1653.413029][T27947]  sysfs_warn_dup+0x8c/0xa0
[ 1653.417547][T27947]  sysfs_do_create_link_sd+0xbe/0x100
[ 1653.423068][T27947]  device_add+0x9ea/0x16d0
[ 1653.427478][T27947]  ? wiphy_register+0x1b93/0x2a50
[ 1653.432499][T27947]  ? virtual_device_parent+0x50/0x50
[ 1653.437771][T27947]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1653.443747][T27947]  wiphy_register+0x1ba2/0x2a50
[ 1653.448683][T27947]  ? cfg80211_event_work+0x40/0x40
[ 1653.453787][T27947]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1653.459854][T27947]  ieee80211_register_hw+0x3063/0x3e10
[ 1653.465313][T27947]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1653.471126][T27947]  ? memset+0x1f/0x40
[ 1653.475098][T27947]  ? __hrtimer_init+0x173/0x250
[ 1653.479981][T27947]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1653.485725][T27947]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1653.490828][T27947]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1653.497147][T27947]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1653.503469][T27947]  genl_rcv_msg+0x1032/0x1480
[ 1653.508140][T27947]  ? genl_bind+0x360/0x360
[ 1653.512554][T27947]  ? __lock_acquire+0x1382/0x2b00
[ 1653.517580][T27947]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1653.523206][T27947]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1653.529546][T27947]  netlink_rcv_skb+0x200/0x470
[ 1653.534396][T27947]  ? genl_bind+0x360/0x360
[ 1653.538890][T27947]  ? netlink_ack+0xb70/0xb70
[ 1653.543471][T27947]  ? __down_read_common+0x1b0/0x450
[ 1653.548686][T27947]  ? up_read_non_owner+0x1c0/0x1c0
[ 1653.553778][T27947]  ? netlink_deliver_tap+0x130/0x880
[ 1653.559057][T27947]  genl_rcv+0x24/0x40
[ 1653.563026][T27947]  netlink_unicast+0x814/0x9f0
[ 1653.567894][T27947]  ? netlink_detachskb+0xa0/0xa0
[ 1653.572837][T27947]  ? __virt_addr_valid+0xb8/0x2d0
[ 1653.577848][T27947]  ? __phys_addr_symbol+0x2b/0x70
[ 1653.582856][T27947]  ? __check_object_size+0x2f3/0x3f0
[ 1653.588124][T27947]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1653.593222][T27947]  netlink_sendmsg+0xaea/0xe60
[ 1653.597977][T27947]  ? memcpy+0x3c/0x60
[ 1653.601950][T27947]  ? netlink_getsockopt+0xa60/0xa60
[ 1653.607136][T27947]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1653.612501][T27947]  ? security_socket_sendmsg+0x9d/0xb0
[ 1653.617949][T27947]  ? netlink_getsockopt+0xa60/0xa60
[ 1653.623220][T27947]  ____sys_sendmsg+0x5b9/0x910
[ 1653.627980][T27947]  ? __sys_sendmsg_sock+0x30/0x30
[ 1653.633007][T27947]  __sys_sendmsg+0x280/0x370
[ 1653.637587][T27947]  ? ____sys_sendmsg+0x910/0x910
[ 1653.642520][T27947]  ? __context_tracking_exit+0x7a/0xd0
[ 1653.647970][T27947]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1653.653932][T27947]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1653.659901][T27947]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1653.665864][T27947]  ? lockdep_hardirqs_on+0x95/0x140
[ 1653.671049][T27947]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1653.677025][T27947]  do_syscall_64+0x44/0xd0
[ 1653.681451][T27947]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1653.687339][T27947] RIP: 0033:0x7fd6114efe99
[ 1653.691738][T27947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1653.711331][T27947] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1653.719744][T27947] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1653.727701][T27947] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1653.735676][T27947] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1653.743631][T27947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:52:23 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)
accept4$x25(0xffffffffffffffff, 0x0, 0x0, 0x80800)

22:52:23 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xa404)

22:52:23 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)
accept4$x25(0xffffffffffffffff, 0x0, 0x0, 0x80800)

22:52:23 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, 0x0, 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)

[ 1653.751588][T27947] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1653.759641][T27947]  </TASK>
[ 1653.778751][T28064] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
22:52:23 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x68}, 0x0)

[ 1653.806151][T28064] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1653.867702][T28064] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1653.867702][T28064] !'
[ 1653.912193][T28064] CPU: 0 PID: 28064 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1653.921189][T28064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1653.931266][T28064] Call Trace:
[ 1653.934566][T28064]  <TASK>
[ 1653.937515][T28064]  dump_stack_lvl+0x201/0x2d8
[ 1653.942225][T28064]  ? show_regs_print_info+0x12/0x12
[ 1653.947446][T28064]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1653.953211][T28064]  sysfs_warn_dup+0x8c/0xa0
[ 1653.957736][T28064]  sysfs_do_create_link_sd+0xbe/0x100
[ 1653.963134][T28064]  device_add+0x9ea/0x16d0
[ 1653.967573][T28064]  ? wiphy_register+0x1b93/0x2a50
[ 1653.972634][T28064]  ? virtual_device_parent+0x50/0x50
[ 1653.977945][T28064]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1653.983960][T28064]  wiphy_register+0x1ba2/0x2a50
[ 1653.988848][T28064]  ? cfg80211_event_work+0x40/0x40
[ 1653.993995][T28064]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1654.000190][T28064]  ieee80211_register_hw+0x3063/0x3e10
[ 1654.005712][T28064]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1654.011554][T28064]  ? memset+0x1f/0x40
[ 1654.015557][T28064]  ? __hrtimer_init+0x173/0x250
[ 1654.020436][T28064]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1654.026184][T28064]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1654.031294][T28064]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1654.037621][T28064]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1654.043956][T28064]  genl_rcv_msg+0x1032/0x1480
[ 1654.048658][T28064]  ? genl_bind+0x360/0x360
[ 1654.053097][T28064]  ? __lock_acquire+0x1382/0x2b00
[ 1654.058175][T28064]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1654.063821][T28064]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1654.070178][T28064]  netlink_rcv_skb+0x200/0x470
[ 1654.074951][T28064]  ? genl_bind+0x360/0x360
[ 1654.079386][T28064]  ? netlink_ack+0xb70/0xb70
[ 1654.084004][T28064]  ? __down_read_common+0x1b0/0x450
[ 1654.089214][T28064]  ? up_read_non_owner+0x1c0/0x1c0
[ 1654.094334][T28064]  ? netlink_deliver_tap+0x130/0x880
[ 1654.099649][T28064]  genl_rcv+0x24/0x40
[ 1654.103636][T28064]  netlink_unicast+0x814/0x9f0
[ 1654.108407][T28064]  ? netlink_detachskb+0xa0/0xa0
[ 1654.113355][T28064]  ? __virt_addr_valid+0xb8/0x2d0
[ 1654.118409][T28064]  ? __phys_addr_symbol+0x2b/0x70
[ 1654.123451][T28064]  ? __check_object_size+0x2f3/0x3f0
[ 1654.128834][T28064]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1654.133943][T28064]  netlink_sendmsg+0xaea/0xe60
[ 1654.138703][T28064]  ? memcpy+0x3c/0x60
[ 1654.142797][T28064]  ? netlink_getsockopt+0xa60/0xa60
[ 1654.148010][T28064]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1654.153301][T28064]  ? security_socket_sendmsg+0x9d/0xb0
[ 1654.158778][T28064]  ? netlink_getsockopt+0xa60/0xa60
[ 1654.163991][T28064]  ____sys_sendmsg+0x5b9/0x910
[ 1654.168790][T28064]  ? __sys_sendmsg_sock+0x30/0x30
[ 1654.173861][T28064]  __sys_sendmsg+0x280/0x370
[ 1654.178488][T28064]  ? ____sys_sendmsg+0x910/0x910
[ 1654.183449][T28064]  ? __context_tracking_exit+0x7a/0xd0
[ 1654.188920][T28064]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1654.194910][T28064]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1654.201079][T28064]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1654.207075][T28064]  ? lockdep_hardirqs_on+0x95/0x140
[ 1654.212272][T28064]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1654.218271][T28064]  do_syscall_64+0x44/0xd0
[ 1654.222680][T28064]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1654.228563][T28064] RIP: 0033:0x7ffbc7e82e99
[ 1654.232987][T28064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1654.252591][T28064] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1654.261030][T28064] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1654.270236][T28064] RDX: 0000000000007a00 RSI: 0000000020000000 RDI: 0000000000000003
[ 1654.278214][T28064] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1654.286263][T28064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1654.294231][T28064] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1654.302314][T28064]  </TASK>
22:52:23 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x9a0b)

22:52:23 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)
accept4$x25(0xffffffffffffffff, 0x0, 0x0, 0x80800)

22:52:23 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)
accept4$x25(0xffffffffffffffff, 0x0, 0x0, 0x80800)

[ 1654.338512][T28170] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1654.359425][T28170] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1654.383004][T28170] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1654.383004][T28170] !'
[ 1654.405812][T28170] CPU: 0 PID: 28170 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1654.414615][T28170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1654.424674][T28170] Call Trace:
[ 1654.427945][T28170]  <TASK>
[ 1654.430866][T28170]  dump_stack_lvl+0x201/0x2d8
[ 1654.435546][T28170]  ? show_regs_print_info+0x12/0x12
[ 1654.440738][T28170]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1654.446466][T28170]  sysfs_warn_dup+0x8c/0xa0
[ 1654.450967][T28170]  sysfs_do_create_link_sd+0xbe/0x100
[ 1654.456334][T28170]  device_add+0x9ea/0x16d0
[ 1654.460741][T28170]  ? wiphy_register+0x1b93/0x2a50
[ 1654.465768][T28170]  ? virtual_device_parent+0x50/0x50
[ 1654.471045][T28170]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1654.477025][T28170]  wiphy_register+0x1ba2/0x2a50
[ 1654.481879][T28170]  ? cfg80211_event_work+0x40/0x40
[ 1654.486988][T28170]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1654.493053][T28170]  ieee80211_register_hw+0x3063/0x3e10
[ 1654.498521][T28170]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1654.504325][T28170]  ? memset+0x1f/0x40
[ 1654.508295][T28170]  ? __hrtimer_init+0x173/0x250
[ 1654.513143][T28170]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1654.518881][T28170]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1654.523987][T28170]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1654.530314][T28170]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1654.536640][T28170]  genl_rcv_msg+0x1032/0x1480
[ 1654.541339][T28170]  ? genl_bind+0x360/0x360
[ 1654.545771][T28170]  ? __lock_acquire+0x1382/0x2b00
[ 1654.550817][T28170]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1654.556453][T28170]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1654.562807][T28170]  netlink_rcv_skb+0x200/0x470
[ 1654.567575][T28170]  ? genl_bind+0x360/0x360
[ 1654.571991][T28170]  ? netlink_ack+0xb70/0xb70
[ 1654.576569][T28170]  ? __down_read_common+0x1b0/0x450
[ 1654.581758][T28170]  ? up_read_non_owner+0x1c0/0x1c0
[ 1654.586856][T28170]  ? netlink_deliver_tap+0x130/0x880
[ 1654.592144][T28170]  genl_rcv+0x24/0x40
[ 1654.596116][T28170]  netlink_unicast+0x814/0x9f0
[ 1654.600889][T28170]  ? netlink_detachskb+0xa0/0xa0
[ 1654.605813][T28170]  ? __virt_addr_valid+0xb8/0x2d0
[ 1654.610828][T28170]  ? __phys_addr_symbol+0x2b/0x70
[ 1654.615838][T28170]  ? __check_object_size+0x2f3/0x3f0
[ 1654.621112][T28170]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1654.626223][T28170]  netlink_sendmsg+0xaea/0xe60
[ 1654.630977][T28170]  ? memcpy+0x3c/0x60
[ 1654.634957][T28170]  ? netlink_getsockopt+0xa60/0xa60
[ 1654.640153][T28170]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1654.645424][T28170]  ? security_socket_sendmsg+0x9d/0xb0
[ 1654.650872][T28170]  ? netlink_getsockopt+0xa60/0xa60
[ 1654.656061][T28170]  ____sys_sendmsg+0x5b9/0x910
[ 1654.660828][T28170]  ? __sys_sendmsg_sock+0x30/0x30
[ 1654.665865][T28170]  __sys_sendmsg+0x280/0x370
[ 1654.670448][T28170]  ? ____sys_sendmsg+0x910/0x910
[ 1654.675391][T28170]  ? __context_tracking_exit+0x7a/0xd0
[ 1654.680849][T28170]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1654.686822][T28170]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1654.692799][T28170]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1654.698765][T28170]  ? lockdep_hardirqs_on+0x95/0x140
[ 1654.703960][T28170]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1654.709932][T28170]  do_syscall_64+0x44/0xd0
[ 1654.714343][T28170]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1654.720226][T28170] RIP: 0033:0x7f3e3559fe99
[ 1654.724634][T28170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1654.744229][T28170] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1654.752635][T28170] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1654.760598][T28170] RDX: 000000006e0c0000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1654.768565][T28170] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1654.776612][T28170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1654.784569][T28170] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1654.792545][T28170]  </TASK>
[ 1654.805632][T28175] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
22:52:24 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x74000000)

[ 1654.831945][T28175] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1654.866557][T28175] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1654.866557][T28175] !'
[ 1654.889023][T28175] CPU: 1 PID: 28175 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1654.897837][T28175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1654.907911][T28175] Call Trace:
[ 1654.911206][T28175]  <TASK>
[ 1654.914152][T28175]  dump_stack_lvl+0x201/0x2d8
[ 1654.918857][T28175]  ? show_regs_print_info+0x12/0x12
[ 1654.924259][T28175]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1654.930035][T28175]  sysfs_warn_dup+0x8c/0xa0
[ 1654.934563][T28175]  sysfs_do_create_link_sd+0xbe/0x100
[ 1654.939972][T28175]  device_add+0x9ea/0x16d0
[ 1654.944403][T28175]  ? wiphy_register+0x1b93/0x2a50
[ 1654.949464][T28175]  ? virtual_device_parent+0x50/0x50
[ 1654.954773][T28175]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1654.960790][T28175]  wiphy_register+0x1ba2/0x2a50
[ 1654.965677][T28175]  ? cfg80211_event_work+0x40/0x40
[ 1654.970821][T28175]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1654.976916][T28175]  ieee80211_register_hw+0x3063/0x3e10
[ 1654.982499][T28175]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
22:52:24 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe703)

22:52:24 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)
accept4$x25(0xffffffffffffffff, 0x0, 0x0, 0x80800)

22:52:24 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xffffffef)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002780)=""/211, 0xd3}}], 0x2, 0x0, 0x0)
accept4$x25(0xffffffffffffffff, 0x0, 0x0, 0x80800)

[ 1654.988332][T28175]  ? memset+0x1f/0x40
[ 1654.992337][T28175]  ? __hrtimer_init+0x173/0x250
[ 1654.997218][T28175]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1655.002993][T28175]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1655.008224][T28175]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1655.014600][T28175]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1655.020961][T28175]  genl_rcv_msg+0x1032/0x1480
[ 1655.025677][T28175]  ? genl_bind+0x360/0x360
[ 1655.030129][T28175]  ? __lock_acquire+0x1382/0x2b00
[ 1655.035206][T28175]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1655.040862][T28175]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1655.047233][T28175]  netlink_rcv_skb+0x200/0x470
[ 1655.052031][T28175]  ? genl_bind+0x360/0x360
[ 1655.056470][T28175]  ? netlink_ack+0xb70/0xb70
[ 1655.061079][T28175]  ? __down_read_common+0x1b0/0x450
[ 1655.066302][T28175]  ? up_read_non_owner+0x1c0/0x1c0
[ 1655.071423][T28175]  ? netlink_deliver_tap+0x130/0x880
[ 1655.076742][T28175]  genl_rcv+0x24/0x40
[ 1655.080743][T28175]  netlink_unicast+0x814/0x9f0
22:52:24 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1bcb4)

[ 1655.085540][T28175]  ? netlink_detachskb+0xa0/0xa0
[ 1655.090503][T28175]  ? __virt_addr_valid+0xb8/0x2d0
[ 1655.095544][T28175]  ? __phys_addr_symbol+0x2b/0x70
[ 1655.100621][T28175]  ? __check_object_size+0x2f3/0x3f0
[ 1655.106104][T28175]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1655.111244][T28175]  netlink_sendmsg+0xaea/0xe60
[ 1655.116030][T28175]  ? memcpy+0x3c/0x60
[ 1655.120043][T28175]  ? netlink_getsockopt+0xa60/0xa60
[ 1655.125270][T28175]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1655.130573][T28175]  ? security_socket_sendmsg+0x9d/0xb0
[ 1655.136141][T28175]  ? netlink_getsockopt+0xa60/0xa60
[ 1655.141362][T28175]  ____sys_sendmsg+0x5b9/0x910
[ 1655.146159][T28175]  ? __sys_sendmsg_sock+0x30/0x30
[ 1655.151230][T28175]  __sys_sendmsg+0x280/0x370
[ 1655.155846][T28175]  ? ____sys_sendmsg+0x910/0x910
[ 1655.160813][T28175]  ? __context_tracking_exit+0x7a/0xd0
[ 1655.166310][T28175]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1655.172313][T28175]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1655.178326][T28175]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1655.184327][T28175]  ? lockdep_hardirqs_on+0x95/0x140
[ 1655.189543][T28175]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1655.195544][T28175]  do_syscall_64+0x44/0xd0
[ 1655.200011][T28175]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1655.205917][T28175] RIP: 0033:0x7fda9f984e99
[ 1655.210345][T28175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1655.230497][T28175] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1655.238939][T28175] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1655.246932][T28175] RDX: 000000000000a404 RSI: 0000000020000000 RDI: 0000000000000003
[ 1655.254927][T28175] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1655.262917][T28175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1655.270909][T28175] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1655.278922][T28175]  </TASK>
22:52:24 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe703)

22:52:24 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x28}, 0x0)

22:52:24 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x11}, 0x0)

[ 1655.291094][T28201] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1655.327896][T28201] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1655.370312][T28201] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1655.370312][T28201] !'
[ 1655.393640][T28201] CPU: 0 PID: 28201 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1655.402453][T28201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1655.412525][T28201] Call Trace:
[ 1655.415823][T28201]  <TASK>
[ 1655.418789][T28201]  dump_stack_lvl+0x201/0x2d8
[ 1655.423489][T28201]  ? show_regs_print_info+0x12/0x12
[ 1655.428694][T28201]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1655.434424][T28201]  sysfs_warn_dup+0x8c/0xa0
[ 1655.438932][T28201]  sysfs_do_create_link_sd+0xbe/0x100
[ 1655.444319][T28201]  device_add+0x9ea/0x16d0
[ 1655.448726][T28201]  ? wiphy_register+0x1b93/0x2a50
[ 1655.453760][T28201]  ? virtual_device_parent+0x50/0x50
[ 1655.459037][T28201]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1655.465020][T28201]  wiphy_register+0x1ba2/0x2a50
[ 1655.469874][T28201]  ? cfg80211_event_work+0x40/0x40
[ 1655.474988][T28201]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1655.481051][T28201]  ieee80211_register_hw+0x3063/0x3e10
[ 1655.486531][T28201]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1655.492349][T28201]  ? memset+0x1f/0x40
[ 1655.496326][T28201]  ? __hrtimer_init+0x173/0x250
[ 1655.501177][T28201]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1655.506913][T28201]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1655.512022][T28201]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1655.518348][T28201]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1655.524679][T28201]  genl_rcv_msg+0x1032/0x1480
[ 1655.529353][T28201]  ? genl_bind+0x360/0x360
[ 1655.533803][T28201]  ? __lock_acquire+0x1382/0x2b00
[ 1655.538928][T28201]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1655.544552][T28201]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1655.550886][T28201]  netlink_rcv_skb+0x200/0x470
[ 1655.555912][T28201]  ? genl_bind+0x360/0x360
[ 1655.560322][T28201]  ? netlink_ack+0xb70/0xb70
[ 1655.564901][T28201]  ? __down_read_common+0x1b0/0x450
[ 1655.570183][T28201]  ? up_read_non_owner+0x1c0/0x1c0
[ 1655.575281][T28201]  ? netlink_deliver_tap+0x130/0x880
[ 1655.580570][T28201]  genl_rcv+0x24/0x40
[ 1655.584549][T28201]  netlink_unicast+0x814/0x9f0
[ 1655.589316][T28201]  ? netlink_detachskb+0xa0/0xa0
[ 1655.594258][T28201]  ? __virt_addr_valid+0xb8/0x2d0
[ 1655.599275][T28201]  ? __phys_addr_symbol+0x2b/0x70
[ 1655.604288][T28201]  ? __check_object_size+0x2f3/0x3f0
[ 1655.609568][T28201]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1655.614675][T28201]  netlink_sendmsg+0xaea/0xe60
[ 1655.619442][T28201]  ? memcpy+0x3c/0x60
[ 1655.623422][T28201]  ? netlink_getsockopt+0xa60/0xa60
[ 1655.628623][T28201]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1655.633896][T28201]  ? security_socket_sendmsg+0x9d/0xb0
[ 1655.639345][T28201]  ? netlink_getsockopt+0xa60/0xa60
[ 1655.644728][T28201]  ____sys_sendmsg+0x5b9/0x910
[ 1655.649494][T28201]  ? __sys_sendmsg_sock+0x30/0x30
[ 1655.654529][T28201]  __sys_sendmsg+0x280/0x370
[ 1655.659115][T28201]  ? ____sys_sendmsg+0x910/0x910
[ 1655.664057][T28201]  ? __context_tracking_exit+0x7a/0xd0
[ 1655.669517][T28201]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1655.675491][T28201]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1655.681495][T28201]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1655.687496][T28201]  ? lockdep_hardirqs_on+0x95/0x140
[ 1655.692701][T28201]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1655.698702][T28201]  do_syscall_64+0x44/0xd0
[ 1655.703147][T28201]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1655.709052][T28201] RIP: 0033:0x7fbee7a71e99
[ 1655.713472][T28201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1655.733075][T28201] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1655.743750][T28201] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1655.751719][T28201] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1655.759680][T28201] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1655.767645][T28201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1655.775608][T28201] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1655.783588][T28201]  </TASK>
[ 1655.823606][T28561] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1655.841884][T28561] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1655.857690][T28561] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1655.857690][T28561] !'
[ 1655.867757][T28561] CPU: 0 PID: 28561 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1655.876540][T28561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1655.886611][T28561] Call Trace:
[ 1655.889910][T28561]  <TASK>
[ 1655.892855][T28561]  dump_stack_lvl+0x201/0x2d8
[ 1655.897685][T28561]  ? show_regs_print_info+0x12/0x12
[ 1655.902999][T28561]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1655.908750][T28561]  sysfs_warn_dup+0x8c/0xa0
[ 1655.913252][T28561]  sysfs_do_create_link_sd+0xbe/0x100
[ 1655.918820][T28561]  device_add+0x9ea/0x16d0
[ 1655.923240][T28561]  ? wiphy_register+0x1b93/0x2a50
[ 1655.928292][T28561]  ? virtual_device_parent+0x50/0x50
[ 1655.933578][T28561]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1655.939579][T28561]  wiphy_register+0x1ba2/0x2a50
[ 1655.944439][T28561]  ? cfg80211_event_work+0x40/0x40
[ 1655.949557][T28561]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1655.955625][T28561]  ieee80211_register_hw+0x3063/0x3e10
[ 1655.961098][T28561]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1655.966913][T28561]  ? memset+0x1f/0x40
[ 1655.970896][T28561]  ? __hrtimer_init+0x173/0x250
[ 1655.975745][T28561]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1655.981505][T28561]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1655.986631][T28561]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1655.992963][T28561]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1655.999312][T28561]  genl_rcv_msg+0x1032/0x1480
[ 1656.003997][T28561]  ? genl_bind+0x360/0x360
[ 1656.008420][T28561]  ? __lock_acquire+0x1382/0x2b00
[ 1656.013543][T28561]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1656.019252][T28561]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1656.025594][T28561]  netlink_rcv_skb+0x200/0x470
[ 1656.030355][T28561]  ? genl_bind+0x360/0x360
[ 1656.034767][T28561]  ? netlink_ack+0xb70/0xb70
[ 1656.039346][T28561]  ? __down_read_common+0x1b0/0x450
[ 1656.044540][T28561]  ? up_read_non_owner+0x1c0/0x1c0
[ 1656.049651][T28561]  ? netlink_deliver_tap+0x130/0x880
[ 1656.054937][T28561]  genl_rcv+0x24/0x40
[ 1656.059042][T28561]  netlink_unicast+0x814/0x9f0
[ 1656.063807][T28561]  ? netlink_detachskb+0xa0/0xa0
[ 1656.068733][T28561]  ? __virt_addr_valid+0xb8/0x2d0
[ 1656.073850][T28561]  ? __phys_addr_symbol+0x2b/0x70
[ 1656.078873][T28561]  ? __check_object_size+0x2f3/0x3f0
[ 1656.084154][T28561]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1656.089262][T28561]  netlink_sendmsg+0xaea/0xe60
[ 1656.094019][T28561]  ? memcpy+0x3c/0x60
[ 1656.098021][T28561]  ? netlink_getsockopt+0xa60/0xa60
[ 1656.103217][T28561]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1656.108488][T28561]  ? security_socket_sendmsg+0x9d/0xb0
[ 1656.113939][T28561]  ? netlink_getsockopt+0xa60/0xa60
[ 1656.119136][T28561]  ____sys_sendmsg+0x5b9/0x910
[ 1656.123901][T28561]  ? __sys_sendmsg_sock+0x30/0x30
[ 1656.128934][T28561]  __sys_sendmsg+0x280/0x370
[ 1656.133519][T28561]  ? ____sys_sendmsg+0x910/0x910
[ 1656.138459][T28561]  ? __context_tracking_exit+0x7a/0xd0
[ 1656.143921][T28561]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1656.149896][T28561]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1656.155977][T28561]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1656.162147][T28561]  ? lockdep_hardirqs_on+0x95/0x140
[ 1656.167343][T28561]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1656.173432][T28561]  do_syscall_64+0x44/0xd0
[ 1656.177865][T28561]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1656.183772][T28561] RIP: 0033:0x7f3e3559fe99
[ 1656.188186][T28561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1656.207782][T28561] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1656.216192][T28561] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
22:52:25 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x68}, 0x0)

22:52:25 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x20000)

[ 1656.224269][T28561] RDX: 0000000074000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1656.232323][T28561] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1656.240284][T28561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1656.248332][T28561] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1656.256313][T28561]  </TASK>
22:52:25 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x7a000000)

[ 1656.320754][T28652] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1656.340731][T28652] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1656.360871][T28652] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1656.360871][T28652] !'
[ 1656.394868][T28652] CPU: 0 PID: 28652 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1656.403685][T28652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1656.413763][T28652] Call Trace:
[ 1656.417064][T28652]  <TASK>
[ 1656.420003][T28652]  dump_stack_lvl+0x201/0x2d8
[ 1656.424685][T28652]  ? show_regs_print_info+0x12/0x12
[ 1656.429876][T28652]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1656.435601][T28652]  sysfs_warn_dup+0x8c/0xa0
[ 1656.440098][T28652]  sysfs_do_create_link_sd+0xbe/0x100
[ 1656.445466][T28652]  device_add+0x9ea/0x16d0
[ 1656.449881][T28652]  ? wiphy_register+0x1b93/0x2a50
[ 1656.455064][T28652]  ? virtual_device_parent+0x50/0x50
[ 1656.460359][T28652]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1656.466346][T28652]  wiphy_register+0x1ba2/0x2a50
[ 1656.471216][T28652]  ? cfg80211_event_work+0x40/0x40
[ 1656.476337][T28652]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1656.482428][T28652]  ieee80211_register_hw+0x3063/0x3e10
[ 1656.487920][T28652]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1656.493756][T28652]  ? memset+0x1f/0x40
[ 1656.497751][T28652]  ? __hrtimer_init+0x173/0x250
[ 1656.502621][T28652]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1656.508347][T28652]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1656.513462][T28652]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1656.519819][T28652]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1656.526159][T28652]  genl_rcv_msg+0x1032/0x1480
[ 1656.530844][T28652]  ? genl_bind+0x360/0x360
[ 1656.535256][T28652]  ? __lock_acquire+0x1382/0x2b00
[ 1656.540304][T28652]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1656.545930][T28652]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1656.552277][T28652]  netlink_rcv_skb+0x200/0x470
[ 1656.557066][T28652]  ? genl_bind+0x360/0x360
[ 1656.561494][T28652]  ? netlink_ack+0xb70/0xb70
[ 1656.566089][T28652]  ? __down_read_common+0x1b0/0x450
[ 1656.571303][T28652]  ? up_read_non_owner+0x1c0/0x1c0
[ 1656.576425][T28652]  ? netlink_deliver_tap+0x130/0x880
[ 1656.581723][T28652]  genl_rcv+0x24/0x40
[ 1656.585705][T28652]  netlink_unicast+0x814/0x9f0
[ 1656.590493][T28652]  ? netlink_detachskb+0xa0/0xa0
[ 1656.595461][T28652]  ? __virt_addr_valid+0xb8/0x2d0
[ 1656.600506][T28652]  ? __phys_addr_symbol+0x2b/0x70
[ 1656.605525][T28652]  ? __check_object_size+0x2f3/0x3f0
[ 1656.610824][T28652]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1656.615948][T28652]  netlink_sendmsg+0xaea/0xe60
[ 1656.620780][T28652]  ? memcpy+0x3c/0x60
[ 1656.624776][T28652]  ? netlink_getsockopt+0xa60/0xa60
[ 1656.629978][T28652]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1656.637170][T28652]  ? security_socket_sendmsg+0x9d/0xb0
[ 1656.642641][T28652]  ? netlink_getsockopt+0xa60/0xa60
[ 1656.647845][T28652]  ____sys_sendmsg+0x5b9/0x910
[ 1656.652604][T28652]  ? __sys_sendmsg_sock+0x30/0x30
[ 1656.657641][T28652]  __sys_sendmsg+0x280/0x370
[ 1656.662234][T28652]  ? ____sys_sendmsg+0x910/0x910
[ 1656.667180][T28652]  ? __context_tracking_exit+0x7a/0xd0
[ 1656.672663][T28652]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1656.678669][T28652]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1656.684749][T28652]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1656.690752][T28652]  ? lockdep_hardirqs_on+0x95/0x140
[ 1656.695970][T28652]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1656.701945][T28652]  do_syscall_64+0x44/0xd0
[ 1656.706358][T28652]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1656.712243][T28652] RIP: 0033:0x7ffbc7e82e99
[ 1656.716655][T28652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1656.736249][T28652] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1656.744662][T28652] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1656.752632][T28652] RDX: 000000000001bcb4 RSI: 0000000020000000 RDI: 0000000000000003
[ 1656.760681][T28652] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1656.768665][T28652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1656.776630][T28652] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1656.784639][T28652]  </TASK>
22:52:26 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x20000)

[ 1656.813823][T28799] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
[ 1656.829565][T28799] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1656.851863][T28799] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1656.851863][T28799] !'
[ 1656.872448][T28799] CPU: 0 PID: 28799 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1656.881868][T28799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1656.891938][T28799] Call Trace:
[ 1656.895232][T28799]  <TASK>
[ 1656.898168][T28799]  dump_stack_lvl+0x201/0x2d8
[ 1656.902864][T28799]  ? show_regs_print_info+0x12/0x12
[ 1656.908063][T28799]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1656.913789][T28799]  sysfs_warn_dup+0x8c/0xa0
[ 1656.918288][T28799]  sysfs_do_create_link_sd+0xbe/0x100
[ 1656.923677][T28799]  device_add+0x9ea/0x16d0
[ 1656.928088][T28799]  ? wiphy_register+0x1b93/0x2a50
[ 1656.933130][T28799]  ? virtual_device_parent+0x50/0x50
[ 1656.938411][T28799]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1656.944395][T28799]  wiphy_register+0x1ba2/0x2a50
[ 1656.949249][T28799]  ? cfg80211_event_work+0x40/0x40
[ 1656.954358][T28799]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1656.960424][T28799]  ieee80211_register_hw+0x3063/0x3e10
[ 1656.965895][T28799]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1656.971700][T28799]  ? memset+0x1f/0x40
[ 1656.975670][T28799]  ? __hrtimer_init+0x173/0x250
[ 1656.980525][T28799]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1656.986260][T28799]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1656.991372][T28799]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1656.998131][T28799]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1657.004460][T28799]  genl_rcv_msg+0x1032/0x1480
[ 1657.009138][T28799]  ? genl_bind+0x360/0x360
[ 1657.013551][T28799]  ? __lock_acquire+0x1382/0x2b00
[ 1657.018587][T28799]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1657.024209][T28799]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1657.030550][T28799]  netlink_rcv_skb+0x200/0x470
[ 1657.035316][T28799]  ? genl_bind+0x360/0x360
[ 1657.039728][T28799]  ? netlink_ack+0xb70/0xb70
[ 1657.044305][T28799]  ? __down_read_common+0x1b0/0x450
[ 1657.049581][T28799]  ? up_read_non_owner+0x1c0/0x1c0
[ 1657.054697][T28799]  ? netlink_deliver_tap+0x130/0x880
[ 1657.059981][T28799]  genl_rcv+0x24/0x40
[ 1657.063951][T28799]  netlink_unicast+0x814/0x9f0
[ 1657.068714][T28799]  ? netlink_detachskb+0xa0/0xa0
[ 1657.073638][T28799]  ? __virt_addr_valid+0xb8/0x2d0
[ 1657.078651][T28799]  ? __phys_addr_symbol+0x2b/0x70
[ 1657.083661][T28799]  ? __check_object_size+0x2f3/0x3f0
[ 1657.088941][T28799]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1657.094043][T28799]  netlink_sendmsg+0xaea/0xe60
[ 1657.098800][T28799]  ? memcpy+0x3c/0x60
[ 1657.102785][T28799]  ? netlink_getsockopt+0xa60/0xa60
[ 1657.107982][T28799]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1657.113265][T28799]  ? security_socket_sendmsg+0x9d/0xb0
[ 1657.118740][T28799]  ? netlink_getsockopt+0xa60/0xa60
[ 1657.123946][T28799]  ____sys_sendmsg+0x5b9/0x910
[ 1657.128721][T28799]  ? __sys_sendmsg_sock+0x30/0x30
[ 1657.133763][T28799]  __sys_sendmsg+0x280/0x370
[ 1657.138445][T28799]  ? ____sys_sendmsg+0x910/0x910
[ 1657.143390][T28799]  ? __context_tracking_exit+0x7a/0xd0
[ 1657.148943][T28799]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1657.154912][T28799]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1657.160891][T28799]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1657.166861][T28799]  ? lockdep_hardirqs_on+0x95/0x140
[ 1657.172049][T28799]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1657.178018][T28799]  do_syscall_64+0x44/0xd0
[ 1657.182437][T28799]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1657.188320][T28799] RIP: 0033:0x7f5163f51e99
[ 1657.192725][T28799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1657.212319][T28799] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1657.220720][T28799] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1657.228677][T28799] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1657.236637][T28799] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1657.244597][T28799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1657.252557][T28799] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1657.260535][T28799]  </TASK>
22:52:26 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x28}, 0x0)

[ 1657.300062][T28800] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 1657.308513][T28800] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1657.329684][T28800] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1657.329684][T28800] !'
[ 1657.369395][T28800] CPU: 1 PID: 28800 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1657.378205][T28800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1657.388342][T28800] Call Trace:
[ 1657.391616][T28800]  <TASK>
[ 1657.394541][T28800]  dump_stack_lvl+0x201/0x2d8
[ 1657.399215][T28800]  ? show_regs_print_info+0x12/0x12
[ 1657.404412][T28800]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1657.410169][T28800]  sysfs_warn_dup+0x8c/0xa0
[ 1657.414689][T28800]  sysfs_do_create_link_sd+0xbe/0x100
[ 1657.420071][T28800]  device_add+0x9ea/0x16d0
[ 1657.424479][T28800]  ? wiphy_register+0x1b93/0x2a50
[ 1657.429531][T28800]  ? virtual_device_parent+0x50/0x50
[ 1657.434823][T28800]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1657.440809][T28800]  wiphy_register+0x1ba2/0x2a50
[ 1657.445688][T28800]  ? cfg80211_event_work+0x40/0x40
[ 1657.450900][T28800]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1657.456981][T28800]  ieee80211_register_hw+0x3063/0x3e10
[ 1657.462456][T28800]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1657.468262][T28800]  ? memset+0x1f/0x40
[ 1657.472232][T28800]  ? __hrtimer_init+0x173/0x250
[ 1657.477082][T28800]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1657.482844][T28800]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1657.487970][T28800]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1657.494308][T28800]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1657.500654][T28800]  genl_rcv_msg+0x1032/0x1480
[ 1657.505332][T28800]  ? genl_bind+0x360/0x360
[ 1657.509762][T28800]  ? __lock_acquire+0x1382/0x2b00
[ 1657.514789][T28800]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1657.520409][T28800]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1657.526739][T28800]  netlink_rcv_skb+0x200/0x470
[ 1657.531491][T28800]  ? genl_bind+0x360/0x360
[ 1657.535895][T28800]  ? netlink_ack+0xb70/0xb70
[ 1657.540469][T28800]  ? __down_read_common+0x1b0/0x450
[ 1657.545662][T28800]  ? up_read_non_owner+0x1c0/0x1c0
[ 1657.550777][T28800]  ? netlink_deliver_tap+0x130/0x880
[ 1657.556058][T28800]  genl_rcv+0x24/0x40
[ 1657.560034][T28800]  netlink_unicast+0x814/0x9f0
[ 1657.564825][T28800]  ? netlink_detachskb+0xa0/0xa0
[ 1657.569762][T28800]  ? __virt_addr_valid+0xb8/0x2d0
[ 1657.574781][T28800]  ? __phys_addr_symbol+0x2b/0x70
[ 1657.579809][T28800]  ? __check_object_size+0x2f3/0x3f0
[ 1657.585088][T28800]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1657.590207][T28800]  netlink_sendmsg+0xaea/0xe60
[ 1657.594975][T28800]  ? memcpy+0x3c/0x60
[ 1657.598967][T28800]  ? netlink_getsockopt+0xa60/0xa60
[ 1657.604167][T28800]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1657.609458][T28800]  ? security_socket_sendmsg+0x9d/0xb0
[ 1657.614922][T28800]  ? netlink_getsockopt+0xa60/0xa60
[ 1657.620114][T28800]  ____sys_sendmsg+0x5b9/0x910
[ 1657.624899][T28800]  ? __sys_sendmsg_sock+0x30/0x30
[ 1657.629966][T28800]  __sys_sendmsg+0x280/0x370
[ 1657.634571][T28800]  ? ____sys_sendmsg+0x910/0x910
[ 1657.639511][T28800]  ? __context_tracking_exit+0x7a/0xd0
[ 1657.644978][T28800]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1657.650966][T28800]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1657.656958][T28800]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1657.662953][T28800]  ? lockdep_hardirqs_on+0x95/0x140
[ 1657.668143][T28800]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1657.674111][T28800]  do_syscall_64+0x44/0xd0
[ 1657.678525][T28800]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1657.684410][T28800] RIP: 0033:0x7fd6114efe99
[ 1657.688819][T28800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1657.708414][T28800] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1657.716825][T28800] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1657.724807][T28800] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1657.732768][T28800] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1657.740732][T28800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1657.748694][T28800] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1657.756670][T28800]  </TASK>
22:52:27 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x11}, 0x0)

[ 1657.784817][T28804] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1657.799108][T28804] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1657.812616][T28804] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1657.812616][T28804] !'
[ 1657.823271][T28804] CPU: 1 PID: 28804 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1657.832060][T28804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1657.842132][T28804] Call Trace:
[ 1657.845451][T28804]  <TASK>
[ 1657.848397][T28804]  dump_stack_lvl+0x201/0x2d8
[ 1657.853099][T28804]  ? show_regs_print_info+0x12/0x12
[ 1657.858303][T28804]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1657.864056][T28804]  sysfs_warn_dup+0x8c/0xa0
[ 1657.868583][T28804]  sysfs_do_create_link_sd+0xbe/0x100
[ 1657.873976][T28804]  device_add+0x9ea/0x16d0
[ 1657.878383][T28804]  ? wiphy_register+0x1b93/0x2a50
[ 1657.883417][T28804]  ? virtual_device_parent+0x50/0x50
[ 1657.888686][T28804]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1657.894659][T28804]  wiphy_register+0x1ba2/0x2a50
[ 1657.899513][T28804]  ? cfg80211_event_work+0x40/0x40
[ 1657.904635][T28804]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1657.910692][T28804]  ieee80211_register_hw+0x3063/0x3e10
[ 1657.916240][T28804]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1657.922049][T28804]  ? memset+0x1f/0x40
[ 1657.926052][T28804]  ? __hrtimer_init+0x173/0x250
[ 1657.930898][T28804]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1657.936630][T28804]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1657.941744][T28804]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1657.948077][T28804]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1657.954497][T28804]  genl_rcv_msg+0x1032/0x1480
[ 1657.959179][T28804]  ? genl_bind+0x360/0x360
[ 1657.963584][T28804]  ? __lock_acquire+0x1382/0x2b00
[ 1657.968611][T28804]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1657.974231][T28804]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1657.980557][T28804]  netlink_rcv_skb+0x200/0x470
[ 1657.985313][T28804]  ? genl_bind+0x360/0x360
[ 1657.989720][T28804]  ? netlink_ack+0xb70/0xb70
[ 1657.994294][T28804]  ? __down_read_common+0x1b0/0x450
[ 1657.999477][T28804]  ? up_read_non_owner+0x1c0/0x1c0
[ 1658.004572][T28804]  ? netlink_deliver_tap+0x130/0x880
[ 1658.009851][T28804]  genl_rcv+0x24/0x40
[ 1658.013837][T28804]  netlink_unicast+0x814/0x9f0
[ 1658.018598][T28804]  ? netlink_detachskb+0xa0/0xa0
[ 1658.023522][T28804]  ? __virt_addr_valid+0xb8/0x2d0
[ 1658.028548][T28804]  ? __phys_addr_symbol+0x2b/0x70
[ 1658.033559][T28804]  ? __check_object_size+0x2f3/0x3f0
[ 1658.038833][T28804]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1658.043941][T28804]  netlink_sendmsg+0xaea/0xe60
[ 1658.048697][T28804]  ? memcpy+0x3c/0x60
[ 1658.052687][T28804]  ? netlink_getsockopt+0xa60/0xa60
[ 1658.057877][T28804]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1658.063147][T28804]  ? security_socket_sendmsg+0x9d/0xb0
[ 1658.068595][T28804]  ? netlink_getsockopt+0xa60/0xa60
[ 1658.073807][T28804]  ____sys_sendmsg+0x5b9/0x910
[ 1658.078568][T28804]  ? __sys_sendmsg_sock+0x30/0x30
[ 1658.083586][T28804]  __sys_sendmsg+0x280/0x370
[ 1658.088194][T28804]  ? ____sys_sendmsg+0x910/0x910
[ 1658.093147][T28804]  ? __context_tracking_exit+0x7a/0xd0
[ 1658.098599][T28804]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1658.104567][T28804]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1658.110546][T28804]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1658.116533][T28804]  ? lockdep_hardirqs_on+0x95/0x140
[ 1658.121724][T28804]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1658.127704][T28804]  do_syscall_64+0x44/0xd0
[ 1658.132120][T28804]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1658.138110][T28804] RIP: 0033:0x7fda9f984e99
[ 1658.142520][T28804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1658.162206][T28804] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1658.170622][T28804] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1658.178705][T28804] RDX: 0000000000020000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1658.188000][T28804] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1658.195965][T28804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1658.203930][T28804] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1658.211908][T28804]  </TASK>
[ 1658.242310][T28806] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1658.256734][T28806] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1658.256734][T28806] !'
[ 1658.267950][T28806] CPU: 1 PID: 28806 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1658.276741][T28806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1658.286794][T28806] Call Trace:
[ 1658.290260][T28806]  <TASK>
[ 1658.293326][T28806]  dump_stack_lvl+0x201/0x2d8
[ 1658.298088][T28806]  ? show_regs_print_info+0x12/0x12
[ 1658.303292][T28806]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1658.309023][T28806]  sysfs_warn_dup+0x8c/0xa0
[ 1658.313517][T28806]  sysfs_do_create_link_sd+0xbe/0x100
[ 1658.318896][T28806]  device_add+0x9ea/0x16d0
[ 1658.323317][T28806]  ? wiphy_register+0x1b93/0x2a50
[ 1658.328354][T28806]  ? virtual_device_parent+0x50/0x50
[ 1658.333640][T28806]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1658.339633][T28806]  wiphy_register+0x1ba2/0x2a50
[ 1658.344496][T28806]  ? cfg80211_event_work+0x40/0x40
[ 1658.349626][T28806]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1658.355692][T28806]  ieee80211_register_hw+0x3063/0x3e10
[ 1658.361189][T28806]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1658.367019][T28806]  ? memset+0x1f/0x40
[ 1658.370989][T28806]  ? __hrtimer_init+0x173/0x250
[ 1658.375833][T28806]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1658.381558][T28806]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1658.386659][T28806]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1658.392996][T28806]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1658.399343][T28806]  genl_rcv_msg+0x1032/0x1480
[ 1658.404013][T28806]  ? genl_bind+0x360/0x360
[ 1658.408422][T28806]  ? __lock_acquire+0x1382/0x2b00
[ 1658.413473][T28806]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1658.419121][T28806]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1658.425465][T28806]  netlink_rcv_skb+0x200/0x470
[ 1658.430217][T28806]  ? genl_bind+0x360/0x360
[ 1658.434621][T28806]  ? netlink_ack+0xb70/0xb70
[ 1658.439199][T28806]  ? __down_read_common+0x1b0/0x450
[ 1658.444405][T28806]  ? up_read_non_owner+0x1c0/0x1c0
[ 1658.449505][T28806]  ? netlink_deliver_tap+0x130/0x880
[ 1658.454791][T28806]  genl_rcv+0x24/0x40
[ 1658.458758][T28806]  netlink_unicast+0x814/0x9f0
[ 1658.463526][T28806]  ? netlink_detachskb+0xa0/0xa0
[ 1658.468469][T28806]  ? __virt_addr_valid+0xb8/0x2d0
[ 1658.473574][T28806]  ? __phys_addr_symbol+0x2b/0x70
[ 1658.478609][T28806]  ? __check_object_size+0x2f3/0x3f0
[ 1658.483882][T28806]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1658.488983][T28806]  netlink_sendmsg+0xaea/0xe60
[ 1658.493738][T28806]  ? memcpy+0x3c/0x60
[ 1658.497729][T28806]  ? netlink_getsockopt+0xa60/0xa60
[ 1658.502936][T28806]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1658.508220][T28806]  ? security_socket_sendmsg+0x9d/0xb0
[ 1658.513692][T28806]  ? netlink_getsockopt+0xa60/0xa60
[ 1658.518880][T28806]  ____sys_sendmsg+0x5b9/0x910
[ 1658.523644][T28806]  ? __sys_sendmsg_sock+0x30/0x30
[ 1658.528686][T28806]  __sys_sendmsg+0x280/0x370
[ 1658.533273][T28806]  ? ____sys_sendmsg+0x910/0x910
[ 1658.538202][T28806]  ? __context_tracking_exit+0x7a/0xd0
[ 1658.543672][T28806]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1658.549656][T28806]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1658.555685][T28806]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1658.561742][T28806]  ? lockdep_hardirqs_on+0x95/0x140
[ 1658.566948][T28806]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1658.572913][T28806]  do_syscall_64+0x44/0xd0
[ 1658.577327][T28806]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1658.583202][T28806] RIP: 0033:0x7fbee7a71e99
[ 1658.587689][T28806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1658.607279][T28806] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1658.615683][T28806] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1658.623654][T28806] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1658.631620][T28806] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
22:52:28 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x2bcb4)

[ 1658.639578][T28806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1658.647537][T28806] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1658.655514][T28806]  </TASK>
22:52:28 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x68}, 0x0)

[ 1658.684682][T28808] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1658.699134][T28808] __nla_validate_parse: 1 callbacks suppressed
[ 1658.699151][T28808] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1658.730887][T28808] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1658.730887][T28808] !'
[ 1658.753349][T28808] CPU: 1 PID: 28808 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1658.762267][T28808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1658.772341][T28808] Call Trace:
[ 1658.775638][T28808]  <TASK>
[ 1658.778582][T28808]  dump_stack_lvl+0x201/0x2d8
[ 1658.783280][T28808]  ? show_regs_print_info+0x12/0x12
[ 1658.788472][T28808]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1658.794195][T28808]  sysfs_warn_dup+0x8c/0xa0
[ 1658.798690][T28808]  sysfs_do_create_link_sd+0xbe/0x100
[ 1658.804065][T28808]  device_add+0x9ea/0x16d0
[ 1658.808474][T28808]  ? wiphy_register+0x1b93/0x2a50
[ 1658.813517][T28808]  ? virtual_device_parent+0x50/0x50
[ 1658.818788][T28808]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1658.824761][T28808]  wiphy_register+0x1ba2/0x2a50
[ 1658.829628][T28808]  ? cfg80211_event_work+0x40/0x40
[ 1658.834744][T28808]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1658.840811][T28808]  ieee80211_register_hw+0x3063/0x3e10
[ 1658.846279][T28808]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1658.852103][T28808]  ? memset+0x1f/0x40
[ 1658.856091][T28808]  ? __hrtimer_init+0x173/0x250
[ 1658.860943][T28808]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1658.866710][T28808]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1658.871839][T28808]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1658.878162][T28808]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1658.884488][T28808]  genl_rcv_msg+0x1032/0x1480
[ 1658.889174][T28808]  ? genl_bind+0x360/0x360
[ 1658.893615][T28808]  ? __lock_acquire+0x1382/0x2b00
[ 1658.898658][T28808]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1658.904279][T28808]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1658.910615][T28808]  netlink_rcv_skb+0x200/0x470
[ 1658.915369][T28808]  ? genl_bind+0x360/0x360
[ 1658.919774][T28808]  ? netlink_ack+0xb70/0xb70
[ 1658.924348][T28808]  ? __down_read_common+0x1b0/0x450
[ 1658.929536][T28808]  ? up_read_non_owner+0x1c0/0x1c0
[ 1658.934639][T28808]  ? netlink_deliver_tap+0x130/0x880
[ 1658.939934][T28808]  genl_rcv+0x24/0x40
[ 1658.943921][T28808]  netlink_unicast+0x814/0x9f0
[ 1658.948764][T28808]  ? netlink_detachskb+0xa0/0xa0
[ 1658.953686][T28808]  ? __virt_addr_valid+0xb8/0x2d0
[ 1658.958708][T28808]  ? __phys_addr_symbol+0x2b/0x70
[ 1658.963736][T28808]  ? __check_object_size+0x2f3/0x3f0
[ 1658.969009][T28808]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1658.974112][T28808]  netlink_sendmsg+0xaea/0xe60
[ 1658.978872][T28808]  ? memcpy+0x3c/0x60
[ 1658.982872][T28808]  ? netlink_getsockopt+0xa60/0xa60
[ 1658.988073][T28808]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1658.993360][T28808]  ? security_socket_sendmsg+0x9d/0xb0
[ 1658.998903][T28808]  ? netlink_getsockopt+0xa60/0xa60
[ 1659.004176][T28808]  ____sys_sendmsg+0x5b9/0x910
[ 1659.008945][T28808]  ? __sys_sendmsg_sock+0x30/0x30
[ 1659.013993][T28808]  __sys_sendmsg+0x280/0x370
[ 1659.018585][T28808]  ? ____sys_sendmsg+0x910/0x910
[ 1659.023529][T28808]  ? __context_tracking_exit+0x7a/0xd0
[ 1659.029003][T28808]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1659.034989][T28808]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1659.040972][T28808]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1659.046963][T28808]  ? lockdep_hardirqs_on+0x95/0x140
[ 1659.052173][T28808]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1659.058160][T28808]  do_syscall_64+0x44/0xd0
[ 1659.062571][T28808]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1659.068449][T28808] RIP: 0033:0x7f3e3559fe99
[ 1659.072849][T28808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1659.092442][T28808] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1659.100855][T28808] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1659.108829][T28808] RDX: 000000007a000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1659.116815][T28808] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1659.124799][T28808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1659.132764][T28808] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1659.140738][T28808]  </TASK>
[ 1659.165541][T28810] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
22:52:28 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x8c0b0000)

[ 1659.182137][T28810] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1659.204888][T28810] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1659.204888][T28810] !'
[ 1659.217855][T28810] CPU: 0 PID: 28810 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1659.226735][T28810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1659.236978][T28810] Call Trace:
[ 1659.240269][T28810]  <TASK>
[ 1659.243203][T28810]  dump_stack_lvl+0x201/0x2d8
[ 1659.247895][T28810]  ? show_regs_print_info+0x12/0x12
[ 1659.253092][T28810]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1659.258850][T28810]  sysfs_warn_dup+0x8c/0xa0
[ 1659.263364][T28810]  sysfs_do_create_link_sd+0xbe/0x100
[ 1659.268854][T28810]  device_add+0x9ea/0x16d0
[ 1659.273273][T28810]  ? wiphy_register+0x1b93/0x2a50
[ 1659.278297][T28810]  ? virtual_device_parent+0x50/0x50
[ 1659.283592][T28810]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1659.289580][T28810]  wiphy_register+0x1ba2/0x2a50
[ 1659.294454][T28810]  ? cfg80211_event_work+0x40/0x40
[ 1659.299574][T28810]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1659.305655][T28810]  ieee80211_register_hw+0x3063/0x3e10
[ 1659.311142][T28810]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1659.317084][T28810]  ? memset+0x1f/0x40
[ 1659.321064][T28810]  ? __hrtimer_init+0x173/0x250
[ 1659.325925][T28810]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1659.331670][T28810]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1659.336799][T28810]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1659.343136][T28810]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1659.349493][T28810]  genl_rcv_msg+0x1032/0x1480
[ 1659.354187][T28810]  ? genl_bind+0x360/0x360
[ 1659.358606][T28810]  ? __lock_acquire+0x1382/0x2b00
[ 1659.363656][T28810]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1659.369304][T28810]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1659.375765][T28810]  netlink_rcv_skb+0x200/0x470
[ 1659.380528][T28810]  ? genl_bind+0x360/0x360
[ 1659.384955][T28810]  ? netlink_ack+0xb70/0xb70
[ 1659.389532][T28810]  ? __down_read_common+0x1b0/0x450
[ 1659.394736][T28810]  ? up_read_non_owner+0x1c0/0x1c0
[ 1659.399838][T28810]  ? netlink_deliver_tap+0x130/0x880
[ 1659.405137][T28810]  genl_rcv+0x24/0x40
[ 1659.409110][T28810]  netlink_unicast+0x814/0x9f0
[ 1659.413884][T28810]  ? netlink_detachskb+0xa0/0xa0
[ 1659.418808][T28810]  ? __virt_addr_valid+0xb8/0x2d0
[ 1659.423820][T28810]  ? __phys_addr_symbol+0x2b/0x70
[ 1659.428831][T28810]  ? __check_object_size+0x2f3/0x3f0
[ 1659.434111][T28810]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1659.439217][T28810]  netlink_sendmsg+0xaea/0xe60
[ 1659.443994][T28810]  ? memcpy+0x3c/0x60
[ 1659.447970][T28810]  ? netlink_getsockopt+0xa60/0xa60
[ 1659.453170][T28810]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1659.458455][T28810]  ? security_socket_sendmsg+0x9d/0xb0
[ 1659.463910][T28810]  ? netlink_getsockopt+0xa60/0xa60
[ 1659.469127][T28810]  ____sys_sendmsg+0x5b9/0x910
[ 1659.473921][T28810]  ? __sys_sendmsg_sock+0x30/0x30
[ 1659.478976][T28810]  __sys_sendmsg+0x280/0x370
[ 1659.483582][T28810]  ? ____sys_sendmsg+0x910/0x910
[ 1659.488532][T28810]  ? __context_tracking_exit+0x7a/0xd0
[ 1659.494072][T28810]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1659.500048][T28810]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1659.506043][T28810]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1659.512033][T28810]  ? lockdep_hardirqs_on+0x95/0x140
[ 1659.517238][T28810]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1659.523220][T28810]  do_syscall_64+0x44/0xd0
[ 1659.527649][T28810]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1659.533529][T28810] RIP: 0033:0x7ffbc7e82e99
[ 1659.537945][T28810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1659.557732][T28810] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1659.566495][T28810] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1659.574478][T28810] RDX: 0000000000020000 RSI: 0000000020000000 RDI: 0000000000000003
22:52:29 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x97ffffff)

[ 1659.582449][T28810] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1659.590433][T28810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1659.598412][T28810] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1659.606474][T28810]  </TASK>
22:52:29 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x9a0b0000)

[ 1659.629042][T28812] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
22:52:29 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x9effffff)

[ 1659.687935][T28812] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1659.687935][T28812] !'
[ 1659.710524][T28812] CPU: 1 PID: 28812 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1659.719344][T28812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1659.729504][T28812] Call Trace:
[ 1659.732799][T28812]  <TASK>
22:52:29 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xb4bc0200)

22:52:29 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe7030000)

[ 1659.735760][T28812]  dump_stack_lvl+0x201/0x2d8
[ 1659.740465][T28812]  ? show_regs_print_info+0x12/0x12
[ 1659.745682][T28812]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1659.751443][T28812]  sysfs_warn_dup+0x8c/0xa0
[ 1659.755971][T28812]  sysfs_do_create_link_sd+0xbe/0x100
[ 1659.761367][T28812]  device_add+0x9ea/0x16d0
[ 1659.765801][T28812]  ? wiphy_register+0x1b93/0x2a50
[ 1659.770859][T28812]  ? virtual_device_parent+0x50/0x50
[ 1659.776164][T28812]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1659.782175][T28812]  wiphy_register+0x1ba2/0x2a50
22:52:29 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xefffffff)

[ 1659.787071][T28812]  ? cfg80211_event_work+0x40/0x40
[ 1659.792214][T28812]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1659.798320][T28812]  ieee80211_register_hw+0x3063/0x3e10
[ 1659.803921][T28812]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1659.809854][T28812]  ? memset+0x1f/0x40
[ 1659.813849][T28812]  ? __hrtimer_init+0x173/0x250
[ 1659.818821][T28812]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1659.824589][T28812]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1659.829729][T28812]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1659.836143][T28812]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1659.842504][T28812]  genl_rcv_msg+0x1032/0x1480
[ 1659.847211][T28812]  ? genl_bind+0x360/0x360
[ 1659.851655][T28812]  ? __lock_acquire+0x1382/0x2b00
[ 1659.856695][T28812]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1659.862310][T28812]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1659.868637][T28812]  netlink_rcv_skb+0x200/0x470
[ 1659.873398][T28812]  ? genl_bind+0x360/0x360
[ 1659.877824][T28812]  ? netlink_ack+0xb70/0xb70
[ 1659.882399][T28812]  ? __down_read_common+0x1b0/0x450
[ 1659.887588][T28812]  ? up_read_non_owner+0x1c0/0x1c0
[ 1659.892682][T28812]  ? netlink_deliver_tap+0x130/0x880
[ 1659.897960][T28812]  genl_rcv+0x24/0x40
[ 1659.901931][T28812]  netlink_unicast+0x814/0x9f0
[ 1659.906710][T28812]  ? netlink_detachskb+0xa0/0xa0
[ 1659.911631][T28812]  ? __virt_addr_valid+0xb8/0x2d0
[ 1659.916649][T28812]  ? __phys_addr_symbol+0x2b/0x70
[ 1659.921679][T28812]  ? __check_object_size+0x2f3/0x3f0
[ 1659.926949][T28812]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1659.932055][T28812]  netlink_sendmsg+0xaea/0xe60
[ 1659.936811][T28812]  ? memcpy+0x3c/0x60
[ 1659.940785][T28812]  ? netlink_getsockopt+0xa60/0xa60
[ 1659.945984][T28812]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1659.951267][T28812]  ? security_socket_sendmsg+0x9d/0xb0
[ 1659.956714][T28812]  ? netlink_getsockopt+0xa60/0xa60
[ 1659.961900][T28812]  ____sys_sendmsg+0x5b9/0x910
[ 1659.966656][T28812]  ? __sys_sendmsg_sock+0x30/0x30
[ 1659.971674][T28812]  __sys_sendmsg+0x280/0x370
[ 1659.976253][T28812]  ? ____sys_sendmsg+0x910/0x910
[ 1659.981190][T28812]  ? __context_tracking_exit+0x7a/0xd0
[ 1659.986640][T28812]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1659.992606][T28812]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1659.998575][T28812]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1660.004540][T28812]  ? lockdep_hardirqs_on+0x95/0x140
[ 1660.009723][T28812]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1660.015703][T28812]  do_syscall_64+0x44/0xd0
[ 1660.020175][T28812]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1660.026077][T28812] RIP: 0033:0x7f5163f51e99
[ 1660.030481][T28812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1660.050082][T28812] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1660.058489][T28812] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1660.066563][T28812] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1660.074546][T28812] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
22:52:29 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x36000)

[ 1660.082512][T28812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1660.090497][T28812] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1660.098470][T28812]  </TASK>
22:52:29 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x28}, 0x0)

[ 1660.132089][T28814] nla_validate_range_unsigned: 1 callbacks suppressed
[ 1660.132107][T28814] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 1660.149830][T28814] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1660.163711][T28814] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1660.163711][T28814] !'
[ 1660.175558][T28814] CPU: 0 PID: 28814 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1660.184356][T28814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1660.194426][T28814] Call Trace:
[ 1660.197718][T28814]  <TASK>
[ 1660.200666][T28814]  dump_stack_lvl+0x201/0x2d8
[ 1660.205376][T28814]  ? show_regs_print_info+0x12/0x12
[ 1660.210596][T28814]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1660.216356][T28814]  sysfs_warn_dup+0x8c/0xa0
[ 1660.220882][T28814]  sysfs_do_create_link_sd+0xbe/0x100
[ 1660.226269][T28814]  device_add+0x9ea/0x16d0
[ 1660.230697][T28814]  ? wiphy_register+0x1b93/0x2a50
[ 1660.235891][T28814]  ? virtual_device_parent+0x50/0x50
[ 1660.241196][T28814]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1660.247214][T28814]  wiphy_register+0x1ba2/0x2a50
[ 1660.252100][T28814]  ? cfg80211_event_work+0x40/0x40
[ 1660.257230][T28814]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1660.263311][T28814]  ieee80211_register_hw+0x3063/0x3e10
[ 1660.268902][T28814]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1660.274898][T28814]  ? memset+0x1f/0x40
[ 1660.278875][T28814]  ? __hrtimer_init+0x173/0x250
[ 1660.283744][T28814]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1660.289515][T28814]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1660.294738][T28814]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1660.301095][T28814]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1660.307454][T28814]  genl_rcv_msg+0x1032/0x1480
[ 1660.312155][T28814]  ? genl_bind+0x360/0x360
[ 1660.316600][T28814]  ? __lock_acquire+0x1382/0x2b00
[ 1660.321670][T28814]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1660.327312][T28814]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1660.333668][T28814]  netlink_rcv_skb+0x200/0x470
[ 1660.338448][T28814]  ? genl_bind+0x360/0x360
[ 1660.342873][T28814]  ? netlink_ack+0xb70/0xb70
[ 1660.347477][T28814]  ? __down_read_common+0x1b0/0x450
[ 1660.352688][T28814]  ? up_read_non_owner+0x1c0/0x1c0
[ 1660.357806][T28814]  ? netlink_deliver_tap+0x130/0x880
[ 1660.363106][T28814]  genl_rcv+0x24/0x40
[ 1660.367106][T28814]  netlink_unicast+0x814/0x9f0
[ 1660.371899][T28814]  ? netlink_detachskb+0xa0/0xa0
[ 1660.376844][T28814]  ? __virt_addr_valid+0xb8/0x2d0
[ 1660.381863][T28814]  ? __phys_addr_symbol+0x2b/0x70
[ 1660.386894][T28814]  ? __check_object_size+0x2f3/0x3f0
[ 1660.392178][T28814]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1660.397390][T28814]  netlink_sendmsg+0xaea/0xe60
[ 1660.402151][T28814]  ? memcpy+0x3c/0x60
[ 1660.406252][T28814]  ? netlink_getsockopt+0xa60/0xa60
[ 1660.411463][T28814]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1660.416757][T28814]  ? security_socket_sendmsg+0x9d/0xb0
[ 1660.422212][T28814]  ? netlink_getsockopt+0xa60/0xa60
[ 1660.427529][T28814]  ____sys_sendmsg+0x5b9/0x910
[ 1660.432312][T28814]  ? __sys_sendmsg_sock+0x30/0x30
[ 1660.437357][T28814]  __sys_sendmsg+0x280/0x370
[ 1660.441947][T28814]  ? ____sys_sendmsg+0x910/0x910
[ 1660.446904][T28814]  ? __context_tracking_exit+0x7a/0xd0
[ 1660.452376][T28814]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1660.458365][T28814]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1660.464353][T28814]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1660.470353][T28814]  ? lockdep_hardirqs_on+0x95/0x140
[ 1660.475566][T28814]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1660.481545][T28814]  do_syscall_64+0x44/0xd0
[ 1660.485988][T28814]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1660.491877][T28814] RIP: 0033:0x7fd6114efe99
[ 1660.496307][T28814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1660.516354][T28814] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1660.524765][T28814] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1660.532755][T28814] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1660.540734][T28814] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1660.548710][T28814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1660.556668][T28814] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1660.564639][T28814]  </TASK>
22:52:30 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x11}, 0x0)

[ 1660.590175][T28816] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1660.603545][T28816] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1660.627156][T28816] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1660.627156][T28816] !'
[ 1660.652985][T28816] CPU: 1 PID: 28816 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1660.661789][T28816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1660.671995][T28816] Call Trace:
[ 1660.675275][T28816]  <TASK>
[ 1660.678201][T28816]  dump_stack_lvl+0x201/0x2d8
[ 1660.682891][T28816]  ? show_regs_print_info+0x12/0x12
[ 1660.688090][T28816]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1660.693819][T28816]  sysfs_warn_dup+0x8c/0xa0
[ 1660.698338][T28816]  sysfs_do_create_link_sd+0xbe/0x100
[ 1660.703724][T28816]  device_add+0x9ea/0x16d0
[ 1660.708133][T28816]  ? wiphy_register+0x1b93/0x2a50
[ 1660.713170][T28816]  ? virtual_device_parent+0x50/0x50
[ 1660.718454][T28816]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1660.724457][T28816]  wiphy_register+0x1ba2/0x2a50
[ 1660.729340][T28816]  ? cfg80211_event_work+0x40/0x40
[ 1660.734458][T28816]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1660.740528][T28816]  ieee80211_register_hw+0x3063/0x3e10
[ 1660.746015][T28816]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1660.751828][T28816]  ? memset+0x1f/0x40
[ 1660.755814][T28816]  ? __hrtimer_init+0x173/0x250
[ 1660.760655][T28816]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1660.766396][T28816]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1660.771526][T28816]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1660.777919][T28816]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1660.784252][T28816]  genl_rcv_msg+0x1032/0x1480
[ 1660.788962][T28816]  ? genl_bind+0x360/0x360
[ 1660.793396][T28816]  ? __lock_acquire+0x1382/0x2b00
[ 1660.798442][T28816]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1660.804062][T28816]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1660.810388][T28816]  netlink_rcv_skb+0x200/0x470
[ 1660.815155][T28816]  ? genl_bind+0x360/0x360
[ 1660.819567][T28816]  ? netlink_ack+0xb70/0xb70
[ 1660.824185][T28816]  ? __down_read_common+0x1b0/0x450
[ 1660.829372][T28816]  ? up_read_non_owner+0x1c0/0x1c0
[ 1660.834490][T28816]  ? netlink_deliver_tap+0x130/0x880
[ 1660.839788][T28816]  genl_rcv+0x24/0x40
[ 1660.843758][T28816]  netlink_unicast+0x814/0x9f0
[ 1660.848512][T28816]  ? netlink_detachskb+0xa0/0xa0
[ 1660.853443][T28816]  ? __virt_addr_valid+0xb8/0x2d0
[ 1660.858459][T28816]  ? __phys_addr_symbol+0x2b/0x70
[ 1660.863478][T28816]  ? __check_object_size+0x2f3/0x3f0
[ 1660.868753][T28816]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1660.873851][T28816]  netlink_sendmsg+0xaea/0xe60
[ 1660.878603][T28816]  ? memcpy+0x3c/0x60
[ 1660.882578][T28816]  ? netlink_getsockopt+0xa60/0xa60
[ 1660.887770][T28816]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1660.893037][T28816]  ? security_socket_sendmsg+0x9d/0xb0
[ 1660.898499][T28816]  ? netlink_getsockopt+0xa60/0xa60
[ 1660.903685][T28816]  ____sys_sendmsg+0x5b9/0x910
[ 1660.908442][T28816]  ? __sys_sendmsg_sock+0x30/0x30
[ 1660.913485][T28816]  __sys_sendmsg+0x280/0x370
[ 1660.918082][T28816]  ? ____sys_sendmsg+0x910/0x910
[ 1660.923014][T28816]  ? __context_tracking_exit+0x7a/0xd0
[ 1660.928467][T28816]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1660.934438][T28816]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1660.940422][T28816]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1660.946408][T28816]  ? lockdep_hardirqs_on+0x95/0x140
[ 1660.951592][T28816]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1660.957567][T28816]  do_syscall_64+0x44/0xd0
[ 1660.961987][T28816]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1660.967887][T28816] RIP: 0033:0x7fda9f984e99
[ 1660.972292][T28816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1660.991894][T28816] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1661.000298][T28816] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1661.008260][T28816] RDX: 000000000002bcb4 RSI: 0000000020000000 RDI: 0000000000000003
[ 1661.016219][T28816] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1661.024194][T28816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1661.032151][T28816] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1661.040126][T28816]  </TASK>
22:52:30 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x36000)

[ 1661.066428][T28818] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1661.079178][T28818] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1661.095520][T28818] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1661.095520][T28818] !'
[ 1661.107567][T28818] CPU: 1 PID: 28818 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1661.116369][T28818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1661.126444][T28818] Call Trace:
[ 1661.129733][T28818]  <TASK>
[ 1661.132673][T28818]  dump_stack_lvl+0x201/0x2d8
[ 1661.137379][T28818]  ? show_regs_print_info+0x12/0x12
[ 1661.142599][T28818]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1661.148348][T28818]  sysfs_warn_dup+0x8c/0xa0
[ 1661.152863][T28818]  sysfs_do_create_link_sd+0xbe/0x100
[ 1661.158247][T28818]  device_add+0x9ea/0x16d0
[ 1661.162654][T28818]  ? wiphy_register+0x1b93/0x2a50
[ 1661.167675][T28818]  ? virtual_device_parent+0x50/0x50
[ 1661.172949][T28818]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1661.178927][T28818]  wiphy_register+0x1ba2/0x2a50
[ 1661.183790][T28818]  ? cfg80211_event_work+0x40/0x40
[ 1661.188920][T28818]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1661.194994][T28818]  ieee80211_register_hw+0x3063/0x3e10
[ 1661.200456][T28818]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1661.206262][T28818]  ? memset+0x1f/0x40
[ 1661.210237][T28818]  ? __hrtimer_init+0x173/0x250
[ 1661.215089][T28818]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1661.220879][T28818]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1661.226001][T28818]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1661.232325][T28818]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1661.238650][T28818]  genl_rcv_msg+0x1032/0x1480
[ 1661.243351][T28818]  ? genl_bind+0x360/0x360
[ 1661.247774][T28818]  ? __lock_acquire+0x1382/0x2b00
[ 1661.252802][T28818]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1661.258431][T28818]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1661.264770][T28818]  netlink_rcv_skb+0x200/0x470
[ 1661.269569][T28818]  ? genl_bind+0x360/0x360
[ 1661.273983][T28818]  ? netlink_ack+0xb70/0xb70
[ 1661.278566][T28818]  ? __down_read_common+0x1b0/0x450
[ 1661.283772][T28818]  ? up_read_non_owner+0x1c0/0x1c0
[ 1661.288898][T28818]  ? netlink_deliver_tap+0x130/0x880
[ 1661.294196][T28818]  genl_rcv+0x24/0x40
[ 1661.298190][T28818]  netlink_unicast+0x814/0x9f0
[ 1661.302950][T28818]  ? netlink_detachskb+0xa0/0xa0
[ 1661.307874][T28818]  ? __virt_addr_valid+0xb8/0x2d0
[ 1661.312897][T28818]  ? __phys_addr_symbol+0x2b/0x70
[ 1661.317917][T28818]  ? __check_object_size+0x2f3/0x3f0
[ 1661.323197][T28818]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1661.328323][T28818]  netlink_sendmsg+0xaea/0xe60
[ 1661.333074][T28818]  ? memcpy+0x3c/0x60
[ 1661.337138][T28818]  ? netlink_getsockopt+0xa60/0xa60
[ 1661.342336][T28818]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1661.347675][T28818]  ? security_socket_sendmsg+0x9d/0xb0
[ 1661.353131][T28818]  ? netlink_getsockopt+0xa60/0xa60
[ 1661.358337][T28818]  ____sys_sendmsg+0x5b9/0x910
[ 1661.363112][T28818]  ? __sys_sendmsg_sock+0x30/0x30
[ 1661.368156][T28818]  __sys_sendmsg+0x280/0x370
[ 1661.372736][T28818]  ? ____sys_sendmsg+0x910/0x910
[ 1661.377687][T28818]  ? __context_tracking_exit+0x7a/0xd0
[ 1661.383159][T28818]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1661.389135][T28818]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1661.395128][T28818]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1661.401092][T28818]  ? lockdep_hardirqs_on+0x95/0x140
[ 1661.406294][T28818]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1661.412262][T28818]  do_syscall_64+0x44/0xd0
[ 1661.416681][T28818]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1661.422563][T28818] RIP: 0033:0x7fbee7a71e99
[ 1661.426971][T28818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1661.446561][T28818] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1661.454970][T28818] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1661.462935][T28818] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1661.470904][T28818] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1661.478879][T28818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1661.486947][T28818] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1661.494921][T28818]  </TASK>
22:52:31 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xf0ffffff)

22:52:31 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x5}, 0x0)

[ 1661.515011][T28834] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1661.528155][T28834] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1661.560352][T28834] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1661.560352][T28834] !'
[ 1661.577763][T28834] CPU: 0 PID: 28834 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1661.586575][T28834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1661.596648][T28834] Call Trace:
[ 1661.599943][T28834]  <TASK>
[ 1661.602880][T28834]  dump_stack_lvl+0x201/0x2d8
[ 1661.607561][T28834]  ? show_regs_print_info+0x12/0x12
[ 1661.612780][T28834]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1661.618527][T28834]  sysfs_warn_dup+0x8c/0xa0
[ 1661.623024][T28834]  sysfs_do_create_link_sd+0xbe/0x100
[ 1661.628400][T28834]  device_add+0x9ea/0x16d0
[ 1661.632825][T28834]  ? wiphy_register+0x1b93/0x2a50
[ 1661.637857][T28834]  ? virtual_device_parent+0x50/0x50
[ 1661.643132][T28834]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1661.649130][T28834]  wiphy_register+0x1ba2/0x2a50
[ 1661.654011][T28834]  ? cfg80211_event_work+0x40/0x40
[ 1661.659151][T28834]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1661.665233][T28834]  ieee80211_register_hw+0x3063/0x3e10
[ 1661.670711][T28834]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1661.676537][T28834]  ? memset+0x1f/0x40
[ 1661.680513][T28834]  ? __hrtimer_init+0x173/0x250
[ 1661.685483][T28834]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1661.691248][T28834]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1661.696372][T28834]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1661.702693][T28834]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1661.709035][T28834]  genl_rcv_msg+0x1032/0x1480
[ 1661.713729][T28834]  ? genl_bind+0x360/0x360
[ 1661.718158][T28834]  ? __lock_acquire+0x1382/0x2b00
[ 1661.723214][T28834]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1661.728870][T28834]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1661.735213][T28834]  netlink_rcv_skb+0x200/0x470
[ 1661.739976][T28834]  ? genl_bind+0x360/0x360
[ 1661.744407][T28834]  ? netlink_ack+0xb70/0xb70
[ 1661.749007][T28834]  ? __down_read_common+0x1b0/0x450
[ 1661.754211][T28834]  ? up_read_non_owner+0x1c0/0x1c0
[ 1661.759311][T28834]  ? netlink_deliver_tap+0x130/0x880
[ 1661.764613][T28834]  genl_rcv+0x24/0x40
[ 1661.768706][T28834]  netlink_unicast+0x814/0x9f0
[ 1661.773513][T28834]  ? netlink_detachskb+0xa0/0xa0
[ 1661.778440][T28834]  ? __virt_addr_valid+0xb8/0x2d0
[ 1661.783454][T28834]  ? __phys_addr_symbol+0x2b/0x70
[ 1661.788555][T28834]  ? __check_object_size+0x2f3/0x3f0
[ 1661.793830][T28834]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1661.798940][T28834]  netlink_sendmsg+0xaea/0xe60
[ 1661.803713][T28834]  ? memcpy+0x3c/0x60
[ 1661.807705][T28834]  ? netlink_getsockopt+0xa60/0xa60
[ 1661.812928][T28834]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1661.818220][T28834]  ? security_socket_sendmsg+0x9d/0xb0
[ 1661.823683][T28834]  ? netlink_getsockopt+0xa60/0xa60
[ 1661.828875][T28834]  ____sys_sendmsg+0x5b9/0x910
[ 1661.833663][T28834]  ? __sys_sendmsg_sock+0x30/0x30
[ 1661.838718][T28834]  __sys_sendmsg+0x280/0x370
[ 1661.843303][T28834]  ? ____sys_sendmsg+0x910/0x910
[ 1661.848240][T28834]  ? __context_tracking_exit+0x7a/0xd0
[ 1661.853704][T28834]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1661.859694][T28834]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1661.865693][T28834]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1661.871666][T28834]  ? lockdep_hardirqs_on+0x95/0x140
[ 1661.876869][T28834]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1661.882837][T28834]  do_syscall_64+0x44/0xd0
[ 1661.887254][T28834]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1661.893177][T28834] RIP: 0033:0x7ffbc7e82e99
[ 1661.897691][T28834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1661.917524][T28834] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1661.925931][T28834] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1661.933897][T28834] RDX: 0000000000036000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1661.941866][T28834] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1661.949852][T28834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:52:31 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xfdffffff)

22:52:31 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x100000)

[ 1661.957918][T28834] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1661.965905][T28834]  </TASK>
[ 1661.991837][T28836] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
22:52:31 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xfeffffff)

[ 1662.008464][T28836] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1662.040188][T28836] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1662.040188][T28836] !'
[ 1662.051307][T28836] CPU: 0 PID: 28836 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1662.060102][T28836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1662.070190][T28836] Call Trace:
[ 1662.073631][T28836]  <TASK>
[ 1662.076578][T28836]  dump_stack_lvl+0x201/0x2d8
[ 1662.081277][T28836]  ? show_regs_print_info+0x12/0x12
[ 1662.086481][T28836]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1662.092209][T28836]  sysfs_warn_dup+0x8c/0xa0
[ 1662.096707][T28836]  sysfs_do_create_link_sd+0xbe/0x100
[ 1662.102073][T28836]  device_add+0x9ea/0x16d0
[ 1662.106498][T28836]  ? wiphy_register+0x1b93/0x2a50
[ 1662.111543][T28836]  ? virtual_device_parent+0x50/0x50
[ 1662.116836][T28836]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1662.122932][T28836]  wiphy_register+0x1ba2/0x2a50
[ 1662.127796][T28836]  ? cfg80211_event_work+0x40/0x40
[ 1662.132920][T28836]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1662.139005][T28836]  ieee80211_register_hw+0x3063/0x3e10
[ 1662.144499][T28836]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1662.150319][T28836]  ? memset+0x1f/0x40
[ 1662.154312][T28836]  ? __hrtimer_init+0x173/0x250
[ 1662.159164][T28836]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1662.164899][T28836]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1662.170010][T28836]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1662.176338][T28836]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1662.182663][T28836]  genl_rcv_msg+0x1032/0x1480
[ 1662.187342][T28836]  ? genl_bind+0x360/0x360
[ 1662.191757][T28836]  ? __lock_acquire+0x1382/0x2b00
[ 1662.196790][T28836]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1662.202411][T28836]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1662.208744][T28836]  netlink_rcv_skb+0x200/0x470
[ 1662.213504][T28836]  ? genl_bind+0x360/0x360
[ 1662.217913][T28836]  ? netlink_ack+0xb70/0xb70
[ 1662.222495][T28836]  ? __down_read_common+0x1b0/0x450
[ 1662.227685][T28836]  ? up_read_non_owner+0x1c0/0x1c0
[ 1662.232794][T28836]  ? netlink_deliver_tap+0x130/0x880
[ 1662.238081][T28836]  genl_rcv+0x24/0x40
[ 1662.242139][T28836]  netlink_unicast+0x814/0x9f0
[ 1662.246903][T28836]  ? netlink_detachskb+0xa0/0xa0
[ 1662.251828][T28836]  ? __virt_addr_valid+0xb8/0x2d0
[ 1662.256843][T28836]  ? __phys_addr_symbol+0x2b/0x70
[ 1662.261858][T28836]  ? __check_object_size+0x2f3/0x3f0
[ 1662.267136][T28836]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1662.272246][T28836]  netlink_sendmsg+0xaea/0xe60
[ 1662.277000][T28836]  ? memcpy+0x3c/0x60
[ 1662.280980][T28836]  ? netlink_getsockopt+0xa60/0xa60
[ 1662.286269][T28836]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1662.291538][T28836]  ? security_socket_sendmsg+0x9d/0xb0
[ 1662.296989][T28836]  ? netlink_getsockopt+0xa60/0xa60
[ 1662.302176][T28836]  ____sys_sendmsg+0x5b9/0x910
[ 1662.306942][T28836]  ? __sys_sendmsg_sock+0x30/0x30
[ 1662.311973][T28836]  __sys_sendmsg+0x280/0x370
[ 1662.317774][T28836]  ? ____sys_sendmsg+0x910/0x910
[ 1662.322713][T28836]  ? __context_tracking_exit+0x7a/0xd0
[ 1662.328174][T28836]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1662.334141][T28836]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1662.340118][T28836]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1662.346088][T28836]  ? lockdep_hardirqs_on+0x95/0x140
[ 1662.351277][T28836]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1662.357251][T28836]  do_syscall_64+0x44/0xd0
[ 1662.361662][T28836]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1662.367542][T28836] RIP: 0033:0x7f5163f51e99
[ 1662.371945][T28836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1662.391718][T28836] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1662.400141][T28836] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1662.408111][T28836] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1662.416071][T28836] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1662.424029][T28836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1662.431985][T28836] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1662.439961][T28836]  </TASK>
22:52:32 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xffffe000)

[ 1662.476222][T28838] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 1662.490542][T28838] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.1'.
22:52:32 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x304e0}], 0x1}, 0x0)

[ 1662.516764][T28838] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1662.516764][T28838] !'
[ 1662.552203][T28838] CPU: 0 PID: 28838 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1662.561022][T28838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1662.571095][T28838] Call Trace:
[ 1662.574565][T28838]  <TASK>
[ 1662.577505][T28838]  dump_stack_lvl+0x201/0x2d8
[ 1662.582201][T28838]  ? show_regs_print_info+0x12/0x12
[ 1662.587405][T28838]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1662.593131][T28838]  sysfs_warn_dup+0x8c/0xa0
[ 1662.597626][T28838]  sysfs_do_create_link_sd+0xbe/0x100
[ 1662.602989][T28838]  device_add+0x9ea/0x16d0
[ 1662.607393][T28838]  ? wiphy_register+0x1b93/0x2a50
[ 1662.612422][T28838]  ? virtual_device_parent+0x50/0x50
[ 1662.617693][T28838]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1662.623774][T28838]  wiphy_register+0x1ba2/0x2a50
[ 1662.628627][T28838]  ? cfg80211_event_work+0x40/0x40
[ 1662.633765][T28838]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1662.639840][T28838]  ieee80211_register_hw+0x3063/0x3e10
[ 1662.645312][T28838]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1662.651118][T28838]  ? memset+0x1f/0x40
[ 1662.655092][T28838]  ? __hrtimer_init+0x173/0x250
[ 1662.659937][T28838]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1662.665671][T28838]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1662.670777][T28838]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1662.677103][T28838]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1662.683431][T28838]  genl_rcv_msg+0x1032/0x1480
[ 1662.688109][T28838]  ? genl_bind+0x360/0x360
[ 1662.692522][T28838]  ? __lock_acquire+0x1382/0x2b00
[ 1662.697567][T28838]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1662.703198][T28838]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1662.709537][T28838]  netlink_rcv_skb+0x200/0x470
[ 1662.714296][T28838]  ? genl_bind+0x360/0x360
[ 1662.718713][T28838]  ? netlink_ack+0xb70/0xb70
[ 1662.723290][T28838]  ? __down_read_common+0x1b0/0x450
[ 1662.728486][T28838]  ? up_read_non_owner+0x1c0/0x1c0
[ 1662.733674][T28838]  ? netlink_deliver_tap+0x130/0x880
[ 1662.738964][T28838]  genl_rcv+0x24/0x40
[ 1662.742941][T28838]  netlink_unicast+0x814/0x9f0
[ 1662.747702][T28838]  ? netlink_detachskb+0xa0/0xa0
[ 1662.752632][T28838]  ? __virt_addr_valid+0xb8/0x2d0
[ 1662.757646][T28838]  ? __phys_addr_symbol+0x2b/0x70
[ 1662.762662][T28838]  ? __check_object_size+0x2f3/0x3f0
[ 1662.767941][T28838]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1662.773043][T28838]  netlink_sendmsg+0xaea/0xe60
[ 1662.777801][T28838]  ? memcpy+0x3c/0x60
[ 1662.781781][T28838]  ? netlink_getsockopt+0xa60/0xa60
[ 1662.786974][T28838]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1662.792252][T28838]  ? security_socket_sendmsg+0x9d/0xb0
[ 1662.797704][T28838]  ? netlink_getsockopt+0xa60/0xa60
[ 1662.802892][T28838]  ____sys_sendmsg+0x5b9/0x910
[ 1662.807658][T28838]  ? __sys_sendmsg_sock+0x30/0x30
[ 1662.812688][T28838]  __sys_sendmsg+0x280/0x370
[ 1662.817276][T28838]  ? ____sys_sendmsg+0x910/0x910
[ 1662.822219][T28838]  ? __context_tracking_exit+0x7a/0xd0
[ 1662.827681][T28838]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1662.833657][T28838]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1662.839635][T28838]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1662.845604][T28838]  ? lockdep_hardirqs_on+0x95/0x140
[ 1662.850792][T28838]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1662.856765][T28838]  do_syscall_64+0x44/0xd0
[ 1662.861175][T28838]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1662.867065][T28838] RIP: 0033:0x7fd6114efe99
[ 1662.871472][T28838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1662.891066][T28838] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1662.899470][T28838] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1662.907429][T28838] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
22:52:32 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xffffff7f)

[ 1662.915403][T28838] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1662.923369][T28838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1662.931336][T28838] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1662.939315][T28838]  </TASK>
22:52:32 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xffffff97)

[ 1662.974478][T28840] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1662.986340][T28840] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1663.011138][T28840] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1663.011138][T28840] !'
[ 1663.025626][T28840] CPU: 0 PID: 28840 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1663.034433][T28840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1663.044509][T28840] Call Trace:
[ 1663.047804][T28840]  <TASK>
[ 1663.050755][T28840]  dump_stack_lvl+0x201/0x2d8
[ 1663.055463][T28840]  ? show_regs_print_info+0x12/0x12
[ 1663.060687][T28840]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1663.066547][T28840]  sysfs_warn_dup+0x8c/0xa0
22:52:32 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xffffff9e)

[ 1663.071074][T28840]  sysfs_do_create_link_sd+0xbe/0x100
[ 1663.076473][T28840]  device_add+0x9ea/0x16d0
[ 1663.080922][T28840]  ? wiphy_register+0x1b93/0x2a50
[ 1663.085985][T28840]  ? virtual_device_parent+0x50/0x50
[ 1663.091291][T28840]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1663.097338][T28840]  wiphy_register+0x1ba2/0x2a50
[ 1663.102191][T28840]  ? cfg80211_event_work+0x40/0x40
[ 1663.107308][T28840]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1663.113390][T28840]  ieee80211_register_hw+0x3063/0x3e10
[ 1663.118867][T28840]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1663.124686][T28840]  ? memset+0x1f/0x40
[ 1663.128661][T28840]  ? __hrtimer_init+0x173/0x250
[ 1663.133519][T28840]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1663.139355][T28840]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1663.144463][T28840]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1663.150798][T28840]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1663.157244][T28840]  genl_rcv_msg+0x1032/0x1480
[ 1663.161919][T28840]  ? genl_bind+0x360/0x360
[ 1663.166329][T28840]  ? __lock_acquire+0x1382/0x2b00
[ 1663.171377][T28840]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1663.177034][T28840]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1663.183363][T28840]  netlink_rcv_skb+0x200/0x470
[ 1663.188124][T28840]  ? genl_bind+0x360/0x360
[ 1663.192618][T28840]  ? netlink_ack+0xb70/0xb70
[ 1663.197194][T28840]  ? __down_read_common+0x1b0/0x450
[ 1663.202382][T28840]  ? up_read_non_owner+0x1c0/0x1c0
[ 1663.207477][T28840]  ? netlink_deliver_tap+0x130/0x880
[ 1663.212757][T28840]  genl_rcv+0x24/0x40
[ 1663.216737][T28840]  netlink_unicast+0x814/0x9f0
[ 1663.221526][T28840]  ? netlink_detachskb+0xa0/0xa0
[ 1663.226454][T28840]  ? __virt_addr_valid+0xb8/0x2d0
[ 1663.231465][T28840]  ? __phys_addr_symbol+0x2b/0x70
[ 1663.236476][T28840]  ? __check_object_size+0x2f3/0x3f0
[ 1663.241749][T28840]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1663.246847][T28840]  netlink_sendmsg+0xaea/0xe60
[ 1663.251607][T28840]  ? memcpy+0x3c/0x60
[ 1663.255603][T28840]  ? netlink_getsockopt+0xa60/0xa60
[ 1663.260801][T28840]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1663.266074][T28840]  ? security_socket_sendmsg+0x9d/0xb0
[ 1663.271555][T28840]  ? netlink_getsockopt+0xa60/0xa60
[ 1663.276755][T28840]  ____sys_sendmsg+0x5b9/0x910
[ 1663.281530][T28840]  ? __sys_sendmsg_sock+0x30/0x30
[ 1663.286592][T28840]  __sys_sendmsg+0x280/0x370
[ 1663.291184][T28840]  ? ____sys_sendmsg+0x910/0x910
[ 1663.296118][T28840]  ? __context_tracking_exit+0x7a/0xd0
[ 1663.301580][T28840]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1663.307552][T28840]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1663.313527][T28840]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1663.319497][T28840]  ? lockdep_hardirqs_on+0x95/0x140
[ 1663.324683][T28840]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1663.330664][T28840]  do_syscall_64+0x44/0xd0
[ 1663.335102][T28840]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1663.340987][T28840] RIP: 0033:0x7fda9f984e99
[ 1663.345397][T28840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1663.365011][T28840] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
22:52:33 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1663.373533][T28840] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1663.381505][T28840] RDX: 0000000000036000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1663.389490][T28840] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1663.397465][T28840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1663.405444][T28840] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1663.413419][T28840]  </TASK>
[ 1663.459688][T28844] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1663.490738][T28844] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1663.490738][T28844] !'
22:52:33 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x100000)

22:52:33 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xffffffef)

[ 1663.506461][T28844] CPU: 0 PID: 28844 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1663.515267][T28844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1663.525341][T28844] Call Trace:
[ 1663.528644][T28844]  <TASK>
[ 1663.531589][T28844]  dump_stack_lvl+0x201/0x2d8
[ 1663.536278][T28844]  ? show_regs_print_info+0x12/0x12
[ 1663.541472][T28844]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1663.547265][T28844]  sysfs_warn_dup+0x8c/0xa0
[ 1663.551762][T28844]  sysfs_do_create_link_sd+0xbe/0x100
[ 1663.557150][T28844]  device_add+0x9ea/0x16d0
[ 1663.561559][T28844]  ? wiphy_register+0x1b93/0x2a50
[ 1663.566599][T28844]  ? virtual_device_parent+0x50/0x50
[ 1663.572051][T28844]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1663.578036][T28844]  wiphy_register+0x1ba2/0x2a50
[ 1663.582895][T28844]  ? cfg80211_event_work+0x40/0x40
[ 1663.588009][T28844]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1663.594072][T28844]  ieee80211_register_hw+0x3063/0x3e10
[ 1663.599547][T28844]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1663.605356][T28844]  ? memset+0x1f/0x40
[ 1663.609423][T28844]  ? __hrtimer_init+0x173/0x250
[ 1663.614270][T28844]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1663.620003][T28844]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1663.625115][T28844]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1663.631445][T28844]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1663.637777][T28844]  genl_rcv_msg+0x1032/0x1480
[ 1663.642455][T28844]  ? genl_bind+0x360/0x360
[ 1663.646873][T28844]  ? __lock_acquire+0x1382/0x2b00
[ 1663.651907][T28844]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1663.657528][T28844]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1663.663864][T28844]  netlink_rcv_skb+0x200/0x470
[ 1663.668806][T28844]  ? genl_bind+0x360/0x360
[ 1663.673224][T28844]  ? netlink_ack+0xb70/0xb70
[ 1663.677807][T28844]  ? __down_read_common+0x1b0/0x450
[ 1663.683002][T28844]  ? up_read_non_owner+0x1c0/0x1c0
[ 1663.688209][T28844]  ? netlink_deliver_tap+0x130/0x880
[ 1663.693494][T28844]  genl_rcv+0x24/0x40
[ 1663.697469][T28844]  netlink_unicast+0x814/0x9f0
[ 1663.702233][T28844]  ? netlink_detachskb+0xa0/0xa0
[ 1663.707169][T28844]  ? __virt_addr_valid+0xb8/0x2d0
[ 1663.712211][T28844]  ? __phys_addr_symbol+0x2b/0x70
[ 1663.717233][T28844]  ? __check_object_size+0x2f3/0x3f0
[ 1663.722510][T28844]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1663.727614][T28844]  netlink_sendmsg+0xaea/0xe60
[ 1663.732372][T28844]  ? memcpy+0x3c/0x60
[ 1663.736355][T28844]  ? netlink_getsockopt+0xa60/0xa60
[ 1663.741550][T28844]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1663.746829][T28844]  ? security_socket_sendmsg+0x9d/0xb0
[ 1663.752801][T28844]  ? netlink_getsockopt+0xa60/0xa60
[ 1663.757991][T28844]  ____sys_sendmsg+0x5b9/0x910
[ 1663.762755][T28844]  ? __sys_sendmsg_sock+0x30/0x30
[ 1663.767880][T28844]  __sys_sendmsg+0x280/0x370
[ 1663.772470][T28844]  ? ____sys_sendmsg+0x910/0x910
[ 1663.777846][T28844]  ? __context_tracking_exit+0x7a/0xd0
[ 1663.783308][T28844]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1663.789280][T28844]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1663.795433][T28844]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1663.801578][T28844]  ? lockdep_hardirqs_on+0x95/0x140
[ 1663.806773][T28844]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1663.812744][T28844]  do_syscall_64+0x44/0xd0
[ 1663.817155][T28844]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1663.823037][T28844] RIP: 0033:0x7fbee7a71e99
[ 1663.827445][T28844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1663.847139][T28844] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1663.855545][T28844] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1663.863511][T28844] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1663.871485][T28844] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1663.879448][T28844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1663.887420][T28844] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1663.895418][T28844]  </TASK>
22:52:33 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x5}, 0x0)

22:52:33 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xfffffff0)

[ 1663.935697][T28848] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1663.989087][T28848] __nla_validate_parse: 1 callbacks suppressed
[ 1663.989104][T28848] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1664.034009][T28848] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1664.034009][T28848] !'
[ 1664.044906][T28848] CPU: 1 PID: 28848 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1664.053708][T28848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1664.063775][T28848] Call Trace:
[ 1664.067049][T28848]  <TASK>
[ 1664.069975][T28848]  dump_stack_lvl+0x201/0x2d8
[ 1664.074649][T28848]  ? show_regs_print_info+0x12/0x12
[ 1664.079845][T28848]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1664.085603][T28848]  sysfs_warn_dup+0x8c/0xa0
[ 1664.090127][T28848]  sysfs_do_create_link_sd+0xbe/0x100
[ 1664.095514][T28848]  device_add+0x9ea/0x16d0
[ 1664.099933][T28848]  ? wiphy_register+0x1b93/0x2a50
[ 1664.104991][T28848]  ? virtual_device_parent+0x50/0x50
[ 1664.110299][T28848]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1664.116300][T28848]  wiphy_register+0x1ba2/0x2a50
[ 1664.121151][T28848]  ? cfg80211_event_work+0x40/0x40
[ 1664.126271][T28848]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1664.132355][T28848]  ieee80211_register_hw+0x3063/0x3e10
[ 1664.137822][T28848]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1664.143625][T28848]  ? memset+0x1f/0x40
[ 1664.147637][T28848]  ? __hrtimer_init+0x173/0x250
[ 1664.152524][T28848]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1664.158255][T28848]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1664.163370][T28848]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1664.169714][T28848]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1664.176043][T28848]  genl_rcv_msg+0x1032/0x1480
[ 1664.180722][T28848]  ? genl_bind+0x360/0x360
[ 1664.185135][T28848]  ? __lock_acquire+0x1382/0x2b00
[ 1664.190162][T28848]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1664.195781][T28848]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1664.202105][T28848]  netlink_rcv_skb+0x200/0x470
[ 1664.206858][T28848]  ? genl_bind+0x360/0x360
[ 1664.211281][T28848]  ? netlink_ack+0xb70/0xb70
[ 1664.215857][T28848]  ? __down_read_common+0x1b0/0x450
[ 1664.221050][T28848]  ? up_read_non_owner+0x1c0/0x1c0
[ 1664.226148][T28848]  ? netlink_deliver_tap+0x130/0x880
[ 1664.231528][T28848]  genl_rcv+0x24/0x40
[ 1664.235525][T28848]  netlink_unicast+0x814/0x9f0
[ 1664.240299][T28848]  ? netlink_detachskb+0xa0/0xa0
[ 1664.245319][T28848]  ? __virt_addr_valid+0xb8/0x2d0
[ 1664.250364][T28848]  ? __phys_addr_symbol+0x2b/0x70
[ 1664.255389][T28848]  ? __check_object_size+0x2f3/0x3f0
[ 1664.260676][T28848]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1664.265781][T28848]  netlink_sendmsg+0xaea/0xe60
[ 1664.270546][T28848]  ? memcpy+0x3c/0x60
[ 1664.274542][T28848]  ? netlink_getsockopt+0xa60/0xa60
[ 1664.279771][T28848]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1664.285057][T28848]  ? security_socket_sendmsg+0x9d/0xb0
[ 1664.290535][T28848]  ? netlink_getsockopt+0xa60/0xa60
[ 1664.295758][T28848]  ____sys_sendmsg+0x5b9/0x910
[ 1664.300545][T28848]  ? __sys_sendmsg_sock+0x30/0x30
[ 1664.305589][T28848]  __sys_sendmsg+0x280/0x370
[ 1664.310206][T28848]  ? ____sys_sendmsg+0x910/0x910
[ 1664.315180][T28848]  ? __context_tracking_exit+0x7a/0xd0
[ 1664.320685][T28848]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1664.326684][T28848]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1664.332786][T28848]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1664.338771][T28848]  ? lockdep_hardirqs_on+0x95/0x140
[ 1664.344066][T28848]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1664.350043][T28848]  do_syscall_64+0x44/0xd0
[ 1664.354456][T28848]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1664.360342][T28848] RIP: 0033:0x7ffbc7e82e99
[ 1664.364768][T28848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1664.384451][T28848] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1664.392862][T28848] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1664.400841][T28848] RDX: 0000000000100000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1664.408862][T28848] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1664.416835][T28848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1664.424791][T28848] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1664.432763][T28848]  </TASK>
22:52:34 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x600300)

22:52:34 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f0170dd1bd", 0x33fe0}], 0x1}, 0x0)

22:52:34 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xfffffffd)

[ 1664.442352][T28854] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
[ 1664.472040][T28854] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1664.504399][T28854] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1664.504399][T28854] !'
[ 1664.517994][T28854] CPU: 0 PID: 28854 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1664.526802][T28854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1664.536877][T28854] Call Trace:
[ 1664.540175][T28854]  <TASK>
[ 1664.543122][T28854]  dump_stack_lvl+0x201/0x2d8
[ 1664.547826][T28854]  ? show_regs_print_info+0x12/0x12
[ 1664.553044][T28854]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1664.558919][T28854]  sysfs_warn_dup+0x8c/0xa0
[ 1664.563779][T28854]  sysfs_do_create_link_sd+0xbe/0x100
[ 1664.569151][T28854]  device_add+0x9ea/0x16d0
[ 1664.573573][T28854]  ? wiphy_register+0x1b93/0x2a50
[ 1664.578593][T28854]  ? virtual_device_parent+0x50/0x50
[ 1664.583874][T28854]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1664.589863][T28854]  wiphy_register+0x1ba2/0x2a50
[ 1664.597240][T28854]  ? cfg80211_event_work+0x40/0x40
[ 1664.602355][T28854]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1664.608426][T28854]  ieee80211_register_hw+0x3063/0x3e10
[ 1664.613902][T28854]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1664.619712][T28854]  ? memset+0x1f/0x40
[ 1664.623688][T28854]  ? __hrtimer_init+0x173/0x250
[ 1664.628535][T28854]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1664.634273][T28854]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1664.639383][T28854]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1664.645715][T28854]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1664.652049][T28854]  genl_rcv_msg+0x1032/0x1480
[ 1664.656728][T28854]  ? genl_bind+0x360/0x360
[ 1664.661147][T28854]  ? __lock_acquire+0x1382/0x2b00
[ 1664.666184][T28854]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1664.671823][T28854]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1664.678162][T28854]  netlink_rcv_skb+0x200/0x470
[ 1664.682922][T28854]  ? genl_bind+0x360/0x360
[ 1664.687350][T28854]  ? netlink_ack+0xb70/0xb70
[ 1664.691928][T28854]  ? __down_read_common+0x1b0/0x450
[ 1664.697120][T28854]  ? up_read_non_owner+0x1c0/0x1c0
[ 1664.702217][T28854]  ? netlink_deliver_tap+0x130/0x880
[ 1664.707504][T28854]  genl_rcv+0x24/0x40
[ 1664.711481][T28854]  netlink_unicast+0x814/0x9f0
[ 1664.716244][T28854]  ? netlink_detachskb+0xa0/0xa0
[ 1664.721173][T28854]  ? __virt_addr_valid+0xb8/0x2d0
[ 1664.726187][T28854]  ? __phys_addr_symbol+0x2b/0x70
[ 1664.731201][T28854]  ? __check_object_size+0x2f3/0x3f0
[ 1664.736481][T28854]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1664.741589][T28854]  netlink_sendmsg+0xaea/0xe60
[ 1664.746346][T28854]  ? memcpy+0x3c/0x60
[ 1664.750327][T28854]  ? netlink_getsockopt+0xa60/0xa60
[ 1664.755530][T28854]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1664.760803][T28854]  ? security_socket_sendmsg+0x9d/0xb0
[ 1664.766257][T28854]  ? netlink_getsockopt+0xa60/0xa60
[ 1664.771550][T28854]  ____sys_sendmsg+0x5b9/0x910
[ 1664.776314][T28854]  ? __sys_sendmsg_sock+0x30/0x30
[ 1664.781432][T28854]  __sys_sendmsg+0x280/0x370
[ 1664.786023][T28854]  ? ____sys_sendmsg+0x910/0x910
[ 1664.790966][T28854]  ? __context_tracking_exit+0x7a/0xd0
[ 1664.796428][T28854]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1664.802409][T28854]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1664.808389][T28854]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1664.814357][T28854]  ? lockdep_hardirqs_on+0x95/0x140
[ 1664.819547][T28854]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1664.825526][T28854]  do_syscall_64+0x44/0xd0
[ 1664.829943][T28854]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1664.835843][T28854] RIP: 0033:0x7f5163f51e99
[ 1664.840252][T28854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1664.859848][T28854] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1664.868340][T28854] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1664.876302][T28854] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1664.884265][T28854] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1664.892223][T28854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1664.900190][T28854] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1664.908165][T28854]  </TASK>
[ 1664.918114][T28866] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:52:34 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x304e0}], 0x1}, 0x0)

22:52:34 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xfffffffe)

[ 1664.948662][T28866] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1664.948662][T28866] !'
[ 1664.960500][T28866] CPU: 0 PID: 28866 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1664.969309][T28866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1664.979396][T28866] Call Trace:
[ 1664.982697][T28866]  <TASK>
[ 1664.985643][T28866]  dump_stack_lvl+0x201/0x2d8
[ 1664.990355][T28866]  ? show_regs_print_info+0x12/0x12
22:52:34 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1000000000)

[ 1664.995580][T28866]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1665.001353][T28866]  sysfs_warn_dup+0x8c/0xa0
[ 1665.005878][T28866]  sysfs_do_create_link_sd+0xbe/0x100
[ 1665.011274][T28866]  device_add+0x9ea/0x16d0
[ 1665.015711][T28866]  ? wiphy_register+0x1b93/0x2a50
[ 1665.020776][T28866]  ? virtual_device_parent+0x50/0x50
[ 1665.026079][T28866]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1665.032091][T28866]  wiphy_register+0x1ba2/0x2a50
[ 1665.036980][T28866]  ? cfg80211_event_work+0x40/0x40
[ 1665.042126][T28866]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1665.048261][T28866]  ieee80211_register_hw+0x3063/0x3e10
[ 1665.053769][T28866]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1665.059610][T28866]  ? memset+0x1f/0x40
[ 1665.063589][T28866]  ? __hrtimer_init+0x173/0x250
[ 1665.068432][T28866]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1665.074194][T28866]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1665.079319][T28866]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1665.085645][T28866]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1665.091971][T28866]  genl_rcv_msg+0x1032/0x1480
[ 1665.096666][T28866]  ? genl_bind+0x360/0x360
[ 1665.101082][T28866]  ? __lock_acquire+0x1382/0x2b00
[ 1665.106114][T28866]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1665.111733][T28866]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1665.118063][T28866]  netlink_rcv_skb+0x200/0x470
[ 1665.122829][T28866]  ? genl_bind+0x360/0x360
[ 1665.127260][T28866]  ? netlink_ack+0xb70/0xb70
[ 1665.131856][T28866]  ? __down_read_common+0x1b0/0x450
[ 1665.137066][T28866]  ? up_read_non_owner+0x1c0/0x1c0
[ 1665.142169][T28866]  ? netlink_deliver_tap+0x130/0x880
[ 1665.147472][T28866]  genl_rcv+0x24/0x40
[ 1665.151460][T28866]  netlink_unicast+0x814/0x9f0
[ 1665.156219][T28866]  ? netlink_detachskb+0xa0/0xa0
[ 1665.161148][T28866]  ? __virt_addr_valid+0xb8/0x2d0
[ 1665.166183][T28866]  ? __phys_addr_symbol+0x2b/0x70
[ 1665.172018][T28866]  ? __check_object_size+0x2f3/0x3f0
[ 1665.177299][T28866]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1665.182421][T28866]  netlink_sendmsg+0xaea/0xe60
[ 1665.187181][T28866]  ? memcpy+0x3c/0x60
[ 1665.191171][T28866]  ? netlink_getsockopt+0xa60/0xa60
[ 1665.196386][T28866]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1665.201657][T28866]  ? security_socket_sendmsg+0x9d/0xb0
[ 1665.207105][T28866]  ? netlink_getsockopt+0xa60/0xa60
[ 1665.212292][T28866]  ____sys_sendmsg+0x5b9/0x910
[ 1665.217064][T28866]  ? __sys_sendmsg_sock+0x30/0x30
[ 1665.222093][T28866]  __sys_sendmsg+0x280/0x370
[ 1665.226811][T28866]  ? ____sys_sendmsg+0x910/0x910
[ 1665.231745][T28866]  ? __context_tracking_exit+0x7a/0xd0
[ 1665.237218][T28866]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1665.243241][T28866]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1665.249218][T28866]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1665.255192][T28866]  ? lockdep_hardirqs_on+0x95/0x140
[ 1665.260396][T28866]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1665.266376][T28866]  do_syscall_64+0x44/0xd0
[ 1665.270842][T28866]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1665.276750][T28866] RIP: 0033:0x7fda9f984e99
[ 1665.281153][T28866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1665.300755][T28866] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1665.309197][T28866] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1665.317177][T28866] RDX: 0000000000100000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1665.325322][T28866] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1665.333307][T28866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1665.341290][T28866] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1665.349302][T28866]  </TASK>
[ 1665.370236][T28868] nla_validate_range_unsigned: 1 callbacks suppressed
[ 1665.370254][T28868] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
22:52:35 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x600300)

[ 1665.406234][T28868] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1665.421434][T28868] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1665.421434][T28868] !'
[ 1665.434029][T28868] CPU: 1 PID: 28868 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1665.442825][T28868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1665.452896][T28868] Call Trace:
[ 1665.456183][T28868]  <TASK>
[ 1665.459123][T28868]  dump_stack_lvl+0x201/0x2d8
[ 1665.463820][T28868]  ? show_regs_print_info+0x12/0x12
[ 1665.469048][T28868]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1665.474833][T28868]  sysfs_warn_dup+0x8c/0xa0
[ 1665.479361][T28868]  sysfs_do_create_link_sd+0xbe/0x100
[ 1665.484748][T28868]  device_add+0x9ea/0x16d0
[ 1665.489152][T28868]  ? wiphy_register+0x1b93/0x2a50
[ 1665.494173][T28868]  ? virtual_device_parent+0x50/0x50
[ 1665.499444][T28868]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1665.505431][T28868]  wiphy_register+0x1ba2/0x2a50
[ 1665.510301][T28868]  ? cfg80211_event_work+0x40/0x40
[ 1665.515412][T28868]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1665.521482][T28868]  ieee80211_register_hw+0x3063/0x3e10
[ 1665.526959][T28868]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1665.532770][T28868]  ? memset+0x1f/0x40
[ 1665.536754][T28868]  ? __hrtimer_init+0x173/0x250
[ 1665.541596][T28868]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1665.547341][T28868]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1665.552475][T28868]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1665.558822][T28868]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1665.565149][T28868]  genl_rcv_msg+0x1032/0x1480
[ 1665.569823][T28868]  ? genl_bind+0x360/0x360
[ 1665.574251][T28868]  ? __lock_acquire+0x1382/0x2b00
[ 1665.579297][T28868]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1665.584919][T28868]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1665.591241][T28868]  netlink_rcv_skb+0x200/0x470
[ 1665.595996][T28868]  ? genl_bind+0x360/0x360
[ 1665.600408][T28868]  ? netlink_ack+0xb70/0xb70
[ 1665.604983][T28868]  ? __down_read_common+0x1b0/0x450
[ 1665.610177][T28868]  ? up_read_non_owner+0x1c0/0x1c0
[ 1665.615276][T28868]  ? netlink_deliver_tap+0x130/0x880
[ 1665.620560][T28868]  genl_rcv+0x24/0x40
[ 1665.624540][T28868]  netlink_unicast+0x814/0x9f0
[ 1665.629298][T28868]  ? netlink_detachskb+0xa0/0xa0
[ 1665.634234][T28868]  ? __virt_addr_valid+0xb8/0x2d0
[ 1665.639266][T28868]  ? __phys_addr_symbol+0x2b/0x70
[ 1665.644278][T28868]  ? __check_object_size+0x2f3/0x3f0
[ 1665.649557][T28868]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1665.654669][T28868]  netlink_sendmsg+0xaea/0xe60
[ 1665.659429][T28868]  ? memcpy+0x3c/0x60
[ 1665.663421][T28868]  ? netlink_getsockopt+0xa60/0xa60
[ 1665.668613][T28868]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1665.673886][T28868]  ? security_socket_sendmsg+0x9d/0xb0
[ 1665.679332][T28868]  ? netlink_getsockopt+0xa60/0xa60
[ 1665.684518][T28868]  ____sys_sendmsg+0x5b9/0x910
[ 1665.689308][T28868]  ? __sys_sendmsg_sock+0x30/0x30
[ 1665.694330][T28868]  __sys_sendmsg+0x280/0x370
[ 1665.698917][T28868]  ? ____sys_sendmsg+0x910/0x910
[ 1665.703875][T28868]  ? __context_tracking_exit+0x7a/0xd0
[ 1665.709367][T28868]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1665.715362][T28868]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1665.721341][T28868]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1665.727318][T28868]  ? lockdep_hardirqs_on+0x95/0x140
[ 1665.732522][T28868]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1665.738523][T28868]  do_syscall_64+0x44/0xd0
[ 1665.742945][T28868]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1665.748944][T28868] RIP: 0033:0x7fbee7a71e99
[ 1665.753351][T28868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1665.773038][T28868] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1665.781461][T28868] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1665.789458][T28868] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1665.797573][T28868] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1665.805547][T28868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1665.813513][T28868] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1665.821498][T28868]  </TASK>
22:52:35 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x5}, 0x0)

[ 1665.852393][T28874] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 1665.864514][T28874] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1665.880580][T28874] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1665.880580][T28874] !'
[ 1665.897829][T28874] CPU: 0 PID: 28874 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1665.906632][T28874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1665.916697][T28874] Call Trace:
[ 1665.920092][T28874]  <TASK>
[ 1665.923043][T28874]  dump_stack_lvl+0x201/0x2d8
[ 1665.927747][T28874]  ? show_regs_print_info+0x12/0x12
[ 1665.932965][T28874]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1665.938715][T28874]  sysfs_warn_dup+0x8c/0xa0
[ 1665.943227][T28874]  sysfs_do_create_link_sd+0xbe/0x100
[ 1665.948591][T28874]  device_add+0x9ea/0x16d0
[ 1665.952996][T28874]  ? wiphy_register+0x1b93/0x2a50
[ 1665.958015][T28874]  ? virtual_device_parent+0x50/0x50
[ 1665.963289][T28874]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1665.969368][T28874]  wiphy_register+0x1ba2/0x2a50
[ 1665.974239][T28874]  ? cfg80211_event_work+0x40/0x40
[ 1665.979348][T28874]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1665.985407][T28874]  ieee80211_register_hw+0x3063/0x3e10
[ 1665.990873][T28874]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1665.996686][T28874]  ? memset+0x1f/0x40
[ 1666.000667][T28874]  ? __hrtimer_init+0x173/0x250
[ 1666.005553][T28874]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1666.011305][T28874]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1666.016421][T28874]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1666.022764][T28874]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1666.029097][T28874]  genl_rcv_msg+0x1032/0x1480
[ 1666.033792][T28874]  ? genl_bind+0x360/0x360
[ 1666.038203][T28874]  ? __lock_acquire+0x1382/0x2b00
[ 1666.043234][T28874]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1666.048892][T28874]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1666.055243][T28874]  netlink_rcv_skb+0x200/0x470
[ 1666.060006][T28874]  ? genl_bind+0x360/0x360
[ 1666.064413][T28874]  ? netlink_ack+0xb70/0xb70
[ 1666.068986][T28874]  ? __down_read_common+0x1b0/0x450
[ 1666.074178][T28874]  ? up_read_non_owner+0x1c0/0x1c0
[ 1666.079287][T28874]  ? netlink_deliver_tap+0x130/0x880
[ 1666.084587][T28874]  genl_rcv+0x24/0x40
[ 1666.088566][T28874]  netlink_unicast+0x814/0x9f0
[ 1666.093541][T28874]  ? netlink_detachskb+0xa0/0xa0
[ 1666.098474][T28874]  ? __virt_addr_valid+0xb8/0x2d0
[ 1666.103654][T28874]  ? __phys_addr_symbol+0x2b/0x70
[ 1666.108798][T28874]  ? __check_object_size+0x2f3/0x3f0
[ 1666.114073][T28874]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1666.119360][T28874]  netlink_sendmsg+0xaea/0xe60
[ 1666.124138][T28874]  ? memcpy+0x3c/0x60
[ 1666.128119][T28874]  ? netlink_getsockopt+0xa60/0xa60
[ 1666.133336][T28874]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1666.138623][T28874]  ? security_socket_sendmsg+0x9d/0xb0
[ 1666.144099][T28874]  ? netlink_getsockopt+0xa60/0xa60
[ 1666.149293][T28874]  ____sys_sendmsg+0x5b9/0x910
[ 1666.154084][T28874]  ? __sys_sendmsg_sock+0x30/0x30
[ 1666.159119][T28874]  __sys_sendmsg+0x280/0x370
[ 1666.163730][T28874]  ? ____sys_sendmsg+0x910/0x910
[ 1666.168680][T28874]  ? __context_tracking_exit+0x7a/0xd0
[ 1666.174137][T28874]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1666.180195][T28874]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1666.186172][T28874]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1666.192138][T28874]  ? lockdep_hardirqs_on+0x95/0x140
[ 1666.197335][T28874]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1666.203539][T28874]  do_syscall_64+0x44/0xd0
[ 1666.207950][T28874]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1666.213924][T28874] RIP: 0033:0x7fd6114efe99
[ 1666.218329][T28874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1666.238066][T28874] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1666.246474][T28874] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1666.254609][T28874] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1666.262575][T28874] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1666.270548][T28874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1666.278537][T28874] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1666.286516][T28874]  </TASK>
22:52:35 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f0170dd1bd", 0x33fe0}], 0x1}, 0x0)

[ 1666.309155][T28876] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1666.317361][T28876] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1666.341364][T28876] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1666.341364][T28876] !'
[ 1666.352032][T28876] CPU: 1 PID: 28876 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1666.360910][T28876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1666.370981][T28876] Call Trace:
[ 1666.374275][T28876]  <TASK>
[ 1666.377223][T28876]  dump_stack_lvl+0x201/0x2d8
[ 1666.381935][T28876]  ? show_regs_print_info+0x12/0x12
[ 1666.387156][T28876]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1666.392881][T28876]  sysfs_warn_dup+0x8c/0xa0
[ 1666.397379][T28876]  sysfs_do_create_link_sd+0xbe/0x100
[ 1666.402749][T28876]  device_add+0x9ea/0x16d0
[ 1666.407163][T28876]  ? wiphy_register+0x1b93/0x2a50
[ 1666.412208][T28876]  ? virtual_device_parent+0x50/0x50
[ 1666.417482][T28876]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1666.423459][T28876]  wiphy_register+0x1ba2/0x2a50
[ 1666.428310][T28876]  ? cfg80211_event_work+0x40/0x40
[ 1666.433428][T28876]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1666.439489][T28876]  ieee80211_register_hw+0x3063/0x3e10
[ 1666.444952][T28876]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1666.450754][T28876]  ? memset+0x1f/0x40
[ 1666.454743][T28876]  ? __hrtimer_init+0x173/0x250
[ 1666.459735][T28876]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1666.465471][T28876]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1666.470595][T28876]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1666.476943][T28876]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1666.483287][T28876]  genl_rcv_msg+0x1032/0x1480
[ 1666.487972][T28876]  ? genl_bind+0x360/0x360
[ 1666.492383][T28876]  ? __lock_acquire+0x1382/0x2b00
[ 1666.497413][T28876]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1666.503034][T28876]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1666.509365][T28876]  netlink_rcv_skb+0x200/0x470
[ 1666.514131][T28876]  ? genl_bind+0x360/0x360
[ 1666.518563][T28876]  ? netlink_ack+0xb70/0xb70
[ 1666.523157][T28876]  ? __down_read_common+0x1b0/0x450
[ 1666.528373][T28876]  ? up_read_non_owner+0x1c0/0x1c0
[ 1666.533495][T28876]  ? netlink_deliver_tap+0x130/0x880
[ 1666.538808][T28876]  genl_rcv+0x24/0x40
[ 1666.542798][T28876]  netlink_unicast+0x814/0x9f0
[ 1666.547734][T28876]  ? netlink_detachskb+0xa0/0xa0
[ 1666.552663][T28876]  ? __virt_addr_valid+0xb8/0x2d0
[ 1666.557684][T28876]  ? __phys_addr_symbol+0x2b/0x70
[ 1666.562703][T28876]  ? __check_object_size+0x2f3/0x3f0
[ 1666.568000][T28876]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1666.573113][T28876]  netlink_sendmsg+0xaea/0xe60
[ 1666.577878][T28876]  ? memcpy+0x3c/0x60
[ 1666.581870][T28876]  ? netlink_getsockopt+0xa60/0xa60
[ 1666.587062][T28876]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1666.592337][T28876]  ? security_socket_sendmsg+0x9d/0xb0
[ 1666.597807][T28876]  ? netlink_getsockopt+0xa60/0xa60
[ 1666.602995][T28876]  ____sys_sendmsg+0x5b9/0x910
[ 1666.607771][T28876]  ? __sys_sendmsg_sock+0x30/0x30
[ 1666.612821][T28876]  __sys_sendmsg+0x280/0x370
[ 1666.617409][T28876]  ? ____sys_sendmsg+0x910/0x910
[ 1666.622376][T28876]  ? __context_tracking_exit+0x7a/0xd0
[ 1666.627852][T28876]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1666.633820][T28876]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1666.639801][T28876]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1666.645777][T28876]  ? lockdep_hardirqs_on+0x95/0x140
[ 1666.650989][T28876]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1666.656970][T28876]  do_syscall_64+0x44/0xd0
[ 1666.661403][T28876]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1666.667304][T28876] RIP: 0033:0x7ffbc7e82e99
[ 1666.671711][T28876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1666.691311][T28876] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1666.699721][T28876] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1666.707703][T28876] RDX: 0000000000600300 RSI: 0000000020000000 RDI: 0000000000000003
[ 1666.715665][T28876] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1666.723623][T28876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1666.731583][T28876] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1666.739559][T28876]  </TASK>
22:52:36 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe0ffff)

[ 1666.763611][T28880] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
[ 1666.785269][T28880] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1666.798273][T28880] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1666.798273][T28880] !'
[ 1666.820528][T28880] CPU: 1 PID: 28880 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1666.829421][T28880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1666.839495][T28880] Call Trace:
[ 1666.842791][T28880]  <TASK>
[ 1666.845742][T28880]  dump_stack_lvl+0x201/0x2d8
[ 1666.850443][T28880]  ? show_regs_print_info+0x12/0x12
[ 1666.855662][T28880]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1666.861426][T28880]  sysfs_warn_dup+0x8c/0xa0
[ 1666.865949][T28880]  sysfs_do_create_link_sd+0xbe/0x100
[ 1666.871345][T28880]  device_add+0x9ea/0x16d0
[ 1666.875773][T28880]  ? wiphy_register+0x1b93/0x2a50
[ 1666.880829][T28880]  ? virtual_device_parent+0x50/0x50
[ 1666.886294][T28880]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1666.892278][T28880]  wiphy_register+0x1ba2/0x2a50
[ 1666.897161][T28880]  ? cfg80211_event_work+0x40/0x40
[ 1666.902304][T28880]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1666.908385][T28880]  ieee80211_register_hw+0x3063/0x3e10
[ 1666.913938][T28880]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1666.919745][T28880]  ? memset+0x1f/0x40
[ 1666.923727][T28880]  ? __hrtimer_init+0x173/0x250
[ 1666.928593][T28880]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1666.934319][T28880]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1666.939434][T28880]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1666.945866][T28880]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1666.952203][T28880]  genl_rcv_msg+0x1032/0x1480
[ 1666.956885][T28880]  ? genl_bind+0x360/0x360
[ 1666.961310][T28880]  ? __lock_acquire+0x1382/0x2b00
[ 1666.966369][T28880]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1666.972033][T28880]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1666.978398][T28880]  netlink_rcv_skb+0x200/0x470
[ 1666.983170][T28880]  ? genl_bind+0x360/0x360
[ 1666.987684][T28880]  ? netlink_ack+0xb70/0xb70
[ 1666.992265][T28880]  ? __down_read_common+0x1b0/0x450
[ 1666.997483][T28880]  ? up_read_non_owner+0x1c0/0x1c0
[ 1667.002578][T28880]  ? netlink_deliver_tap+0x130/0x880
[ 1667.007872][T28880]  genl_rcv+0x24/0x40
[ 1667.011864][T28880]  netlink_unicast+0x814/0x9f0
[ 1667.016636][T28880]  ? netlink_detachskb+0xa0/0xa0
[ 1667.021564][T28880]  ? __virt_addr_valid+0xb8/0x2d0
[ 1667.026596][T28880]  ? __phys_addr_symbol+0x2b/0x70
[ 1667.031621][T28880]  ? __check_object_size+0x2f3/0x3f0
[ 1667.036905][T28880]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1667.042010][T28880]  netlink_sendmsg+0xaea/0xe60
[ 1667.046764][T28880]  ? memcpy+0x3c/0x60
[ 1667.050749][T28880]  ? netlink_getsockopt+0xa60/0xa60
[ 1667.055960][T28880]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1667.061235][T28880]  ? security_socket_sendmsg+0x9d/0xb0
[ 1667.066711][T28880]  ? netlink_getsockopt+0xa60/0xa60
[ 1667.071918][T28880]  ____sys_sendmsg+0x5b9/0x910
[ 1667.076684][T28880]  ? __sys_sendmsg_sock+0x30/0x30
[ 1667.082061][T28880]  __sys_sendmsg+0x280/0x370
[ 1667.086699][T28880]  ? ____sys_sendmsg+0x910/0x910
[ 1667.091653][T28880]  ? __context_tracking_exit+0x7a/0xd0
[ 1667.097127][T28880]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1667.103134][T28880]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1667.109123][T28880]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1667.115113][T28880]  ? lockdep_hardirqs_on+0x95/0x140
[ 1667.120465][T28880]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1667.126442][T28880]  do_syscall_64+0x44/0xd0
[ 1667.130942][T28880]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1667.136826][T28880] RIP: 0033:0x7f5163f51e99
[ 1667.141229][T28880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1667.160916][T28880] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
22:52:36 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1000000)

[ 1667.169333][T28880] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1667.177309][T28880] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1667.185294][T28880] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1667.193280][T28880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1667.201264][T28880] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1667.209272][T28880]  </TASK>
22:52:36 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x304e0}], 0x1}, 0x0)

[ 1667.228501][T28882] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1667.246877][T28882] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1667.265978][T28882] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1667.265978][T28882] !'
[ 1667.298289][T28882] CPU: 1 PID: 28882 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1667.307187][T28882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1667.317271][T28882] Call Trace:
[ 1667.320565][T28882]  <TASK>
[ 1667.323500][T28882]  dump_stack_lvl+0x201/0x2d8
[ 1667.328181][T28882]  ? show_regs_print_info+0x12/0x12
[ 1667.333382][T28882]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1667.339101][T28882]  sysfs_warn_dup+0x8c/0xa0
[ 1667.343678][T28882]  sysfs_do_create_link_sd+0xbe/0x100
[ 1667.349144][T28882]  device_add+0x9ea/0x16d0
[ 1667.353560][T28882]  ? wiphy_register+0x1b93/0x2a50
[ 1667.358759][T28882]  ? virtual_device_parent+0x50/0x50
[ 1667.364035][T28882]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1667.370017][T28882]  wiphy_register+0x1ba2/0x2a50
[ 1667.374890][T28882]  ? cfg80211_event_work+0x40/0x40
[ 1667.379998][T28882]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1667.386063][T28882]  ieee80211_register_hw+0x3063/0x3e10
[ 1667.391547][T28882]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1667.397377][T28882]  ? memset+0x1f/0x40
[ 1667.401464][T28882]  ? __hrtimer_init+0x173/0x250
[ 1667.406341][T28882]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1667.412126][T28882]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1667.417241][T28882]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1667.423657][T28882]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1667.429996][T28882]  genl_rcv_msg+0x1032/0x1480
[ 1667.434810][T28882]  ? genl_bind+0x360/0x360
[ 1667.439231][T28882]  ? __lock_acquire+0x1382/0x2b00
[ 1667.444273][T28882]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1667.449935][T28882]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1667.456295][T28882]  netlink_rcv_skb+0x200/0x470
[ 1667.461084][T28882]  ? genl_bind+0x360/0x360
[ 1667.465495][T28882]  ? netlink_ack+0xb70/0xb70
[ 1667.470177][T28882]  ? __down_read_common+0x1b0/0x450
[ 1667.475370][T28882]  ? up_read_non_owner+0x1c0/0x1c0
[ 1667.480480][T28882]  ? netlink_deliver_tap+0x130/0x880
[ 1667.485782][T28882]  genl_rcv+0x24/0x40
[ 1667.489756][T28882]  netlink_unicast+0x814/0x9f0
[ 1667.494510][T28882]  ? netlink_detachskb+0xa0/0xa0
[ 1667.499436][T28882]  ? __virt_addr_valid+0xb8/0x2d0
[ 1667.504457][T28882]  ? __phys_addr_symbol+0x2b/0x70
[ 1667.509472][T28882]  ? __check_object_size+0x2f3/0x3f0
[ 1667.514756][T28882]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1667.519867][T28882]  netlink_sendmsg+0xaea/0xe60
[ 1667.524639][T28882]  ? memcpy+0x3c/0x60
[ 1667.528672][T28882]  ? netlink_getsockopt+0xa60/0xa60
[ 1667.533869][T28882]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1667.539142][T28882]  ? security_socket_sendmsg+0x9d/0xb0
[ 1667.544611][T28882]  ? netlink_getsockopt+0xa60/0xa60
[ 1667.549806][T28882]  ____sys_sendmsg+0x5b9/0x910
[ 1667.554574][T28882]  ? __sys_sendmsg_sock+0x30/0x30
[ 1667.559608][T28882]  __sys_sendmsg+0x280/0x370
[ 1667.564188][T28882]  ? ____sys_sendmsg+0x910/0x910
[ 1667.569124][T28882]  ? __context_tracking_exit+0x7a/0xd0
[ 1667.574580][T28882]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1667.580558][T28882]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1667.586545][T28882]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1667.592513][T28882]  ? lockdep_hardirqs_on+0x95/0x140
[ 1667.597704][T28882]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1667.603696][T28882]  do_syscall_64+0x44/0xd0
[ 1667.608102][T28882]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1667.613984][T28882] RIP: 0033:0x7f3e3559fe99
[ 1667.618387][T28882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1667.637986][T28882] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1667.646394][T28882] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1667.654370][T28882] RDX: 0000001000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1667.662336][T28882] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1667.670305][T28882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1667.678267][T28882] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1667.686241][T28882]  </TASK>
22:52:37 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x100000000000)

[ 1667.708769][T28884] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1667.722286][T28884] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1667.737108][T28884] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1667.737108][T28884] !'
[ 1667.758987][T28884] CPU: 1 PID: 28884 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1667.767789][T28884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1667.777995][T28884] Call Trace:
[ 1667.781274][T28884]  <TASK>
[ 1667.784206][T28884]  dump_stack_lvl+0x201/0x2d8
[ 1667.788912][T28884]  ? show_regs_print_info+0x12/0x12
[ 1667.794123][T28884]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1667.799842][T28884]  sysfs_warn_dup+0x8c/0xa0
[ 1667.804337][T28884]  sysfs_do_create_link_sd+0xbe/0x100
[ 1667.809701][T28884]  device_add+0x9ea/0x16d0
[ 1667.814115][T28884]  ? wiphy_register+0x1b93/0x2a50
[ 1667.819163][T28884]  ? virtual_device_parent+0x50/0x50
[ 1667.824435][T28884]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1667.830420][T28884]  wiphy_register+0x1ba2/0x2a50
[ 1667.835290][T28884]  ? cfg80211_event_work+0x40/0x40
[ 1667.840488][T28884]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1667.846552][T28884]  ieee80211_register_hw+0x3063/0x3e10
[ 1667.852015][T28884]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1667.857818][T28884]  ? memset+0x1f/0x40
[ 1667.861792][T28884]  ? __hrtimer_init+0x173/0x250
[ 1667.866653][T28884]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1667.872425][T28884]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1667.877551][T28884]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1667.883876][T28884]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1667.890203][T28884]  genl_rcv_msg+0x1032/0x1480
[ 1667.894914][T28884]  ? genl_bind+0x360/0x360
[ 1667.899342][T28884]  ? __lock_acquire+0x1382/0x2b00
[ 1667.904401][T28884]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1667.910213][T28884]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1667.916555][T28884]  netlink_rcv_skb+0x200/0x470
[ 1667.921315][T28884]  ? genl_bind+0x360/0x360
[ 1667.925738][T28884]  ? netlink_ack+0xb70/0xb70
[ 1667.930313][T28884]  ? __down_read_common+0x1b0/0x450
[ 1667.935505][T28884]  ? up_read_non_owner+0x1c0/0x1c0
[ 1667.940618][T28884]  ? netlink_deliver_tap+0x130/0x880
[ 1667.946092][T28884]  genl_rcv+0x24/0x40
[ 1667.950083][T28884]  netlink_unicast+0x814/0x9f0
[ 1667.954957][T28884]  ? netlink_detachskb+0xa0/0xa0
[ 1667.959888][T28884]  ? __virt_addr_valid+0xb8/0x2d0
[ 1667.964907][T28884]  ? __phys_addr_symbol+0x2b/0x70
[ 1667.969922][T28884]  ? __check_object_size+0x2f3/0x3f0
[ 1667.975372][T28884]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1667.980481][T28884]  netlink_sendmsg+0xaea/0xe60
[ 1667.985263][T28884]  ? memcpy+0x3c/0x60
[ 1667.989244][T28884]  ? netlink_getsockopt+0xa60/0xa60
[ 1667.994444][T28884]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1667.999732][T28884]  ? security_socket_sendmsg+0x9d/0xb0
[ 1668.005195][T28884]  ? netlink_getsockopt+0xa60/0xa60
[ 1668.010381][T28884]  ____sys_sendmsg+0x5b9/0x910
[ 1668.015139][T28884]  ? __sys_sendmsg_sock+0x30/0x30
[ 1668.020170][T28884]  __sys_sendmsg+0x280/0x370
[ 1668.024867][T28884]  ? ____sys_sendmsg+0x910/0x910
[ 1668.029813][T28884]  ? __context_tracking_exit+0x7a/0xd0
[ 1668.035351][T28884]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1668.041318][T28884]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1668.047302][T28884]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1668.053285][T28884]  ? lockdep_hardirqs_on+0x95/0x140
[ 1668.058468][T28884]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1668.064439][T28884]  do_syscall_64+0x44/0xd0
[ 1668.068868][T28884]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1668.074760][T28884] RIP: 0033:0x7fda9f984e99
[ 1668.079165][T28884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1668.098761][T28884] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1668.107172][T28884] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1668.115137][T28884] RDX: 0000000000600300 RSI: 0000000020000000 RDI: 0000000000000003
[ 1668.123127][T28884] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1668.131106][T28884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1668.139074][T28884] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1668.147046][T28884]  </TASK>
22:52:37 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1000000)

[ 1668.173571][T28886] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1668.185083][T28886] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1668.208640][T28886] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1668.208640][T28886] !'
[ 1668.229431][T28886] CPU: 1 PID: 28886 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1668.238232][T28886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1668.248302][T28886] Call Trace:
[ 1668.251585][T28886]  <TASK>
[ 1668.254523][T28886]  dump_stack_lvl+0x201/0x2d8
[ 1668.259322][T28886]  ? show_regs_print_info+0x12/0x12
[ 1668.264510][T28886]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1668.270246][T28886]  sysfs_warn_dup+0x8c/0xa0
[ 1668.274765][T28886]  sysfs_do_create_link_sd+0xbe/0x100
[ 1668.280132][T28886]  device_add+0x9ea/0x16d0
[ 1668.284534][T28886]  ? wiphy_register+0x1b93/0x2a50
[ 1668.289553][T28886]  ? virtual_device_parent+0x50/0x50
[ 1668.294821][T28886]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1668.300897][T28886]  wiphy_register+0x1ba2/0x2a50
[ 1668.305758][T28886]  ? cfg80211_event_work+0x40/0x40
[ 1668.310885][T28886]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1668.316969][T28886]  ieee80211_register_hw+0x3063/0x3e10
[ 1668.322435][T28886]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1668.328236][T28886]  ? memset+0x1f/0x40
[ 1668.332204][T28886]  ? __hrtimer_init+0x173/0x250
[ 1668.337044][T28886]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1668.342769][T28886]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1668.347870][T28886]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1668.354191][T28886]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1668.360512][T28886]  genl_rcv_msg+0x1032/0x1480
[ 1668.365194][T28886]  ? genl_bind+0x360/0x360
[ 1668.369601][T28886]  ? __lock_acquire+0x1382/0x2b00
[ 1668.374640][T28886]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1668.380263][T28886]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1668.386612][T28886]  netlink_rcv_skb+0x200/0x470
[ 1668.391370][T28886]  ? genl_bind+0x360/0x360
[ 1668.395775][T28886]  ? netlink_ack+0xb70/0xb70
[ 1668.400345][T28886]  ? __down_read_common+0x1b0/0x450
[ 1668.405532][T28886]  ? up_read_non_owner+0x1c0/0x1c0
[ 1668.410625][T28886]  ? netlink_deliver_tap+0x130/0x880
[ 1668.415917][T28886]  genl_rcv+0x24/0x40
[ 1668.419889][T28886]  netlink_unicast+0x814/0x9f0
[ 1668.425250][T28886]  ? netlink_detachskb+0xa0/0xa0
[ 1668.430169][T28886]  ? __virt_addr_valid+0xb8/0x2d0
[ 1668.435176][T28886]  ? __phys_addr_symbol+0x2b/0x70
[ 1668.440182][T28886]  ? __check_object_size+0x2f3/0x3f0
[ 1668.445473][T28886]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1668.450575][T28886]  netlink_sendmsg+0xaea/0xe60
[ 1668.455336][T28886]  ? memcpy+0x3c/0x60
[ 1668.459339][T28886]  ? netlink_getsockopt+0xa60/0xa60
[ 1668.464526][T28886]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1668.469803][T28886]  ? security_socket_sendmsg+0x9d/0xb0
[ 1668.475257][T28886]  ? netlink_getsockopt+0xa60/0xa60
[ 1668.480471][T28886]  ____sys_sendmsg+0x5b9/0x910
[ 1668.485234][T28886]  ? __sys_sendmsg_sock+0x30/0x30
[ 1668.490380][T28886]  __sys_sendmsg+0x280/0x370
[ 1668.495066][T28886]  ? ____sys_sendmsg+0x910/0x910
[ 1668.500010][T28886]  ? __context_tracking_exit+0x7a/0xd0
[ 1668.505485][T28886]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1668.511465][T28886]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1668.517439][T28886]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1668.523410][T28886]  ? lockdep_hardirqs_on+0x95/0x140
[ 1668.528696][T28886]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1668.534690][T28886]  do_syscall_64+0x44/0xd0
[ 1668.539101][T28886]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1668.544982][T28886] RIP: 0033:0x7fbee7a71e99
[ 1668.549383][T28886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1668.568976][T28886] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1668.577394][T28886] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1668.585373][T28886] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1668.593425][T28886] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1668.601387][T28886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1668.609441][T28886] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1668.617440][T28886]  </TASK>
22:52:38 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1668.631394][ T1229] ieee802154 phy0 wpan0: encryption failed: -22
[ 1668.637717][ T1229] ieee802154 phy1 wpan1: encryption failed: -22
[ 1668.649130][T28888] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 1668.687952][T28888] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1668.687952][T28888] !'
[ 1668.727036][T28888] CPU: 1 PID: 28888 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1668.735985][T28888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1668.746063][T28888] Call Trace:
[ 1668.749367][T28888]  <TASK>
[ 1668.752313][T28888]  dump_stack_lvl+0x201/0x2d8
[ 1668.757020][T28888]  ? show_regs_print_info+0x12/0x12
[ 1668.762245][T28888]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1668.768018][T28888]  sysfs_warn_dup+0x8c/0xa0
[ 1668.772646][T28888]  sysfs_do_create_link_sd+0xbe/0x100
[ 1668.778040][T28888]  device_add+0x9ea/0x16d0
[ 1668.782480][T28888]  ? wiphy_register+0x1b93/0x2a50
[ 1668.787540][T28888]  ? virtual_device_parent+0x50/0x50
[ 1668.792839][T28888]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1668.798851][T28888]  wiphy_register+0x1ba2/0x2a50
[ 1668.803736][T28888]  ? cfg80211_event_work+0x40/0x40
[ 1668.808877][T28888]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1668.814968][T28888]  ieee80211_register_hw+0x3063/0x3e10
[ 1668.820569][T28888]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1668.826407][T28888]  ? memset+0x1f/0x40
[ 1668.830406][T28888]  ? __hrtimer_init+0x173/0x250
[ 1668.835282][T28888]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1668.841050][T28888]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1668.846193][T28888]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1668.852555][T28888]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1668.858915][T28888]  genl_rcv_msg+0x1032/0x1480
[ 1668.863625][T28888]  ? genl_bind+0x360/0x360
[ 1668.868072][T28888]  ? __lock_acquire+0x1382/0x2b00
[ 1668.873140][T28888]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1668.878783][T28888]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1668.885151][T28888]  netlink_rcv_skb+0x200/0x470
[ 1668.889938][T28888]  ? genl_bind+0x360/0x360
[ 1668.894372][T28888]  ? netlink_ack+0xb70/0xb70
[ 1668.899066][T28888]  ? __down_read_common+0x1b0/0x450
[ 1668.904278][T28888]  ? up_read_non_owner+0x1c0/0x1c0
[ 1668.909397][T28888]  ? netlink_deliver_tap+0x130/0x880
[ 1668.914717][T28888]  genl_rcv+0x24/0x40
[ 1668.918714][T28888]  netlink_unicast+0x814/0x9f0
[ 1668.923499][T28888]  ? netlink_detachskb+0xa0/0xa0
[ 1668.928444][T28888]  ? __virt_addr_valid+0xb8/0x2d0
[ 1668.933478][T28888]  ? __phys_addr_symbol+0x2b/0x70
[ 1668.938509][T28888]  ? __check_object_size+0x2f3/0x3f0
[ 1668.943805][T28888]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1668.948931][T28888]  netlink_sendmsg+0xaea/0xe60
[ 1668.953713][T28888]  ? memcpy+0x3c/0x60
[ 1668.957720][T28888]  ? netlink_getsockopt+0xa60/0xa60
[ 1668.962938][T28888]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1668.968226][T28888]  ? security_socket_sendmsg+0x9d/0xb0
[ 1668.973698][T28888]  ? netlink_getsockopt+0xa60/0xa60
[ 1668.978908][T28888]  ____sys_sendmsg+0x5b9/0x910
[ 1668.983698][T28888]  ? __sys_sendmsg_sock+0x30/0x30
[ 1668.988752][T28888]  __sys_sendmsg+0x280/0x370
[ 1668.993355][T28888]  ? ____sys_sendmsg+0x910/0x910
[ 1668.998319][T28888]  ? __context_tracking_exit+0x7a/0xd0
[ 1669.003804][T28888]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1669.009795][T28888]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1669.015796][T28888]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1669.021788][T28888]  ? lockdep_hardirqs_on+0x95/0x140
[ 1669.026997][T28888]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1669.032991][T28888]  do_syscall_64+0x44/0xd0
[ 1669.037426][T28888]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1669.043336][T28888] RIP: 0033:0x7fd6114efe99
[ 1669.047759][T28888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1669.067373][T28888] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1669.075802][T28888] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1669.083783][T28888] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1669.091767][T28888] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1669.099748][T28888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1669.107725][T28888] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1669.115727][T28888]  </TASK>
22:52:38 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01709d1bd", 0x33fe0}], 0x1}, 0x0)

22:52:38 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f0170dd1bd", 0x33fe0}], 0x1}, 0x0)

[ 1669.164190][T28892] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1669.186931][T28892] __nla_validate_parse: 1 callbacks suppressed
[ 1669.186949][T28892] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1669.221118][T28892] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1669.221118][T28892] !'
[ 1669.242738][T28892] CPU: 0 PID: 28892 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1669.251555][T28892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1669.261626][T28892] Call Trace:
[ 1669.264920][T28892]  <TASK>
[ 1669.267865][T28892]  dump_stack_lvl+0x201/0x2d8
[ 1669.272569][T28892]  ? show_regs_print_info+0x12/0x12
[ 1669.277795][T28892]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1669.283565][T28892]  sysfs_warn_dup+0x8c/0xa0
[ 1669.288087][T28892]  sysfs_do_create_link_sd+0xbe/0x100
[ 1669.293491][T28892]  device_add+0x9ea/0x16d0
[ 1669.297931][T28892]  ? wiphy_register+0x1b93/0x2a50
[ 1669.302987][T28892]  ? virtual_device_parent+0x50/0x50
[ 1669.308289][T28892]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1669.314297][T28892]  wiphy_register+0x1ba2/0x2a50
[ 1669.319184][T28892]  ? cfg80211_event_work+0x40/0x40
[ 1669.324331][T28892]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1669.330418][T28892]  ieee80211_register_hw+0x3063/0x3e10
[ 1669.335901][T28892]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1669.341712][T28892]  ? memset+0x1f/0x40
[ 1669.345704][T28892]  ? __hrtimer_init+0x173/0x250
[ 1669.350628][T28892]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1669.356369][T28892]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1669.361487][T28892]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1669.367850][T28892]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1669.374193][T28892]  genl_rcv_msg+0x1032/0x1480
[ 1669.378880][T28892]  ? genl_bind+0x360/0x360
[ 1669.383319][T28892]  ? __lock_acquire+0x1382/0x2b00
[ 1669.388368][T28892]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1669.394002][T28892]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1669.400349][T28892]  netlink_rcv_skb+0x200/0x470
[ 1669.405305][T28892]  ? genl_bind+0x360/0x360
[ 1669.409736][T28892]  ? netlink_ack+0xb70/0xb70
[ 1669.414333][T28892]  ? __down_read_common+0x1b0/0x450
[ 1669.419541][T28892]  ? up_read_non_owner+0x1c0/0x1c0
[ 1669.424658][T28892]  ? netlink_deliver_tap+0x130/0x880
[ 1669.429968][T28892]  genl_rcv+0x24/0x40
[ 1669.433964][T28892]  netlink_unicast+0x814/0x9f0
[ 1669.438732][T28892]  ? netlink_detachskb+0xa0/0xa0
[ 1669.443746][T28892]  ? __virt_addr_valid+0xb8/0x2d0
[ 1669.448779][T28892]  ? __phys_addr_symbol+0x2b/0x70
[ 1669.453799][T28892]  ? __check_object_size+0x2f3/0x3f0
[ 1669.459096][T28892]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1669.464224][T28892]  netlink_sendmsg+0xaea/0xe60
[ 1669.469003][T28892]  ? memcpy+0x3c/0x60
[ 1669.473005][T28892]  ? netlink_getsockopt+0xa60/0xa60
[ 1669.478215][T28892]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1669.483488][T28892]  ? security_socket_sendmsg+0x9d/0xb0
[ 1669.488975][T28892]  ? netlink_getsockopt+0xa60/0xa60
[ 1669.494267][T28892]  ____sys_sendmsg+0x5b9/0x910
[ 1669.499038][T28892]  ? __sys_sendmsg_sock+0x30/0x30
[ 1669.504096][T28892]  __sys_sendmsg+0x280/0x370
[ 1669.508697][T28892]  ? ____sys_sendmsg+0x910/0x910
[ 1669.513632][T28892]  ? __context_tracking_exit+0x7a/0xd0
[ 1669.519107][T28892]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1669.525100][T28892]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1669.531104][T28892]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1669.537098][T28892]  ? lockdep_hardirqs_on+0x95/0x140
[ 1669.542299][T28892]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1669.548297][T28892]  do_syscall_64+0x44/0xd0
[ 1669.552730][T28892]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1669.558633][T28892] RIP: 0033:0x7ffbc7e82e99
[ 1669.563042][T28892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1669.582658][T28892] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1669.591088][T28892] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1669.599158][T28892] RDX: 0000000001000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1669.607143][T28892] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1669.615103][T28892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1669.623068][T28892] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1669.631072][T28892]  </TASK>
22:52:39 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1080000)

[ 1669.668364][T28894] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
[ 1669.680253][T28894] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1669.698544][T28894] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1669.698544][T28894] !'
[ 1669.710002][T28894] CPU: 0 PID: 28894 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1669.718792][T28894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1669.728862][T28894] Call Trace:
[ 1669.732151][T28894]  <TASK>
[ 1669.735092][T28894]  dump_stack_lvl+0x201/0x2d8
[ 1669.739798][T28894]  ? show_regs_print_info+0x12/0x12
[ 1669.745011][T28894]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1669.750745][T28894]  sysfs_warn_dup+0x8c/0xa0
[ 1669.755251][T28894]  sysfs_do_create_link_sd+0xbe/0x100
[ 1669.760623][T28894]  device_add+0x9ea/0x16d0
[ 1669.765026][T28894]  ? wiphy_register+0x1b93/0x2a50
[ 1669.770050][T28894]  ? virtual_device_parent+0x50/0x50
[ 1669.775324][T28894]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1669.781304][T28894]  wiphy_register+0x1ba2/0x2a50
[ 1669.786157][T28894]  ? cfg80211_event_work+0x40/0x40
[ 1669.791268][T28894]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1669.797331][T28894]  ieee80211_register_hw+0x3063/0x3e10
[ 1669.802974][T28894]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1669.808779][T28894]  ? memset+0x1f/0x40
[ 1669.812752][T28894]  ? __hrtimer_init+0x173/0x250
[ 1669.817601][T28894]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1669.823362][T28894]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1669.828476][T28894]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1669.834812][T28894]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1669.841138][T28894]  genl_rcv_msg+0x1032/0x1480
[ 1669.845822][T28894]  ? genl_bind+0x360/0x360
[ 1669.850235][T28894]  ? __lock_acquire+0x1382/0x2b00
[ 1669.855269][T28894]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1669.860893][T28894]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1669.867226][T28894]  netlink_rcv_skb+0x200/0x470
[ 1669.871982][T28894]  ? genl_bind+0x360/0x360
[ 1669.876389][T28894]  ? netlink_ack+0xb70/0xb70
[ 1669.880968][T28894]  ? __down_read_common+0x1b0/0x450
[ 1669.886160][T28894]  ? up_read_non_owner+0x1c0/0x1c0
[ 1669.891259][T28894]  ? netlink_deliver_tap+0x130/0x880
[ 1669.896550][T28894]  genl_rcv+0x24/0x40
[ 1669.900522][T28894]  netlink_unicast+0x814/0x9f0
[ 1669.905284][T28894]  ? netlink_detachskb+0xa0/0xa0
[ 1669.910212][T28894]  ? __virt_addr_valid+0xb8/0x2d0
[ 1669.915226][T28894]  ? __phys_addr_symbol+0x2b/0x70
[ 1669.920241][T28894]  ? __check_object_size+0x2f3/0x3f0
[ 1669.925545][T28894]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1669.930648][T28894]  netlink_sendmsg+0xaea/0xe60
[ 1669.935400][T28894]  ? memcpy+0x3c/0x60
[ 1669.939390][T28894]  ? netlink_getsockopt+0xa60/0xa60
[ 1669.944582][T28894]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1669.949855][T28894]  ? security_socket_sendmsg+0x9d/0xb0
[ 1669.955304][T28894]  ? netlink_getsockopt+0xa60/0xa60
[ 1669.960492][T28894]  ____sys_sendmsg+0x5b9/0x910
[ 1669.965257][T28894]  ? __sys_sendmsg_sock+0x30/0x30
[ 1669.970305][T28894]  __sys_sendmsg+0x280/0x370
[ 1669.974889][T28894]  ? ____sys_sendmsg+0x910/0x910
[ 1669.979832][T28894]  ? __context_tracking_exit+0x7a/0xd0
[ 1669.985291][T28894]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1669.991260][T28894]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1669.997240][T28894]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1670.003209][T28894]  ? lockdep_hardirqs_on+0x95/0x140
[ 1670.008396][T28894]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1670.014369][T28894]  do_syscall_64+0x44/0xd0
[ 1670.018781][T28894]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1670.024661][T28894] RIP: 0033:0x7f5163f51e99
[ 1670.029067][T28894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1670.048660][T28894] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1670.057064][T28894] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1670.065028][T28894] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1670.072987][T28894] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1670.080944][T28894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1670.088907][T28894] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1670.096881][T28894]  </TASK>
22:52:39 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1670.148830][T28896] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1670.170575][T28896] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1670.170575][T28896] !'
[ 1670.183292][T28896] CPU: 1 PID: 28896 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1670.192116][T28896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1670.202185][T28896] Call Trace:
[ 1670.205481][T28896]  <TASK>
[ 1670.208424][T28896]  dump_stack_lvl+0x201/0x2d8
[ 1670.213128][T28896]  ? show_regs_print_info+0x12/0x12
[ 1670.218347][T28896]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1670.224120][T28896]  sysfs_warn_dup+0x8c/0xa0
[ 1670.228644][T28896]  sysfs_do_create_link_sd+0xbe/0x100
[ 1670.234036][T28896]  device_add+0x9ea/0x16d0
[ 1670.238463][T28896]  ? wiphy_register+0x1b93/0x2a50
[ 1670.243537][T28896]  ? virtual_device_parent+0x50/0x50
[ 1670.248834][T28896]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1670.254842][T28896]  wiphy_register+0x1ba2/0x2a50
[ 1670.259740][T28896]  ? cfg80211_event_work+0x40/0x40
[ 1670.264879][T28896]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1670.270974][T28896]  ieee80211_register_hw+0x3063/0x3e10
[ 1670.276480][T28896]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1670.282327][T28896]  ? memset+0x1f/0x40
[ 1670.286327][T28896]  ? __hrtimer_init+0x173/0x250
[ 1670.291200][T28896]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1670.297101][T28896]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1670.302248][T28896]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1670.308606][T28896]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1670.314962][T28896]  genl_rcv_msg+0x1032/0x1480
[ 1670.319675][T28896]  ? genl_bind+0x360/0x360
[ 1670.324123][T28896]  ? __lock_acquire+0x1382/0x2b00
[ 1670.329187][T28896]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1670.334832][T28896]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1670.341204][T28896]  netlink_rcv_skb+0x200/0x470
[ 1670.345989][T28896]  ? genl_bind+0x360/0x360
[ 1670.350435][T28896]  ? netlink_ack+0xb70/0xb70
[ 1670.355034][T28896]  ? __down_read_common+0x1b0/0x450
[ 1670.360254][T28896]  ? up_read_non_owner+0x1c0/0x1c0
[ 1670.365385][T28896]  ? netlink_deliver_tap+0x130/0x880
[ 1670.370703][T28896]  genl_rcv+0x24/0x40
[ 1670.374702][T28896]  netlink_unicast+0x814/0x9f0
[ 1670.379581][T28896]  ? netlink_detachskb+0xa0/0xa0
[ 1670.384530][T28896]  ? __virt_addr_valid+0xb8/0x2d0
[ 1670.389578][T28896]  ? __phys_addr_symbol+0x2b/0x70
[ 1670.394620][T28896]  ? __check_object_size+0x2f3/0x3f0
[ 1670.400007][T28896]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1670.405138][T28896]  netlink_sendmsg+0xaea/0xe60
[ 1670.409917][T28896]  ? memcpy+0x3c/0x60
[ 1670.413950][T28896]  ? netlink_getsockopt+0xa60/0xa60
[ 1670.419178][T28896]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1670.424474][T28896]  ? security_socket_sendmsg+0x9d/0xb0
[ 1670.429948][T28896]  ? netlink_getsockopt+0xa60/0xa60
[ 1670.435172][T28896]  ____sys_sendmsg+0x5b9/0x910
[ 1670.439966][T28896]  ? __sys_sendmsg_sock+0x30/0x30
[ 1670.445036][T28896]  __sys_sendmsg+0x280/0x370
[ 1670.449647][T28896]  ? ____sys_sendmsg+0x910/0x910
[ 1670.454622][T28896]  ? __context_tracking_exit+0x7a/0xd0
[ 1670.460111][T28896]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1670.466105][T28896]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1670.472113][T28896]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1670.478107][T28896]  ? lockdep_hardirqs_on+0x95/0x140
[ 1670.483521][T28896]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1670.489515][T28896]  do_syscall_64+0x44/0xd0
[ 1670.493950][T28896]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1670.499858][T28896] RIP: 0033:0x7f3e3559fe99
[ 1670.504283][T28896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1670.523900][T28896] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1670.532335][T28896] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1670.540328][T28896] RDX: 0000100000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1670.548314][T28896] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1670.556299][T28896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1670.564282][T28896] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1670.572290][T28896]  </TASK>
22:52:40 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x2000000000000)

[ 1670.608265][T28898] nla_validate_range_unsigned: 1 callbacks suppressed
[ 1670.608283][T28898] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1670.646148][T28898] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1670.676386][T28898] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1670.676386][T28898] !'
[ 1670.694735][T28898] CPU: 0 PID: 28898 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1670.703535][T28898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1670.713776][T28898] Call Trace:
[ 1670.717064][T28898]  <TASK>
[ 1670.720012][T28898]  dump_stack_lvl+0x201/0x2d8
[ 1670.724714][T28898]  ? show_regs_print_info+0x12/0x12
[ 1670.729927][T28898]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1670.735679][T28898]  sysfs_warn_dup+0x8c/0xa0
[ 1670.740195][T28898]  sysfs_do_create_link_sd+0xbe/0x100
[ 1670.745585][T28898]  device_add+0x9ea/0x16d0
[ 1670.750013][T28898]  ? wiphy_register+0x1b93/0x2a50
[ 1670.755066][T28898]  ? virtual_device_parent+0x50/0x50
[ 1670.760364][T28898]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1670.766365][T28898]  wiphy_register+0x1ba2/0x2a50
[ 1670.771249][T28898]  ? cfg80211_event_work+0x40/0x40
[ 1670.776390][T28898]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1670.782482][T28898]  ieee80211_register_hw+0x3063/0x3e10
[ 1670.787980][T28898]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1670.793812][T28898]  ? memset+0x1f/0x40
[ 1670.797805][T28898]  ? __hrtimer_init+0x173/0x250
[ 1670.802672][T28898]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1670.808435][T28898]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1670.813571][T28898]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1670.819922][T28898]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1670.826279][T28898]  genl_rcv_msg+0x1032/0x1480
[ 1670.830985][T28898]  ? genl_bind+0x360/0x360
[ 1670.835421][T28898]  ? __lock_acquire+0x1382/0x2b00
[ 1670.840508][T28898]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1670.846150][T28898]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1670.852510][T28898]  netlink_rcv_skb+0x200/0x470
[ 1670.857285][T28898]  ? genl_bind+0x360/0x360
[ 1670.861719][T28898]  ? netlink_ack+0xb70/0xb70
[ 1670.866317][T28898]  ? __down_read_common+0x1b0/0x450
[ 1670.871526][T28898]  ? up_read_non_owner+0x1c0/0x1c0
[ 1670.876640][T28898]  ? netlink_deliver_tap+0x130/0x880
[ 1670.881949][T28898]  genl_rcv+0x24/0x40
[ 1670.885943][T28898]  netlink_unicast+0x814/0x9f0
[ 1670.890727][T28898]  ? netlink_detachskb+0xa0/0xa0
[ 1670.895677][T28898]  ? __virt_addr_valid+0xb8/0x2d0
[ 1670.900716][T28898]  ? __phys_addr_symbol+0x2b/0x70
[ 1670.905755][T28898]  ? __check_object_size+0x2f3/0x3f0
[ 1670.911055][T28898]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1670.916186][T28898]  netlink_sendmsg+0xaea/0xe60
[ 1670.920966][T28898]  ? memcpy+0x3c/0x60
22:52:40 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @rand_addr, 0x900}, 0x1c)

[ 1670.924968][T28898]  ? netlink_getsockopt+0xa60/0xa60
[ 1670.930183][T28898]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1670.935478][T28898]  ? security_socket_sendmsg+0x9d/0xb0
[ 1670.940955][T28898]  ? netlink_getsockopt+0xa60/0xa60
[ 1670.946171][T28898]  ____sys_sendmsg+0x5b9/0x910
[ 1670.950963][T28898]  ? __sys_sendmsg_sock+0x30/0x30
[ 1670.956027][T28898]  __sys_sendmsg+0x280/0x370
[ 1670.960644][T28898]  ? ____sys_sendmsg+0x910/0x910
[ 1670.965616][T28898]  ? __context_tracking_exit+0x7a/0xd0
[ 1670.971106][T28898]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1670.977095][T28898]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1670.983084][T28898]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1670.989081][T28898]  ? lockdep_hardirqs_on+0x95/0x140
[ 1670.994292][T28898]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1671.000293][T28898]  do_syscall_64+0x44/0xd0
[ 1671.004726][T28898]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1671.010634][T28898] RIP: 0033:0x7fda9f984e99
[ 1671.015065][T28898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1671.034678][T28898] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1671.043108][T28898] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1671.051093][T28898] RDX: 0000000001000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1671.059076][T28898] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1671.067059][T28898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1671.075043][T28898] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1671.083048][T28898]  </TASK>
[ 1671.137283][T28902] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
22:52:40 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x1080000)

[ 1671.180385][T28902] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1671.223823][T28902] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1671.223823][T28902] !'
[ 1671.251078][T28902] CPU: 1 PID: 28902 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1671.259890][T28902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1671.269970][T28902] Call Trace:
[ 1671.273268][T28902]  <TASK>
[ 1671.276214][T28902]  dump_stack_lvl+0x201/0x2d8
[ 1671.281005][T28902]  ? show_regs_print_info+0x12/0x12
[ 1671.286227][T28902]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1671.291984][T28902]  sysfs_warn_dup+0x8c/0xa0
[ 1671.296504][T28902]  sysfs_do_create_link_sd+0xbe/0x100
[ 1671.302072][T28902]  device_add+0x9ea/0x16d0
[ 1671.306499][T28902]  ? wiphy_register+0x1b93/0x2a50
[ 1671.311557][T28902]  ? virtual_device_parent+0x50/0x50
[ 1671.316859][T28902]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1671.322880][T28902]  wiphy_register+0x1ba2/0x2a50
[ 1671.327773][T28902]  ? cfg80211_event_work+0x40/0x40
[ 1671.332916][T28902]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1671.339009][T28902]  ieee80211_register_hw+0x3063/0x3e10
[ 1671.344517][T28902]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1671.350359][T28902]  ? memset+0x1f/0x40
[ 1671.354380][T28902]  ? __hrtimer_init+0x173/0x250
[ 1671.359255][T28902]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1671.365018][T28902]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1671.370159][T28902]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1671.376519][T28902]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1671.382878][T28902]  genl_rcv_msg+0x1032/0x1480
[ 1671.387586][T28902]  ? genl_bind+0x360/0x360
[ 1671.392029][T28902]  ? __lock_acquire+0x1382/0x2b00
[ 1671.397110][T28902]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1671.402757][T28902]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1671.409124][T28902]  netlink_rcv_skb+0x200/0x470
[ 1671.413910][T28902]  ? genl_bind+0x360/0x360
[ 1671.418348][T28902]  ? netlink_ack+0xb70/0xb70
[ 1671.422950][T28902]  ? __down_read_common+0x1b0/0x450
[ 1671.428166][T28902]  ? up_read_non_owner+0x1c0/0x1c0
[ 1671.433288][T28902]  ? netlink_deliver_tap+0x130/0x880
[ 1671.438600][T28902]  genl_rcv+0x24/0x40
[ 1671.442597][T28902]  netlink_unicast+0x814/0x9f0
[ 1671.447385][T28902]  ? netlink_detachskb+0xa0/0xa0
[ 1671.452333][T28902]  ? __virt_addr_valid+0xb8/0x2d0
[ 1671.457376][T28902]  ? __phys_addr_symbol+0x2b/0x70
[ 1671.462412][T28902]  ? __check_object_size+0x2f3/0x3f0
[ 1671.467708][T28902]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1671.472836][T28902]  netlink_sendmsg+0xaea/0xe60
[ 1671.477708][T28902]  ? memcpy+0x3c/0x60
[ 1671.481720][T28902]  ? netlink_getsockopt+0xa60/0xa60
[ 1671.486943][T28902]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1671.492242][T28902]  ? security_socket_sendmsg+0x9d/0xb0
[ 1671.497755][T28902]  ? netlink_getsockopt+0xa60/0xa60
[ 1671.502972][T28902]  ____sys_sendmsg+0x5b9/0x910
[ 1671.507857][T28902]  ? __sys_sendmsg_sock+0x30/0x30
[ 1671.512919][T28902]  __sys_sendmsg+0x280/0x370
[ 1671.517535][T28902]  ? ____sys_sendmsg+0x910/0x910
[ 1671.522504][T28902]  ? __context_tracking_exit+0x7a/0xd0
[ 1671.528077][T28902]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1671.534068][T28902]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1671.540071][T28902]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1671.546154][T28902]  ? lockdep_hardirqs_on+0x95/0x140
[ 1671.551365][T28902]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1671.557363][T28902]  do_syscall_64+0x44/0xd0
[ 1671.561801][T28902]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1671.567706][T28902] RIP: 0033:0x7fd6114efe99
[ 1671.572133][T28902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1671.591753][T28902] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1671.600196][T28902] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1671.608199][T28902] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1671.616188][T28902] RBP: 00007fd611549ff1 R08: 0000000000000000 R09: 0000000000000000
22:52:41 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x2000000)

[ 1671.624173][T28902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1671.632135][T28902] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1671.640106][T28902]  </TASK>
22:52:41 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

22:52:41 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1671.693824][T28904] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1671.730636][T28904] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1671.781074][T28904] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1671.781074][T28904] !'
[ 1671.797793][T28904] CPU: 0 PID: 28904 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1671.806683][T28904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1671.816751][T28904] Call Trace:
[ 1671.820039][T28904]  <TASK>
[ 1671.822979][T28904]  dump_stack_lvl+0x201/0x2d8
[ 1671.827682][T28904]  ? show_regs_print_info+0x12/0x12
[ 1671.832900][T28904]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1671.838661][T28904]  sysfs_warn_dup+0x8c/0xa0
[ 1671.843182][T28904]  sysfs_do_create_link_sd+0xbe/0x100
[ 1671.848571][T28904]  device_add+0x9ea/0x16d0
[ 1671.852995][T28904]  ? wiphy_register+0x1b93/0x2a50
[ 1671.858043][T28904]  ? virtual_device_parent+0x50/0x50
[ 1671.863534][T28904]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1671.869558][T28904]  wiphy_register+0x1ba2/0x2a50
[ 1671.874442][T28904]  ? cfg80211_event_work+0x40/0x40
[ 1671.879579][T28904]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1671.885653][T28904]  ieee80211_register_hw+0x3063/0x3e10
[ 1671.891135][T28904]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1671.896954][T28904]  ? memset+0x1f/0x40
[ 1671.900934][T28904]  ? __hrtimer_init+0x173/0x250
[ 1671.905786][T28904]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1671.911524][T28904]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1671.916633][T28904]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1671.922967][T28904]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1671.929339][T28904]  genl_rcv_msg+0x1032/0x1480
[ 1671.934019][T28904]  ? genl_bind+0x360/0x360
[ 1671.938438][T28904]  ? __lock_acquire+0x1382/0x2b00
[ 1671.944168][T28904]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1671.949794][T28904]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1671.956132][T28904]  netlink_rcv_skb+0x200/0x470
[ 1671.960898][T28904]  ? genl_bind+0x360/0x360
[ 1671.965313][T28904]  ? netlink_ack+0xb70/0xb70
[ 1671.969894][T28904]  ? __down_read_common+0x1b0/0x450
[ 1671.975092][T28904]  ? up_read_non_owner+0x1c0/0x1c0
[ 1671.980196][T28904]  ? netlink_deliver_tap+0x130/0x880
[ 1671.985493][T28904]  genl_rcv+0x24/0x40
[ 1671.989469][T28904]  netlink_unicast+0x814/0x9f0
[ 1671.994237][T28904]  ? netlink_detachskb+0xa0/0xa0
[ 1671.999170][T28904]  ? __virt_addr_valid+0xb8/0x2d0
[ 1672.004195][T28904]  ? __phys_addr_symbol+0x2b/0x70
[ 1672.009239][T28904]  ? __check_object_size+0x2f3/0x3f0
[ 1672.014521][T28904]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1672.019649][T28904]  netlink_sendmsg+0xaea/0xe60
[ 1672.024407][T28904]  ? memcpy+0x3c/0x60
[ 1672.028393][T28904]  ? netlink_getsockopt+0xa60/0xa60
[ 1672.033590][T28904]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1672.038866][T28904]  ? security_socket_sendmsg+0x9d/0xb0
[ 1672.044323][T28904]  ? netlink_getsockopt+0xa60/0xa60
[ 1672.049517][T28904]  ____sys_sendmsg+0x5b9/0x910
[ 1672.054281][T28904]  ? __sys_sendmsg_sock+0x30/0x30
[ 1672.059332][T28904]  __sys_sendmsg+0x280/0x370
[ 1672.063916][T28904]  ? ____sys_sendmsg+0x910/0x910
[ 1672.068953][T28904]  ? __context_tracking_exit+0x7a/0xd0
[ 1672.074419][T28904]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1672.080391][T28904]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1672.086377][T28904]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1672.092347][T28904]  ? lockdep_hardirqs_on+0x95/0x140
[ 1672.097535][T28904]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1672.103510][T28904]  do_syscall_64+0x44/0xd0
[ 1672.107922][T28904]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1672.113805][T28904] RIP: 0033:0x7fbee7a71e99
[ 1672.118224][T28904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1672.137909][T28904] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1672.146316][T28904] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1672.154277][T28904] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1672.162303][T28904] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1672.170263][T28904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:52:41 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

22:52:41 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01709d1bd", 0x33fe0}], 0x1}, 0x0)

[ 1672.178224][T28904] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1672.186201][T28904]  </TASK>
[ 1672.209073][T28906] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
22:52:41 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1672.264641][T28906] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
22:52:41 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1672.351394][T28906] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1672.351394][T28906] !'
[ 1672.413260][T28906] CPU: 0 PID: 28906 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1672.422074][T28906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1672.432143][T28906] Call Trace:
[ 1672.435421][T28906]  <TASK>
[ 1672.438345][T28906]  dump_stack_lvl+0x201/0x2d8
[ 1672.443031][T28906]  ? show_regs_print_info+0x12/0x12
[ 1672.448252][T28906]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1672.454073][T28906]  sysfs_warn_dup+0x8c/0xa0
[ 1672.458572][T28906]  sysfs_do_create_link_sd+0xbe/0x100
[ 1672.463937][T28906]  device_add+0x9ea/0x16d0
[ 1672.468348][T28906]  ? wiphy_register+0x1b93/0x2a50
[ 1672.473388][T28906]  ? virtual_device_parent+0x50/0x50
[ 1672.478674][T28906]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1672.484660][T28906]  wiphy_register+0x1ba2/0x2a50
[ 1672.489520][T28906]  ? cfg80211_event_work+0x40/0x40
[ 1672.494633][T28906]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1672.500700][T28906]  ieee80211_register_hw+0x3063/0x3e10
[ 1672.506170][T28906]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1672.511978][T28906]  ? memset+0x1f/0x40
[ 1672.515950][T28906]  ? __hrtimer_init+0x173/0x250
[ 1672.520803][T28906]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1672.526552][T28906]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1672.531707][T28906]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1672.538033][T28906]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1672.544366][T28906]  genl_rcv_msg+0x1032/0x1480
[ 1672.549049][T28906]  ? genl_bind+0x360/0x360
[ 1672.553464][T28906]  ? __lock_acquire+0x1382/0x2b00
[ 1672.558508][T28906]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1672.564129][T28906]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1672.570467][T28906]  netlink_rcv_skb+0x200/0x470
[ 1672.575227][T28906]  ? genl_bind+0x360/0x360
[ 1672.579646][T28906]  ? netlink_ack+0xb70/0xb70
[ 1672.584229][T28906]  ? __down_read_common+0x1b0/0x450
[ 1672.589419][T28906]  ? up_read_non_owner+0x1c0/0x1c0
[ 1672.594516][T28906]  ? netlink_deliver_tap+0x130/0x880
[ 1672.599805][T28906]  genl_rcv+0x24/0x40
[ 1672.603781][T28906]  netlink_unicast+0x814/0x9f0
[ 1672.608547][T28906]  ? netlink_detachskb+0xa0/0xa0
[ 1672.613474][T28906]  ? __virt_addr_valid+0xb8/0x2d0
[ 1672.618493][T28906]  ? __phys_addr_symbol+0x2b/0x70
[ 1672.623509][T28906]  ? __check_object_size+0x2f3/0x3f0
[ 1672.628793][T28906]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1672.633899][T28906]  netlink_sendmsg+0xaea/0xe60
[ 1672.638655][T28906]  ? memcpy+0x3c/0x60
[ 1672.642657][T28906]  ? netlink_getsockopt+0xa60/0xa60
[ 1672.647852][T28906]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1672.653127][T28906]  ? security_socket_sendmsg+0x9d/0xb0
[ 1672.658579][T28906]  ? netlink_getsockopt+0xa60/0xa60
[ 1672.663768][T28906]  ____sys_sendmsg+0x5b9/0x910
[ 1672.668537][T28906]  ? __sys_sendmsg_sock+0x30/0x30
[ 1672.673567][T28906]  __sys_sendmsg+0x280/0x370
[ 1672.678156][T28906]  ? ____sys_sendmsg+0x910/0x910
[ 1672.683094][T28906]  ? __context_tracking_exit+0x7a/0xd0
[ 1672.688552][T28906]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1672.694521][T28906]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1672.700498][T28906]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1672.706469][T28906]  ? lockdep_hardirqs_on+0x95/0x140
[ 1672.711656][T28906]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1672.717625][T28906]  do_syscall_64+0x44/0xd0
[ 1672.722034][T28906]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1672.727915][T28906] RIP: 0033:0x7ffbc7e82e99
[ 1672.732322][T28906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1672.751918][T28906] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1672.760325][T28906] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1672.768286][T28906] RDX: 0000000001080000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1672.776242][T28906] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1672.784204][T28906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1672.792161][T28906] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1672.800135][T28906]  </TASK>
22:52:42 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x2000000)

22:52:42 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, 0x0, &(0x7f0000000200))
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1672.954545][T28910] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1672.981318][T28910] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1673.060158][T28910] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1673.060158][T28910] !'
[ 1673.102708][T28910] CPU: 0 PID: 28910 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1673.111535][T28910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1673.121596][T28910] Call Trace:
[ 1673.124872][T28910]  <TASK>
[ 1673.127800][T28910]  dump_stack_lvl+0x201/0x2d8
[ 1673.132484][T28910]  ? show_regs_print_info+0x12/0x12
[ 1673.137682][T28910]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1673.143412][T28910]  sysfs_warn_dup+0x8c/0xa0
[ 1673.147906][T28910]  sysfs_do_create_link_sd+0xbe/0x100
[ 1673.153271][T28910]  device_add+0x9ea/0x16d0
[ 1673.157682][T28910]  ? wiphy_register+0x1b93/0x2a50
[ 1673.162712][T28910]  ? virtual_device_parent+0x50/0x50
[ 1673.167987][T28910]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1673.174246][T28910]  wiphy_register+0x1ba2/0x2a50
[ 1673.179107][T28910]  ? cfg80211_event_work+0x40/0x40
[ 1673.184222][T28910]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1673.190297][T28910]  ieee80211_register_hw+0x3063/0x3e10
[ 1673.195778][T28910]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1673.201592][T28910]  ? memset+0x1f/0x40
[ 1673.205566][T28910]  ? __hrtimer_init+0x173/0x250
[ 1673.210414][T28910]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1673.216150][T28910]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1673.221262][T28910]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1673.227588][T28910]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1673.233915][T28910]  genl_rcv_msg+0x1032/0x1480
[ 1673.238598][T28910]  ? genl_bind+0x360/0x360
[ 1673.243015][T28910]  ? __lock_acquire+0x1382/0x2b00
[ 1673.248050][T28910]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1673.253672][T28910]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1673.260094][T28910]  netlink_rcv_skb+0x200/0x470
[ 1673.264854][T28910]  ? genl_bind+0x360/0x360
[ 1673.269264][T28910]  ? netlink_ack+0xb70/0xb70
[ 1673.273847][T28910]  ? __down_read_common+0x1b0/0x450
[ 1673.279040][T28910]  ? up_read_non_owner+0x1c0/0x1c0
[ 1673.284141][T28910]  ? netlink_deliver_tap+0x130/0x880
[ 1673.289430][T28910]  genl_rcv+0x24/0x40
[ 1673.293402][T28910]  netlink_unicast+0x814/0x9f0
[ 1673.298164][T28910]  ? netlink_detachskb+0xa0/0xa0
[ 1673.303098][T28910]  ? __virt_addr_valid+0xb8/0x2d0
[ 1673.308130][T28910]  ? __phys_addr_symbol+0x2b/0x70
[ 1673.313150][T28910]  ? __check_object_size+0x2f3/0x3f0
[ 1673.318442][T28910]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1673.323555][T28910]  netlink_sendmsg+0xaea/0xe60
[ 1673.328315][T28910]  ? memcpy+0x3c/0x60
[ 1673.332301][T28910]  ? netlink_getsockopt+0xa60/0xa60
[ 1673.337501][T28910]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1673.342775][T28910]  ? security_socket_sendmsg+0x9d/0xb0
[ 1673.348234][T28910]  ? netlink_getsockopt+0xa60/0xa60
[ 1673.353424][T28910]  ____sys_sendmsg+0x5b9/0x910
[ 1673.358195][T28910]  ? __sys_sendmsg_sock+0x30/0x30
[ 1673.363222][T28910]  __sys_sendmsg+0x280/0x370
[ 1673.367805][T28910]  ? ____sys_sendmsg+0x910/0x910
[ 1673.372748][T28910]  ? __context_tracking_exit+0x7a/0xd0
[ 1673.378210][T28910]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1673.384179][T28910]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1673.390154][T28910]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1673.396124][T28910]  ? lockdep_hardirqs_on+0x95/0x140
[ 1673.401311][T28910]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1673.407286][T28910]  do_syscall_64+0x44/0xd0
[ 1673.411697][T28910]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1673.417583][T28910] RIP: 0033:0x7f3e3559fe99
[ 1673.421987][T28910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1673.441582][T28910] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1673.449992][T28910] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1673.457951][T28910] RDX: 0002000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1673.465912][T28910] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1673.473873][T28910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1673.481830][T28910] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1673.489804][T28910]  </TASK>
22:52:43 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x60000000000000)

22:52:43 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, 0x0, &(0x7f0000000200))
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1673.530366][T28918] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1673.538555][T28918] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
22:52:43 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1673.636446][T28918] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1673.636446][T28918] !'
[ 1673.674752][T28918] CPU: 0 PID: 28918 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1673.683561][T28918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1673.693637][T28918] Call Trace:
[ 1673.696931][T28918]  <TASK>
[ 1673.699954][T28918]  dump_stack_lvl+0x201/0x2d8
[ 1673.704652][T28918]  ? show_regs_print_info+0x12/0x12
[ 1673.709867][T28918]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1673.715735][T28918]  sysfs_warn_dup+0x8c/0xa0
[ 1673.720344][T28918]  sysfs_do_create_link_sd+0xbe/0x100
[ 1673.725739][T28918]  device_add+0x9ea/0x16d0
[ 1673.730169][T28918]  ? wiphy_register+0x1b93/0x2a50
[ 1673.735223][T28918]  ? virtual_device_parent+0x50/0x50
[ 1673.740520][T28918]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1673.746524][T28918]  wiphy_register+0x1ba2/0x2a50
[ 1673.751661][T28918]  ? cfg80211_event_work+0x40/0x40
[ 1673.756928][T28918]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1673.763021][T28918]  ieee80211_register_hw+0x3063/0x3e10
[ 1673.768526][T28918]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1673.774372][T28918]  ? memset+0x1f/0x40
[ 1673.778370][T28918]  ? __hrtimer_init+0x173/0x250
[ 1673.783250][T28918]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1673.789016][T28918]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1673.794162][T28918]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1673.800551][T28918]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1673.806912][T28918]  genl_rcv_msg+0x1032/0x1480
[ 1673.811624][T28918]  ? genl_bind+0x360/0x360
[ 1673.816069][T28918]  ? __lock_acquire+0x1382/0x2b00
[ 1673.821139][T28918]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1673.826786][T28918]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1673.833145][T28918]  netlink_rcv_skb+0x200/0x470
[ 1673.837929][T28918]  ? genl_bind+0x360/0x360
[ 1673.842390][T28918]  ? netlink_ack+0xb70/0xb70
[ 1673.847001][T28918]  ? __down_read_common+0x1b0/0x450
[ 1673.852307][T28918]  ? up_read_non_owner+0x1c0/0x1c0
[ 1673.857432][T28918]  ? netlink_deliver_tap+0x130/0x880
[ 1673.862759][T28918]  genl_rcv+0x24/0x40
[ 1673.866761][T28918]  netlink_unicast+0x814/0x9f0
[ 1673.871552][T28918]  ? netlink_detachskb+0xa0/0xa0
[ 1673.876497][T28918]  ? __virt_addr_valid+0xb8/0x2d0
[ 1673.881539][T28918]  ? __phys_addr_symbol+0x2b/0x70
[ 1673.886574][T28918]  ? __check_object_size+0x2f3/0x3f0
[ 1673.891870][T28918]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1673.896995][T28918]  netlink_sendmsg+0xaea/0xe60
[ 1673.901783][T28918]  ? memcpy+0x3c/0x60
[ 1673.905786][T28918]  ? netlink_getsockopt+0xa60/0xa60
[ 1673.911006][T28918]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1673.916307][T28918]  ? security_socket_sendmsg+0x9d/0xb0
[ 1673.921783][T28918]  ? netlink_getsockopt+0xa60/0xa60
[ 1673.926997][T28918]  ____sys_sendmsg+0x5b9/0x910
[ 1673.931790][T28918]  ? __sys_sendmsg_sock+0x30/0x30
[ 1673.936851][T28918]  __sys_sendmsg+0x280/0x370
[ 1673.941458][T28918]  ? ____sys_sendmsg+0x910/0x910
[ 1673.946425][T28918]  ? __context_tracking_exit+0x7a/0xd0
[ 1673.951906][T28918]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1673.957902][T28918]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1673.963907][T28918]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1673.969906][T28918]  ? lockdep_hardirqs_on+0x95/0x140
[ 1673.975120][T28918]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1673.981121][T28918]  do_syscall_64+0x44/0xd0
[ 1673.985560][T28918]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1673.991466][T28918] RIP: 0033:0x7fda9f984e99
[ 1673.995891][T28918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1674.015506][T28918] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1674.023945][T28918] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1674.031935][T28918] RDX: 0000000002000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1674.039922][T28918] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1674.047912][T28918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1674.055893][T28918] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1674.063895][T28918]  </TASK>
[ 1674.095881][T28927] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1674.133391][T28927] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.3'.
22:52:43 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x3000000)

[ 1674.180989][T28927] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1674.180989][T28927] !'
[ 1674.201880][T28927] CPU: 0 PID: 28927 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1674.210692][T28927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1674.220780][T28927] Call Trace:
[ 1674.224073][T28927]  <TASK>
[ 1674.227017][T28927]  dump_stack_lvl+0x201/0x2d8
[ 1674.231824][T28927]  ? show_regs_print_info+0x12/0x12
[ 1674.237041][T28927]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1674.242793][T28927]  sysfs_warn_dup+0x8c/0xa0
[ 1674.247310][T28927]  sysfs_do_create_link_sd+0xbe/0x100
[ 1674.252704][T28927]  device_add+0x9ea/0x16d0
[ 1674.257138][T28927]  ? wiphy_register+0x1b93/0x2a50
[ 1674.262230][T28927]  ? virtual_device_parent+0x50/0x50
[ 1674.267533][T28927]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1674.273546][T28927]  wiphy_register+0x1ba2/0x2a50
[ 1674.278461][T28927]  ? cfg80211_event_work+0x40/0x40
[ 1674.283602][T28927]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1674.289695][T28927]  ieee80211_register_hw+0x3063/0x3e10
[ 1674.295203][T28927]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1674.301041][T28927]  ? memset+0x1f/0x40
[ 1674.305045][T28927]  ? __hrtimer_init+0x173/0x250
[ 1674.309920][T28927]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1674.315857][T28927]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1674.320993][T28927]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
22:52:43 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

22:52:43 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, 0x0, &(0x7f0000000200))
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

22:52:43 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1674.327377][T28927]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1674.333742][T28927]  genl_rcv_msg+0x1032/0x1480
[ 1674.338456][T28927]  ? genl_bind+0x360/0x360
[ 1674.342897][T28927]  ? __lock_acquire+0x1382/0x2b00
[ 1674.347963][T28927]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1674.353612][T28927]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1674.359979][T28927]  netlink_rcv_skb+0x200/0x470
[ 1674.364774][T28927]  ? genl_bind+0x360/0x360
[ 1674.369217][T28927]  ? netlink_ack+0xb70/0xb70
[ 1674.373920][T28927]  ? __down_read_common+0x1b0/0x450
[ 1674.379137][T28927]  ? up_read_non_owner+0x1c0/0x1c0
[ 1674.384270][T28927]  ? netlink_deliver_tap+0x130/0x880
[ 1674.389586][T28927]  genl_rcv+0x24/0x40
[ 1674.393602][T28927]  netlink_unicast+0x814/0x9f0
[ 1674.398395][T28927]  ? netlink_detachskb+0xa0/0xa0
[ 1674.403350][T28927]  ? __virt_addr_valid+0xb8/0x2d0
[ 1674.408390][T28927]  ? __phys_addr_symbol+0x2b/0x70
[ 1674.413471][T28927]  ? __check_object_size+0x2f3/0x3f0
[ 1674.418771][T28927]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1674.423894][T28927]  netlink_sendmsg+0xaea/0xe60
[ 1674.428768][T28927]  ? memcpy+0x3c/0x60
[ 1674.432776][T28927]  ? netlink_getsockopt+0xa60/0xa60
[ 1674.437991][T28927]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1674.443278][T28927]  ? security_socket_sendmsg+0x9d/0xb0
[ 1674.448748][T28927]  ? netlink_getsockopt+0xa60/0xa60
[ 1674.453966][T28927]  ____sys_sendmsg+0x5b9/0x910
[ 1674.458757][T28927]  ? __sys_sendmsg_sock+0x30/0x30
[ 1674.463820][T28927]  __sys_sendmsg+0x280/0x370
[ 1674.468432][T28927]  ? ____sys_sendmsg+0x910/0x910
[ 1674.473398][T28927]  ? __context_tracking_exit+0x7a/0xd0
[ 1674.478879][T28927]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1674.484868][T28927]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1674.490870][T28927]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1674.496871][T28927]  ? lockdep_hardirqs_on+0x95/0x140
[ 1674.502081][T28927]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1674.508092][T28927]  do_syscall_64+0x44/0xd0
[ 1674.512550][T28927]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1674.518460][T28927] RIP: 0033:0x7fbee7a71e99
[ 1674.523059][T28927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1674.542675][T28927] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1674.551108][T28927] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1674.559105][T28927] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1674.567099][T28927] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1674.575089][T28927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1674.583080][T28927] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1674.591091][T28927]  </TASK>
22:52:44 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01709d1bd", 0x33fe0}], 0x1}, 0x0)

[ 1674.650305][T28933] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1674.689197][T28933] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
22:52:44 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1674.723732][T28933] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1674.723732][T28933] !'
[ 1674.767447][T28933] CPU: 0 PID: 28933 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1674.776255][T28933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1674.786325][T28933] Call Trace:
[ 1674.789617][T28933]  <TASK>
[ 1674.792563][T28933]  dump_stack_lvl+0x201/0x2d8
[ 1674.797257][T28933]  ? show_regs_print_info+0x12/0x12
[ 1674.802468][T28933]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1674.808224][T28933]  sysfs_warn_dup+0x8c/0xa0
[ 1674.812749][T28933]  sysfs_do_create_link_sd+0xbe/0x100
[ 1674.818145][T28933]  device_add+0x9ea/0x16d0
[ 1674.822568][T28933]  ? wiphy_register+0x1b93/0x2a50
[ 1674.827631][T28933]  ? virtual_device_parent+0x50/0x50
[ 1674.832930][T28933]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1674.838936][T28933]  wiphy_register+0x1ba2/0x2a50
[ 1674.843817][T28933]  ? cfg80211_event_work+0x40/0x40
[ 1674.848951][T28933]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1674.855043][T28933]  ieee80211_register_hw+0x3063/0x3e10
[ 1674.860562][T28933]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1674.866403][T28933]  ? memset+0x1f/0x40
[ 1674.870398][T28933]  ? __hrtimer_init+0x173/0x250
[ 1674.875269][T28933]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1674.881031][T28933]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1674.886159][T28933]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1674.892508][T28933]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1674.898859][T28933]  genl_rcv_msg+0x1032/0x1480
[ 1674.903564][T28933]  ? genl_bind+0x360/0x360
[ 1674.908001][T28933]  ? __lock_acquire+0x1382/0x2b00
[ 1674.913065][T28933]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1674.918726][T28933]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1674.925087][T28933]  netlink_rcv_skb+0x200/0x470
[ 1674.929873][T28933]  ? genl_bind+0x360/0x360
[ 1674.934310][T28933]  ? netlink_ack+0xb70/0xb70
[ 1674.938912][T28933]  ? __down_read_common+0x1b0/0x450
[ 1674.944153][T28933]  ? up_read_non_owner+0x1c0/0x1c0
[ 1674.949272][T28933]  ? netlink_deliver_tap+0x130/0x880
[ 1674.954590][T28933]  genl_rcv+0x24/0x40
[ 1674.958591][T28933]  netlink_unicast+0x814/0x9f0
[ 1674.963375][T28933]  ? netlink_detachskb+0xa0/0xa0
[ 1674.968337][T28933]  ? __virt_addr_valid+0xb8/0x2d0
[ 1674.973392][T28933]  ? __phys_addr_symbol+0x2b/0x70
[ 1674.978431][T28933]  ? __check_object_size+0x2f3/0x3f0
[ 1674.983734][T28933]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1674.988860][T28933]  netlink_sendmsg+0xaea/0xe60
[ 1674.993637][T28933]  ? memcpy+0x3c/0x60
[ 1674.997646][T28933]  ? netlink_getsockopt+0xa60/0xa60
[ 1675.002868][T28933]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1675.008180][T28933]  ? security_socket_sendmsg+0x9d/0xb0
[ 1675.013654][T28933]  ? netlink_getsockopt+0xa60/0xa60
22:52:44 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1675.018873][T28933]  ____sys_sendmsg+0x5b9/0x910
[ 1675.025682][T28933]  ? __sys_sendmsg_sock+0x30/0x30
[ 1675.030751][T28933]  __sys_sendmsg+0x280/0x370
[ 1675.035368][T28933]  ? ____sys_sendmsg+0x910/0x910
[ 1675.040344][T28933]  ? __context_tracking_exit+0x7a/0xd0
[ 1675.045837][T28933]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1675.051833][T28933]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1675.057840][T28933]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1675.063841][T28933]  ? lockdep_hardirqs_on+0x95/0x140
[ 1675.069064][T28933]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1675.075066][T28933]  do_syscall_64+0x44/0xd0
[ 1675.079505][T28933]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1675.085418][T28933] RIP: 0033:0x7ffbc7e82e99
[ 1675.089849][T28933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1675.109471][T28933] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1675.117905][T28933] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1675.125872][T28933] RDX: 0000000002000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1675.133844][T28933] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1675.141831][T28933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1675.149816][T28933] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1675.157864][T28933]  </TASK>
22:52:44 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x3000000)

[ 1675.194957][T28937] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1675.210843][T28937] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
22:52:44 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1675.247677][T28937] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1675.247677][T28937] !'
[ 1675.265596][T28937] CPU: 0 PID: 28937 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1675.274419][T28937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1675.284493][T28937] Call Trace:
[ 1675.287787][T28937]  <TASK>
[ 1675.290738][T28937]  dump_stack_lvl+0x201/0x2d8
[ 1675.295442][T28937]  ? show_regs_print_info+0x12/0x12
[ 1675.300669][T28937]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1675.306429][T28937]  sysfs_warn_dup+0x8c/0xa0
[ 1675.310954][T28937]  sysfs_do_create_link_sd+0xbe/0x100
[ 1675.316353][T28937]  device_add+0x9ea/0x16d0
[ 1675.320788][T28937]  ? wiphy_register+0x1b93/0x2a50
[ 1675.325832][T28937]  ? virtual_device_parent+0x50/0x50
[ 1675.331112][T28937]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1675.337227][T28937]  wiphy_register+0x1ba2/0x2a50
[ 1675.342098][T28937]  ? cfg80211_event_work+0x40/0x40
[ 1675.347352][T28937]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1675.353798][T28937]  ieee80211_register_hw+0x3063/0x3e10
[ 1675.359307][T28937]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1675.365167][T28937]  ? memset+0x1f/0x40
[ 1675.369163][T28937]  ? __hrtimer_init+0x173/0x250
[ 1675.374036][T28937]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1675.379915][T28937]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1675.385050][T28937]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1675.391415][T28937]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1675.397774][T28937]  genl_rcv_msg+0x1032/0x1480
[ 1675.402479][T28937]  ? genl_bind+0x360/0x360
[ 1675.406929][T28937]  ? __lock_acquire+0x1382/0x2b00
[ 1675.412000][T28937]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1675.417650][T28937]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1675.424017][T28937]  netlink_rcv_skb+0x200/0x470
[ 1675.428833][T28937]  ? genl_bind+0x360/0x360
[ 1675.433269][T28937]  ? netlink_ack+0xb70/0xb70
[ 1675.437872][T28937]  ? __down_read_common+0x1b0/0x450
[ 1675.443094][T28937]  ? up_read_non_owner+0x1c0/0x1c0
[ 1675.448217][T28937]  ? netlink_deliver_tap+0x130/0x880
[ 1675.453530][T28937]  genl_rcv+0x24/0x40
[ 1675.457540][T28937]  netlink_unicast+0x814/0x9f0
[ 1675.462339][T28937]  ? netlink_detachskb+0xa0/0xa0
[ 1675.467319][T28937]  ? __virt_addr_valid+0xb8/0x2d0
[ 1675.472360][T28937]  ? __phys_addr_symbol+0x2b/0x70
[ 1675.477407][T28937]  ? __check_object_size+0x2f3/0x3f0
[ 1675.482707][T28937]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1675.487839][T28937]  netlink_sendmsg+0xaea/0xe60
[ 1675.492617][T28937]  ? memcpy+0x3c/0x60
[ 1675.496630][T28937]  ? netlink_getsockopt+0xa60/0xa60
[ 1675.501858][T28937]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1675.507183][T28937]  ? security_socket_sendmsg+0x9d/0xb0
[ 1675.512663][T28937]  ? netlink_getsockopt+0xa60/0xa60
[ 1675.517883][T28937]  ____sys_sendmsg+0x5b9/0x910
[ 1675.522680][T28937]  ? __sys_sendmsg_sock+0x30/0x30
[ 1675.527746][T28937]  __sys_sendmsg+0x280/0x370
[ 1675.532366][T28937]  ? ____sys_sendmsg+0x910/0x910
[ 1675.537337][T28937]  ? __context_tracking_exit+0x7a/0xd0
[ 1675.542806][T28937]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1675.548803][T28937]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1675.554805][T28937]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1675.560795][T28937]  ? lockdep_hardirqs_on+0x95/0x140
[ 1675.565985][T28937]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1675.571963][T28937]  do_syscall_64+0x44/0xd0
[ 1675.576399][T28937]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1675.582300][T28937] RIP: 0033:0x7f3e3559fe99
[ 1675.586705][T28937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1675.606384][T28937] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1675.614797][T28937] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1675.622871][T28937] RDX: 0060000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1675.630839][T28937] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1675.638824][T28937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:52:45 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x60030000000000)

22:52:45 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, 0x0, &(0x7f0000000200))
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

22:52:45 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1675.646791][T28937] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1675.654867][T28937]  </TASK>
[ 1675.691987][T28947] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1675.705547][T28947] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1675.740466][T28947] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1675.740466][T28947] !'
[ 1675.759161][T28947] CPU: 0 PID: 28947 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1675.767958][T28947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1675.778014][T28947] Call Trace:
[ 1675.781286][T28947]  <TASK>
[ 1675.784210][T28947]  dump_stack_lvl+0x201/0x2d8
[ 1675.788892][T28947]  ? show_regs_print_info+0x12/0x12
[ 1675.794085][T28947]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1675.799812][T28947]  sysfs_warn_dup+0x8c/0xa0
[ 1675.804308][T28947]  sysfs_do_create_link_sd+0xbe/0x100
[ 1675.809675][T28947]  device_add+0x9ea/0x16d0
[ 1675.814084][T28947]  ? wiphy_register+0x1b93/0x2a50
[ 1675.819118][T28947]  ? virtual_device_parent+0x50/0x50
[ 1675.824522][T28947]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1675.830506][T28947]  wiphy_register+0x1ba2/0x2a50
[ 1675.835363][T28947]  ? cfg80211_event_work+0x40/0x40
[ 1675.840474][T28947]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1675.846568][T28947]  ieee80211_register_hw+0x3063/0x3e10
[ 1675.852050][T28947]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1675.857865][T28947]  ? memset+0x1f/0x40
[ 1675.861840][T28947]  ? __hrtimer_init+0x173/0x250
[ 1675.866778][T28947]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1675.872514][T28947]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1675.877626][T28947]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1675.883956][T28947]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1675.890288][T28947]  genl_rcv_msg+0x1032/0x1480
[ 1675.894962][T28947]  ? genl_bind+0x360/0x360
[ 1675.899374][T28947]  ? __lock_acquire+0x1382/0x2b00
[ 1675.904409][T28947]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1675.910030][T28947]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1675.916466][T28947]  netlink_rcv_skb+0x200/0x470
[ 1675.921241][T28947]  ? genl_bind+0x360/0x360
[ 1675.925661][T28947]  ? netlink_ack+0xb70/0xb70
[ 1675.930254][T28947]  ? __down_read_common+0x1b0/0x450
[ 1675.935467][T28947]  ? up_read_non_owner+0x1c0/0x1c0
[ 1675.940567][T28947]  ? netlink_deliver_tap+0x130/0x880
[ 1675.945862][T28947]  genl_rcv+0x24/0x40
[ 1675.949841][T28947]  netlink_unicast+0x814/0x9f0
[ 1675.954616][T28947]  ? netlink_detachskb+0xa0/0xa0
[ 1675.959549][T28947]  ? __virt_addr_valid+0xb8/0x2d0
[ 1675.964567][T28947]  ? __phys_addr_symbol+0x2b/0x70
[ 1675.969585][T28947]  ? __check_object_size+0x2f3/0x3f0
[ 1675.974867][T28947]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1675.979970][T28947]  netlink_sendmsg+0xaea/0xe60
[ 1675.984727][T28947]  ? memcpy+0x3c/0x60
[ 1675.988727][T28947]  ? netlink_getsockopt+0xa60/0xa60
[ 1675.993958][T28947]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1675.999262][T28947]  ? security_socket_sendmsg+0x9d/0xb0
[ 1676.004721][T28947]  ? netlink_getsockopt+0xa60/0xa60
[ 1676.009929][T28947]  ____sys_sendmsg+0x5b9/0x910
[ 1676.014699][T28947]  ? __sys_sendmsg_sock+0x30/0x30
[ 1676.019733][T28947]  __sys_sendmsg+0x280/0x370
[ 1676.024319][T28947]  ? ____sys_sendmsg+0x910/0x910
[ 1676.029259][T28947]  ? __context_tracking_exit+0x7a/0xd0
[ 1676.034721][T28947]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1676.040694][T28947]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1676.046674][T28947]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1676.052641][T28947]  ? lockdep_hardirqs_on+0x95/0x140
[ 1676.057828][T28947]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1676.063800][T28947]  do_syscall_64+0x44/0xd0
[ 1676.068212][T28947]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1676.074103][T28947] RIP: 0033:0x7fda9f984e99
[ 1676.078507][T28947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1676.098101][T28947] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1676.106509][T28947] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1676.114472][T28947] RDX: 0000000003000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1676.122546][T28947] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1676.130527][T28947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:52:45 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4000000)

[ 1676.138516][T28947] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1676.146509][T28947]  </TASK>
[ 1676.167982][T28949] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
22:52:45 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1676.202707][T28949] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1676.245978][T28949] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1676.245978][T28949] !'
[ 1676.285228][T28949] CPU: 0 PID: 28949 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
22:52:45 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1676.294038][T28949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1676.304197][T28949] Call Trace:
[ 1676.307487][T28949]  <TASK>
[ 1676.310443][T28949]  dump_stack_lvl+0x201/0x2d8
[ 1676.315256][T28949]  ? show_regs_print_info+0x12/0x12
[ 1676.320485][T28949]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1676.326252][T28949]  sysfs_warn_dup+0x8c/0xa0
[ 1676.330773][T28949]  sysfs_do_create_link_sd+0xbe/0x100
[ 1676.336175][T28949]  device_add+0x9ea/0x16d0
[ 1676.340605][T28949]  ? wiphy_register+0x1b93/0x2a50
[ 1676.345660][T28949]  ? virtual_device_parent+0x50/0x50
[ 1676.350963][T28949]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1676.356978][T28949]  wiphy_register+0x1ba2/0x2a50
[ 1676.361876][T28949]  ? cfg80211_event_work+0x40/0x40
[ 1676.367016][T28949]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1676.373102][T28949]  ieee80211_register_hw+0x3063/0x3e10
[ 1676.378600][T28949]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1676.384416][T28949]  ? memset+0x1f/0x40
[ 1676.388396][T28949]  ? __hrtimer_init+0x173/0x250
[ 1676.393250][T28949]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1676.398989][T28949]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1676.404098][T28949]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1676.410427][T28949]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1676.416758][T28949]  genl_rcv_msg+0x1032/0x1480
[ 1676.421432][T28949]  ? genl_bind+0x360/0x360
[ 1676.425844][T28949]  ? __lock_acquire+0x1382/0x2b00
[ 1676.430879][T28949]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1676.436508][T28949]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1676.442842][T28949]  netlink_rcv_skb+0x200/0x470
[ 1676.447600][T28949]  ? genl_bind+0x360/0x360
[ 1676.452012][T28949]  ? netlink_ack+0xb70/0xb70
[ 1676.456592][T28949]  ? __down_read_common+0x1b0/0x450
[ 1676.461784][T28949]  ? up_read_non_owner+0x1c0/0x1c0
[ 1676.466885][T28949]  ? netlink_deliver_tap+0x130/0x880
[ 1676.472172][T28949]  genl_rcv+0x24/0x40
[ 1676.476148][T28949]  netlink_unicast+0x814/0x9f0
[ 1676.480911][T28949]  ? netlink_detachskb+0xa0/0xa0
[ 1676.485838][T28949]  ? __virt_addr_valid+0xb8/0x2d0
[ 1676.490854][T28949]  ? __phys_addr_symbol+0x2b/0x70
[ 1676.495871][T28949]  ? __check_object_size+0x2f3/0x3f0
[ 1676.501149][T28949]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1676.506256][T28949]  netlink_sendmsg+0xaea/0xe60
[ 1676.511013][T28949]  ? memcpy+0x3c/0x60
[ 1676.514992][T28949]  ? netlink_getsockopt+0xa60/0xa60
[ 1676.520317][T28949]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1676.525607][T28949]  ? security_socket_sendmsg+0x9d/0xb0
[ 1676.531070][T28949]  ? netlink_getsockopt+0xa60/0xa60
[ 1676.536264][T28949]  ____sys_sendmsg+0x5b9/0x910
[ 1676.541037][T28949]  ? __sys_sendmsg_sock+0x30/0x30
[ 1676.546088][T28949]  __sys_sendmsg+0x280/0x370
[ 1676.550672][T28949]  ? ____sys_sendmsg+0x910/0x910
[ 1676.555618][T28949]  ? __context_tracking_exit+0x7a/0xd0
[ 1676.561079][T28949]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1676.567053][T28949]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1676.573037][T28949]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1676.579013][T28949]  ? lockdep_hardirqs_on+0x95/0x140
[ 1676.584200][T28949]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1676.590171][T28949]  do_syscall_64+0x44/0xd0
[ 1676.594583][T28949]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1676.600466][T28949] RIP: 0033:0x7fbee7a71e99
[ 1676.604876][T28949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1676.624469][T28949] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1676.632873][T28949] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1676.640831][T28949] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1676.648789][T28949] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1676.656748][T28949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1676.664706][T28949] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1676.672681][T28949]  </TASK>
[ 1676.686582][T29055] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
22:52:46 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

22:52:46 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

22:52:46 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1676.722783][T29055] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1676.772647][T29055] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1676.772647][T29055] !'
[ 1676.821537][T29055] CPU: 1 PID: 29055 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1676.830357][T29055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1676.840411][T29055] Call Trace:
[ 1676.843780][T29055]  <TASK>
[ 1676.846701][T29055]  dump_stack_lvl+0x201/0x2d8
[ 1676.851380][T29055]  ? show_regs_print_info+0x12/0x12
[ 1676.856571][T29055]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1676.862297][T29055]  sysfs_warn_dup+0x8c/0xa0
[ 1676.866790][T29055]  sysfs_do_create_link_sd+0xbe/0x100
[ 1676.872154][T29055]  device_add+0x9ea/0x16d0
[ 1676.876564][T29055]  ? wiphy_register+0x1b93/0x2a50
[ 1676.881596][T29055]  ? virtual_device_parent+0x50/0x50
[ 1676.886876][T29055]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1676.892853][T29055]  wiphy_register+0x1ba2/0x2a50
[ 1676.897705][T29055]  ? cfg80211_event_work+0x40/0x40
[ 1676.902815][T29055]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1676.908963][T29055]  ieee80211_register_hw+0x3063/0x3e10
[ 1676.914428][T29055]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1676.920234][T29055]  ? memset+0x1f/0x40
[ 1676.924204][T29055]  ? __hrtimer_init+0x173/0x250
[ 1676.929050][T29055]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1676.934788][T29055]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1676.939895][T29055]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1676.946221][T29055]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1676.952552][T29055]  genl_rcv_msg+0x1032/0x1480
[ 1676.957228][T29055]  ? genl_bind+0x360/0x360
[ 1676.961641][T29055]  ? __lock_acquire+0x1382/0x2b00
[ 1676.966687][T29055]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1676.972307][T29055]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1676.978643][T29055]  netlink_rcv_skb+0x200/0x470
[ 1676.983403][T29055]  ? genl_bind+0x360/0x360
[ 1676.987812][T29055]  ? netlink_ack+0xb70/0xb70
[ 1676.992389][T29055]  ? __down_read_common+0x1b0/0x450
[ 1676.997577][T29055]  ? up_read_non_owner+0x1c0/0x1c0
[ 1677.002674][T29055]  ? netlink_deliver_tap+0x130/0x880
[ 1677.007966][T29055]  genl_rcv+0x24/0x40
[ 1677.011938][T29055]  netlink_unicast+0x814/0x9f0
[ 1677.016700][T29055]  ? netlink_detachskb+0xa0/0xa0
[ 1677.021622][T29055]  ? __virt_addr_valid+0xb8/0x2d0
[ 1677.026638][T29055]  ? __phys_addr_symbol+0x2b/0x70
[ 1677.031654][T29055]  ? __check_object_size+0x2f3/0x3f0
[ 1677.036929][T29055]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1677.042032][T29055]  netlink_sendmsg+0xaea/0xe60
[ 1677.046788][T29055]  ? memcpy+0x3c/0x60
[ 1677.050770][T29055]  ? netlink_getsockopt+0xa60/0xa60
[ 1677.055968][T29055]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1677.061241][T29055]  ? security_socket_sendmsg+0x9d/0xb0
[ 1677.066692][T29055]  ? netlink_getsockopt+0xa60/0xa60
[ 1677.071882][T29055]  ____sys_sendmsg+0x5b9/0x910
[ 1677.076645][T29055]  ? __sys_sendmsg_sock+0x30/0x30
[ 1677.081683][T29055]  __sys_sendmsg+0x280/0x370
[ 1677.086290][T29055]  ? ____sys_sendmsg+0x910/0x910
[ 1677.091340][T29055]  ? __context_tracking_exit+0x7a/0xd0
[ 1677.096814][T29055]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1677.102797][T29055]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1677.108779][T29055]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1677.114755][T29055]  ? lockdep_hardirqs_on+0x95/0x140
[ 1677.119944][T29055]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1677.125914][T29055]  do_syscall_64+0x44/0xd0
[ 1677.130328][T29055]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1677.136213][T29055] RIP: 0033:0x7ffbc7e82e99
[ 1677.140619][T29055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1677.160222][T29055] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1677.168649][T29055] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1677.176611][T29055] RDX: 0000000003000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1677.184570][T29055] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1677.192541][T29055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1677.200515][T29055] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1677.208503][T29055]  </TASK>
22:52:46 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4000000)

[ 1677.254499][T29063] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
22:52:46 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1677.298804][T29063] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1677.318394][T29063] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1677.318394][T29063] !'
[ 1677.364021][T29063] CPU: 0 PID: 29063 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1677.372855][T29063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1677.382928][T29063] Call Trace:
[ 1677.386220][T29063]  <TASK>
[ 1677.389165][T29063]  dump_stack_lvl+0x201/0x2d8
[ 1677.393867][T29063]  ? show_regs_print_info+0x12/0x12
[ 1677.399204][T29063]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1677.404966][T29063]  sysfs_warn_dup+0x8c/0xa0
[ 1677.409491][T29063]  sysfs_do_create_link_sd+0xbe/0x100
[ 1677.414891][T29063]  device_add+0x9ea/0x16d0
[ 1677.419320][T29063]  ? wiphy_register+0x1b93/0x2a50
[ 1677.424375][T29063]  ? virtual_device_parent+0x50/0x50
[ 1677.429676][T29063]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1677.435685][T29063]  wiphy_register+0x1ba2/0x2a50
[ 1677.440571][T29063]  ? cfg80211_event_work+0x40/0x40
[ 1677.445715][T29063]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1677.451808][T29063]  ieee80211_register_hw+0x3063/0x3e10
[ 1677.457311][T29063]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
22:52:47 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c68940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

[ 1677.463147][T29063]  ? memset+0x1f/0x40
[ 1677.467139][T29063]  ? __hrtimer_init+0x173/0x250
[ 1677.472006][T29063]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1677.477778][T29063]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1677.482920][T29063]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1677.489279][T29063]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1677.495638][T29063]  genl_rcv_msg+0x1032/0x1480
[ 1677.500349][T29063]  ? genl_bind+0x360/0x360
[ 1677.504794][T29063]  ? __lock_acquire+0x1382/0x2b00
[ 1677.509863][T29063]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1677.515509][T29063]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1677.521867][T29063]  netlink_rcv_skb+0x200/0x470
[ 1677.526647][T29063]  ? genl_bind+0x360/0x360
[ 1677.531089][T29063]  ? netlink_ack+0xb70/0xb70
[ 1677.535694][T29063]  ? __down_read_common+0x1b0/0x450
[ 1677.540914][T29063]  ? up_read_non_owner+0x1c0/0x1c0
[ 1677.546211][T29063]  ? netlink_deliver_tap+0x130/0x880
[ 1677.551525][T29063]  genl_rcv+0x24/0x40
[ 1677.555520][T29063]  netlink_unicast+0x814/0x9f0
[ 1677.560308][T29063]  ? netlink_detachskb+0xa0/0xa0
[ 1677.565249][T29063]  ? __virt_addr_valid+0xb8/0x2d0
[ 1677.570266][T29063]  ? __phys_addr_symbol+0x2b/0x70
[ 1677.575297][T29063]  ? __check_object_size+0x2f3/0x3f0
[ 1677.580577][T29063]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1677.585704][T29063]  netlink_sendmsg+0xaea/0xe60
[ 1677.590461][T29063]  ? memcpy+0x3c/0x60
[ 1677.594457][T29063]  ? netlink_getsockopt+0xa60/0xa60
[ 1677.599662][T29063]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1677.604950][T29063]  ? security_socket_sendmsg+0x9d/0xb0
[ 1677.610405][T29063]  ? netlink_getsockopt+0xa60/0xa60
[ 1677.615611][T29063]  ____sys_sendmsg+0x5b9/0x910
[ 1677.620382][T29063]  ? __sys_sendmsg_sock+0x30/0x30
[ 1677.625426][T29063]  __sys_sendmsg+0x280/0x370
[ 1677.630024][T29063]  ? ____sys_sendmsg+0x910/0x910
[ 1677.634982][T29063]  ? __context_tracking_exit+0x7a/0xd0
[ 1677.640454][T29063]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1677.646442][T29063]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1677.652425][T29063]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1677.658411][T29063]  ? lockdep_hardirqs_on+0x95/0x140
[ 1677.663628][T29063]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1677.669627][T29063]  do_syscall_64+0x44/0xd0
[ 1677.674059][T29063]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1677.679951][T29063] RIP: 0033:0x7f3e3559fe99
[ 1677.684371][T29063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1677.703971][T29063] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1677.712383][T29063] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1677.720367][T29063] RDX: 0060030000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1677.728349][T29063] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1677.736504][T29063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1677.744484][T29063] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1677.752471][T29063]  </TASK>
22:52:47 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0xe0ffff00000000)

22:52:47 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1677.780678][T29065] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1677.789403][T29065] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1677.831252][T29065] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1677.831252][T29065] !'
[ 1677.878436][T29065] CPU: 1 PID: 29065 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1677.887252][T29065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1677.897327][T29065] Call Trace:
[ 1677.900621][T29065]  <TASK>
[ 1677.903565][T29065]  dump_stack_lvl+0x201/0x2d8
[ 1677.908260][T29065]  ? show_regs_print_info+0x12/0x12
[ 1677.913467][T29065]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1677.919234][T29065]  sysfs_warn_dup+0x8c/0xa0
[ 1677.923755][T29065]  sysfs_do_create_link_sd+0xbe/0x100
[ 1677.929146][T29065]  device_add+0x9ea/0x16d0
[ 1677.933569][T29065]  ? wiphy_register+0x1b93/0x2a50
[ 1677.938619][T29065]  ? virtual_device_parent+0x50/0x50
[ 1677.943921][T29065]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1677.949930][T29065]  wiphy_register+0x1ba2/0x2a50
[ 1677.954812][T29065]  ? cfg80211_event_work+0x40/0x40
[ 1677.959953][T29065]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1677.966044][T29065]  ieee80211_register_hw+0x3063/0x3e10
[ 1677.971546][T29065]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1677.977377][T29065]  ? memset+0x1f/0x40
[ 1677.981383][T29065]  ? __hrtimer_init+0x173/0x250
[ 1677.986262][T29065]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1677.992025][T29065]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1677.997157][T29065]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1678.003520][T29065]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1678.009874][T29065]  genl_rcv_msg+0x1032/0x1480
[ 1678.014582][T29065]  ? genl_bind+0x360/0x360
[ 1678.019031][T29065]  ? __lock_acquire+0x1382/0x2b00
[ 1678.024099][T29065]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1678.029744][T29065]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1678.036105][T29065]  netlink_rcv_skb+0x200/0x470
[ 1678.040889][T29065]  ? genl_bind+0x360/0x360
[ 1678.045336][T29065]  ? netlink_ack+0xb70/0xb70
[ 1678.049940][T29065]  ? __down_read_common+0x1b0/0x450
[ 1678.055158][T29065]  ? up_read_non_owner+0x1c0/0x1c0
[ 1678.060291][T29065]  ? netlink_deliver_tap+0x130/0x880
[ 1678.065612][T29065]  genl_rcv+0x24/0x40
[ 1678.069614][T29065]  netlink_unicast+0x814/0x9f0
[ 1678.074409][T29065]  ? netlink_detachskb+0xa0/0xa0
[ 1678.079366][T29065]  ? __virt_addr_valid+0xb8/0x2d0
[ 1678.084406][T29065]  ? __phys_addr_symbol+0x2b/0x70
[ 1678.089454][T29065]  ? __check_object_size+0x2f3/0x3f0
[ 1678.094849][T29065]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1678.099984][T29065]  netlink_sendmsg+0xaea/0xe60
[ 1678.104768][T29065]  ? memcpy+0x3c/0x60
[ 1678.108781][T29065]  ? netlink_getsockopt+0xa60/0xa60
[ 1678.114019][T29065]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1678.119326][T29065]  ? security_socket_sendmsg+0x9d/0xb0
[ 1678.124825][T29065]  ? netlink_getsockopt+0xa60/0xa60
[ 1678.130055][T29065]  ____sys_sendmsg+0x5b9/0x910
[ 1678.134863][T29065]  ? __sys_sendmsg_sock+0x30/0x30
[ 1678.139932][T29065]  __sys_sendmsg+0x280/0x370
[ 1678.144548][T29065]  ? ____sys_sendmsg+0x910/0x910
[ 1678.149521][T29065]  ? __context_tracking_exit+0x7a/0xd0
[ 1678.155019][T29065]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1678.161018][T29065]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1678.167032][T29065]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1678.173029][T29065]  ? lockdep_hardirqs_on+0x95/0x140
[ 1678.178249][T29065]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1678.184251][T29065]  do_syscall_64+0x44/0xd0
[ 1678.188691][T29065]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1678.194600][T29065] RIP: 0033:0x7fda9f984e99
[ 1678.199033][T29065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1678.218655][T29065] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
22:52:47 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1678.227093][T29065] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1678.235092][T29065] RDX: 0000000004000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1678.243075][T29065] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1678.251152][T29065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1678.259141][T29065] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1678.267157][T29065]  </TASK>
[ 1678.329180][T29148] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1678.337384][T29148] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1678.350018][T29148] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1678.350018][T29148] !'
[ 1678.360675][T29148] CPU: 0 PID: 29148 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
22:52:47 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4480000)

22:52:47 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x100000000000000)

[ 1678.369466][T29148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1678.379803][T29148] Call Trace:
[ 1678.383092][T29148]  <TASK>
[ 1678.386030][T29148]  dump_stack_lvl+0x201/0x2d8
[ 1678.390730][T29148]  ? show_regs_print_info+0x12/0x12
[ 1678.395950][T29148]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1678.401708][T29148]  sysfs_warn_dup+0x8c/0xa0
[ 1678.406229][T29148]  sysfs_do_create_link_sd+0xbe/0x100
[ 1678.411631][T29148]  device_add+0x9ea/0x16d0
[ 1678.416060][T29148]  ? wiphy_register+0x1b93/0x2a50
[ 1678.421118][T29148]  ? virtual_device_parent+0x50/0x50
[ 1678.426422][T29148]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1678.432445][T29148]  wiphy_register+0x1ba2/0x2a50
[ 1678.437346][T29148]  ? cfg80211_event_work+0x40/0x40
[ 1678.442500][T29148]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1678.448687][T29148]  ieee80211_register_hw+0x3063/0x3e10
[ 1678.454192][T29148]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1678.460032][T29148]  ? memset+0x1f/0x40
[ 1678.464034][T29148]  ? __hrtimer_init+0x173/0x250
[ 1678.468906][T29148]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1678.474675][T29148]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1678.479811][T29148]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1678.486170][T29148]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1678.492540][T29148]  genl_rcv_msg+0x1032/0x1480
[ 1678.497247][T29148]  ? genl_bind+0x360/0x360
[ 1678.501688][T29148]  ? __lock_acquire+0x1382/0x2b00
[ 1678.506768][T29148]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1678.512502][T29148]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1678.518860][T29148]  netlink_rcv_skb+0x200/0x470
[ 1678.523649][T29148]  ? genl_bind+0x360/0x360
[ 1678.528084][T29148]  ? netlink_ack+0xb70/0xb70
[ 1678.532688][T29148]  ? __down_read_common+0x1b0/0x450
[ 1678.538089][T29148]  ? up_read_non_owner+0x1c0/0x1c0
[ 1678.543210][T29148]  ? netlink_deliver_tap+0x130/0x880
[ 1678.548525][T29148]  genl_rcv+0x24/0x40
[ 1678.552520][T29148]  netlink_unicast+0x814/0x9f0
[ 1678.557310][T29148]  ? netlink_detachskb+0xa0/0xa0
[ 1678.562257][T29148]  ? __virt_addr_valid+0xb8/0x2d0
[ 1678.567304][T29148]  ? __phys_addr_symbol+0x2b/0x70
[ 1678.572347][T29148]  ? __check_object_size+0x2f3/0x3f0
[ 1678.577646][T29148]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1678.582774][T29148]  netlink_sendmsg+0xaea/0xe60
[ 1678.587552][T29148]  ? memcpy+0x3c/0x60
[ 1678.591561][T29148]  ? netlink_getsockopt+0xa60/0xa60
[ 1678.596778][T29148]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1678.602072][T29148]  ? security_socket_sendmsg+0x9d/0xb0
[ 1678.607548][T29148]  ? netlink_getsockopt+0xa60/0xa60
[ 1678.612762][T29148]  ____sys_sendmsg+0x5b9/0x910
[ 1678.617554][T29148]  ? __sys_sendmsg_sock+0x30/0x30
[ 1678.622613][T29148]  __sys_sendmsg+0x280/0x370
[ 1678.627229][T29148]  ? ____sys_sendmsg+0x910/0x910
[ 1678.632287][T29148]  ? __context_tracking_exit+0x7a/0xd0
[ 1678.637779][T29148]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1678.643946][T29148]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1678.649958][T29148]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1678.655951][T29148]  ? lockdep_hardirqs_on+0x95/0x140
[ 1678.661165][T29148]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1678.667165][T29148]  do_syscall_64+0x44/0xd0
[ 1678.671605][T29148]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1678.677510][T29148] RIP: 0033:0x7ffbc7e82e99
[ 1678.681937][T29148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1678.701916][T29148] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1678.710358][T29148] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1678.718356][T29148] RDX: 0000000004000000 RSI: 0000000020000000 RDI: 0000000000000003
22:52:48 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @mcast1}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)

[ 1678.726353][T29148] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1678.734344][T29148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1678.742336][T29148] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1678.750348][T29148]  </TASK>
[ 1678.879119][T29161] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
[ 1678.888972][T29161] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1678.925567][T29161] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1678.925567][T29161] !'
[ 1678.952260][T29161] CPU: 0 PID: 29161 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1678.961071][T29161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1678.971143][T29161] Call Trace:
[ 1678.974442][T29161]  <TASK>
[ 1678.977387][T29161]  dump_stack_lvl+0x201/0x2d8
[ 1678.982100][T29161]  ? show_regs_print_info+0x12/0x12
[ 1678.987323][T29161]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1678.993127][T29161]  sysfs_warn_dup+0x8c/0xa0
[ 1678.997656][T29161]  sysfs_do_create_link_sd+0xbe/0x100
[ 1679.003051][T29161]  device_add+0x9ea/0x16d0
[ 1679.007483][T29161]  ? wiphy_register+0x1b93/0x2a50
[ 1679.012635][T29161]  ? virtual_device_parent+0x50/0x50
[ 1679.017938][T29161]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1679.024045][T29161]  wiphy_register+0x1ba2/0x2a50
[ 1679.028935][T29161]  ? cfg80211_event_work+0x40/0x40
[ 1679.034074][T29161]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1679.040170][T29161]  ieee80211_register_hw+0x3063/0x3e10
[ 1679.045673][T29161]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1679.051510][T29161]  ? memset+0x1f/0x40
[ 1679.055510][T29161]  ? __hrtimer_init+0x173/0x250
[ 1679.060382][T29161]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1679.066150][T29161]  hwsim_new_radio_nl+0xc5f/0x1130
22:52:48 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x4480000)

[ 1679.071282][T29161]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1679.077645][T29161]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1679.083998][T29161]  genl_rcv_msg+0x1032/0x1480
[ 1679.088704][T29161]  ? genl_bind+0x360/0x360
[ 1679.093140][T29161]  ? __lock_acquire+0x1382/0x2b00
[ 1679.098206][T29161]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1679.103857][T29161]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1679.110221][T29161]  netlink_rcv_skb+0x200/0x470
[ 1679.115001][T29161]  ? genl_bind+0x360/0x360
[ 1679.119450][T29161]  ? netlink_ack+0xb70/0xb70
22:52:48 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e00402002900050cd25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

[ 1679.124050][T29161]  ? __down_read_common+0x1b0/0x450
[ 1679.129270][T29161]  ? up_read_non_owner+0x1c0/0x1c0
[ 1679.134399][T29161]  ? netlink_deliver_tap+0x130/0x880
[ 1679.139721][T29161]  genl_rcv+0x24/0x40
[ 1679.143727][T29161]  netlink_unicast+0x814/0x9f0
[ 1679.148523][T29161]  ? netlink_detachskb+0xa0/0xa0
[ 1679.153476][T29161]  ? __virt_addr_valid+0xb8/0x2d0
[ 1679.158519][T29161]  ? __phys_addr_symbol+0x2b/0x70
[ 1679.163564][T29161]  ? __check_object_size+0x2f3/0x3f0
[ 1679.168866][T29161]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1679.174000][T29161]  netlink_sendmsg+0xaea/0xe60
[ 1679.178787][T29161]  ? memcpy+0x3c/0x60
[ 1679.182808][T29161]  ? netlink_getsockopt+0xa60/0xa60
[ 1679.188029][T29161]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1679.193325][T29161]  ? security_socket_sendmsg+0x9d/0xb0
[ 1679.198776][T29161]  ? netlink_getsockopt+0xa60/0xa60
[ 1679.203987][T29161]  ____sys_sendmsg+0x5b9/0x910
[ 1679.208979][T29161]  ? __sys_sendmsg_sock+0x30/0x30
[ 1679.214046][T29161]  __sys_sendmsg+0x280/0x370
[ 1679.218719][T29161]  ? ____sys_sendmsg+0x910/0x910
[ 1679.223669][T29161]  ? __context_tracking_exit+0x7a/0xd0
[ 1679.229157][T29161]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1679.235149][T29161]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1679.241242][T29161]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1679.247238][T29161]  ? lockdep_hardirqs_on+0x95/0x140
[ 1679.252461][T29161]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1679.258461][T29161]  do_syscall_64+0x44/0xd0
[ 1679.262903][T29161]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1679.268823][T29161] RIP: 0033:0x7f5163f51e99
[ 1679.273248][T29161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1679.292875][T29161] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1679.301308][T29161] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1679.309297][T29161] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1679.317377][T29161] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1679.325366][T29161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1679.333370][T29161] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1679.341411][T29161]  </TASK>
22:52:49 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78) (fail_nth: 1)

22:52:49 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c68940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

[ 1679.416444][T29191] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1679.456491][T29191] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1679.489864][T29191] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1679.489864][T29191] !'
[ 1679.499801][T29302] FAULT_INJECTION: forcing a failure.
[ 1679.499801][T29302] name failslab, interval 1, probability 0, space 0, times 0
[ 1679.514661][T29302] CPU: 1 PID: 29302 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1679.523627][T29302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1679.533702][T29302] Call Trace:
[ 1679.536990][T29302]  <TASK>
[ 1679.539924][T29302]  dump_stack_lvl+0x201/0x2d8
[ 1679.544620][T29302]  ? show_regs_print_info+0x12/0x12
[ 1679.549827][T29302]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1679.555561][T29302]  ? __mutex_trylock_common+0x1e8/0x300
[ 1679.561114][T29302]  should_fail+0x384/0x4b0
[ 1679.565541][T29302]  ? file_tty_write+0x349/0x9a0
[ 1679.570417][T29302]  should_failslab+0x5/0x20
[ 1679.574919][T29302]  __kmalloc+0x94/0x380
[ 1679.579085][T29302]  file_tty_write+0x349/0x9a0
[ 1679.583760][T29302]  ? n_tty_read+0x1c60/0x1c60
[ 1679.588450][T29302]  vfs_write+0xb11/0xe90
[ 1679.592707][T29302]  ? file_end_write+0x230/0x230
[ 1679.597580][T29302]  ? __fget_files+0x3d0/0x440
[ 1679.602268][T29302]  ? __fdget_pos+0x1d8/0x2f0
[ 1679.606858][T29302]  ? ksys_write+0x77/0x2c0
[ 1679.611273][T29302]  ksys_write+0x18f/0x2c0
[ 1679.615607][T29302]  ? print_irqtrace_events+0x220/0x220
[ 1679.621068][T29302]  ? __ia32_sys_read+0x80/0x80
[ 1679.625828][T29302]  ? lockdep_hardirqs_on+0x95/0x140
[ 1679.631029][T29302]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1679.637020][T29302]  do_syscall_64+0x44/0xd0
[ 1679.641464][T29302]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1679.647364][T29302] RIP: 0033:0x7fd6114efe99
[ 1679.651784][T29302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1679.671395][T29302] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1679.679814][T29302] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1679.687796][T29302] RDX: 00000000ffffff78 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1679.695760][T29302] RBP: 00007fd60fe651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1679.703730][T29302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1679.711732][T29302] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1679.719720][T29302]  </TASK>
[ 1679.722870][T29191] CPU: 0 PID: 29191 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
22:52:49 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78) (fail_nth: 2)

[ 1679.731650][T29191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1679.741743][T29191] Call Trace:
[ 1679.745037][T29191]  <TASK>
[ 1679.747974][T29191]  dump_stack_lvl+0x201/0x2d8
[ 1679.752678][T29191]  ? show_regs_print_info+0x12/0x12
[ 1679.757904][T29191]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1679.763676][T29191]  sysfs_warn_dup+0x8c/0xa0
[ 1679.768200][T29191]  sysfs_do_create_link_sd+0xbe/0x100
[ 1679.773596][T29191]  device_add+0x9ea/0x16d0
[ 1679.778202][T29191]  ? wiphy_register+0x1b93/0x2a50
[ 1679.783272][T29191]  ? virtual_device_parent+0x50/0x50
[ 1679.788571][T29191]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1679.794580][T29191]  wiphy_register+0x1ba2/0x2a50
[ 1679.799465][T29191]  ? cfg80211_event_work+0x40/0x40
[ 1679.804602][T29191]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1679.810691][T29191]  ieee80211_register_hw+0x3063/0x3e10
[ 1679.816191][T29191]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1679.822030][T29191]  ? memset+0x1f/0x40
[ 1679.824023][T29304] FAULT_INJECTION: forcing a failure.
[ 1679.824023][T29304] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1679.826018][T29191]  ? __hrtimer_init+0x173/0x250
[ 1679.826053][T29191]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1679.826108][T29191]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1679.854761][T29191]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1679.861121][T29191]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1679.867463][T29191]  genl_rcv_msg+0x1032/0x1480
[ 1679.872157][T29191]  ? genl_bind+0x360/0x360
[ 1679.876589][T29191]  ? __lock_acquire+0x1382/0x2b00
[ 1679.881641][T29191]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1679.887293][T29191]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1679.893646][T29191]  netlink_rcv_skb+0x200/0x470
[ 1679.898420][T29191]  ? genl_bind+0x360/0x360
[ 1679.902843][T29191]  ? netlink_ack+0xb70/0xb70
[ 1679.907435][T29191]  ? __down_read_common+0x1b0/0x450
[ 1679.912636][T29191]  ? up_read_non_owner+0x1c0/0x1c0
[ 1679.917744][T29191]  ? netlink_deliver_tap+0x130/0x880
[ 1679.923042][T29191]  genl_rcv+0x24/0x40
[ 1679.927023][T29191]  netlink_unicast+0x814/0x9f0
[ 1679.931806][T29191]  ? netlink_detachskb+0xa0/0xa0
[ 1679.936749][T29191]  ? __virt_addr_valid+0xb8/0x2d0
[ 1679.941778][T29191]  ? __phys_addr_symbol+0x2b/0x70
[ 1679.946813][T29191]  ? __check_object_size+0x2f3/0x3f0
[ 1679.952118][T29191]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1679.957333][T29191]  netlink_sendmsg+0xaea/0xe60
[ 1679.962109][T29191]  ? memcpy+0x3c/0x60
[ 1679.966110][T29191]  ? netlink_getsockopt+0xa60/0xa60
[ 1679.971405][T29191]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1679.976688][T29191]  ? security_socket_sendmsg+0x9d/0xb0
[ 1679.982154][T29191]  ? netlink_getsockopt+0xa60/0xa60
[ 1679.987360][T29191]  ____sys_sendmsg+0x5b9/0x910
[ 1679.992143][T29191]  ? __sys_sendmsg_sock+0x30/0x30
[ 1679.997193][T29191]  __sys_sendmsg+0x280/0x370
[ 1680.001796][T29191]  ? ____sys_sendmsg+0x910/0x910
[ 1680.006756][T29191]  ? __context_tracking_exit+0x7a/0xd0
[ 1680.012237][T29191]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1680.018320][T29191]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1680.024320][T29191]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1680.030309][T29191]  ? lockdep_hardirqs_on+0x95/0x140
[ 1680.035508][T29191]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1680.041497][T29191]  do_syscall_64+0x44/0xd0
[ 1680.045922][T29191]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1680.051822][T29191] RIP: 0033:0x7fda9f984e99
[ 1680.056250][T29191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1680.075862][T29191] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1680.084285][T29191] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1680.092263][T29191] RDX: 0000000004480000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1680.100246][T29191] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1680.108229][T29191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1680.116198][T29191] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1680.124196][T29191]  </TASK>
[ 1680.127275][T29304] CPU: 1 PID: 29304 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1680.136050][T29304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1680.146110][T29304] Call Trace:
[ 1680.149383][T29304]  <TASK>
[ 1680.152316][T29304]  dump_stack_lvl+0x201/0x2d8
[ 1680.157007][T29304]  ? show_regs_print_info+0x12/0x12
[ 1680.162205][T29304]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1680.167936][T29304]  ? __might_fault+0xb6/0x110
[ 1680.172618][T29304]  ? __lock_acquire+0x2b00/0x2b00
[ 1680.177659][T29304]  should_fail+0x384/0x4b0
[ 1680.182083][T29304]  _copy_from_iter+0x25b/0x1080
[ 1680.186945][T29304]  ? _copy_mc_to_iter+0x1540/0x1540
[ 1680.192167][T29304]  ? __virt_addr_valid+0x21b/0x2d0
[ 1680.197288][T29304]  ? __phys_addr_symbol+0x2b/0x70
[ 1680.202322][T29304]  file_tty_write+0x582/0x9a0
[ 1680.206995][T29304]  ? n_tty_read+0x1c60/0x1c60
[ 1680.211665][T29304]  vfs_write+0xb11/0xe90
[ 1680.215905][T29304]  ? file_end_write+0x230/0x230
[ 1680.220759][T29304]  ? __fget_files+0x3d0/0x440
[ 1680.225435][T29304]  ? __fdget_pos+0x1d8/0x2f0
[ 1680.230016][T29304]  ? ksys_write+0x77/0x2c0
[ 1680.234448][T29304]  ksys_write+0x18f/0x2c0
[ 1680.238776][T29304]  ? print_irqtrace_events+0x220/0x220
[ 1680.244230][T29304]  ? __ia32_sys_read+0x80/0x80
[ 1680.248985][T29304]  ? lockdep_hardirqs_on+0x95/0x140
[ 1680.254173][T29304]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1680.260147][T29304]  do_syscall_64+0x44/0xd0
[ 1680.264558][T29304]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1680.270447][T29304] RIP: 0033:0x7fd6114efe99
[ 1680.274854][T29304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1680.294458][T29304] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1680.302877][T29304] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1680.310848][T29304] RDX: 00000000ffffff78 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1680.318816][T29304] RBP: 00007fd60fe651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1680.326778][T29304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1680.334734][T29304] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1680.342721][T29304]  </TASK>
[ 1680.370047][T29192] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1680.382677][T29192] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1680.397310][T29192] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1680.397310][T29192] !'
[ 1680.407841][T29192] CPU: 0 PID: 29192 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
22:52:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78) (fail_nth: 3)

[ 1680.416630][T29192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1680.426697][T29192] Call Trace:
[ 1680.429993][T29192]  <TASK>
[ 1680.432932][T29192]  dump_stack_lvl+0x201/0x2d8
[ 1680.437626][T29192]  ? show_regs_print_info+0x12/0x12
[ 1680.442829][T29192]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1680.448594][T29192]  sysfs_warn_dup+0x8c/0xa0
[ 1680.453115][T29192]  sysfs_do_create_link_sd+0xbe/0x100
[ 1680.458507][T29192]  device_add+0x9ea/0x16d0
[ 1680.462946][T29192]  ? wiphy_register+0x1b93/0x2a50
[ 1680.468002][T29192]  ? virtual_device_parent+0x50/0x50
[ 1680.473298][T29192]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1680.473530][T29306] FAULT_INJECTION: forcing a failure.
[ 1680.473530][T29306] name failslab, interval 1, probability 0, space 0, times 0
[ 1680.473903][T29306] 
[ 1680.473909][T29306] ======================================================
[ 1680.473915][T29306] WARNING: possible circular locking dependency detected
[ 1680.473921][T29306] 5.16.0-rc5-syzkaller #0 Not tainted
[ 1680.473929][T29306] ------------------------------------------------------
[ 1680.473935][T29306] syz-executor.1/29306 is trying to acquire lock:
[ 1680.473943][T29306] ffffffff8cb12760 (console_owner){-.-.}-{0:0}, at: console_trylock_spinning+0x186/0x3f0
[ 1680.473985][T29306] 
[ 1680.473985][T29306] but task is already holding lock:
[ 1680.473990][T29306] ffff888020ca3158 (&port->lock){-.-.}-{2:2}, at: pty_write+0xc5/0x170
[ 1680.474029][T29306] 
[ 1680.474029][T29306] which lock already depends on the new lock.
[ 1680.474029][T29306] 
[ 1680.474034][T29306] 
[ 1680.474034][T29306] the existing dependency chain (in reverse order) is:
[ 1680.474039][T29306] 
[ 1680.474039][T29306] -> #2 (&port->lock){-.-.}-{2:2}:
[ 1680.474059][T29306]        lock_acquire+0x19f/0x4d0
[ 1680.474075][T29306]        _raw_spin_lock_irqsave+0xd1/0x120
[ 1680.474091][T29306]        tty_port_tty_get+0x21/0xe0
[ 1680.474107][T29306]        tty_port_default_wakeup+0x11/0x40
[ 1680.474123][T29306]        serial8250_tx_chars+0x68e/0x8a0
[ 1680.474221][T29306]        serial8250_handle_irq+0x2fd/0x3e0
[ 1680.474239][T29306]        serial8250_default_handle_irq+0xaf/0x190
[ 1680.474279][T29306]        serial8250_interrupt+0xa3/0x1e0
[ 1680.474301][T29306]        __handle_irq_event_percpu+0x20d/0x730
[ 1680.474316][T29306]        handle_irq_event+0x10a/0x300
[ 1680.474330][T29306]        handle_edge_irq+0x245/0xbe0
[ 1680.474346][T29306]        __common_interrupt+0xce/0x1e0
[ 1680.474396][T29306]        common_interrupt+0x9f/0xc0
[ 1680.474415][T29306]        asm_common_interrupt+0x1e/0x40
[ 1680.474431][T29306]        _raw_spin_unlock_irqrestore+0xd4/0x130
[ 1680.474446][T29306]        uart_write+0x6ad/0x920
[ 1680.474462][T29306]        n_tty_write+0xdda/0x1320
[ 1680.474477][T29306]        file_tty_write+0x5c5/0x9a0
[ 1680.474491][T29306]        vfs_write+0xb11/0xe90
[ 1680.474505][T29306]        ksys_write+0x18f/0x2c0
[ 1680.474519][T29306]        do_syscall_64+0x44/0xd0
[ 1680.474535][T29306]        entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1680.474551][T29306] 
[ 1680.474551][T29306] -> #1 (&port_lock_key){-.-.}-{2:2}:
[ 1680.474572][T29306]        lock_acquire+0x19f/0x4d0
[ 1680.474587][T29306]        _raw_spin_lock_irqsave+0xd1/0x120
[ 1680.474601][T29306]        serial8250_console_write+0x19c/0xf30
[ 1680.474620][T29306]        console_unlock+0xb00/0xe90
[ 1680.474635][T29306]        vprintk_emit+0xba/0x140
[ 1680.474650][T29306]        _printk+0xcf/0x118
[ 1680.474665][T29306]        register_console+0x6bd/0x9a0
[ 1680.474680][T29306]        univ8250_console_init+0x41/0x43
[ 1680.474748][T29306]        console_init+0x52/0x97
[ 1680.474767][T29306]        start_kernel+0x32d/0x56e
[ 1680.474783][T29306]        secondary_startup_64_no_verify+0xb1/0xbb
[ 1680.474807][T29306] 
[ 1680.474807][T29306] -> #0 (console_owner){-.-.}-{0:0}:
[ 1680.474828][T29306]        validate_chain+0x1dfb/0x8240
[ 1680.474844][T29306]        __lock_acquire+0x1382/0x2b00
[ 1680.474859][T29306]        lock_acquire+0x19f/0x4d0
[ 1680.474873][T29306]        console_trylock_spinning+0x1a6/0x3f0
[ 1680.474890][T29306]        vprintk_emit+0xa1/0x140
[ 1680.474905][T29306]        _printk+0xcf/0x118
[ 1680.474919][T29306]        should_fail+0x366/0x4b0
[ 1680.474933][T29306]        should_failslab+0x5/0x20
[ 1680.474946][T29306]        __kmalloc+0x94/0x380
[ 1680.474960][T29306]        __tty_buffer_request_room+0x1f0/0x540
[ 1680.474976][T29306]        tty_insert_flip_string_fixed_flag+0x92/0x2c0
[ 1680.474995][T29306]        pty_write+0xe9/0x170
[ 1680.475012][T29306]        n_tty_write+0x646/0x1320
[ 1680.475026][T29306]        file_tty_write+0x5c5/0x9a0
[ 1680.475039][T29306]        vfs_write+0xb11/0xe90
[ 1680.475053][T29306]        ksys_write+0x18f/0x2c0
[ 1680.475067][T29306]        do_syscall_64+0x44/0xd0
[ 1680.475083][T29306]        entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1680.475099][T29306] 
[ 1680.475099][T29306] other info that might help us debug this:
[ 1680.475099][T29306] 
[ 1680.475105][T29306] Chain exists of:
[ 1680.475105][T29306]   console_owner --> &port_lock_key --> &port->lock
[ 1680.475105][T29306] 
[ 1680.475127][T29306]  Possible unsafe locking scenario:
[ 1680.475127][T29306] 
[ 1680.475132][T29306]        CPU0                    CPU1
[ 1680.475136][T29306]        ----                    ----
[ 1680.475140][T29306]   lock(&port->lock);
[ 1680.475149][T29306]                                lock(&port_lock_key);
[ 1680.475160][T29306]                                lock(&port->lock);
[ 1680.475170][T29306]   lock(console_owner);
[ 1680.475178][T29306] 
[ 1680.475178][T29306]  *** DEADLOCK ***
[ 1680.475178][T29306] 
[ 1680.475182][T29306] 5 locks held by syz-executor.1/29306:
[ 1680.475192][T29306]  #0: ffff888083e15098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[ 1680.475235][T29306]  #1: ffff888083e15130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write+0x271/0x9a0
[ 1680.475272][T29306]  #2: ffff888083e152e8 (&tty->termios_rwsem){++++}-{3:3}, at: n_tty_write+0x23e/0x1320
[ 1680.475310][T29306]  #3: ffffc9000f74d378 (&ldata->output_lock){+.+.}-{3:3}, at: n_tty_write+0x5fa/0x1320
[ 1680.475348][T29306]  #4: ffff888020ca3158 (&port->lock){-.-.}-{2:2}, at: pty_write+0xc5/0x170
[ 1680.475387][T29306] 
[ 1680.475387][T29306] stack backtrace:
[ 1680.479289][T29192]  wiphy_register+0x1ba2/0x2a50
[ 1680.479319][T29192]  ? cfg80211_event_work+0x40/0x40
[ 1680.479340][T29192]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1680.479362][T29192]  ieee80211_register_hw+0x3063/0x3e10
[ 1680.479389][T29192]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1680.479412][T29192]  ? memset+0x1f/0x40
[ 1680.479426][T29192]  ? __hrtimer_init+0x173/0x250
[ 1680.479445][T29192]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1680.479471][T29192]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1680.479491][T29192]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1680.479512][T29192]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1680.479534][T29192]  genl_rcv_msg+0x1032/0x1480
[ 1680.479555][T29192]  ? genl_bind+0x360/0x360
[ 1680.479574][T29192]  ? __lock_acquire+0x1382/0x2b00
[ 1680.479598][T29192]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1680.479614][T29192]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1680.479637][T29192]  netlink_rcv_skb+0x200/0x470
[ 1680.479654][T29192]  ? genl_bind+0x360/0x360
[ 1680.479671][T29192]  ? netlink_ack+0xb70/0xb70
[ 1680.479686][T29192]  ? __down_read_common+0x1b0/0x450
[ 1680.479706][T29192]  ? up_read_non_owner+0x1c0/0x1c0
[ 1680.479721][T29192]  ? netlink_deliver_tap+0x130/0x880
[ 1680.479742][T29192]  genl_rcv+0x24/0x40
[ 1680.479758][T29192]  netlink_unicast+0x814/0x9f0
[ 1680.479778][T29192]  ? netlink_detachskb+0xa0/0xa0
[ 1680.479794][T29192]  ? __virt_addr_valid+0xb8/0x2d0
[ 1680.479812][T29192]  ? __phys_addr_symbol+0x2b/0x70
[ 1680.479828][T29192]  ? __check_object_size+0x2f3/0x3f0
[ 1680.479846][T29192]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1680.479862][T29192]  netlink_sendmsg+0xaea/0xe60
[ 1680.479879][T29192]  ? memcpy+0x3c/0x60
[ 1680.479897][T29192]  ? netlink_getsockopt+0xa60/0xa60
[ 1680.479917][T29192]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1680.479932][T29192]  ? security_socket_sendmsg+0x9d/0xb0
[ 1680.479950][T29192]  ? netlink_getsockopt+0xa60/0xa60
[ 1680.479967][T29192]  ____sys_sendmsg+0x5b9/0x910
[ 1680.479989][T29192]  ? __sys_sendmsg_sock+0x30/0x30
[ 1680.480012][T29192]  __sys_sendmsg+0x280/0x370
[ 1680.480031][T29192]  ? ____sys_sendmsg+0x910/0x910
[ 1680.480053][T29192]  ? __context_tracking_exit+0x7a/0xd0
[ 1680.480073][T29192]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1680.480089][T29192]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1680.480109][T29192]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1680.480124][T29192]  ? lockdep_hardirqs_on+0x95/0x140
[ 1680.480138][T29192]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1680.480154][T29192]  do_syscall_64+0x44/0xd0
[ 1680.480173][T29192]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1680.480190][T29192] RIP: 0033:0x7f3e3559fe99
[ 1680.480205][T29192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1680.480219][T29192] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1680.480237][T29192] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1680.480249][T29192] RDX: 0100000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1680.480262][T29192] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1680.480273][T29192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1680.480283][T29192] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1680.480301][T29192]  </TASK>
[ 1680.480308][T29306] CPU: 1 PID: 29306 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1680.480326][T29306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1680.480336][T29306] Call Trace:
[ 1680.480341][T29306]  <TASK>
[ 1680.480347][T29306]  dump_stack_lvl+0x1dc/0x2d8
[ 1680.480369][T29306]  ? show_regs_print_info+0x12/0x12
[ 1680.480387][T29306]  ? save_trace+0x5a/0x9f0
[ 1680.480405][T29306]  ? print_circular_bug+0x48e/0x5d0
[ 1680.480423][T29306]  check_noncircular+0x2f9/0x3b0
[ 1680.480439][T29306]  ? stack_trace_snprint+0xe0/0xe0
[ 1680.480456][T29306]  ? add_chain_block+0x850/0x850
[ 1680.480474][T29306]  ? lockdep_lock+0x11d/0x2e0
[ 1680.480495][T29306]  validate_chain+0x1dfb/0x8240
[ 1680.480518][T29306]  ? reacquire_held_locks+0x620/0x620
[ 1680.480533][T29306]  ? mark_lock+0x191/0x1e00
[ 1680.480549][T29306]  ? __print_lock_name+0x1d0/0x1d0
[ 1680.480565][T29306]  ? __print_lock_name+0x1d0/0x1d0
[ 1680.480583][T29306]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1680.480597][T29306]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1680.480620][T29306]  __lock_acquire+0x1382/0x2b00
[ 1680.480646][T29306]  ? trace_lock_acquire+0x190/0x190
[ 1680.480666][T29306]  lock_acquire+0x19f/0x4d0
[ 1680.480680][T29306]  ? console_trylock_spinning+0x186/0x3f0
[ 1680.480699][T29306]  ? read_lock_is_recursive+0x10/0x10
[ 1680.480716][T29306]  ? console_trylock_spinning+0x186/0x3f0
[ 1680.480734][T29306]  ? __lock_acquire+0x2b00/0x2b00
[ 1680.480750][T29306]  ? do_raw_spin_lock+0x151/0x8e0
[ 1680.480772][T29306]  ? do_raw_spin_unlock+0x134/0x8a0
[ 1680.480790][T29306]  ? __lock_acquire+0x1382/0x2b00
[ 1680.480809][T29306]  console_trylock_spinning+0x1a6/0x3f0
[ 1680.480826][T29306]  ? console_trylock_spinning+0x186/0x3f0
[ 1680.480846][T29306]  ? vprintk_emit+0x140/0x140
[ 1680.480865][T29306]  ? __lock_acquire+0x1382/0x2b00
[ 1680.480881][T29306]  ? trace_lock_acquire+0x190/0x190
[ 1680.480901][T29306]  vprintk_emit+0xa1/0x140
[ 1680.480921][T29306]  _printk+0xcf/0x118
[ 1680.480941][T29306]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1680.480965][T29306]  should_fail+0x366/0x4b0
[ 1680.480980][T29306]  ? __tty_buffer_request_room+0x1f0/0x540
[ 1680.481001][T29306]  should_failslab+0x5/0x20
[ 1680.481014][T29306]  __kmalloc+0x94/0x380
[ 1680.481033][T29306]  __tty_buffer_request_room+0x1f0/0x540
[ 1680.481055][T29306]  tty_insert_flip_string_fixed_flag+0x92/0x2c0
[ 1680.481075][T29306]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1680.481092][T29306]  ? _raw_spin_unlock+0x40/0x40
[ 1680.481109][T29306]  pty_write+0xe9/0x170
[ 1680.481126][T29306]  n_tty_write+0x646/0x1320
[ 1680.481139][T29306]  ? __might_fault+0xb2/0x110
[ 1680.481161][T29306]  ? n_tty_read+0x1c60/0x1c60
[ 1680.481176][T29306]  ? wait_woken+0x1b0/0x1b0
[ 1680.481193][T29306]  ? __virt_addr_valid+0x21b/0x2d0
[ 1680.481221][T29306]  ? __phys_addr_symbol+0x2b/0x70
[ 1680.481241][T29306]  file_tty_write+0x5c5/0x9a0
[ 1680.481258][T29306]  ? n_tty_read+0x1c60/0x1c60
[ 1680.481277][T29306]  vfs_write+0xb11/0xe90
[ 1680.481298][T29306]  ? file_end_write+0x230/0x230
[ 1680.481317][T29306]  ? __fget_files+0x3d0/0x440
[ 1680.481337][T29306]  ? __fdget_pos+0x1d8/0x2f0
[ 1680.481351][T29306]  ? ksys_write+0x77/0x2c0
[ 1680.481368][T29306]  ksys_write+0x18f/0x2c0
[ 1680.481381][T29306]  ? print_irqtrace_events+0x220/0x220
[ 1680.481400][T29306]  ? __ia32_sys_read+0x80/0x80
[ 1680.481416][T29306]  ? lockdep_hardirqs_on+0x95/0x140
[ 1680.481432][T29306]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1680.481448][T29306]  do_syscall_64+0x44/0xd0
[ 1680.481467][T29306]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1680.481485][T29306] RIP: 0033:0x7fd6114efe99
[ 1680.481499][T29306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1680.481516][T29306] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1680.481536][T29306] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1680.481550][T29306] RDX: 00000000ffffff78 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1680.481561][T29306] RBP: 00007fd60fe651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1680.481573][T29306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1680.481584][T29306] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1680.481603][T29306]  </TASK>
[ 1681.724828][T29306] CPU: 1 PID: 29306 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1681.733660][T29306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1681.743701][T29306] Call Trace:
[ 1681.746963][T29306]  <TASK>
[ 1681.749881][T29306]  dump_stack_lvl+0x1dc/0x2d8
[ 1681.754551][T29306]  ? show_regs_print_info+0x12/0x12
[ 1681.759738][T29306]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1681.765448][T29306]  should_fail+0x384/0x4b0
[ 1681.769848][T29306]  ? __tty_buffer_request_room+0x1f0/0x540
[ 1681.775646][T29306]  should_failslab+0x5/0x20
[ 1681.780131][T29306]  __kmalloc+0x94/0x380
[ 1681.784278][T29306]  __tty_buffer_request_room+0x1f0/0x540
[ 1681.789901][T29306]  tty_insert_flip_string_fixed_flag+0x92/0x2c0
[ 1681.796134][T29306]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1681.802019][T29306]  ? _raw_spin_unlock+0x40/0x40
[ 1681.806856][T29306]  pty_write+0xe9/0x170
[ 1681.811006][T29306]  n_tty_write+0x646/0x1320
[ 1681.815496][T29306]  ? __might_fault+0xb2/0x110
[ 1681.820165][T29306]  ? n_tty_read+0x1c60/0x1c60
[ 1681.824830][T29306]  ? wait_woken+0x1b0/0x1b0
[ 1681.829316][T29306]  ? __virt_addr_valid+0x21b/0x2d0
[ 1681.834413][T29306]  ? __phys_addr_symbol+0x2b/0x70
[ 1681.839424][T29306]  file_tty_write+0x5c5/0x9a0
[ 1681.844085][T29306]  ? n_tty_read+0x1c60/0x1c60
[ 1681.848745][T29306]  vfs_write+0xb11/0xe90
[ 1681.852980][T29306]  ? file_end_write+0x230/0x230
[ 1681.857817][T29306]  ? __fget_files+0x3d0/0x440
[ 1681.862484][T29306]  ? __fdget_pos+0x1d8/0x2f0
[ 1681.867056][T29306]  ? ksys_write+0x77/0x2c0
[ 1681.871454][T29306]  ksys_write+0x18f/0x2c0
[ 1681.875770][T29306]  ? print_irqtrace_events+0x220/0x220
[ 1681.881212][T29306]  ? __ia32_sys_read+0x80/0x80
[ 1681.885962][T29306]  ? lockdep_hardirqs_on+0x95/0x140
[ 1681.891154][T29306]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1681.897123][T29306]  do_syscall_64+0x44/0xd0
[ 1681.901531][T29306]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1681.907408][T29306] RIP: 0033:0x7fd6114efe99
[ 1681.911809][T29306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1681.931400][T29306] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1681.939798][T29306] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1681.947754][T29306] RDX: 00000000ffffff78 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1681.955707][T29306] RBP: 00007fd60fe651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1681.963663][T29306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
22:52:51 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x5000000)

[ 1681.971615][T29306] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1681.979583][T29306]  </TASK>
[ 1682.001827][T29297] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1682.010764][T29297] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1682.021316][T29297] ieee80211 
22:52:51 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78) (fail_nth: 4)

[ 1682.021316][T29297] !: Selected rate control algorithm 'minstrel_ht'
[ 1682.032680][T29297] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1682.032680][T29297] !'
[ 1682.046666][T29297] CPU: 1 PID: 29297 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1682.055456][T29297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1682.065519][T29297] Call Trace:
[ 1682.068813][T29297]  <TASK>
[ 1682.071749][T29297]  dump_stack_lvl+0x201/0x2d8
[ 1682.072746][T29310] FAULT_INJECTION: forcing a failure.
[ 1682.072746][T29310] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1682.076443][T29297]  ? show_regs_print_info+0x12/0x12
[ 1682.076473][T29297]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1682.100377][T29297]  sysfs_warn_dup+0x8c/0xa0
[ 1682.104887][T29297]  sysfs_do_create_link_sd+0xbe/0x100
[ 1682.110267][T29297]  device_add+0x9ea/0x16d0
[ 1682.114678][T29297]  ? wiphy_register+0x1b93/0x2a50
[ 1682.119703][T29297]  ? virtual_device_parent+0x50/0x50
[ 1682.124980][T29297]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1682.130956][T29297]  wiphy_register+0x1ba2/0x2a50
[ 1682.135822][T29297]  ? cfg80211_event_work+0x40/0x40
[ 1682.140943][T29297]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1682.147020][T29297]  ieee80211_register_hw+0x3063/0x3e10
[ 1682.152499][T29297]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1682.158309][T29297]  ? memset+0x1f/0x40
[ 1682.162293][T29297]  ? __hrtimer_init+0x173/0x250
[ 1682.167147][T29297]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1682.172884][T29297]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1682.178001][T29297]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1682.184336][T29297]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1682.190668][T29297]  genl_rcv_msg+0x1032/0x1480
[ 1682.195350][T29297]  ? genl_bind+0x360/0x360
[ 1682.199768][T29297]  ? __lock_acquire+0x1382/0x2b00
[ 1682.204796][T29297]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1682.210425][T29297]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1682.216753][T29297]  netlink_rcv_skb+0x200/0x470
[ 1682.221525][T29297]  ? genl_bind+0x360/0x360
[ 1682.225944][T29297]  ? netlink_ack+0xb70/0xb70
[ 1682.230534][T29297]  ? __down_read_common+0x1b0/0x450
[ 1682.235727][T29297]  ? up_read_non_owner+0x1c0/0x1c0
[ 1682.240835][T29297]  ? netlink_deliver_tap+0x130/0x880
[ 1682.246115][T29297]  genl_rcv+0x24/0x40
[ 1682.250097][T29297]  netlink_unicast+0x814/0x9f0
[ 1682.254859][T29297]  ? netlink_detachskb+0xa0/0xa0
[ 1682.259789][T29297]  ? __virt_addr_valid+0xb8/0x2d0
[ 1682.264808][T29297]  ? __phys_addr_symbol+0x2b/0x70
[ 1682.269834][T29297]  ? __check_object_size+0x2f3/0x3f0
[ 1682.275119][T29297]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1682.280226][T29297]  netlink_sendmsg+0xaea/0xe60
[ 1682.284981][T29297]  ? memcpy+0x3c/0x60
[ 1682.288958][T29297]  ? netlink_getsockopt+0xa60/0xa60
[ 1682.294153][T29297]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1682.299436][T29297]  ? security_socket_sendmsg+0x9d/0xb0
[ 1682.304892][T29297]  ? netlink_getsockopt+0xa60/0xa60
[ 1682.310085][T29297]  ____sys_sendmsg+0x5b9/0x910
[ 1682.314851][T29297]  ? __sys_sendmsg_sock+0x30/0x30
[ 1682.319874][T29297]  __sys_sendmsg+0x280/0x370
[ 1682.324462][T29297]  ? ____sys_sendmsg+0x910/0x910
[ 1682.329401][T29297]  ? __context_tracking_exit+0x7a/0xd0
[ 1682.334866][T29297]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1682.340844][T29297]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1682.346818][T29297]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1682.352790][T29297]  ? lockdep_hardirqs_on+0x95/0x140
[ 1682.357977][T29297]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1682.363957][T29297]  do_syscall_64+0x44/0xd0
[ 1682.368376][T29297]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1682.374262][T29297] RIP: 0033:0x7fbee7a71e99
[ 1682.378665][T29297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1682.398260][T29297] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1682.406683][T29297] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1682.414651][T29297] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1682.422612][T29297] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1682.430573][T29297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1682.438533][T29297] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1682.446506][T29297]  </TASK>
[ 1682.449514][T29310] CPU: 0 PID: 29310 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1682.458278][T29310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1682.461656][T29298] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
22:52:52 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x108000000000000)

[ 1682.468336][T29310] Call Trace:
[ 1682.468347][T29310]  <TASK>
[ 1682.482641][T29298] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1682.482669][T29310]  dump_stack_lvl+0x201/0x2d8
[ 1682.493071][T29298] ieee80211 
[ 1682.493071][T29298] !: Selected rate control algorithm 'minstrel_ht'
[ 1682.496954][T29310]  ? show_regs_print_info+0x12/0x12
[ 1682.507409][T29298] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1682.507409][T29298] !'
[ 1682.511636][T29310]  ? log_buf_vmcoreinfo_setup+0x498/0x498
22:52:52 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e00402002900050cd25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

[ 1682.511660][T29310]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1682.511679][T29310]  ? __lock_acquire+0x2b00/0x2b00
[ 1682.511699][T29310]  should_fail+0x384/0x4b0
[ 1682.511716][T29310]  _copy_from_iter+0x25b/0x1080
[ 1682.511738][T29310]  ? _copy_mc_to_iter+0x1540/0x1540
[ 1682.511756][T29310]  ? wait_woken+0x1b0/0x1b0
[ 1682.557053][T29310]  ? __virt_addr_valid+0x21b/0x2d0
[ 1682.562164][T29310]  ? __phys_addr_symbol+0x2b/0x70
[ 1682.567184][T29310]  file_tty_write+0x582/0x9a0
[ 1682.571855][T29310]  ? n_tty_read+0x1c60/0x1c60
[ 1682.576527][T29310]  vfs_write+0xb11/0xe90
[ 1682.580765][T29310]  ? file_end_write+0x230/0x230
[ 1682.585603][T29310]  ? lock_release+0x82/0x810
[ 1682.590197][T29310]  ? __fget_files+0x3d0/0x440
[ 1682.594869][T29310]  ? __fdget_pos+0x1d8/0x2f0
[ 1682.599450][T29310]  ? ksys_write+0x77/0x2c0
[ 1682.603855][T29310]  ksys_write+0x18f/0x2c0
[ 1682.608176][T29310]  ? print_irqtrace_events+0x220/0x220
[ 1682.613635][T29310]  ? __ia32_sys_read+0x80/0x80
[ 1682.618393][T29310]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1682.624369][T29310]  do_syscall_64+0x44/0xd0
[ 1682.628781][T29310]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1682.634668][T29310] RIP: 0033:0x7fd6114efe99
[ 1682.639074][T29310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1682.658670][T29310] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1682.667078][T29310] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1682.675038][T29310] RDX: 00000000ffffff78 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1682.683000][T29310] RBP: 00007fd60fe651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1682.690964][T29310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1682.698928][T29310] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1682.706901][T29310]  </TASK>
[ 1682.709910][T29298] CPU: 1 PID: 29298 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1682.718679][T29298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1682.728733][T29298] Call Trace:
[ 1682.732004][T29298]  <TASK>
[ 1682.734920][T29298]  dump_stack_lvl+0x201/0x2d8
[ 1682.739595][T29298]  ? show_regs_print_info+0x12/0x12
[ 1682.744786][T29298]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1682.750496][T29298]  sysfs_warn_dup+0x8c/0xa0
[ 1682.754984][T29298]  sysfs_do_create_link_sd+0xbe/0x100
[ 1682.760340][T29298]  device_add+0x9ea/0x16d0
[ 1682.764740][T29298]  ? wiphy_register+0x1b93/0x2a50
[ 1682.769753][T29298]  ? virtual_device_parent+0x50/0x50
[ 1682.775113][T29298]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1682.781083][T29298]  wiphy_register+0x1ba2/0x2a50
[ 1682.785930][T29298]  ? cfg80211_event_work+0x40/0x40
[ 1682.791027][T29298]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1682.797088][T29298]  ieee80211_register_hw+0x3063/0x3e10
[ 1682.802556][T29298]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1682.808353][T29298]  ? memset+0x1f/0x40
[ 1682.812319][T29298]  ? __hrtimer_init+0x173/0x250
[ 1682.817158][T29298]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1682.822879][T29298]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1682.828065][T29298]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1682.834384][T29298]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1682.840699][T29298]  genl_rcv_msg+0x1032/0x1480
[ 1682.845371][T29298]  ? genl_bind+0x360/0x360
[ 1682.849774][T29298]  ? __lock_acquire+0x1382/0x2b00
[ 1682.854788][T29298]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1682.860407][T29298]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1682.866724][T29298]  netlink_rcv_skb+0x200/0x470
[ 1682.871471][T29298]  ? genl_bind+0x360/0x360
[ 1682.875877][T29298]  ? netlink_ack+0xb70/0xb70
[ 1682.880544][T29298]  ? __down_read_common+0x1b0/0x450
[ 1682.885724][T29298]  ? up_read_non_owner+0x1c0/0x1c0
[ 1682.890816][T29298]  ? netlink_deliver_tap+0x130/0x880
[ 1682.896099][T29298]  genl_rcv+0x24/0x40
[ 1682.900065][T29298]  netlink_unicast+0x814/0x9f0
[ 1682.904819][T29298]  ? netlink_detachskb+0xa0/0xa0
[ 1682.909740][T29298]  ? __virt_addr_valid+0xb8/0x2d0
[ 1682.914750][T29298]  ? __phys_addr_symbol+0x2b/0x70
[ 1682.919758][T29298]  ? __check_object_size+0x2f3/0x3f0
[ 1682.925028][T29298]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1682.930125][T29298]  netlink_sendmsg+0xaea/0xe60
[ 1682.934873][T29298]  ? memcpy+0x3c/0x60
[ 1682.938842][T29298]  ? netlink_getsockopt+0xa60/0xa60
[ 1682.944028][T29298]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1682.949296][T29298]  ? security_socket_sendmsg+0x9d/0xb0
[ 1682.954742][T29298]  ? netlink_getsockopt+0xa60/0xa60
[ 1682.959927][T29298]  ____sys_sendmsg+0x5b9/0x910
[ 1682.964689][T29298]  ? __sys_sendmsg_sock+0x30/0x30
[ 1682.969704][T29298]  __sys_sendmsg+0x280/0x370
[ 1682.974278][T29298]  ? ____sys_sendmsg+0x910/0x910
[ 1682.979203][T29298]  ? __context_tracking_exit+0x7a/0xd0
[ 1682.984649][T29298]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1682.990613][T29298]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1682.996584][T29298]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1683.002555][T29298]  ? lockdep_hardirqs_on+0x95/0x140
[ 1683.007735][T29298]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1683.013702][T29298]  do_syscall_64+0x44/0xd0
[ 1683.018108][T29298]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1683.024080][T29298] RIP: 0033:0x7ffbc7e82e99
[ 1683.028480][T29298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1683.048069][T29298] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1683.056473][T29298] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1683.064429][T29298] RDX: 0000000004480000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1683.072387][T29298] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
22:52:52 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78) (fail_nth: 5)

[ 1683.080344][T29298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1683.088317][T29298] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1683.096297][T29298]  </TASK>
[ 1683.132642][T29316] FAULT_INJECTION: forcing a failure.
[ 1683.132642][T29316] name failslab, interval 1, probability 0, space 0, times 0
[ 1683.135109][T29301] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
[ 1683.145266][T29316] CPU: 0 PID: 29316 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1683.145291][T29316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1683.145302][T29316] Call Trace:
[ 1683.145310][T29316]  <TASK>
22:52:52 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x5000000)

22:52:52 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x200000000000000)

[ 1683.145317][T29316]  dump_stack_lvl+0x1dc/0x2d8
[ 1683.145345][T29316]  ? show_regs_print_info+0x12/0x12
[ 1683.145365][T29316]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1683.145388][T29316]  ? lock_acquire+0xa5/0x4d0
[ 1683.145406][T29316]  ? pty_write+0xc5/0x170
[ 1683.145429][T29316]  should_fail+0x384/0x4b0
[ 1683.145448][T29316]  ? __tty_buffer_request_room+0x1f0/0x540
[ 1683.145466][T29316]  should_failslab+0x5/0x20
[ 1683.178319][T29301] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1683.178648][T29316]  __kmalloc+0x94/0x380
[ 1683.191055][T29301] ieee80211 
[ 1683.191055][T29301] !: Selected rate control algorithm 'minstrel_ht'
[ 1683.194194][T29316]  __tty_buffer_request_room+0x1f0/0x540
[ 1683.199400][T29301] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1683.199400][T29301] !'
[ 1683.203177][T29316]  tty_insert_flip_string_fixed_flag+0x92/0x2c0
[ 1683.203204][T29316]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1683.268715][T29316]  ? _raw_spin_unlock+0x40/0x40
[ 1683.273582][T29316]  pty_write+0xe9/0x170
[ 1683.277739][T29316]  n_tty_write+0x646/0x1320
[ 1683.282234][T29316]  ? __might_fault+0xb2/0x110
[ 1683.287035][T29316]  ? n_tty_read+0x1c60/0x1c60
[ 1683.291722][T29316]  ? wait_woken+0x1b0/0x1b0
[ 1683.296234][T29316]  ? __virt_addr_valid+0x21b/0x2d0
[ 1683.301354][T29316]  ? __phys_addr_symbol+0x2b/0x70
[ 1683.306469][T29316]  file_tty_write+0x5c5/0x9a0
[ 1683.311152][T29316]  ? n_tty_read+0x1c60/0x1c60
[ 1683.315839][T29316]  vfs_write+0xb11/0xe90
[ 1683.320093][T29316]  ? file_end_write+0x230/0x230
[ 1683.324947][T29316]  ? lock_release+0x82/0x810
22:52:52 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x300000000000000)

[ 1683.329629][T29316]  ? __fget_files+0x3d0/0x440
[ 1683.334320][T29316]  ? __fdget_pos+0x1d8/0x2f0
[ 1683.338910][T29316]  ? ksys_write+0x77/0x2c0
[ 1683.343325][T29316]  ksys_write+0x18f/0x2c0
[ 1683.347647][T29316]  ? print_irqtrace_events+0x220/0x220
[ 1683.353101][T29316]  ? __ia32_sys_read+0x80/0x80
[ 1683.357864][T29316]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1683.363841][T29316]  do_syscall_64+0x44/0xd0
[ 1683.368257][T29316]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1683.374150][T29316] RIP: 0033:0x7fd6114efe99
[ 1683.378573][T29316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1683.398186][T29316] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1683.406612][T29316] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1683.414587][T29316] RDX: 00000000ffffff78 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1683.422589][T29316] RBP: 00007fd60fe651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1683.430565][T29316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1683.438544][T29316] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1683.446535][T29316]  </TASK>
[ 1683.454197][T29301] CPU: 1 PID: 29301 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1683.462990][T29301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1683.473044][T29301] Call Trace:
[ 1683.476311][T29301]  <TASK>
[ 1683.479227][T29301]  dump_stack_lvl+0x201/0x2d8
[ 1683.483902][T29301]  ? show_regs_print_info+0x12/0x12
[ 1683.489090][T29301]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1683.494803][T29301]  sysfs_warn_dup+0x8c/0xa0
[ 1683.499295][T29301]  sysfs_do_create_link_sd+0xbe/0x100
[ 1683.504660][T29301]  device_add+0x9ea/0x16d0
[ 1683.509059][T29301]  ? wiphy_register+0x1b93/0x2a50
[ 1683.514081][T29301]  ? virtual_device_parent+0x50/0x50
[ 1683.519349][T29301]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1683.525316][T29301]  wiphy_register+0x1ba2/0x2a50
[ 1683.530159][T29301]  ? cfg80211_event_work+0x40/0x40
[ 1683.535261][T29301]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1683.541317][T29301]  ieee80211_register_hw+0x3063/0x3e10
[ 1683.546772][T29301]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1683.552571][T29301]  ? memset+0x1f/0x40
[ 1683.556536][T29301]  ? __hrtimer_init+0x173/0x250
[ 1683.561373][T29301]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1683.567088][T29301]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1683.572188][T29301]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1683.578504][T29301]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1683.584829][T29301]  genl_rcv_msg+0x1032/0x1480
[ 1683.589505][T29301]  ? genl_bind+0x360/0x360
[ 1683.593910][T29301]  ? __lock_acquire+0x1382/0x2b00
[ 1683.598930][T29301]  ? rcu_read_lock_sched_held+0x89/0x130
[ 1683.604548][T29301]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1683.610867][T29301]  netlink_rcv_skb+0x200/0x470
[ 1683.615629][T29301]  ? genl_bind+0x360/0x360
[ 1683.620033][T29301]  ? netlink_ack+0xb70/0xb70
[ 1683.624606][T29301]  ? __down_read_common+0x1b0/0x450
[ 1683.629791][T29301]  ? up_read_non_owner+0x1c0/0x1c0
[ 1683.634912][T29301]  ? netlink_deliver_tap+0x130/0x880
[ 1683.640188][T29301]  genl_rcv+0x24/0x40
[ 1683.644158][T29301]  netlink_unicast+0x814/0x9f0
[ 1683.648910][T29301]  ? netlink_detachskb+0xa0/0xa0
[ 1683.653829][T29301]  ? __virt_addr_valid+0xb8/0x2d0
[ 1683.658842][T29301]  ? __phys_addr_symbol+0x2b/0x70
[ 1683.663853][T29301]  ? __check_object_size+0x2f3/0x3f0
[ 1683.669144][T29301]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1683.674245][T29301]  netlink_sendmsg+0xaea/0xe60
[ 1683.678996][T29301]  ? memcpy+0x3c/0x60
[ 1683.682971][T29301]  ? netlink_getsockopt+0xa60/0xa60
[ 1683.688159][T29301]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1683.693427][T29301]  ? security_socket_sendmsg+0x9d/0xb0
[ 1683.698884][T29301]  ? netlink_getsockopt+0xa60/0xa60
[ 1683.704068][T29301]  ____sys_sendmsg+0x5b9/0x910
[ 1683.708826][T29301]  ? __sys_sendmsg_sock+0x30/0x30
[ 1683.713845][T29301]  __sys_sendmsg+0x280/0x370
[ 1683.718421][T29301]  ? ____sys_sendmsg+0x910/0x910
[ 1683.723350][T29301]  ? __context_tracking_exit+0x7a/0xd0
[ 1683.728806][T29301]  ? lockdep_hardirqs_on_prepare+0x412/0x780
[ 1683.734779][T29301]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1683.740750][T29301]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1683.746714][T29301]  ? lockdep_hardirqs_on+0x95/0x140
[ 1683.751896][T29301]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1683.757862][T29301]  do_syscall_64+0x44/0xd0
[ 1683.762287][T29301]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1683.768164][T29301] RIP: 0033:0x7f5163f51e99
[ 1683.772569][T29301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1683.792158][T29301] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1683.800564][T29301] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1683.808545][T29301] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1683.816528][T29301] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1683.824506][T29301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
22:52:53 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6000000)

[ 1683.832467][T29301] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1683.840433][T29301]  </TASK>
[ 1683.849072][T29308] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[ 1683.857269][T29308] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1683.878599][T29308] ieee80211 
22:52:53 executing program 5:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c68940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

22:52:53 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78) (fail_nth: 6)

[ 1683.878599][T29308] !: Selected rate control algorithm 'minstrel_ht'
[ 1683.906285][T29328] FAULT_INJECTION: forcing a failure.
[ 1683.906285][T29328] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1683.913511][T29308] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1683.913511][T29308] !'
[ 1683.922008][T29328] CPU: 0 PID: 29328 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1683.938044][T29328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1683.948190][T29328] Call Trace:
[ 1683.951483][T29328]  <TASK>
[ 1683.954405][T29328]  dump_stack_lvl+0x201/0x2d8
[ 1683.959092][T29328]  ? show_regs_print_info+0x12/0x12
[ 1683.964307][T29328]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1683.970028][T29328]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1683.975917][T29328]  ? __lock_acquire+0x2b00/0x2b00
[ 1683.980942][T29328]  should_fail+0x384/0x4b0
[ 1683.985347][T29328]  _copy_from_iter+0x25b/0x1080
[ 1683.990274][T29328]  ? _copy_mc_to_iter+0x1540/0x1540
[ 1683.995460][T29328]  ? wait_woken+0x1b0/0x1b0
[ 1684.000126][T29328]  ? __virt_addr_valid+0x21b/0x2d0
[ 1684.005230][T29328]  ? __phys_addr_symbol+0x2b/0x70
[ 1684.010242][T29328]  file_tty_write+0x582/0x9a0
[ 1684.014903][T29328]  ? n_tty_read+0x1c60/0x1c60
[ 1684.019650][T29328]  vfs_write+0xb11/0xe90
[ 1684.023883][T29328]  ? file_end_write+0x230/0x230
[ 1684.028717][T29328]  ? lock_release+0x82/0x810
[ 1684.033301][T29328]  ? __fget_files+0x3d0/0x440
[ 1684.037965][T29328]  ? __fdget_pos+0x1d8/0x2f0
[ 1684.042541][T29328]  ? ksys_write+0x77/0x2c0
[ 1684.046950][T29328]  ksys_write+0x18f/0x2c0
[ 1684.051268][T29328]  ? print_irqtrace_events+0x220/0x220
[ 1684.056716][T29328]  ? __ia32_sys_read+0x80/0x80
[ 1684.061474][T29328]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1684.067452][T29328]  do_syscall_64+0x44/0xd0
[ 1684.071862][T29328]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1684.077743][T29328] RIP: 0033:0x7fd6114efe99
[ 1684.082144][T29328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1684.101732][T29328] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1684.110132][T29328] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1684.118251][T29328] RDX: 00000000ffffff78 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1684.126237][T29328] RBP: 00007fd60fe651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1684.134210][T29328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1684.142176][T29328] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1684.150148][T29328]  </TASK>
[ 1684.162393][T29308] CPU: 1 PID: 29308 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1684.171184][T29308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1684.181227][T29308] Call Trace:
[ 1684.184497][T29308]  <TASK>
[ 1684.187414][T29308]  dump_stack_lvl+0x201/0x2d8
[ 1684.192086][T29308]  ? show_regs_print_info+0x12/0x12
[ 1684.197273][T29308]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1684.202988][T29308]  sysfs_warn_dup+0x8c/0xa0
[ 1684.207478][T29308]  sysfs_do_create_link_sd+0xbe/0x100
[ 1684.212835][T29308]  device_add+0x9ea/0x16d0
[ 1684.217239][T29308]  ? wiphy_register+0x1b93/0x2a50
[ 1684.222254][T29308]  ? virtual_device_parent+0x50/0x50
[ 1684.227521][T29308]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1684.233493][T29308]  wiphy_register+0x1ba2/0x2a50
[ 1684.238335][T29308]  ? cfg80211_event_work+0x40/0x40
[ 1684.243522][T29308]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1684.249587][T29308]  ieee80211_register_hw+0x3063/0x3e10
[ 1684.255051][T29308]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1684.260857][T29308]  ? memset+0x1f/0x40
[ 1684.264824][T29308]  ? __hrtimer_init+0x173/0x250
[ 1684.269663][T29308]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1684.275375][T29308]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1684.280474][T29308]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1684.286786][T29308]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1684.293105][T29308]  genl_rcv_msg+0x1032/0x1480
[ 1684.297769][T29308]  ? genl_bind+0x360/0x360
[ 1684.302178][T29308]  ? __dev_queue_xmit+0x1e2c/0x35c0
[ 1684.307441][T29308]  ? trace_mm_page_alloc+0x7f/0x1b0
[ 1684.312742][T29308]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1684.318374][T29308]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1684.324699][T29308]  ? trace_lock_acquire+0x59/0x190
[ 1684.329814][T29308]  netlink_rcv_skb+0x200/0x470
[ 1684.334585][T29308]  ? genl_bind+0x360/0x360
[ 1684.339078][T29308]  ? netlink_ack+0xb70/0xb70
[ 1684.343656][T29308]  ? __down_read_common+0x1b0/0x450
[ 1684.348847][T29308]  ? up_read_non_owner+0x1c0/0x1c0
[ 1684.353957][T29308]  ? netlink_deliver_tap+0x130/0x880
[ 1684.359254][T29308]  genl_rcv+0x24/0x40
[ 1684.363235][T29308]  netlink_unicast+0x814/0x9f0
[ 1684.367998][T29308]  ? netlink_detachskb+0xa0/0xa0
[ 1684.372932][T29308]  ? __virt_addr_valid+0xb8/0x2d0
[ 1684.377959][T29308]  ? __phys_addr_symbol+0x2b/0x70
[ 1684.382991][T29308]  ? __check_object_size+0x2f3/0x3f0
[ 1684.388270][T29308]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1684.393383][T29308]  netlink_sendmsg+0xaea/0xe60
[ 1684.398169][T29308]  ? memcpy+0x3c/0x60
[ 1684.402146][T29308]  ? netlink_getsockopt+0xa60/0xa60
[ 1684.407333][T29308]  ? futex_wait_queue+0x205/0x330
[ 1684.412349][T29308]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1684.417620][T29308]  ? security_socket_sendmsg+0x9d/0xb0
[ 1684.423181][T29308]  ? netlink_getsockopt+0xa60/0xa60
[ 1684.428364][T29308]  ____sys_sendmsg+0x5b9/0x910
[ 1684.433119][T29308]  ? __sys_sendmsg_sock+0x30/0x30
[ 1684.438135][T29308]  __sys_sendmsg+0x280/0x370
[ 1684.442712][T29308]  ? ____sys_sendmsg+0x910/0x910
[ 1684.447641][T29308]  ? read_lock_is_recursive+0x10/0x10
[ 1684.453001][T29308]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1684.458619][T29308]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1684.464583][T29308]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1684.470548][T29308]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1684.476512][T29308]  do_syscall_64+0x44/0xd0
[ 1684.480921][T29308]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1684.486800][T29308] RIP: 0033:0x7fda9f984e99
[ 1684.491205][T29308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1684.510794][T29308] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1684.519193][T29308] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1684.527148][T29308] RDX: 0000000005000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1684.535103][T29308] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1684.543318][T29308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1684.551273][T29308] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1684.559234][T29308]  </TASK>
22:52:54 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x6000000)

22:52:54 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78) (fail_nth: 7)

[ 1684.570029][T29314] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1684.598273][T29314] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1684.617966][T29314] ieee80211 
[ 1684.617966][T29314] !: Selected rate control algorithm 'minstrel_ht'
[ 1684.625720][T29334] FAULT_INJECTION: forcing a failure.
[ 1684.625720][T29334] name failslab, interval 1, probability 0, space 0, times 0
[ 1684.635254][T29314] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1684.635254][T29314] !'
[ 1684.640106][T29334] CPU: 0 PID: 29334 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1684.640132][T29334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1684.640144][T29334] Call Trace:
[ 1684.640152][T29334]  <TASK>
[ 1684.640159][T29334]  dump_stack_lvl+0x1dc/0x2d8
[ 1684.640186][T29334]  ? show_regs_print_info+0x12/0x12
[ 1684.640207][T29334]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1684.690656][T29334]  ? lock_acquire+0xa5/0x4d0
[ 1684.695255][T29334]  ? pty_write+0xc5/0x170
[ 1684.699584][T29334]  should_fail+0x384/0x4b0
[ 1684.703995][T29334]  ? __tty_buffer_request_room+0x1f0/0x540
[ 1684.709798][T29334]  should_failslab+0x5/0x20
[ 1684.714294][T29334]  __kmalloc+0x94/0x380
[ 1684.718467][T29334]  __tty_buffer_request_room+0x1f0/0x540
[ 1684.724099][T29334]  tty_insert_flip_string_fixed_flag+0x92/0x2c0
[ 1684.730334][T29334]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1684.736220][T29334]  ? _raw_spin_unlock+0x40/0x40
[ 1684.741096][T29334]  pty_write+0xe9/0x170
[ 1684.745258][T29334]  n_tty_write+0x646/0x1320
[ 1684.749751][T29334]  ? __might_fault+0xb2/0x110
[ 1684.754466][T29334]  ? n_tty_read+0x1c60/0x1c60
[ 1684.759144][T29334]  ? wait_woken+0x1b0/0x1b0
[ 1684.763653][T29334]  ? __virt_addr_valid+0x21b/0x2d0
[ 1684.768784][T29334]  ? __phys_addr_symbol+0x2b/0x70
[ 1684.773824][T29334]  file_tty_write+0x5c5/0x9a0
[ 1684.778510][T29334]  ? n_tty_read+0x1c60/0x1c60
[ 1684.783195][T29334]  vfs_write+0xb11/0xe90
[ 1684.787445][T29334]  ? file_end_write+0x230/0x230
[ 1684.792309][T29334]  ? lock_release+0x82/0x810
[ 1684.796898][T29334]  ? __fget_files+0x3d0/0x440
[ 1684.801571][T29334]  ? __fdget_pos+0x1d8/0x2f0
[ 1684.806153][T29334]  ? ksys_write+0x77/0x2c0
[ 1684.810580][T29334]  ksys_write+0x18f/0x2c0
[ 1684.814915][T29334]  ? print_irqtrace_events+0x220/0x220
[ 1684.820383][T29334]  ? __ia32_sys_read+0x80/0x80
[ 1684.825147][T29334]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1684.831205][T29334]  do_syscall_64+0x44/0xd0
[ 1684.835625][T29334]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1684.841599][T29334] RIP: 0033:0x7fd6114efe99
[ 1684.846008][T29334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1684.865706][T29334] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1684.874129][T29334] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1684.882096][T29334] RDX: 00000000ffffff78 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1684.890060][T29334] RBP: 00007fd60fe651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1684.898025][T29334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1684.905986][T29334] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1684.913973][T29334]  </TASK>
[ 1684.916987][T29314] CPU: 1 PID: 29314 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1684.925752][T29314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1684.935802][T29314] Call Trace:
[ 1684.939245][T29314]  <TASK>
[ 1684.942162][T29314]  dump_stack_lvl+0x201/0x2d8
[ 1684.946834][T29314]  ? show_regs_print_info+0x12/0x12
[ 1684.952024][T29314]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1684.957735][T29314]  sysfs_warn_dup+0x8c/0xa0
[ 1684.962222][T29314]  sysfs_do_create_link_sd+0xbe/0x100
[ 1684.967577][T29314]  device_add+0x9ea/0x16d0
[ 1684.971980][T29314]  ? wiphy_register+0x1b93/0x2a50
[ 1684.976994][T29314]  ? virtual_device_parent+0x50/0x50
[ 1684.982264][T29314]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1684.988230][T29314]  wiphy_register+0x1ba2/0x2a50
[ 1684.993071][T29314]  ? cfg80211_event_work+0x40/0x40
[ 1684.998167][T29314]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1685.004222][T29314]  ieee80211_register_hw+0x3063/0x3e10
[ 1685.009761][T29314]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1685.015562][T29314]  ? memset+0x1f/0x40
[ 1685.019529][T29314]  ? __hrtimer_init+0x173/0x250
[ 1685.024373][T29314]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1685.030086][T29314]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1685.035185][T29314]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1685.041519][T29314]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1685.047837][T29314]  genl_rcv_msg+0x1032/0x1480
[ 1685.052503][T29314]  ? genl_bind+0x360/0x360
[ 1685.056920][T29314]  ? __dev_queue_xmit+0x1e2c/0x35c0
[ 1685.062108][T29314]  ? trace_mm_page_alloc+0x7f/0x1b0
[ 1685.067301][T29314]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1685.072917][T29314]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1685.079327][T29314]  ? trace_lock_acquire+0x59/0x190
[ 1685.084500][T29314]  netlink_rcv_skb+0x200/0x470
[ 1685.089263][T29314]  ? genl_bind+0x360/0x360
[ 1685.093675][T29314]  ? netlink_ack+0xb70/0xb70
[ 1685.098259][T29314]  ? __down_read_common+0x1b0/0x450
[ 1685.103465][T29314]  ? up_read_non_owner+0x1c0/0x1c0
[ 1685.108580][T29314]  ? netlink_deliver_tap+0x130/0x880
[ 1685.113878][T29314]  genl_rcv+0x24/0x40
[ 1685.117867][T29314]  netlink_unicast+0x814/0x9f0
[ 1685.122636][T29314]  ? netlink_detachskb+0xa0/0xa0
[ 1685.127569][T29314]  ? __virt_addr_valid+0xb8/0x2d0
[ 1685.132629][T29314]  ? __phys_addr_symbol+0x2b/0x70
[ 1685.137667][T29314]  ? __check_object_size+0x2f3/0x3f0
[ 1685.142948][T29314]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1685.148065][T29314]  netlink_sendmsg+0xaea/0xe60
[ 1685.152830][T29314]  ? memcpy+0x3c/0x60
[ 1685.156804][T29314]  ? netlink_getsockopt+0xa60/0xa60
[ 1685.161997][T29314]  ? futex_wait_queue+0x205/0x330
[ 1685.167019][T29314]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1685.172291][T29314]  ? security_socket_sendmsg+0x9d/0xb0
[ 1685.177738][T29314]  ? netlink_getsockopt+0xa60/0xa60
[ 1685.182926][T29314]  ____sys_sendmsg+0x5b9/0x910
[ 1685.187681][T29314]  ? __sys_sendmsg_sock+0x30/0x30
[ 1685.192697][T29314]  __sys_sendmsg+0x280/0x370
[ 1685.197278][T29314]  ? ____sys_sendmsg+0x910/0x910
[ 1685.202290][T29314]  ? read_lock_is_recursive+0x10/0x10
[ 1685.207653][T29314]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1685.213269][T29314]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1685.219238][T29314]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1685.225204][T29314]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1685.231168][T29314]  do_syscall_64+0x44/0xd0
[ 1685.235584][T29314]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1685.241496][T29314] RIP: 0033:0x7fbee7a71e99
[ 1685.245918][T29314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1685.265605][T29314] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1685.274011][T29314] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1685.282962][T29314] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1685.290922][T29314] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
[ 1685.298878][T29314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1685.306834][T29314] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1685.316717][T29314]  </TASK>
22:52:54 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e00402002900050cd25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

[ 1685.323613][T29324] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1685.339419][T29324] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1685.356461][T29324] ieee80211 
[ 1685.356461][T29324] !: Selected rate control algorithm 'minstrel_ht'
22:52:54 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78) (fail_nth: 8)

[ 1685.373254][T29324] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1685.373254][T29324] !'
[ 1685.383250][T29324] CPU: 0 PID: 29324 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1685.392032][T29324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1685.402095][T29324] Call Trace:
[ 1685.405386][T29324]  <TASK>
[ 1685.408327][T29324]  dump_stack_lvl+0x201/0x2d8
[ 1685.409788][T29338] FAULT_INJECTION: forcing a failure.
[ 1685.409788][T29338] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1685.413013][T29324]  ? show_regs_print_info+0x12/0x12
[ 1685.413044][T29324]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1685.436950][T29324]  sysfs_warn_dup+0x8c/0xa0
[ 1685.441459][T29324]  sysfs_do_create_link_sd+0xbe/0x100
[ 1685.446844][T29324]  device_add+0x9ea/0x16d0
[ 1685.451263][T29324]  ? wiphy_register+0x1b93/0x2a50
[ 1685.456286][T29324]  ? virtual_device_parent+0x50/0x50
[ 1685.461569][T29324]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1685.467549][T29324]  wiphy_register+0x1ba2/0x2a50
[ 1685.472402][T29324]  ? cfg80211_event_work+0x40/0x40
[ 1685.477523][T29324]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1685.483597][T29324]  ieee80211_register_hw+0x3063/0x3e10
[ 1685.489191][T29324]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1685.495019][T29324]  ? memset+0x1f/0x40
[ 1685.499010][T29324]  ? __hrtimer_init+0x173/0x250
[ 1685.503876][T29324]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1685.509607][T29324]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1685.514725][T29324]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1685.521054][T29324]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1685.527395][T29324]  genl_rcv_msg+0x1032/0x1480
[ 1685.532082][T29324]  ? genl_bind+0x360/0x360
[ 1685.536506][T29324]  ? __dev_queue_xmit+0x1e2c/0x35c0
[ 1685.541701][T29324]  ? trace_mm_page_alloc+0x7f/0x1b0
[ 1685.546903][T29324]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1685.552534][T29324]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1685.558862][T29324]  ? trace_lock_acquire+0x59/0x190
[ 1685.563978][T29324]  netlink_rcv_skb+0x200/0x470
[ 1685.568742][T29324]  ? genl_bind+0x360/0x360
[ 1685.573154][T29324]  ? netlink_ack+0xb70/0xb70
[ 1685.577739][T29324]  ? __down_read_common+0x1b0/0x450
[ 1685.582939][T29324]  ? up_read_non_owner+0x1c0/0x1c0
[ 1685.588050][T29324]  ? netlink_deliver_tap+0x130/0x880
[ 1685.593342][T29324]  genl_rcv+0x24/0x40
[ 1685.597412][T29324]  netlink_unicast+0x814/0x9f0
[ 1685.602176][T29324]  ? netlink_detachskb+0xa0/0xa0
[ 1685.607108][T29324]  ? __virt_addr_valid+0xb8/0x2d0
[ 1685.612127][T29324]  ? __phys_addr_symbol+0x2b/0x70
[ 1685.617145][T29324]  ? __check_object_size+0x2f3/0x3f0
[ 1685.622425][T29324]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1685.627531][T29324]  netlink_sendmsg+0xaea/0xe60
[ 1685.632290][T29324]  ? memcpy+0x3c/0x60
[ 1685.636269][T29324]  ? netlink_getsockopt+0xa60/0xa60
[ 1685.641473][T29324]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1685.646760][T29324]  ? security_socket_sendmsg+0x9d/0xb0
[ 1685.652248][T29324]  ? netlink_getsockopt+0xa60/0xa60
[ 1685.657452][T29324]  ____sys_sendmsg+0x5b9/0x910
[ 1685.662265][T29324]  ? __sys_sendmsg_sock+0x30/0x30
[ 1685.667410][T29324]  __sys_sendmsg+0x280/0x370
[ 1685.672009][T29324]  ? ____sys_sendmsg+0x910/0x910
[ 1685.676955][T29324]  ? read_lock_is_recursive+0x10/0x10
[ 1685.682339][T29324]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1685.687973][T29324]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1685.693955][T29324]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1685.699943][T29324]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1685.705929][T29324]  do_syscall_64+0x44/0xd0
[ 1685.710349][T29324]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1685.716236][T29324] RIP: 0033:0x7f3e3559fe99
[ 1685.720652][T29324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1685.740268][T29324] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1685.748697][T29324] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1685.756663][T29324] RDX: 0300000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1685.764634][T29324] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1685.772601][T29324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1685.780597][T29324] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1685.788582][T29324]  </TASK>
[ 1685.791602][T29338] CPU: 1 PID: 29338 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1685.800370][T29338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1685.810444][T29338] Call Trace:
[ 1685.813721][T29338]  <TASK>
[ 1685.816655][T29338]  dump_stack_lvl+0x201/0x2d8
[ 1685.821333][T29338]  ? show_regs_print_info+0x12/0x12
[ 1685.826537][T29338]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1685.832265][T29338]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1685.838169][T29338]  ? __lock_acquire+0x2b00/0x2b00
[ 1685.843202][T29338]  should_fail+0x384/0x4b0
[ 1685.847616][T29338]  _copy_from_iter+0x25b/0x1080
[ 1685.852481][T29338]  ? _copy_mc_to_iter+0x1540/0x1540
[ 1685.857689][T29338]  ? wait_woken+0x1b0/0x1b0
[ 1685.862212][T29338]  ? __virt_addr_valid+0x21b/0x2d0
[ 1685.867324][T29338]  ? __phys_addr_symbol+0x2b/0x70
[ 1685.872342][T29338]  file_tty_write+0x582/0x9a0
[ 1685.877021][T29338]  ? n_tty_read+0x1c60/0x1c60
[ 1685.881692][T29338]  vfs_write+0xb11/0xe90
[ 1685.885944][T29338]  ? file_end_write+0x230/0x230
[ 1685.890791][T29338]  ? lock_release+0x82/0x810
[ 1685.895417][T29338]  ? __fget_files+0x3d0/0x440
[ 1685.900103][T29338]  ? __fdget_pos+0x1d8/0x2f0
[ 1685.904688][T29338]  ? ksys_write+0x77/0x2c0
[ 1685.909102][T29338]  ksys_write+0x18f/0x2c0
[ 1685.913440][T29338]  ? print_irqtrace_events+0x220/0x220
[ 1685.918911][T29338]  ? __ia32_sys_read+0x80/0x80
[ 1685.923680][T29338]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1685.929739][T29338]  do_syscall_64+0x44/0xd0
[ 1685.934152][T29338]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1685.940126][T29338] RIP: 0033:0x7fd6114efe99
[ 1685.944615][T29338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1685.964216][T29338] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1685.972643][T29338] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1685.980618][T29338] RDX: 00000000ffffff78 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1685.988581][T29338] RBP: 00007fd60fe651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1685.996605][T29338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1686.004584][T29338] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1686.012572][T29338]  </TASK>
22:52:55 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x400000000000000)

22:52:55 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78) (fail_nth: 9)

[ 1686.025392][T29326] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1686.037993][T29326] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1686.065766][T29326] ieee80211 
[ 1686.065766][T29326] !: Selected rate control algorithm 'minstrel_ht'
[ 1686.076056][T29326] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1686.076056][T29326] !'
[ 1686.080500][T29342] FAULT_INJECTION: forcing a failure.
[ 1686.080500][T29342] name failslab, interval 1, probability 0, space 0, times 0
[ 1686.087489][T29326] CPU: 1 PID: 29326 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1686.107255][T29326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1686.117318][T29326] Call Trace:
[ 1686.120598][T29326]  <TASK>
[ 1686.123529][T29326]  dump_stack_lvl+0x201/0x2d8
[ 1686.128210][T29326]  ? show_regs_print_info+0x12/0x12
[ 1686.133494][T29326]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1686.139212][T29326]  sysfs_warn_dup+0x8c/0xa0
[ 1686.143711][T29326]  sysfs_do_create_link_sd+0xbe/0x100
[ 1686.149073][T29326]  device_add+0x9ea/0x16d0
[ 1686.153565][T29326]  ? wiphy_register+0x1b93/0x2a50
[ 1686.158583][T29326]  ? virtual_device_parent+0x50/0x50
[ 1686.163913][T29326]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1686.169888][T29326]  wiphy_register+0x1ba2/0x2a50
[ 1686.174733][T29326]  ? cfg80211_event_work+0x40/0x40
[ 1686.179925][T29326]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1686.185984][T29326]  ieee80211_register_hw+0x3063/0x3e10
[ 1686.191450][T29326]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1686.197251][T29326]  ? memset+0x1f/0x40
[ 1686.201220][T29326]  ? __hrtimer_init+0x173/0x250
[ 1686.206064][T29326]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1686.211785][T29326]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1686.216887][T29326]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1686.223208][T29326]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1686.229703][T29326]  genl_rcv_msg+0x1032/0x1480
[ 1686.234377][T29326]  ? genl_bind+0x360/0x360
[ 1686.238787][T29326]  ? __dev_queue_xmit+0x1e2c/0x35c0
[ 1686.243974][T29326]  ? trace_mm_page_alloc+0x7f/0x1b0
[ 1686.249169][T29326]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1686.254790][T29326]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1686.261110][T29326]  ? trace_lock_acquire+0x59/0x190
[ 1686.266223][T29326]  netlink_rcv_skb+0x200/0x470
[ 1686.270980][T29326]  ? genl_bind+0x360/0x360
[ 1686.275392][T29326]  ? netlink_ack+0xb70/0xb70
[ 1686.279970][T29326]  ? __down_read_common+0x1b0/0x450
[ 1686.285157][T29326]  ? up_read_non_owner+0x1c0/0x1c0
[ 1686.290253][T29326]  ? netlink_deliver_tap+0x130/0x880
[ 1686.295545][T29326]  genl_rcv+0x24/0x40
[ 1686.299540][T29326]  netlink_unicast+0x814/0x9f0
[ 1686.304319][T29326]  ? netlink_detachskb+0xa0/0xa0
[ 1686.309255][T29326]  ? __virt_addr_valid+0xb8/0x2d0
[ 1686.314294][T29326]  ? __phys_addr_symbol+0x2b/0x70
[ 1686.319334][T29326]  ? __check_object_size+0x2f3/0x3f0
[ 1686.324632][T29326]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1686.329738][T29326]  netlink_sendmsg+0xaea/0xe60
[ 1686.334512][T29326]  ? memcpy+0x3c/0x60
[ 1686.338489][T29326]  ? netlink_getsockopt+0xa60/0xa60
[ 1686.343683][T29326]  ? futex_wait_queue+0x205/0x330
[ 1686.348703][T29326]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1686.353976][T29326]  ? security_socket_sendmsg+0x9d/0xb0
[ 1686.359427][T29326]  ? netlink_getsockopt+0xa60/0xa60
[ 1686.364615][T29326]  ____sys_sendmsg+0x5b9/0x910
[ 1686.369375][T29326]  ? __sys_sendmsg_sock+0x30/0x30
[ 1686.374395][T29326]  __sys_sendmsg+0x280/0x370
[ 1686.378979][T29326]  ? ____sys_sendmsg+0x910/0x910
[ 1686.383912][T29326]  ? read_lock_is_recursive+0x10/0x10
[ 1686.389278][T29326]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1686.394901][T29326]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1686.400871][T29326]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1686.406842][T29326]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1686.412813][T29326]  do_syscall_64+0x44/0xd0
[ 1686.417225][T29326]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1686.423110][T29326] RIP: 0033:0x7ffbc7e82e99
[ 1686.427521][T29326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1686.447115][T29326] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1686.455522][T29326] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1686.463481][T29326] RDX: 0000000006000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1686.471440][T29326] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1686.479399][T29326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1686.487357][T29326] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1686.495345][T29326]  </TASK>
[ 1686.498354][T29342] CPU: 0 PID: 29342 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1686.507219][T29342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1686.511026][T29330] netlink: 'syz-executor.5': attribute type 11 has an invalid length.
[ 1686.517285][T29342] Call Trace:
[ 1686.517296][T29342]  <TASK>
[ 1686.517303][T29342]  dump_stack_lvl+0x1dc/0x2d8
[ 1686.517331][T29342]  ? show_regs_print_info+0x12/0x12
[ 1686.532091][T29330] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1686.536313][T29342]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1686.536345][T29342]  ? lock_acquire+0xa5/0x4d0
[ 1686.545051][T29330] ieee80211 
[ 1686.545051][T29330] !: Selected rate control algorithm 'minstrel_ht'
[ 1686.551131][T29342]  ? pty_write+0xc5/0x170
[ 1686.551163][T29342]  should_fail+0x384/0x4b0
[ 1686.551181][T29342]  ? __tty_buffer_request_room+0x1f0/0x540
[ 1686.551200][T29342]  should_failslab+0x5/0x20
[ 1686.551217][T29342]  __kmalloc+0x94/0x380
[ 1686.557697][T29330] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1686.557697][T29330] !'
[ 1686.561493][T29342]  __tty_buffer_request_room+0x1f0/0x540
[ 1686.561525][T29342]  tty_insert_flip_string_fixed_flag+0x92/0x2c0
[ 1686.561545][T29342]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1686.561565][T29342]  ? _raw_spin_unlock+0x40/0x40
[ 1686.561583][T29342]  pty_write+0xe9/0x170
[ 1686.630714][T29342]  n_tty_write+0x646/0x1320
[ 1686.635220][T29342]  ? __might_fault+0xb2/0x110
[ 1686.639903][T29342]  ? n_tty_read+0x1c60/0x1c60
[ 1686.644575][T29342]  ? wait_woken+0x1b0/0x1b0
[ 1686.649081][T29342]  ? __virt_addr_valid+0x21b/0x2d0
[ 1686.654191][T29342]  ? __phys_addr_symbol+0x2b/0x70
[ 1686.659215][T29342]  file_tty_write+0x5c5/0x9a0
[ 1686.663892][T29342]  ? n_tty_read+0x1c60/0x1c60
[ 1686.668560][T29342]  vfs_write+0xb11/0xe90
[ 1686.672804][T29342]  ? file_end_write+0x230/0x230
[ 1686.677643][T29342]  ? lock_release+0x82/0x810
[ 1686.682225][T29342]  ? __fget_files+0x3d0/0x440
[ 1686.686901][T29342]  ? __fdget_pos+0x1d8/0x2f0
[ 1686.691480][T29342]  ? ksys_write+0x77/0x2c0
[ 1686.695977][T29342]  ksys_write+0x18f/0x2c0
[ 1686.700305][T29342]  ? print_irqtrace_events+0x220/0x220
[ 1686.705770][T29342]  ? __ia32_sys_read+0x80/0x80
[ 1686.710534][T29342]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1686.716509][T29342]  do_syscall_64+0x44/0xd0
[ 1686.720922][T29342]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1686.726811][T29342] RIP: 0033:0x7fd6114efe99
[ 1686.731220][T29342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1686.750822][T29342] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1686.759238][T29342] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1686.767207][T29342] RDX: 00000000ffffff78 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1686.775179][T29342] RBP: 00007fd60fe651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1686.783147][T29342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1686.791110][T29342] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1686.799080][T29342]  </TASK>
[ 1686.802181][T29330] CPU: 1 PID: 29330 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1686.810950][T29330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1686.821005][T29330] Call Trace:
[ 1686.824276][T29330]  <TASK>
[ 1686.827192][T29330]  dump_stack_lvl+0x201/0x2d8
[ 1686.831866][T29330]  ? show_regs_print_info+0x12/0x12
[ 1686.837053][T29330]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1686.842774][T29330]  sysfs_warn_dup+0x8c/0xa0
[ 1686.847261][T29330]  sysfs_do_create_link_sd+0xbe/0x100
[ 1686.852617][T29330]  device_add+0x9ea/0x16d0
[ 1686.857016][T29330]  ? wiphy_register+0x1b93/0x2a50
[ 1686.862029][T29330]  ? virtual_device_parent+0x50/0x50
[ 1686.867306][T29330]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1686.873285][T29330]  wiphy_register+0x1ba2/0x2a50
[ 1686.878125][T29330]  ? cfg80211_event_work+0x40/0x40
[ 1686.883227][T29330]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1686.889281][T29330]  ieee80211_register_hw+0x3063/0x3e10
[ 1686.894732][T29330]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1686.900537][T29330]  ? memset+0x1f/0x40
[ 1686.904500][T29330]  ? __hrtimer_init+0x173/0x250
[ 1686.909965][T29330]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1686.915688][T29330]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1686.920791][T29330]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1686.927113][T29330]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1686.933432][T29330]  genl_rcv_msg+0x1032/0x1480
[ 1686.938101][T29330]  ? genl_bind+0x360/0x360
[ 1686.942516][T29330]  ? rcu_preempt_deferred_qs_irqrestore+0x870/0xc40
[ 1686.949275][T29330]  ? trace_mm_page_alloc+0x7f/0x1b0
[ 1686.954475][T29330]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1686.960093][T29330]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1686.966411][T29330]  ? trace_lock_acquire+0x59/0x190
[ 1686.971512][T29330]  netlink_rcv_skb+0x200/0x470
[ 1686.976275][T29330]  ? genl_bind+0x360/0x360
[ 1686.980704][T29330]  ? netlink_ack+0xb70/0xb70
[ 1686.985299][T29330]  ? __down_read_common+0x1b0/0x450
[ 1686.990491][T29330]  ? up_read_non_owner+0x1c0/0x1c0
[ 1686.997940][T29330]  ? netlink_deliver_tap+0x130/0x880
[ 1687.003241][T29330]  genl_rcv+0x24/0x40
[ 1687.007243][T29330]  netlink_unicast+0x814/0x9f0
[ 1687.012002][T29330]  ? netlink_detachskb+0xa0/0xa0
[ 1687.017016][T29330]  ? __virt_addr_valid+0xb8/0x2d0
[ 1687.022036][T29330]  ? __phys_addr_symbol+0x2b/0x70
[ 1687.027046][T29330]  ? __check_object_size+0x2f3/0x3f0
[ 1687.032322][T29330]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1687.037601][T29330]  netlink_sendmsg+0xaea/0xe60
[ 1687.042354][T29330]  ? memcpy+0x3c/0x60
[ 1687.046331][T29330]  ? netlink_getsockopt+0xa60/0xa60
[ 1687.051523][T29330]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1687.056798][T29330]  ? security_socket_sendmsg+0x9d/0xb0
[ 1687.062250][T29330]  ? netlink_getsockopt+0xa60/0xa60
[ 1687.067437][T29330]  ____sys_sendmsg+0x5b9/0x910
[ 1687.072195][T29330]  ? __sys_sendmsg_sock+0x30/0x30
[ 1687.077218][T29330]  __sys_sendmsg+0x280/0x370
[ 1687.081795][T29330]  ? ____sys_sendmsg+0x910/0x910
[ 1687.086723][T29330]  ? read_lock_is_recursive+0x10/0x10
[ 1687.092092][T29330]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1687.097888][T29330]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1687.104201][T29330]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1687.110167][T29330]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1687.116132][T29330]  do_syscall_64+0x44/0xd0
[ 1687.120545][T29330]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1687.126431][T29330] RIP: 0033:0x7f5163f51e99
[ 1687.130847][T29330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1687.150534][T29330] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1687.158965][T29330] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1687.167104][T29330] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
22:52:56 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x7000000)

[ 1687.175062][T29330] RBP: 00007f5163fabff1 R08: 0000000000000000 R09: 0000000000000000
[ 1687.183017][T29330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1687.190975][T29330] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1687.198947][T29330]  </TASK>
[ 1687.216063][T29332] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
22:52:56 executing program 5:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x20) (fail_nth: 1)

22:52:56 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78) (fail_nth: 10)

[ 1687.227655][T29332] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1687.241381][T29332] ieee80211 
[ 1687.241381][T29332] !: Selected rate control algorithm 'minstrel_ht'
[ 1687.254222][T29346] FAULT_INJECTION: forcing a failure.
[ 1687.254222][T29346] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1687.276314][T29332] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1687.276314][T29332] !'
[ 1687.277365][T29346] CPU: 0 PID: 29346 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1687.294806][T29346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1687.304860][T29346] Call Trace:
[ 1687.308136][T29346]  <TASK>
[ 1687.311056][T29346]  dump_stack_lvl+0x201/0x2d8
[ 1687.315735][T29346]  ? show_regs_print_info+0x12/0x12
[ 1687.320944][T29346]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1687.326669][T29346]  ? trace_lock_release+0x4f/0x150
[ 1687.331784][T29346]  should_fail+0x384/0x4b0
[ 1687.336199][T29346]  _copy_from_user+0x2d/0x170
[ 1687.340876][T29346]  move_addr_to_kernel+0x7e/0x140
[ 1687.345897][T29346]  __sys_sendto+0x27c/0x5b0
[ 1687.350044][T29348] FAULT_INJECTION: forcing a failure.
[ 1687.350044][T29348] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1687.350398][T29346]  ? __context_tracking_exit+0x7a/0xd0
[ 1687.350425][T29346]  ? __ia32_sys_getpeername+0x80/0x80
[ 1687.374199][T29346]  ? lock_release+0x82/0x810
[ 1687.378805][T29346]  ? print_irqtrace_events+0x220/0x220
[ 1687.384264][T29346]  ? vtime_user_exit+0x2b2/0x3e0
[ 1687.389214][T29346]  ? __context_tracking_exit+0x7a/0xd0
[ 1687.394671][T29346]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1687.400650][T29346]  __x64_sys_sendto+0xda/0xf0
[ 1687.405330][T29346]  do_syscall_64+0x44/0xd0
[ 1687.409743][T29346]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1687.415812][T29346] RIP: 0033:0x7f5163f51e99
[ 1687.420235][T29346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1687.439929][T29346] RSP: 002b:00007f51628c7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1687.448346][T29346] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f51e99
[ 1687.456319][T29346] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1687.464286][T29346] RBP: 00007f51628c71d0 R08: 0000000020001000 R09: 0000000000000020
[ 1687.472337][T29346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1687.480301][T29346] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1687.488280][T29346]  </TASK>
[ 1687.491294][T29348] CPU: 1 PID: 29348 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
[ 1687.500062][T29348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1687.510109][T29348] Call Trace:
[ 1687.513372][T29348]  <TASK>
[ 1687.516290][T29348]  dump_stack_lvl+0x201/0x2d8
[ 1687.520962][T29348]  ? show_regs_print_info+0x12/0x12
[ 1687.526148][T29348]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1687.531859][T29348]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1687.537736][T29348]  ? __lock_acquire+0x2b00/0x2b00
[ 1687.542758][T29348]  should_fail+0x384/0x4b0
[ 1687.547161][T29348]  _copy_from_iter+0x25b/0x1080
[ 1687.551999][T29348]  ? _copy_mc_to_iter+0x1540/0x1540
[ 1687.557180][T29348]  ? wait_woken+0x1b0/0x1b0
[ 1687.561667][T29348]  ? __virt_addr_valid+0x21b/0x2d0
[ 1687.566765][T29348]  ? __phys_addr_symbol+0x2b/0x70
[ 1687.571781][T29348]  file_tty_write+0x582/0x9a0
[ 1687.576443][T29348]  ? n_tty_read+0x1c60/0x1c60
[ 1687.581105][T29348]  vfs_write+0xb11/0xe90
[ 1687.585334][T29348]  ? file_end_write+0x230/0x230
[ 1687.590176][T29348]  ? lock_release+0x82/0x810
[ 1687.594775][T29348]  ? __fget_files+0x3d0/0x440
[ 1687.599451][T29348]  ? __fdget_pos+0x1d8/0x2f0
[ 1687.604035][T29348]  ? ksys_write+0x77/0x2c0
[ 1687.608449][T29348]  ksys_write+0x18f/0x2c0
[ 1687.612770][T29348]  ? print_irqtrace_events+0x220/0x220
[ 1687.618217][T29348]  ? __ia32_sys_read+0x80/0x80
[ 1687.622976][T29348]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1687.628943][T29348]  do_syscall_64+0x44/0xd0
[ 1687.633355][T29348]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1687.639235][T29348] RIP: 0033:0x7fd6114efe99
[ 1687.643636][T29348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1687.663225][T29348] RSP: 002b:00007fd60fe65168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1687.671628][T29348] RAX: ffffffffffffffda RBX: 00007fd611602f60 RCX: 00007fd6114efe99
[ 1687.680019][T29348] RDX: 00000000ffffff78 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1687.687974][T29348] RBP: 00007fd60fe651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1687.695928][T29348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1687.703896][T29348] R13: 00007ffd6aeeb5cf R14: 00007fd60fe65300 R15: 0000000000022000
[ 1687.711860][T29348]  </TASK>
[ 1687.716484][T29332] CPU: 0 PID: 29332 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1687.725266][T29332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1687.735322][T29332] Call Trace:
[ 1687.738600][T29332]  <TASK>
[ 1687.741521][T29332]  dump_stack_lvl+0x201/0x2d8
[ 1687.746204][T29332]  ? show_regs_print_info+0x12/0x12
[ 1687.751390][T29332]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1687.757109][T29332]  sysfs_warn_dup+0x8c/0xa0
[ 1687.761599][T29332]  sysfs_do_create_link_sd+0xbe/0x100
[ 1687.766957][T29332]  device_add+0x9ea/0x16d0
[ 1687.771355][T29332]  ? wiphy_register+0x1b93/0x2a50
[ 1687.776368][T29332]  ? virtual_device_parent+0x50/0x50
[ 1687.781636][T29332]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1687.787607][T29332]  wiphy_register+0x1ba2/0x2a50
[ 1687.792447][T29332]  ? cfg80211_event_work+0x40/0x40
[ 1687.797547][T29332]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1687.803599][T29332]  ieee80211_register_hw+0x3063/0x3e10
[ 1687.809054][T29332]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1687.814848][T29332]  ? memset+0x1f/0x40
[ 1687.818825][T29332]  ? __hrtimer_init+0x173/0x250
[ 1687.823673][T29332]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1687.829397][T29332]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1687.834505][T29332]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1687.840907][T29332]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1687.847317][T29332]  genl_rcv_msg+0x1032/0x1480
[ 1687.852107][T29332]  ? genl_bind+0x360/0x360
[ 1687.856509][T29332]  ? __dev_queue_xmit+0x1e2c/0x35c0
[ 1687.861689][T29332]  ? trace_mm_page_alloc+0x7f/0x1b0
[ 1687.866879][T29332]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1687.872495][T29332]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1687.878809][T29332]  ? trace_lock_acquire+0x59/0x190
[ 1687.883910][T29332]  netlink_rcv_skb+0x200/0x470
[ 1687.888658][T29332]  ? genl_bind+0x360/0x360
[ 1687.893060][T29332]  ? netlink_ack+0xb70/0xb70
[ 1687.897632][T29332]  ? __down_read_common+0x1b0/0x450
[ 1687.902816][T29332]  ? up_read_non_owner+0x1c0/0x1c0
[ 1687.907908][T29332]  ? netlink_deliver_tap+0x130/0x880
[ 1687.913184][T29332]  genl_rcv+0x24/0x40
[ 1687.917152][T29332]  netlink_unicast+0x814/0x9f0
[ 1687.921907][T29332]  ? netlink_detachskb+0xa0/0xa0
[ 1687.926833][T29332]  ? __virt_addr_valid+0xb8/0x2d0
[ 1687.931845][T29332]  ? __phys_addr_symbol+0x2b/0x70
[ 1687.936851][T29332]  ? __check_object_size+0x2f3/0x3f0
[ 1687.942131][T29332]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1687.947229][T29332]  netlink_sendmsg+0xaea/0xe60
[ 1687.951981][T29332]  ? memcpy+0x3c/0x60
[ 1687.955949][T29332]  ? netlink_getsockopt+0xa60/0xa60
[ 1687.961133][T29332]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1687.966405][T29332]  ? security_socket_sendmsg+0x9d/0xb0
[ 1687.971852][T29332]  ? netlink_getsockopt+0xa60/0xa60
[ 1687.977034][T29332]  ____sys_sendmsg+0x5b9/0x910
[ 1687.981786][T29332]  ? __sys_sendmsg_sock+0x30/0x30
[ 1687.986800][T29332]  __sys_sendmsg+0x280/0x370
[ 1687.991379][T29332]  ? ____sys_sendmsg+0x910/0x910
[ 1687.996308][T29332]  ? read_lock_is_recursive+0x10/0x10
[ 1688.001668][T29332]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1688.007285][T29332]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1688.013261][T29332]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1688.019240][T29332]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1688.025224][T29332]  do_syscall_64+0x44/0xd0
[ 1688.029642][T29332]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1688.035533][T29332] RIP: 0033:0x7fda9f984e99
[ 1688.039942][T29332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1688.059539][T29332] RSP: 002b:00007fda9e2fa168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1688.067941][T29332] RAX: ffffffffffffffda RBX: 00007fda9fa97f60 RCX: 00007fda9f984e99
[ 1688.076334][T29332] RDX: 0000000006000000 RSI: 0000000020000000 RDI: 0000000000000003
22:52:57 executing program 5:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x20) (fail_nth: 2)

22:52:57 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)

[ 1688.084292][T29332] RBP: 00007fda9f9deff1 R08: 0000000000000000 R09: 0000000000000000
[ 1688.092248][T29332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1688.100203][T29332] R13: 00007ffcdbe7b11f R14: 00007fda9e2fa300 R15: 0000000000022000
[ 1688.108171][T29332]  </TASK>
22:52:57 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x7000000)

[ 1688.142973][T29336] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[ 1688.155171][T29351] FAULT_INJECTION: forcing a failure.
[ 1688.155171][T29351] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1688.171320][T29351] CPU: 1 PID: 29351 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1688.173724][T29336] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.3'.
22:52:57 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0x7ffff000)

22:52:57 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0x120000038)

[ 1688.180103][T29351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1688.180119][T29351] Call Trace:
[ 1688.180126][T29351]  <TASK>
[ 1688.180133][T29351]  dump_stack_lvl+0x201/0x2d8
[ 1688.180162][T29351]  ? show_regs_print_info+0x12/0x12
[ 1688.180182][T29351]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1688.180204][T29351]  ? lock_release+0x82/0x810
[ 1688.180225][T29351]  ? snprintf+0xd6/0x120
[ 1688.180245][T29351]  should_fail+0x384/0x4b0
[ 1688.180264][T29351]  _copy_to_user+0x2d/0x130
[ 1688.180281][T29351]  simple_read_from_buffer+0xd9/0x160
[ 1688.225969][T29336] ieee80211 
[ 1688.225969][T29336] !: Selected rate control algorithm 'minstrel_ht'
[ 1688.226233][T29351]  proc_fail_nth_read+0x1af/0x220
[ 1688.238770][T29336] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1688.238770][T29336] !'
[ 1688.239344][T29351]  ? proc_fault_inject_write+0x3a0/0x3a0
[ 1688.274528][T29351]  ? security_file_permission+0x46b/0x5d0
[ 1688.280256][T29351]  ? proc_fault_inject_write+0x3a0/0x3a0
[ 1688.285901][T29351]  vfs_read+0x324/0xe60
[ 1688.290062][T29351]  ? kernel_read+0x200/0x200
[ 1688.294656][T29351]  ? lock_release+0x82/0x810
[ 1688.299249][T29351]  ? mutex_lock_nested+0x1a/0x20
[ 1688.304187][T29351]  ? __fdget_pos+0x24e/0x2f0
[ 1688.308949][T29351]  ? ksys_read+0x77/0x2c0
[ 1688.313274][T29351]  ksys_read+0x18f/0x2c0
[ 1688.317508][T29351]  ? print_irqtrace_events+0x220/0x220
[ 1688.322960][T29351]  ? vfs_write+0xe90/0xe90
[ 1688.327368][T29351]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1688.333339][T29351]  do_syscall_64+0x44/0xd0
[ 1688.337749][T29351]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1688.343635][T29351] RIP: 0033:0x7f5163f04a4c
[ 1688.348046][T29351] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1688.367641][T29351] RSP: 002b:00007f51628c7160 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1688.376053][T29351] RAX: ffffffffffffffda RBX: 00007f5164064f60 RCX: 00007f5163f04a4c
[ 1688.384016][T29351] RDX: 000000000000000f RSI: 00007f51628c71e0 RDI: 0000000000000004
[ 1688.391982][T29351] RBP: 00007f51628c71d0 R08: 0000000000000000 R09: 0000000000000020
[ 1688.399941][T29351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1688.408509][T29351] R13: 00007ffea3afeecf R14: 00007f51628c7300 R15: 0000000000022000
[ 1688.416475][T29351]  </TASK>
[ 1688.419485][T29336] CPU: 0 PID: 29336 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1688.428251][T29336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1688.438312][T29336] Call Trace:
[ 1688.441597][T29336]  <TASK>
[ 1688.444531][T29336]  dump_stack_lvl+0x201/0x2d8
[ 1688.449222][T29336]  ? show_regs_print_info+0x12/0x12
[ 1688.454430][T29336]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1688.460164][T29336]  sysfs_warn_dup+0x8c/0xa0
[ 1688.464665][T29336]  sysfs_do_create_link_sd+0xbe/0x100
[ 1688.470035][T29336]  device_add+0x9ea/0x16d0
[ 1688.474454][T29336]  ? wiphy_register+0x1b93/0x2a50
[ 1688.479491][T29336]  ? virtual_device_parent+0x50/0x50
[ 1688.484782][T29336]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1688.490777][T29336]  wiphy_register+0x1ba2/0x2a50
[ 1688.495646][T29336]  ? cfg80211_event_work+0x40/0x40
[ 1688.500769][T29336]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1688.506841][T29336]  ieee80211_register_hw+0x3063/0x3e10
[ 1688.512311][T29336]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1688.518134][T29336]  ? memset+0x1f/0x40
[ 1688.522127][T29336]  ? __hrtimer_init+0x173/0x250
[ 1688.526978][T29336]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1688.532689][T29336]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1688.537796][T29336]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1688.544116][T29336]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1688.550452][T29336]  genl_rcv_msg+0x1032/0x1480
[ 1688.555139][T29336]  ? genl_bind+0x360/0x360
[ 1688.559538][T29336]  ? __dev_queue_xmit+0x1e2c/0x35c0
[ 1688.564715][T29336]  ? trace_mm_page_alloc+0x7f/0x1b0
[ 1688.569908][T29336]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1688.575540][T29336]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1688.581850][T29336]  ? trace_lock_acquire+0x59/0x190
[ 1688.586942][T29336]  netlink_rcv_skb+0x200/0x470
[ 1688.591686][T29336]  ? genl_bind+0x360/0x360
[ 1688.596082][T29336]  ? netlink_ack+0xb70/0xb70
[ 1688.600654][T29336]  ? __down_read_common+0x1b0/0x450
[ 1688.605843][T29336]  ? up_read_non_owner+0x1c0/0x1c0
[ 1688.610934][T29336]  ? netlink_deliver_tap+0x130/0x880
[ 1688.616202][T29336]  genl_rcv+0x24/0x40
[ 1688.620160][T29336]  netlink_unicast+0x814/0x9f0
[ 1688.624903][T29336]  ? netlink_detachskb+0xa0/0xa0
[ 1688.629823][T29336]  ? __virt_addr_valid+0xb8/0x2d0
[ 1688.634848][T29336]  ? __phys_addr_symbol+0x2b/0x70
[ 1688.639848][T29336]  ? __check_object_size+0x2f3/0x3f0
[ 1688.645114][T29336]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1688.650209][T29336]  netlink_sendmsg+0xaea/0xe60
[ 1688.654975][T29336]  ? memcpy+0x3c/0x60
[ 1688.658945][T29336]  ? netlink_getsockopt+0xa60/0xa60
[ 1688.664136][T29336]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1688.669403][T29336]  ? security_socket_sendmsg+0x9d/0xb0
[ 1688.674864][T29336]  ? netlink_getsockopt+0xa60/0xa60
[ 1688.680044][T29336]  ____sys_sendmsg+0x5b9/0x910
[ 1688.684851][T29336]  ? __sys_sendmsg_sock+0x30/0x30
[ 1688.689864][T29336]  __sys_sendmsg+0x280/0x370
[ 1688.694454][T29336]  ? ____sys_sendmsg+0x910/0x910
[ 1688.699372][T29336]  ? read_lock_is_recursive+0x10/0x10
[ 1688.704724][T29336]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1688.710345][T29336]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1688.716323][T29336]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1688.722283][T29336]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1688.728241][T29336]  do_syscall_64+0x44/0xd0
[ 1688.732638][T29336]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1688.738509][T29336] RIP: 0033:0x7fbee7a71e99
[ 1688.742989][T29336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1688.762836][T29336] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1688.771239][T29336] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1688.779214][T29336] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1688.787164][T29336] RBP: 00007fbee7acbff1 R08: 0000000000000000 R09: 0000000000000000
22:52:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4020aeb2, &(0x7f0000000000)) (fail_nth: 1)

22:52:58 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffffffffffffff)

[ 1688.795112][T29336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1688.803065][T29336] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1688.811020][T29336]  </TASK>
[ 1688.827133][T29340] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1688.849703][T29340] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1688.865755][T29340] ieee80211 
[ 1688.865755][T29340] !: Selected rate control algorithm 'minstrel_ht'
[ 1688.884207][T29363] FAULT_INJECTION: forcing a failure.
[ 1688.884207][T29363] name failslab, interval 1, probability 0, space 0, times 0
[ 1688.896553][T29340] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1688.896553][T29340] !'
[ 1688.897844][T29363] CPU: 1 PID: 29363 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1688.915288][T29363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1688.925341][T29363] Call Trace:
[ 1688.928614][T29363]  <TASK>
[ 1688.931547][T29363]  dump_stack_lvl+0x201/0x2d8
[ 1688.936228][T29363]  ? show_regs_print_info+0x12/0x12
[ 1688.941422][T29363]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1688.947137][T29363]  ? __might_sleep+0xe0/0xe0
[ 1688.951721][T29363]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1688.957351][T29363]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1688.963335][T29363]  should_fail+0x384/0x4b0
[ 1688.967745][T29363]  ? tomoyo_realpath_from_path+0xd8/0x610
[ 1688.973454][T29363]  should_failslab+0x5/0x20
[ 1688.977949][T29363]  __kmalloc+0x94/0x380
[ 1688.982099][T29363]  ? kfree+0x2f/0x330
[ 1688.986069][T29363]  ? vfs_write+0x7e0/0xe90
[ 1688.990481][T29363]  tomoyo_realpath_from_path+0xd8/0x610
[ 1688.996023][T29363]  ? read_lock_is_recursive+0x10/0x10
[ 1689.001390][T29363]  tomoyo_path_number_perm+0x219/0x7c0
[ 1689.006839][T29363]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1689.012900][T29363]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1689.018535][T29363]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 1689.023984][T29363]  ? trace_lock_acquire+0x59/0x190
[ 1689.029090][T29363]  ? rcu_lock_release+0x9/0x20
[ 1689.033846][T29363]  ? trace_lock_release+0x4f/0x150
[ 1689.038953][T29363]  ? read_lock_is_recursive+0x10/0x10
[ 1689.044330][T29363]  security_file_ioctl+0x55/0xb0
[ 1689.049260][T29363]  __se_sys_ioctl+0x48/0x170
[ 1689.053846][T29363]  do_syscall_64+0x44/0xd0
[ 1689.058256][T29363]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1689.064154][T29363] RIP: 0033:0x7fbee7a71e99
[ 1689.068565][T29363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1689.088419][T29363] RSP: 002b:00007fbee63e7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1689.096823][T29363] RAX: ffffffffffffffda RBX: 00007fbee7b84f60 RCX: 00007fbee7a71e99
[ 1689.105131][T29363] RDX: 0000000020000000 RSI: 000000004020aeb2 RDI: 0000000000000004
[ 1689.113377][T29363] RBP: 00007fbee63e71d0 R08: 0000000000000000 R09: 0000000000000000
[ 1689.121349][T29363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1689.129321][T29363] R13: 00007ffd5651632f R14: 00007fbee63e7300 R15: 0000000000022000
[ 1689.137651][T29363]  </TASK>
[ 1689.140664][T29340] CPU: 0 PID: 29340 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1689.149524][T29340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1689.150636][T29363] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1689.159664][T29340] Call Trace:
[ 1689.159673][T29340]  <TASK>
[ 1689.159680][T29340]  dump_stack_lvl+0x201/0x2d8
[ 1689.159708][T29340]  ? show_regs_print_info+0x12/0x12
[ 1689.159728][T29340]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1689.159754][T29340]  sysfs_warn_dup+0x8c/0xa0
[ 1689.159773][T29340]  sysfs_do_create_link_sd+0xbe/0x100
[ 1689.159792][T29340]  device_add+0x9ea/0x16d0
[ 1689.159809][T29340]  ? wiphy_register+0x1b93/0x2a50
[ 1689.159830][T29340]  ? virtual_device_parent+0x50/0x50
[ 1689.159847][T29340]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1689.159866][T29340]  wiphy_register+0x1ba2/0x2a50
[ 1689.159885][T29340]  ? cfg80211_event_work+0x40/0x40
[ 1689.159902][T29340]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1689.159925][T29340]  ieee80211_register_hw+0x3063/0x3e10
[ 1689.159955][T29340]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1689.159975][T29340]  ? memset+0x1f/0x40
[ 1689.159987][T29340]  ? __hrtimer_init+0x173/0x250
[ 1689.160010][T29340]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1689.160039][T29340]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1689.160057][T29340]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1689.160085][T29340]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1689.160111][T29340]  genl_rcv_msg+0x1032/0x1480
[ 1689.160133][T29340]  ? genl_bind+0x360/0x360
[ 1689.160151][T29340]  ? __dev_queue_xmit+0x1e2c/0x35c0
[ 1689.160168][T29340]  ? trace_mm_page_alloc+0x7f/0x1b0
[ 1689.160197][T29340]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1689.160215][T29340]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1689.160231][T29340]  ? trace_lock_acquire+0x59/0x190
[ 1689.160251][T29340]  netlink_rcv_skb+0x200/0x470
[ 1689.160271][T29340]  ? genl_bind+0x360/0x360
[ 1689.160291][T29340]  ? netlink_ack+0xb70/0xb70
[ 1689.160306][T29340]  ? __down_read_common+0x1b0/0x450
[ 1689.160320][T29340]  ? up_read_non_owner+0x1c0/0x1c0
[ 1689.160334][T29340]  ? netlink_deliver_tap+0x130/0x880
[ 1689.160358][T29340]  genl_rcv+0x24/0x40
[ 1689.160377][T29340]  netlink_unicast+0x814/0x9f0
[ 1689.160395][T29340]  ? netlink_detachskb+0xa0/0xa0
[ 1689.160409][T29340]  ? __virt_addr_valid+0xb8/0x2d0
[ 1689.160429][T29340]  ? __phys_addr_symbol+0x2b/0x70
[ 1689.160446][T29340]  ? __check_object_size+0x2f3/0x3f0
[ 1689.372969][T29340]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1689.378073][T29340]  netlink_sendmsg+0xaea/0xe60
[ 1689.382826][T29340]  ? memcpy+0x3c/0x60
[ 1689.386794][T29340]  ? netlink_getsockopt+0xa60/0xa60
[ 1689.391976][T29340]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1689.397241][T29340]  ? security_socket_sendmsg+0x9d/0xb0
[ 1689.402690][T29340]  ? netlink_getsockopt+0xa60/0xa60
[ 1689.407874][T29340]  ____sys_sendmsg+0x5b9/0x910
[ 1689.412631][T29340]  ? __sys_sendmsg_sock+0x30/0x30
[ 1689.417743][T29340]  __sys_sendmsg+0x280/0x370
[ 1689.422319][T29340]  ? ____sys_sendmsg+0x910/0x910
[ 1689.427247][T29340]  ? read_lock_is_recursive+0x10/0x10
[ 1689.432609][T29340]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1689.438318][T29340]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1689.444284][T29340]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1689.450247][T29340]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1689.456298][T29340]  do_syscall_64+0x44/0xd0
[ 1689.460701][T29340]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1689.466672][T29340] RIP: 0033:0x7f3e3559fe99
[ 1689.471075][T29340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1689.490670][T29340] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
22:52:59 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x40e000000000000)

22:52:59 executing program 5:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x20)

[ 1689.499084][T29340] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1689.507044][T29340] RDX: 0400000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1689.514997][T29340] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1689.523044][T29340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1689.531083][T29340] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1689.539137][T29340]  </TASK>
[ 1689.558967][T29344] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 1689.569224][T29344] netlink: 113844 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1689.582773][T29344] ieee80211 
[ 1689.582773][T29344] !: Selected rate control algorithm 'minstrel_ht'
[ 1689.593532][T29344] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1689.593532][T29344] !'
[ 1689.603674][T29344] CPU: 0 PID: 29344 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0
[ 1689.612446][T29344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1689.622503][T29344] Call Trace:
[ 1689.625773][T29344]  <TASK>
[ 1689.628689][T29344]  dump_stack_lvl+0x201/0x2d8
[ 1689.633361][T29344]  ? show_regs_print_info+0x12/0x12
[ 1689.638548][T29344]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1689.644260][T29344]  sysfs_warn_dup+0x8c/0xa0
[ 1689.648750][T29344]  sysfs_do_create_link_sd+0xbe/0x100
[ 1689.654110][T29344]  device_add+0x9ea/0x16d0
[ 1689.658508][T29344]  ? wiphy_register+0x1b93/0x2a50
[ 1689.663522][T29344]  ? virtual_device_parent+0x50/0x50
[ 1689.668791][T29344]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1689.675042][T29344]  wiphy_register+0x1ba2/0x2a50
[ 1689.679879][T29344]  ? cfg80211_event_work+0x40/0x40
[ 1689.684985][T29344]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1689.691049][T29344]  ieee80211_register_hw+0x3063/0x3e10
[ 1689.696501][T29344]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1689.702297][T29344]  ? memset+0x1f/0x40
[ 1689.706262][T29344]  ? __hrtimer_init+0x173/0x250
[ 1689.711104][T29344]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1689.716829][T29344]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1689.721945][T29344]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1689.728275][T29344]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1689.734608][T29344]  genl_rcv_msg+0x1032/0x1480
[ 1689.739283][T29344]  ? genl_bind+0x360/0x360
[ 1689.743693][T29344]  ? __dev_queue_xmit+0x1e2c/0x35c0
[ 1689.748884][T29344]  ? trace_mm_page_alloc+0x7f/0x1b0
[ 1689.754081][T29344]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1689.759700][T29344]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1689.766013][T29344]  ? trace_lock_acquire+0x59/0x190
[ 1689.771111][T29344]  netlink_rcv_skb+0x200/0x470
[ 1689.775863][T29344]  ? genl_bind+0x360/0x360
[ 1689.780265][T29344]  ? netlink_ack+0xb70/0xb70
[ 1689.784848][T29344]  ? __down_read_common+0x1b0/0x450
[ 1689.790029][T29344]  ? up_read_non_owner+0x1c0/0x1c0
[ 1689.795122][T29344]  ? netlink_deliver_tap+0x130/0x880
[ 1689.800395][T29344]  genl_rcv+0x24/0x40
[ 1689.804361][T29344]  netlink_unicast+0x814/0x9f0
[ 1689.809111][T29344]  ? netlink_detachskb+0xa0/0xa0
[ 1689.814030][T29344]  ? __virt_addr_valid+0xb8/0x2d0
[ 1689.819037][T29344]  ? __phys_addr_symbol+0x2b/0x70
[ 1689.824043][T29344]  ? __check_object_size+0x2f3/0x3f0
[ 1689.829315][T29344]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1689.834411][T29344]  netlink_sendmsg+0xaea/0xe60
[ 1689.839163][T29344]  ? memcpy+0x3c/0x60
[ 1689.843137][T29344]  ? netlink_getsockopt+0xa60/0xa60
[ 1689.848322][T29344]  ? futex_wait_queue+0x205/0x330
[ 1689.853334][T29344]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1689.858607][T29344]  ? security_socket_sendmsg+0x9d/0xb0
[ 1689.864051][T29344]  ? netlink_getsockopt+0xa60/0xa60
[ 1689.869238][T29344]  ____sys_sendmsg+0x5b9/0x910
[ 1689.874517][T29344]  ? __sys_sendmsg_sock+0x30/0x30
[ 1689.879535][T29344]  __sys_sendmsg+0x280/0x370
[ 1689.884114][T29344]  ? ____sys_sendmsg+0x910/0x910
[ 1689.889045][T29344]  ? read_lock_is_recursive+0x10/0x10
[ 1689.894409][T29344]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1689.900027][T29344]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1689.905993][T29344]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1689.911961][T29344]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1689.917934][T29344]  do_syscall_64+0x44/0xd0
[ 1689.922342][T29344]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1689.928221][T29344] RIP: 0033:0x7ffbc7e82e99
[ 1689.932628][T29344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1689.952234][T29344] RSP: 002b:00007ffbc67f8168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1689.960638][T29344] RAX: ffffffffffffffda RBX: 00007ffbc7f95f60 RCX: 00007ffbc7e82e99
[ 1689.968598][T29344] RDX: 0000000007000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1689.976559][T29344] RBP: 00007ffbc7edcff1 R08: 0000000000000000 R09: 0000000000000000
[ 1689.984517][T29344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1689.992473][T29344] R13: 00007ffd5937505f R14: 00007ffbc67f8300 R15: 0000000000022000
[ 1690.000441][T29344]  </TASK>
22:52:59 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004020029000505d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x8000000)

22:52:59 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffef5, &(0x7f0000000080)=[{&(0x7f0000000040)="e004030029001105d25a80648c63940d0424fc60100011400a2f0000013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x8000000)

22:52:59 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
ioctl$USBDEVFS_BULK(r0, 0xc0185502, &(0x7f0000000000)={{{0x0, 0x1}}, 0xe2, 0xfffffffb, &(0x7f00000000c0)="1e03f14eb01d009c4ecd46cb84adeb764930d23558af61c3d9eb063765802d4ac7deb2a404d560573b76426d93f5520bd6b56c38b5006cd6e80a0af29d5aff7293a45c9829b7ec5cee948de9ae9e31a44cdf0638454b0ba547b3253b0ee0384d85a023a4f195748b364e7e4dec676c2487b00cbabe3cb3ea33176c4cd5c8e4488589dcb30d14b81d4306e4fea4eae32e361a9d1e934a57797f781531bc2aa59294d2846a67931e69a4b2b6c60d50cd7b7fa89496cf9d90d768e8fa36b0883fdb132e34a009485e596dd065561d23185d3cb0c5735674c7543fd8421507135b0f072a"})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00800000a2b70006000010000093000400"})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x3c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eefffffffffffff7000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(0xffffffffffffffff, 0xc0205649, &(0x7f00000001c0)={0xf000000, 0x8, 0x400, r2, 0x0, &(0x7f0000000040)={0x9909d9, 0x9, '\x00', @value64=0xe253}})
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0xffffff78)

22:52:59 executing program 5:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x2, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x20)

22:52:59 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4020aeb2, &(0x7f0000000000)) (fail_nth: 2)

[ 1690.012792][T29368] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[ 1690.024583][T29368] netlink: 179380 bytes leftover after parsing attributes in process `syz-executor.0'.
22:52:59 executing program 5:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x3, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x20)

[ 1690.058749][T29368] ieee80211 
[ 1690.058749][T29368] !: Selected rate control algorithm 'minstrel_ht'
[ 1690.078412][T29368] sysfs: cannot create duplicate filename '/class/ieee80211/
[ 1690.078412][T29368] !'
[ 1690.085559][T29377] FAULT_INJECTION: forcing a failure.
[ 1690.085559][T29377] name failslab, interval 1, probability 0, space 0, times 0
[ 1690.103765][T29368] CPU: 0 PID: 29368 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1690.113014][T29368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1690.123075][T29368] Call Trace:
[ 1690.126348][T29368]  <TASK>
[ 1690.129271][T29368]  dump_stack_lvl+0x201/0x2d8
[ 1690.133960][T29368]  ? show_regs_print_info+0x12/0x12
[ 1690.139160][T29368]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 1690.144877][T29368]  sysfs_warn_dup+0x8c/0xa0
[ 1690.149371][T29368]  sysfs_do_create_link_sd+0xbe/0x100
[ 1690.154736][T29368]  device_add+0x9ea/0x16d0
[ 1690.159147][T29368]  ? wiphy_register+0x1b93/0x2a50
[ 1690.164168][T29368]  ? virtual_device_parent+0x50/0x50
[ 1690.169443][T29368]  ? ieee80211_set_bitrate_flags+0x7b5/0x7d0
[ 1690.175421][T29368]  wiphy_register+0x1ba2/0x2a50
[ 1690.180262][T29368]  ? cfg80211_event_work+0x40/0x40
[ 1690.185363][T29368]  ? ieee80211_init_rate_ctrl_alg+0x5d3/0x650
[ 1690.191422][T29368]  ieee80211_register_hw+0x3063/0x3e10
[ 1690.196881][T29368]  ? ieee80211_tasklet_handler+0x1d0/0x1d0
[ 1690.202681][T29368]  ? memset+0x1f/0x40
[ 1690.206740][T29368]  ? __hrtimer_init+0x173/0x250
[ 1690.211580][T29368]  mac80211_hwsim_new_radio+0x218e/0x3be0
[ 1690.217295][T29368]  hwsim_new_radio_nl+0xc5f/0x1130
[ 1690.222392][T29368]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1690.228710][T29368]  ? genl_family_rcv_msg_attrs_parse+0x1cd/0x290
[ 1690.235031][T29368]  genl_rcv_msg+0x1032/0x1480
[ 1690.239705][T29368]  ? genl_bind+0x360/0x360
[ 1690.244111][T29368]  ? __dev_queue_xmit+0x1e2c/0x35c0
[ 1690.249291][T29368]  ? trace_mm_page_alloc+0x7f/0x1b0
[ 1690.254486][T29368]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1690.260118][T29368]  ? hwsim_tx_info_frame_received_nl+0xf70/0xf70
[ 1690.266526][T29368]  ? trace_lock_acquire+0x59/0x190
[ 1690.271632][T29368]  netlink_rcv_skb+0x200/0x470
[ 1690.276392][T29368]  ? genl_bind+0x360/0x360
[ 1690.280808][T29368]  ? netlink_ack+0xb70/0xb70
[ 1690.285392][T29368]  ? __down_read_common+0x1b0/0x450
[ 1690.290578][T29368]  ? up_read_non_owner+0x1c0/0x1c0
[ 1690.295673][T29368]  ? netlink_deliver_tap+0x130/0x880
[ 1690.300950][T29368]  genl_rcv+0x24/0x40
[ 1690.304920][T29368]  netlink_unicast+0x814/0x9f0
[ 1690.309674][T29368]  ? netlink_detachskb+0xa0/0xa0
[ 1690.315032][T29368]  ? __virt_addr_valid+0xb8/0x2d0
[ 1690.320184][T29368]  ? __phys_addr_symbol+0x2b/0x70
[ 1690.325230][T29368]  ? __check_object_size+0x2f3/0x3f0
[ 1690.330521][T29368]  ? bpf_lsm_netlink_send+0x5/0x10
[ 1690.335692][T29368]  netlink_sendmsg+0xaea/0xe60
[ 1690.340464][T29368]  ? memcpy+0x3c/0x60
[ 1690.344449][T29368]  ? netlink_getsockopt+0xa60/0xa60
[ 1690.349644][T29368]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1690.354918][T29368]  ? security_socket_sendmsg+0x9d/0xb0
[ 1690.360371][T29368]  ? netlink_getsockopt+0xa60/0xa60
[ 1690.365557][T29368]  ____sys_sendmsg+0x5b9/0x910
[ 1690.370314][T29368]  ? __sys_sendmsg_sock+0x30/0x30
[ 1690.375417][T29368]  __sys_sendmsg+0x280/0x370
[ 1690.379998][T29368]  ? ____sys_sendmsg+0x910/0x910
[ 1690.384927][T29368]  ? read_lock_is_recursive+0x10/0x10
[ 1690.390288][T29368]  ? rcu_read_lock_sched_held+0x5f/0x130
[ 1690.395906][T29368]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 1690.401876][T29368]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1690.407850][T29368]  ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 1690.413816][T29368]  do_syscall_64+0x44/0xd0
[ 1690.418221][T29368]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1690.424196][T29368] RIP: 0033:0x7f3e3559fe99
[ 1690.428595][T29368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1690.448359][T29368] RSP: 002b:00007f3e33f15168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1690.456758][T29368] RAX: ffffffffffffffda RBX: 00007f3e356b2f60 RCX: 00007f3e3559fe99
[ 1690.464712][T29368] RDX: 040e000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[ 1690.472668][T29368] RBP: 00007f3e355f9ff1 R08: 0000000000000000 R09: 0000000000000000
[ 1690.480619][T29368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1690.488570][T29368] R13: 00007fff8301125f R14: 00007f3e33f15300 R15: 0000000000022000
[ 1690.496539][T29368]  </TASK>