1]  ? __fget_light+0xe5/0x270
[ 3408.941377][ T5811]  __sys_sendmsg+0xf7/0x1c0
[ 3408.945917][ T5811]  ? __sys_sendmsg_sock+0x40/0x40
[ 3408.950986][ T5811]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3408.956948][ T5811]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3408.962887][ T5811]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3408.968234][ T5811]  do_syscall_64+0x39/0xb0
[ 3408.972703][ T5811]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3408.978637][ T5811] RIP: 0033:0x7f837868c169
[ 3408.983084][ T5811] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3409.002753][ T5811] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3409.011211][ T5811] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
07:14:02 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x1000, 0x1}, 0x6)

07:14:02 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x1c42)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3409.019236][ T5811] RDX: 47e0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3409.027250][ T5811] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3409.035263][ T5811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3409.043268][ T5811] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3409.051293][ T5811]  </TASK>
07:14:02 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x1000, 0x1}, 0x6)

[ 3409.128115][ T5836] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
07:14:02 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x1000, 0x1}, 0x6)

[ 3409.245990][ T5836] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3409.297300][ T5836] CPU: 0 PID: 5836 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3409.307703][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3409.317795][ T5836] Call Trace:
[ 3409.321099][ T5836]  <TASK>
[ 3409.324056][ T5836]  dump_stack_lvl+0x136/0x150
[ 3409.328779][ T5836]  sysfs_warn_dup+0x80/0xa0
[ 3409.333321][ T5836]  sysfs_do_create_link_sd+0x11e/0x140
[ 3409.338821][ T5836]  sysfs_create_link+0x63/0xc0
[ 3409.343624][ T5836]  device_add+0x5e5/0x1c50
[ 3409.348098][ T5836]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3409.354997][ T5836]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3409.360917][ T5836]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3409.366939][ T5836]  wiphy_register+0x1f88/0x2ae0
[ 3409.371824][ T5836]  ? wiphy_unregister+0xb40/0xb40
[ 3409.376867][ T5836]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3409.382029][ T5836]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3409.388051][ T5836]  ieee80211_register_hw+0x23c1/0x40e0
[ 3409.393551][ T5836]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3409.399121][ T5836]  ? debug_object_free+0x360/0x360
[ 3409.404254][ T5836]  ? lockdep_init_map_type+0x21e/0x810
[ 3409.409761][ T5836]  ? __hrtimer_init+0x145/0x280
[ 3409.414641][ T5836]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3409.420404][ T5836]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3409.427113][ T5836]  hwsim_new_radio_nl+0xad6/0x1210
[ 3409.432250][ T5836]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3409.438177][ T5836]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3409.445565][ T5836]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3409.452871][ T5836]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3409.459144][ T5836]  ? genl_start+0x660/0x660
[ 3409.463669][ T5836]  ? ns_capable+0xe0/0x110
[ 3409.468117][ T5836]  genl_rcv_msg+0x4ff/0x7e0
[ 3409.472638][ T5836]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3409.478982][ T5836]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3409.484912][ T5836]  netlink_rcv_skb+0x165/0x440
[ 3409.489705][ T5836]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3409.496053][ T5836]  ? netlink_ack+0x1360/0x1360
[ 3409.500870][ T5836]  genl_rcv+0x28/0x40
[ 3409.504893][ T5836]  netlink_unicast+0x547/0x7f0
[ 3409.509690][ T5836]  ? netlink_attachskb+0x890/0x890
[ 3409.514928][ T5836]  ? __virt_addr_valid+0x61/0x2e0
[ 3409.519979][ T5836]  ? __phys_addr_symbol+0x30/0x70
[ 3409.525027][ T5836]  ? __check_object_size+0x323/0x730
[ 3409.530337][ T5836]  netlink_sendmsg+0x925/0xe30
[ 3409.535134][ T5836]  ? netlink_unicast+0x7f0/0x7f0
[ 3409.540104][ T5836]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3409.545411][ T5836]  ? netlink_unicast+0x7f0/0x7f0
[ 3409.550375][ T5836]  sock_sendmsg+0xde/0x190
[ 3409.554822][ T5836]  ____sys_sendmsg+0x71c/0x900
[ 3409.559614][ T5836]  ? copy_msghdr_from_user+0xfc/0x150
[ 3409.565002][ T5836]  ? kernel_sendmsg+0x50/0x50
[ 3409.569727][ T5836]  ___sys_sendmsg+0x110/0x1b0
[ 3409.574420][ T5836]  ? do_recvmmsg+0x6e0/0x6e0
[ 3409.579031][ T5836]  ? __fget_files+0x248/0x480
[ 3409.583725][ T5836]  ? lock_downgrade+0x690/0x690
[ 3409.588598][ T5836]  ? futex_wake_mark+0x1a0/0x1a0
[ 3409.593568][ T5836]  ? __fget_files+0x26a/0x480
[ 3409.598266][ T5836]  ? __fget_light+0xe5/0x270
[ 3409.602877][ T5836]  __sys_sendmsg+0xf7/0x1c0
[ 3409.607396][ T5836]  ? __sys_sendmsg_sock+0x40/0x40
[ 3409.612437][ T5836]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3409.618372][ T5836]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3409.624285][ T5836]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3409.629504][ T5836]  do_syscall_64+0x39/0xb0
[ 3409.633952][ T5836]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3409.639869][ T5836] RIP: 0033:0x7fb4bf08c169
[ 3409.644305][ T5836] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3409.663928][ T5836] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3409.672357][ T5836] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3409.680339][ T5836] RDX: 0000000000001c42 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3409.688321][ T5836] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3409.696300][ T5836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3409.704281][ T5836] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3409.712282][ T5836]  </TASK>
07:14:02 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:02 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x11000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:02 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x6000000}}}}]}, 0x78}}, 0x131c)

07:14:02 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x4800000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:02 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000180)='ns/pid\x00')
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000200)={0x5, 0x5, 0x5})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="6ca5200008000000e0ffffffffffffff"], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r5=>0x0]}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, &(0x7f0000001500)={r5}, &(0x7f00000015c0)=0x8)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000000)={r5, 0xeb, 0x20}, 0xc)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r7, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f0000000080)={0x1, [0x0]}, &(0x7f00000000c0)=0x8)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r6, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:02 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x1f00)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:03 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x7000000}}}}]}, 0x78}}, 0x131c)

[ 3409.842919][ T5855] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:03 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x13000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:03 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8000000}}}}]}, 0x78}}, 0x131c)

[ 3409.936725][ T5855] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3409.980724][ T5855] CPU: 0 PID: 5855 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3409.991122][ T5855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3410.001212][ T5855] Call Trace:
[ 3410.004531][ T5855]  <TASK>
[ 3410.007486][ T5855]  dump_stack_lvl+0x136/0x150
[ 3410.012205][ T5855]  sysfs_warn_dup+0x80/0xa0
[ 3410.016760][ T5855]  sysfs_do_create_link_sd+0x11e/0x140
[ 3410.022320][ T5855]  sysfs_create_link+0x63/0xc0
[ 3410.027142][ T5855]  device_add+0x5e5/0x1c50
[ 3410.031615][ T5855]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3410.038535][ T5855]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3410.044470][ T5855]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3410.050516][ T5855]  wiphy_register+0x1f88/0x2ae0
[ 3410.055433][ T5855]  ? wiphy_unregister+0xb40/0xb40
[ 3410.060503][ T5855]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3410.065684][ T5855]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3410.071732][ T5855]  ieee80211_register_hw+0x23c1/0x40e0
[ 3410.077251][ T5855]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3410.082837][ T5855]  ? net_generic+0xd9/0x2a0
[ 3410.087384][ T5855]  ? debug_object_free+0x360/0x360
[ 3410.092538][ T5855]  ? lockdep_init_map_type+0x21e/0x810
[ 3410.098041][ T5855]  ? __hrtimer_init+0x145/0x280
[ 3410.102939][ T5855]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3410.108726][ T5855]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3410.115468][ T5855]  hwsim_new_radio_nl+0xad6/0x1210
[ 3410.120630][ T5855]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3410.126590][ T5855]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3410.134006][ T5855]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3410.141337][ T5855]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3410.147529][ T5855]  ? genl_start+0x660/0x660
[ 3410.152084][ T5855]  ? ns_capable+0xe0/0x110
[ 3410.156554][ T5855]  genl_rcv_msg+0x4ff/0x7e0
[ 3410.161097][ T5855]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3410.167466][ T5855]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3410.173421][ T5855]  netlink_rcv_skb+0x165/0x440
[ 3410.178325][ T5855]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3410.184697][ T5855]  ? netlink_ack+0x1360/0x1360
[ 3410.189540][ T5855]  genl_rcv+0x28/0x40
[ 3410.193565][ T5855]  netlink_unicast+0x547/0x7f0
[ 3410.198384][ T5855]  ? netlink_attachskb+0x890/0x890
[ 3410.203543][ T5855]  ? __virt_addr_valid+0x61/0x2e0
[ 3410.208612][ T5855]  ? __phys_addr_symbol+0x30/0x70
[ 3410.213699][ T5855]  ? __check_object_size+0x323/0x730
[ 3410.219032][ T5855]  netlink_sendmsg+0x925/0xe30
[ 3410.223857][ T5855]  ? netlink_unicast+0x7f0/0x7f0
[ 3410.228852][ T5855]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3410.234181][ T5855]  ? netlink_unicast+0x7f0/0x7f0
[ 3410.239173][ T5855]  sock_sendmsg+0xde/0x190
[ 3410.243634][ T5855]  ____sys_sendmsg+0x71c/0x900
[ 3410.248451][ T5855]  ? copy_msghdr_from_user+0xfc/0x150
[ 3410.253859][ T5855]  ? kernel_sendmsg+0x50/0x50
[ 3410.258589][ T5855]  ? futex_unqueue+0xb7/0x120
[ 3410.263316][ T5855]  ? futex_wait+0x503/0x680
[ 3410.267866][ T5855]  ___sys_sendmsg+0x110/0x1b0
[ 3410.272581][ T5855]  ? do_recvmmsg+0x6e0/0x6e0
[ 3410.277215][ T5855]  ? __fget_files+0x248/0x480
[ 3410.281930][ T5855]  ? lock_downgrade+0x690/0x690
[ 3410.286832][ T5855]  ? __fget_files+0x26a/0x480
[ 3410.291552][ T5855]  ? __fget_light+0xe5/0x270
[ 3410.296179][ T5855]  __sys_sendmsg+0xf7/0x1c0
[ 3410.300718][ T5855]  ? __sys_sendmsg_sock+0x40/0x40
[ 3410.305786][ T5855]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3410.312175][ T5855]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3410.318110][ T5855]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3410.323354][ T5855]  do_syscall_64+0x39/0xb0
[ 3410.327818][ T5855]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3410.333757][ T5855] RIP: 0033:0x7f837868c169
[ 3410.338200][ T5855] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3410.357850][ T5855] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3410.366306][ T5855] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3410.374312][ T5855] RDX: 4800000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
07:14:03 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000180)='ns/pid\x00')
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000200)={0x5, 0x5, 0x5}) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="6ca5200008000000e0ffffffffffffff"], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) (async)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) (async, rerun: 32)
r4 = socket$inet_sctp(0x2, 0x5, 0x84) (rerun: 32)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r5=>0x0]}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, &(0x7f0000001500)={r5}, &(0x7f00000015c0)=0x8) (async)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000000)={r5, 0xeb, 0x20}, 0xc)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async, rerun: 32)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (rerun: 32)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
write$binfmt_script(r7, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0) (async)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f0000000080)={0x1, [0x0]}, &(0x7f00000000c0)=0x8) (async, rerun: 64)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (rerun: 64)
bind$bt_hci(r9, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r6, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3410.382314][ T5855] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3410.390317][ T5855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3410.398318][ T5855] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3410.406345][ T5855]  </TASK>
07:14:03 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x48e0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:03 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x1f000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3410.476532][ T5862] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3410.495726][ T5862] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3410.537099][ T5862] CPU: 0 PID: 5862 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3410.547503][ T5862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3410.557594][ T5862] Call Trace:
[ 3410.560911][ T5862]  <TASK>
[ 3410.563868][ T5862]  dump_stack_lvl+0x136/0x150
[ 3410.568593][ T5862]  sysfs_warn_dup+0x80/0xa0
[ 3410.573190][ T5862]  sysfs_do_create_link_sd+0x11e/0x140
[ 3410.578699][ T5862]  sysfs_create_link+0x63/0xc0
[ 3410.583507][ T5862]  device_add+0x5e5/0x1c50
[ 3410.587991][ T5862]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3410.594904][ T5862]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3410.600844][ T5862]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3410.606900][ T5862]  wiphy_register+0x1f88/0x2ae0
[ 3410.611818][ T5862]  ? wiphy_unregister+0xb40/0xb40
[ 3410.616896][ T5862]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3410.622072][ T5862]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3410.628118][ T5862]  ieee80211_register_hw+0x23c1/0x40e0
[ 3410.633651][ T5862]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3410.639249][ T5862]  ? debug_object_free+0x360/0x360
[ 3410.644407][ T5862]  ? lockdep_init_map_type+0x21e/0x810
[ 3410.649908][ T5862]  ? __hrtimer_init+0x145/0x280
[ 3410.654797][ T5862]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3410.660581][ T5862]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3410.667301][ T5862]  hwsim_new_radio_nl+0xad6/0x1210
[ 3410.672447][ T5862]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3410.678376][ T5862]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3410.685767][ T5862]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3410.693076][ T5862]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3410.699257][ T5862]  ? genl_start+0x660/0x660
[ 3410.703787][ T5862]  ? ns_capable+0xe0/0x110
[ 3410.708249][ T5862]  genl_rcv_msg+0x4ff/0x7e0
[ 3410.712768][ T5862]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3410.719116][ T5862]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3410.725069][ T5862]  netlink_rcv_skb+0x165/0x440
[ 3410.729867][ T5862]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3410.736215][ T5862]  ? netlink_ack+0x1360/0x1360
[ 3410.741036][ T5862]  genl_rcv+0x28/0x40
[ 3410.745045][ T5862]  netlink_unicast+0x547/0x7f0
[ 3410.749843][ T5862]  ? netlink_attachskb+0x890/0x890
[ 3410.754995][ T5862]  ? __virt_addr_valid+0x61/0x2e0
[ 3410.760044][ T5862]  ? __phys_addr_symbol+0x30/0x70
[ 3410.765094][ T5862]  ? __check_object_size+0x323/0x730
[ 3410.770407][ T5862]  netlink_sendmsg+0x925/0xe30
[ 3410.775204][ T5862]  ? netlink_unicast+0x7f0/0x7f0
[ 3410.780196][ T5862]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3410.785507][ T5862]  ? netlink_unicast+0x7f0/0x7f0
[ 3410.790471][ T5862]  sock_sendmsg+0xde/0x190
[ 3410.794917][ T5862]  ____sys_sendmsg+0x71c/0x900
[ 3410.799720][ T5862]  ? copy_msghdr_from_user+0xfc/0x150
[ 3410.805110][ T5862]  ? kernel_sendmsg+0x50/0x50
[ 3410.809831][ T5862]  ___sys_sendmsg+0x110/0x1b0
[ 3410.814524][ T5862]  ? do_recvmmsg+0x6e0/0x6e0
[ 3410.819134][ T5862]  ? __fget_files+0x248/0x480
[ 3410.823824][ T5862]  ? lock_downgrade+0x690/0x690
[ 3410.828695][ T5862]  ? futex_wake_mark+0x1a0/0x1a0
[ 3410.833683][ T5862]  ? __fget_files+0x26a/0x480
[ 3410.838380][ T5862]  ? __fget_light+0xe5/0x270
[ 3410.842990][ T5862]  __sys_sendmsg+0xf7/0x1c0
[ 3410.847507][ T5862]  ? __sys_sendmsg_sock+0x40/0x40
[ 3410.852552][ T5862]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3410.858488][ T5862]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3410.864401][ T5862]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3410.869641][ T5862]  do_syscall_64+0x39/0xb0
[ 3410.874084][ T5862]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3410.880000][ T5862] RIP: 0033:0x7fb4bf08c169
[ 3410.884425][ T5862] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3410.904049][ T5862] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3410.912478][ T5862] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3410.920460][ T5862] RDX: 0000000000001f00 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3410.928441][ T5862] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3410.936424][ T5862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3410.944417][ T5862] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3410.952415][ T5862]  </TASK>
[ 3411.007264][ T5879] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3411.044054][ T5879] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3411.058561][ T5879] CPU: 1 PID: 5879 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3411.068969][ T5879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3411.079064][ T5879] Call Trace:
[ 3411.082365][ T5879]  <TASK>
[ 3411.085319][ T5879]  dump_stack_lvl+0x136/0x150
[ 3411.090035][ T5879]  sysfs_warn_dup+0x80/0xa0
[ 3411.094577][ T5879]  sysfs_do_create_link_sd+0x11e/0x140
[ 3411.100062][ T5879]  sysfs_create_link+0x63/0xc0
[ 3411.104847][ T5879]  device_add+0x5e5/0x1c50
[ 3411.109298][ T5879]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3411.116434][ T5879]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3411.122351][ T5879]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3411.128369][ T5879]  wiphy_register+0x1f88/0x2ae0
[ 3411.133259][ T5879]  ? wiphy_unregister+0xb40/0xb40
[ 3411.138313][ T5879]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3411.143460][ T5879]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3411.149475][ T5879]  ieee80211_register_hw+0x23c1/0x40e0
[ 3411.154982][ T5879]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3411.160560][ T5879]  ? debug_object_free+0x360/0x360
[ 3411.165695][ T5879]  ? lockdep_init_map_type+0x21e/0x810
[ 3411.171182][ T5879]  ? __hrtimer_init+0x145/0x280
[ 3411.176065][ T5879]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3411.181859][ T5879]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3411.188575][ T5879]  hwsim_new_radio_nl+0xad6/0x1210
[ 3411.193762][ T5879]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3411.199694][ T5879]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3411.207099][ T5879]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3411.214408][ T5879]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3411.220584][ T5879]  ? genl_start+0x660/0x660
[ 3411.225113][ T5879]  ? ns_capable+0xe0/0x110
[ 3411.229563][ T5879]  genl_rcv_msg+0x4ff/0x7e0
[ 3411.234086][ T5879]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3411.240434][ T5879]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3411.246363][ T5879]  netlink_rcv_skb+0x165/0x440
[ 3411.251156][ T5879]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3411.257505][ T5879]  ? netlink_ack+0x1360/0x1360
[ 3411.262353][ T5879]  genl_rcv+0x28/0x40
[ 3411.266379][ T5879]  netlink_unicast+0x547/0x7f0
[ 3411.271177][ T5879]  ? netlink_attachskb+0x890/0x890
[ 3411.276333][ T5879]  ? __virt_addr_valid+0x61/0x2e0
[ 3411.281409][ T5879]  ? __phys_addr_symbol+0x30/0x70
[ 3411.286458][ T5879]  ? __check_object_size+0x323/0x730
[ 3411.291773][ T5879]  netlink_sendmsg+0x925/0xe30
[ 3411.296572][ T5879]  ? netlink_unicast+0x7f0/0x7f0
[ 3411.301567][ T5879]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3411.306899][ T5879]  ? netlink_unicast+0x7f0/0x7f0
[ 3411.311885][ T5879]  sock_sendmsg+0xde/0x190
[ 3411.316341][ T5879]  ____sys_sendmsg+0x71c/0x900
[ 3411.321142][ T5879]  ? copy_msghdr_from_user+0xfc/0x150
[ 3411.326539][ T5879]  ? kernel_sendmsg+0x50/0x50
[ 3411.331268][ T5879]  ___sys_sendmsg+0x110/0x1b0
[ 3411.335966][ T5879]  ? do_recvmmsg+0x6e0/0x6e0
[ 3411.340578][ T5879]  ? __fget_files+0x248/0x480
[ 3411.345274][ T5879]  ? lock_downgrade+0x690/0x690
[ 3411.350149][ T5879]  ? futex_wake_mark+0x1a0/0x1a0
[ 3411.355125][ T5879]  ? __fget_files+0x26a/0x480
[ 3411.359824][ T5879]  ? __fget_light+0xe5/0x270
[ 3411.364436][ T5879]  __sys_sendmsg+0xf7/0x1c0
[ 3411.368954][ T5879]  ? __sys_sendmsg_sock+0x40/0x40
[ 3411.374003][ T5879]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3411.379940][ T5879]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3411.385860][ T5879]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3411.391084][ T5879]  do_syscall_64+0x39/0xb0
[ 3411.395527][ T5879]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3411.401484][ T5879] RIP: 0033:0x7f837868c169
[ 3411.405959][ T5879] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3411.425607][ T5879] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3411.434074][ T5879] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3411.442078][ T5879] RDX: 48e0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3411.450067][ T5879] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3411.458070][ T5879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3411.466053][ T5879] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3411.474062][ T5879]  </TASK>
07:14:04 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:04 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9000000}}}}]}, 0x78}}, 0x131c)

07:14:04 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) (async, rerun: 64)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000180)='ns/pid\x00') (rerun: 64)
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000200)={0x5, 0x5, 0x5})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="6ca5200008000000e0ffffffffffffff"], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}, 0x80) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) (async)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) (async, rerun: 32)
r4 = socket$inet_sctp(0x2, 0x5, 0x84) (rerun: 32)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r5=>0x0]}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, &(0x7f0000001500)={r5}, &(0x7f00000015c0)=0x8) (async)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000000)={r5, 0xeb, 0x20}, 0xc) (async)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r7, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f0000000080)={0x1, [0x0]}, &(0x7f00000000c0)=0x8)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r6, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:04 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x2000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:04 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:04 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x49e0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3411.557599][ T5891] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
07:14:04 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xa000000}}}}]}, 0x78}}, 0x131c)

[ 3411.598585][ T5891] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3411.621768][ T5891] CPU: 0 PID: 5891 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3411.632175][ T5891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3411.642271][ T5891] Call Trace:
[ 3411.645576][ T5891]  <TASK>
[ 3411.648534][ T5891]  dump_stack_lvl+0x136/0x150
[ 3411.653260][ T5891]  sysfs_warn_dup+0x80/0xa0
[ 3411.657808][ T5891]  sysfs_do_create_link_sd+0x11e/0x140
[ 3411.663321][ T5891]  sysfs_create_link+0x63/0xc0
[ 3411.668134][ T5891]  device_add+0x5e5/0x1c50
[ 3411.672612][ T5891]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3411.679518][ T5891]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3411.685460][ T5891]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3411.691514][ T5891]  wiphy_register+0x1f88/0x2ae0
[ 3411.696438][ T5891]  ? wiphy_unregister+0xb40/0xb40
[ 3411.701515][ T5891]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3411.706694][ T5891]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3411.712736][ T5891]  ieee80211_register_hw+0x23c1/0x40e0
[ 3411.718258][ T5891]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3411.723855][ T5891]  ? debug_object_free+0x360/0x360
[ 3411.729004][ T5891]  ? lockdep_init_map_type+0x21e/0x810
[ 3411.734500][ T5891]  ? __hrtimer_init+0x145/0x280
[ 3411.739387][ T5891]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3411.745169][ T5891]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3411.751890][ T5891]  hwsim_new_radio_nl+0xad6/0x1210
[ 3411.757037][ T5891]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3411.762967][ T5891]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3411.770355][ T5891]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3411.777661][ T5891]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3411.783835][ T5891]  ? genl_start+0x660/0x660
[ 3411.788362][ T5891]  ? ns_capable+0xe0/0x110
[ 3411.792812][ T5891]  genl_rcv_msg+0x4ff/0x7e0
[ 3411.797333][ T5891]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3411.803680][ T5891]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3411.809614][ T5891]  netlink_rcv_skb+0x165/0x440
[ 3411.814413][ T5891]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3411.820762][ T5891]  ? netlink_ack+0x1360/0x1360
[ 3411.825581][ T5891]  genl_rcv+0x28/0x40
[ 3411.829592][ T5891]  netlink_unicast+0x547/0x7f0
[ 3411.834390][ T5891]  ? netlink_attachskb+0x890/0x890
[ 3411.839530][ T5891]  ? __virt_addr_valid+0x61/0x2e0
[ 3411.844582][ T5891]  ? __phys_addr_symbol+0x30/0x70
[ 3411.849634][ T5891]  ? __check_object_size+0x323/0x730
[ 3411.854949][ T5891]  netlink_sendmsg+0x925/0xe30
[ 3411.859751][ T5891]  ? netlink_unicast+0x7f0/0x7f0
[ 3411.864725][ T5891]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3411.870041][ T5891]  ? netlink_unicast+0x7f0/0x7f0
[ 3411.875008][ T5891]  sock_sendmsg+0xde/0x190
[ 3411.879480][ T5891]  ____sys_sendmsg+0x71c/0x900
[ 3411.884313][ T5891]  ? copy_msghdr_from_user+0xfc/0x150
[ 3411.889716][ T5891]  ? kernel_sendmsg+0x50/0x50
[ 3411.894440][ T5891]  ___sys_sendmsg+0x110/0x1b0
[ 3411.899136][ T5891]  ? do_recvmmsg+0x6e0/0x6e0
[ 3411.903765][ T5891]  ? __fget_files+0x248/0x480
[ 3411.908459][ T5891]  ? lock_downgrade+0x690/0x690
[ 3411.913348][ T5891]  ? futex_wake_mark+0x1a0/0x1a0
[ 3411.918321][ T5891]  ? __fget_files+0x26a/0x480
[ 3411.923021][ T5891]  ? __fget_light+0xe5/0x270
[ 3411.927652][ T5891]  __sys_sendmsg+0xf7/0x1c0
[ 3411.932172][ T5891]  ? __sys_sendmsg_sock+0x40/0x40
[ 3411.937217][ T5891]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3411.943156][ T5891]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3411.949078][ T5891]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3411.954302][ T5891]  do_syscall_64+0x39/0xb0
[ 3411.958748][ T5891]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3411.964665][ T5891] RIP: 0033:0x7fb4bf08c169
[ 3411.969096][ T5891] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3411.988721][ T5891] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
07:14:05 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3411.997169][ T5891] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3412.005151][ T5891] RDX: 0000000000002000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3412.013155][ T5891] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3412.021146][ T5891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3412.029132][ T5891] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3412.037135][ T5891]  </TASK>
07:14:05 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x20de)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3412.113228][ T5894] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:05 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xb000000}}}}]}, 0x78}}, 0x131c)

07:14:05 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x65580000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3412.182219][ T5894] sysfs: cannot create duplicate filename '/class/ieee80211/!'
07:14:05 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'syztnl2\x00', &(0x7f0000000080)={'ip6gre0\x00', <r3=>0x0, 0x2f, 0x1, 0x8, 0xffffffc0, 0x4, @local, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x40, 0x8000, 0x40, 0x1}})
sendmsg$nl_route(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=@bridge_newvlan={0x7c, 0x70, 0x4, 0x70bd25, 0x25dfdbfe, {0x7, 0x0, 0x0, r3}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_RANGE={0x6, 0x2, 0xf}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0x1}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_MCAST_ROUTER={0x5, 0x6, 0x1}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_STATE={0x5, 0x3, 0x3}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_MCAST_ROUTER={0x5, 0x6, 0x6}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0x4, 0x1}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_RANGE={0x6, 0x2, 0xe}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_RANGE={0x6, 0x2, 0xd}}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4018010}, 0x4)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r5, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r6]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r8, &(0x7f0000000000), 0x248800)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r9=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r9, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r8, 0xffffffffffffffff, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r11, &(0x7f0000000000), 0x248800)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r12=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r12, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r11, 0xffffffffffffffff, r10, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wg0\x00', <r13=>0x0})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000700)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
preadv(r2, &(0x7f0000000540)=[{&(0x7f00000005c0)=""/82, 0x52}, {&(0x7f0000000640)=""/107, 0x6b}, {&(0x7f0000001bc0)=""/4096, 0x1000}], 0x3, 0xfffffff9, 0x40)
sendmsg$nl_route(r5, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000740)=@RTM_NEWMDB={0xd8, 0x54, 0x1200, 0x70bd27, 0x25dfdbfd, {0x7, r9}, [@MDBA_SET_ENTRY={0x20, 0x1, {r12, 0x0, 0x2, 0x0, {@in6_addr=@dev={0xfe, 0x80, '\x00', 0x10}, 0x86dd}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r3, 0x1, 0x1, 0x1, {@in6_addr=@empty, 0x800}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r13, 0x1, 0x1, 0x0, {@in6_addr=@private2={0xfc, 0x2, '\x00', 0xfd}, 0x82dd}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x0, 0x4, {@ip4=@private=0xa010101, 0x18b67}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r3, 0x1, 0x2, 0x3, {@ip4=@multicast1, 0x800}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x0, 0x2, 0x0, {@in6_addr=@private1, 0x800}}}]}, 0xd8}, 0x1, 0x0, 0x0, 0x8004}, 0x40800)
r14 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r14, &(0x7f0000000040)={0x1f, 0x4, 0x2}, 0x6)
bind$bt_hci(r4, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3412.225603][ T5894] CPU: 1 PID: 5894 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3412.236005][ T5894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3412.246096][ T5894] Call Trace:
[ 3412.249409][ T5894]  <TASK>
[ 3412.252369][ T5894]  dump_stack_lvl+0x136/0x150
[ 3412.257095][ T5894]  sysfs_warn_dup+0x80/0xa0
[ 3412.261647][ T5894]  sysfs_do_create_link_sd+0x11e/0x140
[ 3412.267157][ T5894]  sysfs_create_link+0x63/0xc0
[ 3412.271970][ T5894]  device_add+0x5e5/0x1c50
[ 3412.276446][ T5894]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3412.283348][ T5894]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3412.289293][ T5894]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3412.295346][ T5894]  wiphy_register+0x1f88/0x2ae0
[ 3412.300261][ T5894]  ? wiphy_unregister+0xb40/0xb40
[ 3412.305330][ T5894]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3412.310519][ T5894]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3412.316565][ T5894]  ieee80211_register_hw+0x23c1/0x40e0
[ 3412.322084][ T5894]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3412.327678][ T5894]  ? debug_object_free+0x360/0x360
[ 3412.332830][ T5894]  ? lockdep_init_map_type+0x21e/0x810
[ 3412.338342][ T5894]  ? __hrtimer_init+0x145/0x280
[ 3412.343248][ T5894]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3412.349033][ T5894]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3412.355768][ T5894]  hwsim_new_radio_nl+0xad6/0x1210
[ 3412.360932][ T5894]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3412.366884][ T5894]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3412.374295][ T5894]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3412.381628][ T5894]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3412.387832][ T5894]  ? genl_start+0x660/0x660
[ 3412.392385][ T5894]  ? ns_capable+0xe0/0x110
[ 3412.396855][ T5894]  genl_rcv_msg+0x4ff/0x7e0
[ 3412.401397][ T5894]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3412.407759][ T5894]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3412.413716][ T5894]  netlink_rcv_skb+0x165/0x440
[ 3412.418538][ T5894]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3412.424914][ T5894]  ? netlink_ack+0x1360/0x1360
[ 3412.429761][ T5894]  genl_rcv+0x28/0x40
[ 3412.433794][ T5894]  netlink_unicast+0x547/0x7f0
[ 3412.438618][ T5894]  ? netlink_attachskb+0x890/0x890
[ 3412.443782][ T5894]  ? __virt_addr_valid+0x61/0x2e0
[ 3412.448856][ T5894]  ? __phys_addr_symbol+0x30/0x70
[ 3412.453931][ T5894]  ? __check_object_size+0x323/0x730
[ 3412.459272][ T5894]  netlink_sendmsg+0x925/0xe30
[ 3412.464095][ T5894]  ? netlink_unicast+0x7f0/0x7f0
[ 3412.469095][ T5894]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3412.474430][ T5894]  ? netlink_unicast+0x7f0/0x7f0
[ 3412.479420][ T5894]  sock_sendmsg+0xde/0x190
[ 3412.483887][ T5894]  ____sys_sendmsg+0x71c/0x900
[ 3412.488703][ T5894]  ? copy_msghdr_from_user+0xfc/0x150
[ 3412.494116][ T5894]  ? kernel_sendmsg+0x50/0x50
[ 3412.498862][ T5894]  ___sys_sendmsg+0x110/0x1b0
[ 3412.503587][ T5894]  ? do_recvmmsg+0x6e0/0x6e0
[ 3412.508217][ T5894]  ? __fget_files+0x248/0x480
[ 3412.512934][ T5894]  ? lock_downgrade+0x690/0x690
[ 3412.517830][ T5894]  ? futex_wake_mark+0x1a0/0x1a0
[ 3412.522914][ T5894]  ? __fget_files+0x26a/0x480
[ 3412.527636][ T5894]  ? __fget_light+0xe5/0x270
[ 3412.532276][ T5894]  __sys_sendmsg+0xf7/0x1c0
[ 3412.536819][ T5894]  ? __sys_sendmsg_sock+0x40/0x40
[ 3412.541885][ T5894]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3412.547846][ T5894]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3412.553789][ T5894]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3412.559038][ T5894]  do_syscall_64+0x39/0xb0
[ 3412.563510][ T5894]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3412.569462][ T5894] RIP: 0033:0x7f837868c169
[ 3412.573914][ T5894] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3412.593567][ T5894] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3412.602017][ T5894] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3412.610022][ T5894] RDX: 49e0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3412.618027][ T5894] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3412.626030][ T5894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3412.634032][ T5894] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3412.642063][ T5894]  </TASK>
[ 3412.698421][ T5910] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3412.740072][ T5910] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3412.758890][ T5910] CPU: 1 PID: 5910 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3412.769296][ T5910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3412.779388][ T5910] Call Trace:
[ 3412.782687][ T5910]  <TASK>
[ 3412.785654][ T5910]  dump_stack_lvl+0x136/0x150
[ 3412.790379][ T5910]  sysfs_warn_dup+0x80/0xa0
[ 3412.794947][ T5910]  sysfs_do_create_link_sd+0x11e/0x140
[ 3412.800454][ T5910]  sysfs_create_link+0x63/0xc0
[ 3412.805266][ T5910]  device_add+0x5e5/0x1c50
[ 3412.809739][ T5910]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3412.816638][ T5910]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3412.822578][ T5910]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3412.828632][ T5910]  wiphy_register+0x1f88/0x2ae0
[ 3412.833556][ T5910]  ? wiphy_unregister+0xb40/0xb40
[ 3412.838653][ T5910]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3412.843837][ T5910]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3412.849873][ T5910]  ieee80211_register_hw+0x23c1/0x40e0
[ 3412.855407][ T5910]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3412.861000][ T5910]  ? debug_object_free+0x360/0x360
[ 3412.866161][ T5910]  ? lockdep_init_map_type+0x21e/0x810
[ 3412.871664][ T5910]  ? __hrtimer_init+0x145/0x280
[ 3412.876569][ T5910]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3412.882345][ T5910]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3412.889062][ T5910]  hwsim_new_radio_nl+0xad6/0x1210
[ 3412.894230][ T5910]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3412.900160][ T5910]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3412.907554][ T5910]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3412.914862][ T5910]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3412.921041][ T5910]  ? genl_start+0x660/0x660
[ 3412.925572][ T5910]  ? ns_capable+0xe0/0x110
[ 3412.930025][ T5910]  genl_rcv_msg+0x4ff/0x7e0
[ 3412.934550][ T5910]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3412.940898][ T5910]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3412.946830][ T5910]  netlink_rcv_skb+0x165/0x440
[ 3412.951629][ T5910]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3412.957977][ T5910]  ? netlink_ack+0x1360/0x1360
[ 3412.962804][ T5910]  genl_rcv+0x28/0x40
[ 3412.966819][ T5910]  netlink_unicast+0x547/0x7f0
[ 3412.971620][ T5910]  ? netlink_attachskb+0x890/0x890
[ 3412.976785][ T5910]  ? __virt_addr_valid+0x61/0x2e0
[ 3412.981838][ T5910]  ? __phys_addr_symbol+0x30/0x70
[ 3412.986891][ T5910]  ? __check_object_size+0x323/0x730
[ 3412.992206][ T5910]  netlink_sendmsg+0x925/0xe30
[ 3412.997008][ T5910]  ? netlink_unicast+0x7f0/0x7f0
[ 3413.001985][ T5910]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3413.007299][ T5910]  ? netlink_unicast+0x7f0/0x7f0
[ 3413.012629][ T5910]  sock_sendmsg+0xde/0x190
[ 3413.017076][ T5910]  ____sys_sendmsg+0x71c/0x900
[ 3413.021870][ T5910]  ? copy_msghdr_from_user+0xfc/0x150
[ 3413.027262][ T5910]  ? kernel_sendmsg+0x50/0x50
[ 3413.032001][ T5910]  ___sys_sendmsg+0x110/0x1b0
[ 3413.036725][ T5910]  ? do_recvmmsg+0x6e0/0x6e0
[ 3413.041365][ T5910]  ? __fget_files+0x248/0x480
[ 3413.046093][ T5910]  ? lock_downgrade+0x690/0x690
[ 3413.050978][ T5910]  ? futex_wake_mark+0x1a0/0x1a0
[ 3413.055972][ T5910]  ? __fget_files+0x26a/0x480
[ 3413.060693][ T5910]  ? __fget_light+0xe5/0x270
[ 3413.065316][ T5910]  __sys_sendmsg+0xf7/0x1c0
[ 3413.069843][ T5910]  ? __sys_sendmsg_sock+0x40/0x40
[ 3413.074888][ T5910]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3413.080846][ T5910]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3413.086763][ T5910]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3413.091988][ T5910]  do_syscall_64+0x39/0xb0
[ 3413.096437][ T5910]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3413.102357][ T5910] RIP: 0033:0x7fb4bf08c169
[ 3413.106784][ T5910] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3413.126424][ T5910] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
07:14:06 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:06 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x4ae0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:06 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x7f000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:06 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc000000}}}}]}, 0x78}}, 0x131c)

07:14:06 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}, 0x80) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) (async)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'syztnl2\x00', &(0x7f0000000080)={'ip6gre0\x00', <r3=>0x0, 0x2f, 0x1, 0x8, 0xffffffc0, 0x4, @local, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x40, 0x8000, 0x40, 0x1}})
sendmsg$nl_route(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=@bridge_newvlan={0x7c, 0x70, 0x4, 0x70bd25, 0x25dfdbfe, {0x7, 0x0, 0x0, r3}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_RANGE={0x6, 0x2, 0xf}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0x1}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_MCAST_ROUTER={0x5, 0x6, 0x1}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_STATE={0x5, 0x3, 0x3}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_MCAST_ROUTER={0x5, 0x6, 0x6}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0x4, 0x1}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_RANGE={0x6, 0x2, 0xe}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_RANGE={0x6, 0x2, 0xd}}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4018010}, 0x4)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r5, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r6]}, 0x80) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0) (async)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) (async)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r8, &(0x7f0000000000), 0x248800) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r9=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r9, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r8, 0xffffffffffffffff, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r11, &(0x7f0000000000), 0x248800)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r12=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r12, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r11, 0xffffffffffffffff, r10, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wg0\x00', <r13=>0x0})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000700)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) (async)
preadv(r2, &(0x7f0000000540)=[{&(0x7f00000005c0)=""/82, 0x52}, {&(0x7f0000000640)=""/107, 0x6b}, {&(0x7f0000001bc0)=""/4096, 0x1000}], 0x3, 0xfffffff9, 0x40) (async)
sendmsg$nl_route(r5, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000740)=@RTM_NEWMDB={0xd8, 0x54, 0x1200, 0x70bd27, 0x25dfdbfd, {0x7, r9}, [@MDBA_SET_ENTRY={0x20, 0x1, {r12, 0x0, 0x2, 0x0, {@in6_addr=@dev={0xfe, 0x80, '\x00', 0x10}, 0x86dd}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r3, 0x1, 0x1, 0x1, {@in6_addr=@empty, 0x800}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r13, 0x1, 0x1, 0x0, {@in6_addr=@private2={0xfc, 0x2, '\x00', 0xfd}, 0x82dd}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x0, 0x4, {@ip4=@private=0xa010101, 0x18b67}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r3, 0x1, 0x2, 0x3, {@ip4=@multicast1, 0x800}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x0, 0x2, 0x0, {@in6_addr=@private1, 0x800}}}]}, 0xd8}, 0x1, 0x0, 0x0, 0x8004}, 0x40800) (async)
r14 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r14, &(0x7f0000000040)={0x1f, 0x4, 0x2}, 0x6) (async)
bind$bt_hci(r4, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3413.134864][ T5910] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3413.142856][ T5910] RDX: 00000000000020de RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3413.150847][ T5910] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3413.158832][ T5910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3413.166819][ T5910] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3413.174835][ T5910]  </TASK>
07:14:06 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'syztnl2\x00', &(0x7f0000000080)={'ip6gre0\x00', <r3=>0x0, 0x2f, 0x1, 0x8, 0xffffffc0, 0x4, @local, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x40, 0x8000, 0x40, 0x1}})
sendmsg$nl_route(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=@bridge_newvlan={0x7c, 0x70, 0x4, 0x70bd25, 0x25dfdbfe, {0x7, 0x0, 0x0, r3}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_RANGE={0x6, 0x2, 0xf}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0x1}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_MCAST_ROUTER={0x5, 0x6, 0x1}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_STATE={0x5, 0x3, 0x3}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_MCAST_ROUTER={0x5, 0x6, 0x6}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0x4, 0x1}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_RANGE={0x6, 0x2, 0xe}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_RANGE={0x6, 0x2, 0xd}}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4018010}, 0x4) (async)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r5, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r6]}, 0x80) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0) (async)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) (async)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r8, &(0x7f0000000000), 0x248800) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r9=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r9, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r8, 0xffffffffffffffff, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) (async)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) (async)
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r11, &(0x7f0000000000), 0x248800) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r12=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r12, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r11, 0xffffffffffffffff, r10, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) (async)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wg0\x00', <r13=>0x0})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000700)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) (async)
preadv(r2, &(0x7f0000000540)=[{&(0x7f00000005c0)=""/82, 0x52}, {&(0x7f0000000640)=""/107, 0x6b}, {&(0x7f0000001bc0)=""/4096, 0x1000}], 0x3, 0xfffffff9, 0x40) (async)
sendmsg$nl_route(r5, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000740)=@RTM_NEWMDB={0xd8, 0x54, 0x1200, 0x70bd27, 0x25dfdbfd, {0x7, r9}, [@MDBA_SET_ENTRY={0x20, 0x1, {r12, 0x0, 0x2, 0x0, {@in6_addr=@dev={0xfe, 0x80, '\x00', 0x10}, 0x86dd}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r3, 0x1, 0x1, 0x1, {@in6_addr=@empty, 0x800}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r13, 0x1, 0x1, 0x0, {@in6_addr=@private2={0xfc, 0x2, '\x00', 0xfd}, 0x82dd}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x0, 0x4, {@ip4=@private=0xa010101, 0x18b67}}}, @MDBA_SET_ENTRY={0x20, 0x1, {r3, 0x1, 0x2, 0x3, {@ip4=@multicast1, 0x800}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x0, 0x2, 0x0, {@in6_addr=@private1, 0x800}}}]}, 0xd8}, 0x1, 0x0, 0x0, 0x8004}, 0x40800)
r14 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r14, &(0x7f0000000040)={0x1f, 0x4, 0x2}, 0x6) (async)
bind$bt_hci(r4, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3413.245111][ T5935] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3413.307371][ T5935] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3413.323915][ T5935] CPU: 0 PID: 5935 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3413.334328][ T5935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3413.344421][ T5935] Call Trace:
[ 3413.347728][ T5935]  <TASK>
[ 3413.350689][ T5935]  dump_stack_lvl+0x136/0x150
[ 3413.355414][ T5935]  sysfs_warn_dup+0x80/0xa0
[ 3413.359963][ T5935]  sysfs_do_create_link_sd+0x11e/0x140
[ 3413.365482][ T5935]  sysfs_create_link+0x63/0xc0
[ 3413.370291][ T5935]  device_add+0x5e5/0x1c50
[ 3413.374786][ T5935]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3413.381691][ T5935]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3413.387638][ T5935]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3413.393688][ T5935]  wiphy_register+0x1f88/0x2ae0
[ 3413.398612][ T5935]  ? wiphy_unregister+0xb40/0xb40
[ 3413.403690][ T5935]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3413.408869][ T5935]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3413.414925][ T5935]  ieee80211_register_hw+0x23c1/0x40e0
[ 3413.420453][ T5935]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3413.426043][ T5935]  ? net_generic+0xd9/0x2a0
[ 3413.430593][ T5935]  ? debug_object_free+0x360/0x360
[ 3413.435768][ T5935]  ? lockdep_init_map_type+0x21e/0x810
[ 3413.441275][ T5935]  ? __hrtimer_init+0x145/0x280
[ 3413.446169][ T5935]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3413.452026][ T5935]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3413.458740][ T5935]  hwsim_new_radio_nl+0xad6/0x1210
[ 3413.463881][ T5935]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3413.469815][ T5935]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3413.477223][ T5935]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3413.484536][ T5935]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3413.490732][ T5935]  ? genl_start+0x660/0x660
[ 3413.495267][ T5935]  ? ns_capable+0xe0/0x110
[ 3413.499720][ T5935]  genl_rcv_msg+0x4ff/0x7e0
[ 3413.504241][ T5935]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3413.510595][ T5935]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3413.516518][ T5935]  ? lock_downgrade+0x690/0x690
[ 3413.521395][ T5935]  netlink_rcv_skb+0x165/0x440
[ 3413.526189][ T5935]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3413.532536][ T5935]  ? netlink_ack+0x1360/0x1360
[ 3413.537360][ T5935]  genl_rcv+0x28/0x40
[ 3413.541371][ T5935]  netlink_unicast+0x547/0x7f0
[ 3413.546182][ T5935]  ? netlink_attachskb+0x890/0x890
[ 3413.551324][ T5935]  ? __virt_addr_valid+0x61/0x2e0
[ 3413.556378][ T5935]  ? __phys_addr_symbol+0x30/0x70
[ 3413.561429][ T5935]  ? __check_object_size+0x323/0x730
[ 3413.566741][ T5935]  netlink_sendmsg+0x925/0xe30
[ 3413.571539][ T5935]  ? netlink_unicast+0x7f0/0x7f0
[ 3413.576511][ T5935]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3413.581823][ T5935]  ? netlink_unicast+0x7f0/0x7f0
[ 3413.586790][ T5935]  sock_sendmsg+0xde/0x190
[ 3413.591247][ T5935]  ____sys_sendmsg+0x71c/0x900
[ 3413.596056][ T5935]  ? copy_msghdr_from_user+0xfc/0x150
[ 3413.601459][ T5935]  ? kernel_sendmsg+0x50/0x50
[ 3413.606182][ T5935]  ___sys_sendmsg+0x110/0x1b0
[ 3413.610878][ T5935]  ? do_recvmmsg+0x6e0/0x6e0
[ 3413.615491][ T5935]  ? __fget_files+0x248/0x480
[ 3413.620185][ T5935]  ? lock_downgrade+0x690/0x690
[ 3413.625060][ T5935]  ? futex_wake_mark+0x1a0/0x1a0
[ 3413.630035][ T5935]  ? __fget_files+0x26a/0x480
[ 3413.634733][ T5935]  ? __fget_light+0xe5/0x270
[ 3413.639348][ T5935]  __sys_sendmsg+0xf7/0x1c0
[ 3413.643870][ T5935]  ? __sys_sendmsg_sock+0x40/0x40
[ 3413.648925][ T5935]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3413.654881][ T5935]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3413.660803][ T5935]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3413.666026][ T5935]  do_syscall_64+0x39/0xb0
[ 3413.670477][ T5935]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3413.676398][ T5935] RIP: 0033:0x7f837868c169
[ 3413.680831][ T5935] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3413.700458][ T5935] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
07:14:06 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x81000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:06 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe000000}}}}]}, 0x78}}, 0x131c)

[ 3413.708890][ T5935] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3413.716878][ T5935] RDX: 4ae0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3413.724867][ T5935] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3413.732854][ T5935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3413.740838][ T5935] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3413.748840][ T5935]  </TASK>
07:14:06 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x2e12)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:07 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0xfffb, 0x2}, 0x6)

07:14:07 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x4be0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:07 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x87360000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3413.960908][ T5960] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3414.007709][ T5960] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3414.024166][ T5960] CPU: 0 PID: 5960 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3414.034568][ T5960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3414.044660][ T5960] Call Trace:
[ 3414.047977][ T5960]  <TASK>
[ 3414.050934][ T5960]  dump_stack_lvl+0x136/0x150
[ 3414.055677][ T5960]  sysfs_warn_dup+0x80/0xa0
[ 3414.060229][ T5960]  sysfs_do_create_link_sd+0x11e/0x140
[ 3414.065740][ T5960]  sysfs_create_link+0x63/0xc0
[ 3414.070551][ T5960]  device_add+0x5e5/0x1c50
[ 3414.075028][ T5960]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3414.081936][ T5960]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3414.087888][ T5960]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3414.093937][ T5960]  wiphy_register+0x1f88/0x2ae0
[ 3414.098854][ T5960]  ? wiphy_unregister+0xb40/0xb40
[ 3414.103928][ T5960]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3414.109103][ T5960]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3414.115144][ T5960]  ieee80211_register_hw+0x23c1/0x40e0
[ 3414.120668][ T5960]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3414.126262][ T5960]  ? debug_object_free+0x360/0x360
[ 3414.131422][ T5960]  ? lockdep_init_map_type+0x21e/0x810
[ 3414.136942][ T5960]  ? __hrtimer_init+0x145/0x280
[ 3414.141847][ T5960]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3414.147640][ T5960]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
07:14:07 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:07 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10000000}}}}]}, 0x78}}, 0x131c)

07:14:07 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0xfffb, 0x2}, 0x6)

[ 3414.154382][ T5960]  hwsim_new_radio_nl+0xad6/0x1210
[ 3414.159554][ T5960]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3414.165508][ T5960]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3414.172929][ T5960]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3414.180269][ T5960]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3414.186487][ T5960]  ? genl_start+0x660/0x660
[ 3414.191037][ T5960]  ? ns_capable+0xe0/0x110
[ 3414.195509][ T5960]  genl_rcv_msg+0x4ff/0x7e0
[ 3414.200067][ T5960]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3414.206445][ T5960]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3414.212402][ T5960]  ? lock_downgrade+0x690/0x690
[ 3414.217307][ T5960]  netlink_rcv_skb+0x165/0x440
[ 3414.222129][ T5960]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3414.228501][ T5960]  ? netlink_ack+0x1360/0x1360
[ 3414.233349][ T5960]  genl_rcv+0x28/0x40
[ 3414.237388][ T5960]  netlink_unicast+0x547/0x7f0
[ 3414.242216][ T5960]  ? netlink_attachskb+0x890/0x890
[ 3414.247387][ T5960]  ? __virt_addr_valid+0x61/0x2e0
[ 3414.252477][ T5960]  ? __phys_addr_symbol+0x30/0x70
[ 3414.257559][ T5960]  ? __check_object_size+0x323/0x730
[ 3414.262901][ T5960]  netlink_sendmsg+0x925/0xe30
[ 3414.267733][ T5960]  ? netlink_unicast+0x7f0/0x7f0
[ 3414.272736][ T5960]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3414.278071][ T5960]  ? netlink_unicast+0x7f0/0x7f0
[ 3414.283061][ T5960]  sock_sendmsg+0xde/0x190
[ 3414.287538][ T5960]  ____sys_sendmsg+0x71c/0x900
[ 3414.292363][ T5960]  ? copy_msghdr_from_user+0xfc/0x150
[ 3414.297777][ T5960]  ? kernel_sendmsg+0x50/0x50
[ 3414.302535][ T5960]  ___sys_sendmsg+0x110/0x1b0
[ 3414.307256][ T5960]  ? do_recvmmsg+0x6e0/0x6e0
[ 3414.311894][ T5960]  ? __fget_files+0x248/0x480
[ 3414.316606][ T5960]  ? lock_downgrade+0x690/0x690
[ 3414.321498][ T5960]  ? futex_wake_mark+0x1a0/0x1a0
[ 3414.326490][ T5960]  ? __fget_files+0x26a/0x480
[ 3414.331211][ T5960]  ? __fget_light+0xe5/0x270
[ 3414.335850][ T5960]  __sys_sendmsg+0xf7/0x1c0
[ 3414.340394][ T5960]  ? __sys_sendmsg_sock+0x40/0x40
[ 3414.345462][ T5960]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3414.351421][ T5960]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3414.357363][ T5960]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3414.362604][ T5960]  do_syscall_64+0x39/0xb0
[ 3414.367072][ T5960]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3414.373012][ T5960] RIP: 0033:0x7fb4bf08c169
[ 3414.377462][ T5960] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3414.397111][ T5960] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
07:14:07 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0xfffb, 0x2}, 0x6)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0xfffb, 0x2}, 0x6) (async)

[ 3414.405569][ T5960] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3414.413583][ T5960] RDX: 0000000000002e12 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3414.421592][ T5960] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3414.429607][ T5960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3414.437617][ T5960] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3414.445650][ T5960]  </TASK>
07:14:07 executing program 5:
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x51727000)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:07 executing program 5:
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x51727000)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x51727000) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)

07:14:07 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x11000000}}}}]}, 0x78}}, 0x131c)

[ 3414.620265][ T5963] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:07 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x88a8ffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3414.665939][ T5963] sysfs: cannot create duplicate filename '/class/ieee80211/!'
07:14:07 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x3f00)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:07 executing program 5:
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x51727000)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3414.707750][ T5963] CPU: 0 PID: 5963 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3414.718156][ T5963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3414.728248][ T5963] Call Trace:
[ 3414.731557][ T5963]  <TASK>
[ 3414.734515][ T5963]  dump_stack_lvl+0x136/0x150
[ 3414.739244][ T5963]  sysfs_warn_dup+0x80/0xa0
[ 3414.743792][ T5963]  sysfs_do_create_link_sd+0x11e/0x140
[ 3414.749290][ T5963]  sysfs_create_link+0x63/0xc0
[ 3414.754099][ T5963]  device_add+0x5e5/0x1c50
[ 3414.758572][ T5963]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3414.765485][ T5963]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3414.771430][ T5963]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3414.777485][ T5963]  wiphy_register+0x1f88/0x2ae0
[ 3414.782407][ T5963]  ? wiphy_unregister+0xb40/0xb40
[ 3414.787484][ T5963]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3414.792666][ T5963]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3414.798716][ T5963]  ieee80211_register_hw+0x23c1/0x40e0
[ 3414.804245][ T5963]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3414.809847][ T5963]  ? debug_object_free+0x360/0x360
[ 3414.815010][ T5963]  ? lockdep_init_map_type+0x21e/0x810
[ 3414.820524][ T5963]  ? __hrtimer_init+0x145/0x280
[ 3414.825430][ T5963]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3414.831220][ T5963]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3414.837958][ T5963]  hwsim_new_radio_nl+0xad6/0x1210
[ 3414.843123][ T5963]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3414.849081][ T5963]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3414.856495][ T5963]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3414.863831][ T5963]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3414.870024][ T5963]  ? genl_start+0x660/0x660
[ 3414.874575][ T5963]  ? ns_capable+0xe0/0x110
[ 3414.879043][ T5963]  genl_rcv_msg+0x4ff/0x7e0
[ 3414.883587][ T5963]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3414.889960][ T5963]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3414.895925][ T5963]  netlink_rcv_skb+0x165/0x440
[ 3414.900749][ T5963]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3414.907132][ T5963]  ? netlink_ack+0x1360/0x1360
[ 3414.911989][ T5963]  genl_rcv+0x28/0x40
[ 3414.916032][ T5963]  netlink_unicast+0x547/0x7f0
[ 3414.920844][ T5963]  ? netlink_attachskb+0x890/0x890
[ 3414.926000][ T5963]  ? __virt_addr_valid+0x61/0x2e0
[ 3414.931076][ T5963]  ? __phys_addr_symbol+0x30/0x70
[ 3414.936158][ T5963]  ? __check_object_size+0x323/0x730
[ 3414.941497][ T5963]  netlink_sendmsg+0x925/0xe30
[ 3414.946326][ T5963]  ? netlink_unicast+0x7f0/0x7f0
[ 3414.951328][ T5963]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3414.956658][ T5963]  ? netlink_unicast+0x7f0/0x7f0
[ 3414.961648][ T5963]  sock_sendmsg+0xde/0x190
[ 3414.966119][ T5963]  ____sys_sendmsg+0x71c/0x900
[ 3414.970942][ T5963]  ? copy_msghdr_from_user+0xfc/0x150
[ 3414.976358][ T5963]  ? kernel_sendmsg+0x50/0x50
[ 3414.981106][ T5963]  ___sys_sendmsg+0x110/0x1b0
[ 3414.985822][ T5963]  ? do_recvmmsg+0x6e0/0x6e0
[ 3414.990454][ T5963]  ? __fget_files+0x248/0x480
[ 3414.995167][ T5963]  ? lock_downgrade+0x690/0x690
[ 3415.000060][ T5963]  ? futex_wake_mark+0x1a0/0x1a0
[ 3415.005054][ T5963]  ? __fget_files+0x26a/0x480
[ 3415.009774][ T5963]  ? __fget_light+0xe5/0x270
[ 3415.014419][ T5963]  __sys_sendmsg+0xf7/0x1c0
[ 3415.018972][ T5963]  ? __sys_sendmsg_sock+0x40/0x40
[ 3415.024049][ T5963]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3415.030015][ T5963]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3415.035958][ T5963]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3415.041204][ T5963]  do_syscall_64+0x39/0xb0
[ 3415.045677][ T5963]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3415.051619][ T5963] RIP: 0033:0x7f837868c169
[ 3415.056066][ T5963] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3415.075716][ T5963] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3415.084164][ T5963] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3415.092139][ T5963] RDX: 4be0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3415.100130][ T5963] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3415.108104][ T5963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3415.116096][ T5963] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3415.124104][ T5963]  </TASK>
07:14:08 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x4c00000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:08 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x3}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:08 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:08 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x13000000}}}}]}, 0x78}}, 0x131c)

[ 3415.168819][ T5995] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
07:14:08 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x9effffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:08 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x3}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x3}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)

[ 3415.247526][ T5995] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3415.283776][ T5995] CPU: 0 PID: 5995 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3415.294185][ T5995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3415.304276][ T5995] Call Trace:
[ 3415.307578][ T5995]  <TASK>
[ 3415.310545][ T5995]  dump_stack_lvl+0x136/0x150
[ 3415.315268][ T5995]  sysfs_warn_dup+0x80/0xa0
[ 3415.319810][ T5995]  sysfs_do_create_link_sd+0x11e/0x140
[ 3415.325320][ T5995]  sysfs_create_link+0x63/0xc0
[ 3415.330126][ T5995]  device_add+0x5e5/0x1c50
[ 3415.334597][ T5995]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3415.341499][ T5995]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3415.347441][ T5995]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3415.353484][ T5995]  wiphy_register+0x1f88/0x2ae0
[ 3415.358396][ T5995]  ? wiphy_unregister+0xb40/0xb40
[ 3415.363474][ T5995]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3415.368647][ T5995]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3415.374692][ T5995]  ieee80211_register_hw+0x23c1/0x40e0
[ 3415.380215][ T5995]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3415.385817][ T5995]  ? net_generic+0xd9/0x2a0
[ 3415.390370][ T5995]  ? debug_object_free+0x360/0x360
[ 3415.395538][ T5995]  ? lockdep_init_map_type+0x21e/0x810
[ 3415.401041][ T5995]  ? __hrtimer_init+0x145/0x280
[ 3415.405940][ T5995]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3415.411727][ T5995]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3415.418469][ T5995]  hwsim_new_radio_nl+0xad6/0x1210
[ 3415.423638][ T5995]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3415.429599][ T5995]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3415.437015][ T5995]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
07:14:08 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x3}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3415.444356][ T5995]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3415.450552][ T5995]  ? genl_start+0x660/0x660
[ 3415.455104][ T5995]  ? ns_capable+0xe0/0x110
[ 3415.459575][ T5995]  genl_rcv_msg+0x4ff/0x7e0
[ 3415.464120][ T5995]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3415.470487][ T5995]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3415.476449][ T5995]  ? lock_downgrade+0x690/0x690
[ 3415.481348][ T5995]  netlink_rcv_skb+0x165/0x440
[ 3415.486170][ T5995]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3415.492546][ T5995]  ? netlink_ack+0x1360/0x1360
[ 3415.497404][ T5995]  genl_rcv+0x28/0x40
[ 3415.501439][ T5995]  netlink_unicast+0x547/0x7f0
[ 3415.506262][ T5995]  ? netlink_attachskb+0x890/0x890
[ 3415.511680][ T5995]  ? __virt_addr_valid+0x61/0x2e0
[ 3415.516757][ T5995]  ? __phys_addr_symbol+0x30/0x70
[ 3415.521832][ T5995]  ? __check_object_size+0x323/0x730
[ 3415.527171][ T5995]  netlink_sendmsg+0x925/0xe30
[ 3415.531996][ T5995]  ? netlink_unicast+0x7f0/0x7f0
[ 3415.536998][ T5995]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3415.542330][ T5995]  ? netlink_unicast+0x7f0/0x7f0
[ 3415.547319][ T5995]  sock_sendmsg+0xde/0x190
[ 3415.551787][ T5995]  ____sys_sendmsg+0x71c/0x900
[ 3415.556606][ T5995]  ? copy_msghdr_from_user+0xfc/0x150
[ 3415.562019][ T5995]  ? kernel_sendmsg+0x50/0x50
[ 3415.566769][ T5995]  ___sys_sendmsg+0x110/0x1b0
[ 3415.571496][ T5995]  ? do_recvmmsg+0x6e0/0x6e0
[ 3415.576136][ T5995]  ? __fget_files+0x248/0x480
[ 3415.580849][ T5995]  ? lock_downgrade+0x690/0x690
[ 3415.585746][ T5995]  ? futex_wake_mark+0x1a0/0x1a0
[ 3415.590745][ T5995]  ? __fget_files+0x26a/0x480
[ 3415.595468][ T5995]  ? __fget_light+0xe5/0x270
[ 3415.600102][ T5995]  __sys_sendmsg+0xf7/0x1c0
[ 3415.604640][ T5995]  ? __sys_sendmsg_sock+0x40/0x40
[ 3415.609701][ T5995]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3415.615660][ T5995]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3415.621596][ T5995]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3415.626847][ T5995]  do_syscall_64+0x39/0xb0
[ 3415.631316][ T5995]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3415.637260][ T5995] RIP: 0033:0x7fb4bf08c169
[ 3415.641706][ T5995] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3415.661361][ T5995] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3415.669822][ T5995] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3415.677838][ T5995] RDX: 0000000000003f00 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3415.685850][ T5995] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
07:14:08 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
write$bt_hci(r2, &(0x7f0000000080)={0x1, @write_remote_amp_assoc={{0x140b, 0x70}, {0xc8, 0x12, 0x9, "fc8e0de992c4e1ce1643cefbd6d31532091d4535297cddf8484faa6d5fe8f39c69979a175d83729ce5da1783832020339b5fc830e7265ce5f39b0332f585c901649c65ba8f5a186d6cadd268b3105b708ddec28188bf423289b0983b1548171e7babb4fa112e71c186a2c2"}}}, 0x74)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3415.693859][ T5995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3415.701868][ T5995] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3415.709894][ T5995]  </TASK>
07:14:09 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
write$bt_hci(r2, &(0x7f0000000080)={0x1, @write_remote_amp_assoc={{0x140b, 0x70}, {0xc8, 0x12, 0x9, "fc8e0de992c4e1ce1643cefbd6d31532091d4535297cddf8484faa6d5fe8f39c69979a175d83729ce5da1783832020339b5fc830e7265ce5f39b0332f585c901649c65ba8f5a186d6cadd268b3105b708ddec28188bf423289b0983b1548171e7babb4fa112e71c186a2c2"}}}, 0x74) (async)
write$bt_hci(r2, &(0x7f0000000080)={0x1, @write_remote_amp_assoc={{0x140b, 0x70}, {0xc8, 0x12, 0x9, "fc8e0de992c4e1ce1643cefbd6d31532091d4535297cddf8484faa6d5fe8f39c69979a175d83729ce5da1783832020339b5fc830e7265ce5f39b0332f585c901649c65ba8f5a186d6cadd268b3105b708ddec28188bf423289b0983b1548171e7babb4fa112e71c186a2c2"}}}, 0x74)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:09 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x4000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:09 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1f000000}}}}]}, 0x78}}, 0x131c)

07:14:09 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xf0ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3415.960910][ T6004] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3415.980779][ T6004] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3416.003357][ T6004] CPU: 0 PID: 6004 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3416.013753][ T6004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3416.023851][ T6004] Call Trace:
[ 3416.027162][ T6004]  <TASK>
[ 3416.030125][ T6004]  dump_stack_lvl+0x136/0x150
[ 3416.034868][ T6004]  sysfs_warn_dup+0x80/0xa0
[ 3416.039419][ T6004]  sysfs_do_create_link_sd+0x11e/0x140
[ 3416.044929][ T6004]  sysfs_create_link+0x63/0xc0
[ 3416.049738][ T6004]  device_add+0x5e5/0x1c50
[ 3416.054225][ T6004]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3416.061132][ T6004]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3416.067066][ T6004]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3416.073094][ T6004]  wiphy_register+0x1f88/0x2ae0
[ 3416.077983][ T6004]  ? wiphy_unregister+0xb40/0xb40
[ 3416.083030][ T6004]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3416.088189][ T6004]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3416.094202][ T6004]  ieee80211_register_hw+0x23c1/0x40e0
[ 3416.099705][ T6004]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3416.105306][ T6004]  ? debug_object_free+0x360/0x360
[ 3416.110447][ T6004]  ? lockdep_init_map_type+0x21e/0x810
[ 3416.115936][ T6004]  ? __hrtimer_init+0x145/0x280
[ 3416.120823][ T6004]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3416.126587][ T6004]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3416.133300][ T6004]  hwsim_new_radio_nl+0xad6/0x1210
[ 3416.138443][ T6004]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3416.144382][ T6004]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3416.151770][ T6004]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3416.159086][ T6004]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3416.165262][ T6004]  ? genl_start+0x660/0x660
[ 3416.169797][ T6004]  ? ns_capable+0xe0/0x110
[ 3416.174245][ T6004]  genl_rcv_msg+0x4ff/0x7e0
[ 3416.178769][ T6004]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3416.185120][ T6004]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3416.191053][ T6004]  netlink_rcv_skb+0x165/0x440
[ 3416.195874][ T6004]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3416.202221][ T6004]  ? netlink_ack+0x1360/0x1360
[ 3416.207042][ T6004]  genl_rcv+0x28/0x40
[ 3416.211049][ T6004]  netlink_unicast+0x547/0x7f0
[ 3416.215850][ T6004]  ? netlink_attachskb+0x890/0x890
[ 3416.220991][ T6004]  ? __virt_addr_valid+0x61/0x2e0
[ 3416.226041][ T6004]  ? __phys_addr_symbol+0x30/0x70
[ 3416.231090][ T6004]  ? __check_object_size+0x323/0x730
[ 3416.236401][ T6004]  netlink_sendmsg+0x925/0xe30
[ 3416.241199][ T6004]  ? netlink_unicast+0x7f0/0x7f0
[ 3416.246170][ T6004]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3416.251480][ T6004]  ? netlink_unicast+0x7f0/0x7f0
[ 3416.256446][ T6004]  sock_sendmsg+0xde/0x190
[ 3416.260891][ T6004]  ____sys_sendmsg+0x71c/0x900
[ 3416.265682][ T6004]  ? copy_msghdr_from_user+0xfc/0x150
[ 3416.271072][ T6004]  ? kernel_sendmsg+0x50/0x50
[ 3416.275794][ T6004]  ___sys_sendmsg+0x110/0x1b0
[ 3416.280496][ T6004]  ? do_recvmmsg+0x6e0/0x6e0
[ 3416.285103][ T6004]  ? __fget_files+0x248/0x480
[ 3416.289798][ T6004]  ? lock_downgrade+0x690/0x690
[ 3416.294673][ T6004]  ? futex_wake_mark+0x1a0/0x1a0
[ 3416.299645][ T6004]  ? __fget_files+0x26a/0x480
[ 3416.304347][ T6004]  ? __fget_light+0xe5/0x270
[ 3416.308956][ T6004]  __sys_sendmsg+0xf7/0x1c0
[ 3416.313476][ T6004]  ? __sys_sendmsg_sock+0x40/0x40
[ 3416.318521][ T6004]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3416.324456][ T6004]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3416.330372][ T6004]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3416.335591][ T6004]  do_syscall_64+0x39/0xb0
[ 3416.340036][ T6004]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3416.345954][ T6004] RIP: 0033:0x7f837868c169
[ 3416.350380][ T6004] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3416.370002][ T6004] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3416.378434][ T6004] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3416.386418][ T6004] RDX: 4c00000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3416.394397][ T6004] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3416.402386][ T6004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3416.410370][ T6004] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3416.418372][ T6004]  </TASK>
[ 3416.504832][ T6031] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3416.536599][ T6031] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3416.553296][ T6031] CPU: 0 PID: 6031 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3416.563677][ T6031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3416.573767][ T6031] Call Trace:
[ 3416.577070][ T6031]  <TASK>
[ 3416.580021][ T6031]  dump_stack_lvl+0x136/0x150
[ 3416.584736][ T6031]  sysfs_warn_dup+0x80/0xa0
[ 3416.589278][ T6031]  sysfs_do_create_link_sd+0x11e/0x140
[ 3416.594774][ T6031]  sysfs_create_link+0x63/0xc0
[ 3416.599575][ T6031]  device_add+0x5e5/0x1c50
[ 3416.604042][ T6031]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3416.610941][ T6031]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3416.616871][ T6031]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3416.622894][ T6031]  wiphy_register+0x1f88/0x2ae0
[ 3416.627784][ T6031]  ? wiphy_unregister+0xb40/0xb40
[ 3416.632827][ T6031]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3416.637969][ T6031]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3416.643980][ T6031]  ieee80211_register_hw+0x23c1/0x40e0
[ 3416.649474][ T6031]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3416.655046][ T6031]  ? debug_object_free+0x360/0x360
[ 3416.660181][ T6031]  ? lockdep_init_map_type+0x21e/0x810
[ 3416.665670][ T6031]  ? __hrtimer_init+0x145/0x280
[ 3416.670553][ T6031]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3416.676313][ T6031]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3416.683020][ T6031]  hwsim_new_radio_nl+0xad6/0x1210
[ 3416.688156][ T6031]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3416.694083][ T6031]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3416.701473][ T6031]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3416.708779][ T6031]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3416.715212][ T6031]  ? genl_start+0x660/0x660
[ 3416.719743][ T6031]  ? ns_capable+0xe0/0x110
[ 3416.724187][ T6031]  genl_rcv_msg+0x4ff/0x7e0
[ 3416.728705][ T6031]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3416.735054][ T6031]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3416.740978][ T6031]  ? lock_downgrade+0x690/0x690
[ 3416.745851][ T6031]  netlink_rcv_skb+0x165/0x440
[ 3416.750643][ T6031]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3416.756987][ T6031]  ? netlink_ack+0x1360/0x1360
[ 3416.761806][ T6031]  genl_rcv+0x28/0x40
[ 3416.765830][ T6031]  netlink_unicast+0x547/0x7f0
[ 3416.770625][ T6031]  ? netlink_attachskb+0x890/0x890
[ 3416.775761][ T6031]  ? __virt_addr_valid+0x61/0x2e0
[ 3416.780814][ T6031]  ? __phys_addr_symbol+0x30/0x70
[ 3416.785863][ T6031]  ? __check_object_size+0x323/0x730
[ 3416.791175][ T6031]  netlink_sendmsg+0x925/0xe30
[ 3416.795971][ T6031]  ? netlink_unicast+0x7f0/0x7f0
[ 3416.800940][ T6031]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3416.806309][ T6031]  ? netlink_unicast+0x7f0/0x7f0
[ 3416.811661][ T6031]  sock_sendmsg+0xde/0x190
[ 3416.816125][ T6031]  ____sys_sendmsg+0x71c/0x900
[ 3416.820928][ T6031]  ? copy_msghdr_from_user+0xfc/0x150
[ 3416.826320][ T6031]  ? kernel_sendmsg+0x50/0x50
[ 3416.831042][ T6031]  ___sys_sendmsg+0x110/0x1b0
[ 3416.835738][ T6031]  ? do_recvmmsg+0x6e0/0x6e0
[ 3416.840346][ T6031]  ? __fget_files+0x248/0x480
[ 3416.845041][ T6031]  ? lock_downgrade+0x690/0x690
[ 3416.849912][ T6031]  ? futex_wake_mark+0x1a0/0x1a0
[ 3416.854883][ T6031]  ? __fget_files+0x26a/0x480
[ 3416.859583][ T6031]  ? __fget_light+0xe5/0x270
[ 3416.864195][ T6031]  __sys_sendmsg+0xf7/0x1c0
[ 3416.868714][ T6031]  ? __sys_sendmsg_sock+0x40/0x40
[ 3416.873771][ T6031]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3416.879716][ T6031]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3416.885634][ T6031]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3416.890866][ T6031]  do_syscall_64+0x39/0xb0
[ 3416.895316][ T6031]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3416.901238][ T6031] RIP: 0033:0x7fb4bf08c169
[ 3416.905673][ T6031] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3416.925295][ T6031] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3416.933724][ T6031] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3416.941708][ T6031] RDX: 0000000000004000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3416.949702][ T6031] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3416.957685][ T6031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3416.965671][ T6031] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3416.973675][ T6031]  </TASK>
07:14:10 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x4ce0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:10 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xf1ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:10 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:10 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x80) (async, rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) (async, rerun: 32)
write$bt_hci(r2, &(0x7f0000000080)={0x1, @write_remote_amp_assoc={{0x140b, 0x70}, {0xc8, 0x12, 0x9, "fc8e0de992c4e1ce1643cefbd6d31532091d4535297cddf8484faa6d5fe8f39c69979a175d83729ce5da1783832020339b5fc830e7265ce5f39b0332f585c901649c65ba8f5a186d6cadd268b3105b708ddec28188bf423289b0983b1548171e7babb4fa112e71c186a2c2"}}}, 0x74) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:10 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x48000000}}}}]}, 0x78}}, 0x131c)

07:14:10 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x408a)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:10 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x60000000}}}}]}, 0x78}}, 0x131c)

07:14:10 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x2, 0x2}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3417.072509][ T6047] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3417.105458][ T6047] sysfs: cannot create duplicate filename '/class/ieee80211/!'
07:14:10 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffa888, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:10 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x2, 0x2}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x2, 0x2}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3417.211666][ T6047] CPU: 1 PID: 6047 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3417.222071][ T6047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3417.232160][ T6047] Call Trace:
[ 3417.235467][ T6047]  <TASK>
[ 3417.238423][ T6047]  dump_stack_lvl+0x136/0x150
[ 3417.243148][ T6047]  sysfs_warn_dup+0x80/0xa0
[ 3417.247687][ T6047]  sysfs_do_create_link_sd+0x11e/0x140
[ 3417.253190][ T6047]  sysfs_create_link+0x63/0xc0
[ 3417.257989][ T6047]  device_add+0x5e5/0x1c50
[ 3417.262456][ T6047]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3417.269358][ T6047]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3417.275297][ T6047]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3417.281342][ T6047]  wiphy_register+0x1f88/0x2ae0
[ 3417.286257][ T6047]  ? wiphy_unregister+0xb40/0xb40
[ 3417.291330][ T6047]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3417.296507][ T6047]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3417.302547][ T6047]  ieee80211_register_hw+0x23c1/0x40e0
[ 3417.308068][ T6047]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3417.313654][ T6047]  ? net_generic+0xd9/0x2a0
[ 3417.318199][ T6047]  ? debug_object_free+0x360/0x360
[ 3417.323354][ T6047]  ? lockdep_init_map_type+0x21e/0x810
[ 3417.328857][ T6047]  ? __hrtimer_init+0x145/0x280
[ 3417.333756][ T6047]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3417.339540][ T6047]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3417.346276][ T6047]  hwsim_new_radio_nl+0xad6/0x1210
[ 3417.351441][ T6047]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3417.357391][ T6047]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3417.364796][ T6047]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3417.372129][ T6047]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3417.378321][ T6047]  ? genl_start+0x660/0x660
[ 3417.382869][ T6047]  ? ns_capable+0xe0/0x110
[ 3417.387332][ T6047]  genl_rcv_msg+0x4ff/0x7e0
[ 3417.391872][ T6047]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3417.398235][ T6047]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3417.404190][ T6047]  netlink_rcv_skb+0x165/0x440
[ 3417.409002][ T6047]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3417.415366][ T6047]  ? netlink_ack+0x1360/0x1360
[ 3417.420213][ T6047]  genl_rcv+0x28/0x40
[ 3417.424244][ T6047]  netlink_unicast+0x547/0x7f0
[ 3417.429059][ T6047]  ? netlink_attachskb+0x890/0x890
[ 3417.434215][ T6047]  ? __virt_addr_valid+0x61/0x2e0
[ 3417.439285][ T6047]  ? __phys_addr_symbol+0x30/0x70
[ 3417.444353][ T6047]  ? __check_object_size+0x323/0x730
[ 3417.449682][ T6047]  netlink_sendmsg+0x925/0xe30
[ 3417.454500][ T6047]  ? netlink_unicast+0x7f0/0x7f0
[ 3417.459495][ T6047]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3417.464815][ T6047]  ? netlink_unicast+0x7f0/0x7f0
[ 3417.469783][ T6047]  sock_sendmsg+0xde/0x190
[ 3417.474229][ T6047]  ____sys_sendmsg+0x71c/0x900
[ 3417.479036][ T6047]  ? copy_msghdr_from_user+0xfc/0x150
[ 3417.484430][ T6047]  ? kernel_sendmsg+0x50/0x50
[ 3417.489162][ T6047]  ___sys_sendmsg+0x110/0x1b0
[ 3417.493870][ T6047]  ? do_recvmmsg+0x6e0/0x6e0
[ 3417.498483][ T6047]  ? __fget_files+0x248/0x480
[ 3417.503178][ T6047]  ? lock_downgrade+0x690/0x690
[ 3417.508050][ T6047]  ? futex_wake_mark+0x1a0/0x1a0
[ 3417.513457][ T6047]  ? __fget_files+0x26a/0x480
[ 3417.518156][ T6047]  ? __fget_light+0xe5/0x270
[ 3417.522767][ T6047]  __sys_sendmsg+0xf7/0x1c0
[ 3417.527286][ T6047]  ? __sys_sendmsg_sock+0x40/0x40
[ 3417.532332][ T6047]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3417.538267][ T6047]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3417.544186][ T6047]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3417.549406][ T6047]  do_syscall_64+0x39/0xb0
[ 3417.553853][ T6047]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3417.559770][ T6047] RIP: 0033:0x7fb4bf08c169
[ 3417.564198][ T6047] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3417.583820][ T6047] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3417.592251][ T6047] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3417.600231][ T6047] RDX: 000000000000408a RSI: 0000000020001ac0 RDI: 0000000000000004
07:14:10 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x2, 0x2}, 0x6) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3417.608213][ T6047] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3417.616631][ T6047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3417.624617][ T6047] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3417.632621][ T6047]  </TASK>
07:14:10 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x421c)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3417.661671][ T6048] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3417.705518][ T6048] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3417.733226][ T6048] CPU: 1 PID: 6048 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3417.743630][ T6048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3417.753718][ T6048] Call Trace:
[ 3417.757024][ T6048]  <TASK>
[ 3417.759987][ T6048]  dump_stack_lvl+0x136/0x150
[ 3417.764712][ T6048]  sysfs_warn_dup+0x80/0xa0
[ 3417.769259][ T6048]  sysfs_do_create_link_sd+0x11e/0x140
[ 3417.774769][ T6048]  sysfs_create_link+0x63/0xc0
[ 3417.779568][ T6048]  device_add+0x5e5/0x1c50
[ 3417.784029][ T6048]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3417.790928][ T6048]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3417.796857][ T6048]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3417.802897][ T6048]  wiphy_register+0x1f88/0x2ae0
[ 3417.807796][ T6048]  ? wiphy_unregister+0xb40/0xb40
[ 3417.812847][ T6048]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3417.817998][ T6048]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3417.824010][ T6048]  ieee80211_register_hw+0x23c1/0x40e0
[ 3417.829511][ T6048]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3417.835106][ T6048]  ? debug_object_free+0x360/0x360
[ 3417.840262][ T6048]  ? lockdep_init_map_type+0x21e/0x810
[ 3417.845761][ T6048]  ? __hrtimer_init+0x145/0x280
[ 3417.850652][ T6048]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3417.856419][ T6048]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3417.863133][ T6048]  hwsim_new_radio_nl+0xad6/0x1210
[ 3417.868276][ T6048]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3417.874205][ T6048]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3417.881598][ T6048]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3417.888904][ T6048]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3417.895167][ T6048]  ? genl_start+0x660/0x660
[ 3417.899719][ T6048]  ? ns_capable+0xe0/0x110
[ 3417.904167][ T6048]  genl_rcv_msg+0x4ff/0x7e0
[ 3417.908692][ T6048]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3417.915045][ T6048]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3417.920992][ T6048]  netlink_rcv_skb+0x165/0x440
[ 3417.925796][ T6048]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3417.932149][ T6048]  ? netlink_ack+0x1360/0x1360
[ 3417.936969][ T6048]  genl_rcv+0x28/0x40
[ 3417.940977][ T6048]  netlink_unicast+0x547/0x7f0
[ 3417.945772][ T6048]  ? netlink_attachskb+0x890/0x890
[ 3417.950911][ T6048]  ? __virt_addr_valid+0x61/0x2e0
[ 3417.955960][ T6048]  ? __phys_addr_symbol+0x30/0x70
[ 3417.961009][ T6048]  ? __check_object_size+0x323/0x730
[ 3417.966324][ T6048]  netlink_sendmsg+0x925/0xe30
[ 3417.971121][ T6048]  ? netlink_unicast+0x7f0/0x7f0
[ 3417.976093][ T6048]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3417.981398][ T6048]  ? netlink_unicast+0x7f0/0x7f0
[ 3417.986362][ T6048]  sock_sendmsg+0xde/0x190
[ 3417.990808][ T6048]  ____sys_sendmsg+0x71c/0x900
[ 3417.995597][ T6048]  ? copy_msghdr_from_user+0xfc/0x150
[ 3418.000987][ T6048]  ? kernel_sendmsg+0x50/0x50
[ 3418.005709][ T6048]  ___sys_sendmsg+0x110/0x1b0
[ 3418.010403][ T6048]  ? do_recvmmsg+0x6e0/0x6e0
[ 3418.015014][ T6048]  ? __fget_files+0x248/0x480
[ 3418.019707][ T6048]  ? lock_downgrade+0x690/0x690
[ 3418.024599][ T6048]  ? futex_wake_mark+0x1a0/0x1a0
[ 3418.029591][ T6048]  ? __fget_files+0x26a/0x480
[ 3418.034299][ T6048]  ? __fget_light+0xe5/0x270
[ 3418.038916][ T6048]  __sys_sendmsg+0xf7/0x1c0
[ 3418.043442][ T6048]  ? __sys_sendmsg_sock+0x40/0x40
[ 3418.048496][ T6048]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3418.054435][ T6048]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3418.060358][ T6048]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3418.065580][ T6048]  do_syscall_64+0x39/0xb0
[ 3418.070038][ T6048]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3418.075954][ T6048] RIP: 0033:0x7f837868c169
[ 3418.080380][ T6048] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3418.100001][ T6048] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3418.108431][ T6048] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3418.116760][ T6048] RDX: 4ce0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3418.124740][ T6048] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3418.132735][ T6048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3418.140797][ T6048] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3418.148806][ T6048]  </TASK>
07:14:11 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x4de0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:11 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x65580000}}}}]}, 0x78}}, 0x131c)

07:14:11 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000000)=0xfff, 0x2)
write$binfmt_misc(r1, &(0x7f0000000080)={'syz0', "09345bd81a44e1669408eaacce9940f08e97bd45e89039c32ecb80edcda3508a8834ab9ecfaa56f8386d11fbbabfadc2097b556e3ee34eb29101c507d9"}, 0x41)

07:14:11 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xfffff000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:11 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:11 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000000)=0xfff, 0x2)
write$binfmt_misc(r1, &(0x7f0000000080)={'syz0', "09345bd81a44e1669408eaacce9940f08e97bd45e89039c32ecb80edcda3508a8834ab9ecfaa56f8386d11fbbabfadc2097b556e3ee34eb29101c507d9"}, 0x41) (async)
write$binfmt_misc(r1, &(0x7f0000000080)={'syz0', "09345bd81a44e1669408eaacce9940f08e97bd45e89039c32ecb80edcda3508a8834ab9ecfaa56f8386d11fbbabfadc2097b556e3ee34eb29101c507d9"}, 0x41)

[ 3418.183430][ T6076] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
07:14:11 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x7f000000}}}}]}, 0x78}}, 0x131c)

07:14:11 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffff7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3418.287871][ T6076] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3418.333699][ T6076] CPU: 0 PID: 6076 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3418.344104][ T6076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3418.354187][ T6076] Call Trace:
[ 3418.357494][ T6076]  <TASK>
[ 3418.360453][ T6076]  dump_stack_lvl+0x136/0x150
[ 3418.365182][ T6076]  sysfs_warn_dup+0x80/0xa0
[ 3418.369724][ T6076]  sysfs_do_create_link_sd+0x11e/0x140
[ 3418.375215][ T6076]  sysfs_create_link+0x63/0xc0
[ 3418.379998][ T6076]  device_add+0x5e5/0x1c50
[ 3418.384443][ T6076]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3418.391342][ T6076]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3418.397259][ T6076]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3418.403285][ T6076]  wiphy_register+0x1f88/0x2ae0
[ 3418.408176][ T6076]  ? wiphy_unregister+0xb40/0xb40
[ 3418.413224][ T6076]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3418.418403][ T6076]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3418.424420][ T6076]  ieee80211_register_hw+0x23c1/0x40e0
[ 3418.429921][ T6076]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3418.435510][ T6076]  ? debug_object_free+0x360/0x360
[ 3418.440648][ T6076]  ? lockdep_init_map_type+0x21e/0x810
[ 3418.446136][ T6076]  ? __hrtimer_init+0x145/0x280
[ 3418.451021][ T6076]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3418.456805][ T6076]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3418.463515][ T6076]  hwsim_new_radio_nl+0xad6/0x1210
[ 3418.468652][ T6076]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3418.474607][ T6076]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3418.482004][ T6076]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3418.489314][ T6076]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3418.495486][ T6076]  ? genl_start+0x660/0x660
[ 3418.500021][ T6076]  ? ns_capable+0xe0/0x110
[ 3418.504463][ T6076]  genl_rcv_msg+0x4ff/0x7e0
[ 3418.508989][ T6076]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3418.515334][ T6076]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3418.521264][ T6076]  netlink_rcv_skb+0x165/0x440
[ 3418.526057][ T6076]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3418.532404][ T6076]  ? netlink_ack+0x1360/0x1360
[ 3418.537223][ T6076]  genl_rcv+0x28/0x40
[ 3418.541231][ T6076]  netlink_unicast+0x547/0x7f0
[ 3418.546024][ T6076]  ? netlink_attachskb+0x890/0x890
[ 3418.551157][ T6076]  ? __virt_addr_valid+0x61/0x2e0
[ 3418.556209][ T6076]  ? __phys_addr_symbol+0x30/0x70
[ 3418.561256][ T6076]  ? __check_object_size+0x323/0x730
[ 3418.566566][ T6076]  netlink_sendmsg+0x925/0xe30
[ 3418.571380][ T6076]  ? netlink_unicast+0x7f0/0x7f0
[ 3418.576372][ T6076]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3418.581693][ T6076]  ? netlink_unicast+0x7f0/0x7f0
[ 3418.586675][ T6076]  sock_sendmsg+0xde/0x190
[ 3418.591131][ T6076]  ____sys_sendmsg+0x71c/0x900
[ 3418.595927][ T6076]  ? copy_msghdr_from_user+0xfc/0x150
[ 3418.601320][ T6076]  ? kernel_sendmsg+0x50/0x50
[ 3418.606041][ T6076]  ___sys_sendmsg+0x110/0x1b0
[ 3418.610995][ T6076]  ? do_recvmmsg+0x6e0/0x6e0
[ 3418.615603][ T6076]  ? __fget_files+0x248/0x480
[ 3418.620309][ T6076]  ? lock_downgrade+0x690/0x690
[ 3418.625190][ T6076]  ? futex_wake_mark+0x1a0/0x1a0
[ 3418.630176][ T6076]  ? __fget_files+0x26a/0x480
[ 3418.634882][ T6076]  ? __fget_light+0xe5/0x270
[ 3418.639501][ T6076]  __sys_sendmsg+0xf7/0x1c0
[ 3418.644050][ T6076]  ? __sys_sendmsg_sock+0x40/0x40
[ 3418.649112][ T6076]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3418.655055][ T6076]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3418.660986][ T6076]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3418.666213][ T6076]  do_syscall_64+0x39/0xb0
[ 3418.670663][ T6076]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3418.676583][ T6076] RIP: 0033:0x7fb4bf08c169
[ 3418.681014][ T6076] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3418.700656][ T6076] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3418.709083][ T6076] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3418.717068][ T6076] RDX: 000000000000421c RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3418.725047][ T6076] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
07:14:11 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000000)=0xfff, 0x2)
write$binfmt_misc(r1, &(0x7f0000000080)={'syz0', "09345bd81a44e1669408eaacce9940f08e97bd45e89039c32ecb80edcda3508a8834ab9ecfaa56f8386d11fbbabfadc2097b556e3ee34eb29101c507d9"}, 0x41) (async)
write$binfmt_misc(r1, &(0x7f0000000080)={'syz0', "09345bd81a44e1669408eaacce9940f08e97bd45e89039c32ecb80edcda3508a8834ab9ecfaa56f8386d11fbbabfadc2097b556e3ee34eb29101c507d9"}, 0x41)

[ 3418.733030][ T6076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3418.741010][ T6076] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3418.749014][ T6076]  </TASK>
[ 3418.824096][ T6084] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:12 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x4800)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:12 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x81000000}}}}]}, 0x78}}, 0x131c)

[ 3418.877891][ T6084] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3418.905526][ T6084] CPU: 1 PID: 6084 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3418.915928][ T6084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3418.926003][ T6084] Call Trace:
[ 3418.929290][ T6084]  <TASK>
[ 3418.932226][ T6084]  dump_stack_lvl+0x136/0x150
[ 3418.936941][ T6084]  sysfs_warn_dup+0x80/0xa0
[ 3418.941476][ T6084]  sysfs_do_create_link_sd+0x11e/0x140
[ 3418.946952][ T6084]  sysfs_create_link+0x63/0xc0
[ 3418.951751][ T6084]  device_add+0x5e5/0x1c50
[ 3418.956218][ T6084]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3418.963093][ T6084]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3418.969005][ T6084]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3418.975032][ T6084]  wiphy_register+0x1f88/0x2ae0
[ 3418.979919][ T6084]  ? wiphy_unregister+0xb40/0xb40
[ 3418.984968][ T6084]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3418.990115][ T6084]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3418.996127][ T6084]  ieee80211_register_hw+0x23c1/0x40e0
[ 3419.001631][ T6084]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3419.007198][ T6084]  ? net_generic+0xd9/0x2a0
[ 3419.011727][ T6084]  ? debug_object_free+0x360/0x360
[ 3419.016864][ T6084]  ? lockdep_init_map_type+0x21e/0x810
[ 3419.022349][ T6084]  ? __hrtimer_init+0x145/0x280
[ 3419.027230][ T6084]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3419.032994][ T6084]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3419.039705][ T6084]  hwsim_new_radio_nl+0xad6/0x1210
[ 3419.044844][ T6084]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3419.050789][ T6084]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3419.058194][ T6084]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3419.065515][ T6084]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3419.071698][ T6084]  ? genl_start+0x660/0x660
[ 3419.076230][ T6084]  ? ns_capable+0xe0/0x110
[ 3419.080685][ T6084]  genl_rcv_msg+0x4ff/0x7e0
[ 3419.085209][ T6084]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3419.091573][ T6084]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3419.097508][ T6084]  netlink_rcv_skb+0x165/0x440
[ 3419.102323][ T6084]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3419.108695][ T6084]  ? netlink_ack+0x1360/0x1360
[ 3419.113525][ T6084]  genl_rcv+0x28/0x40
[ 3419.117544][ T6084]  netlink_unicast+0x547/0x7f0
[ 3419.122348][ T6084]  ? netlink_attachskb+0x890/0x890
[ 3419.127488][ T6084]  ? __virt_addr_valid+0x61/0x2e0
[ 3419.132541][ T6084]  ? __phys_addr_symbol+0x30/0x70
[ 3419.137597][ T6084]  ? __check_object_size+0x323/0x730
[ 3419.142910][ T6084]  netlink_sendmsg+0x925/0xe30
[ 3419.147706][ T6084]  ? netlink_unicast+0x7f0/0x7f0
[ 3419.152679][ T6084]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3419.157991][ T6084]  ? netlink_unicast+0x7f0/0x7f0
[ 3419.162956][ T6084]  sock_sendmsg+0xde/0x190
[ 3419.167400][ T6084]  ____sys_sendmsg+0x71c/0x900
[ 3419.172196][ T6084]  ? copy_msghdr_from_user+0xfc/0x150
[ 3419.177584][ T6084]  ? kernel_sendmsg+0x50/0x50
[ 3419.182304][ T6084]  ___sys_sendmsg+0x110/0x1b0
[ 3419.186998][ T6084]  ? do_recvmmsg+0x6e0/0x6e0
[ 3419.191607][ T6084]  ? __fget_files+0x248/0x480
[ 3419.196301][ T6084]  ? lock_downgrade+0x690/0x690
[ 3419.201176][ T6084]  ? futex_wake_mark+0x1a0/0x1a0
[ 3419.206145][ T6084]  ? __fget_files+0x26a/0x480
[ 3419.210846][ T6084]  ? __fget_light+0xe5/0x270
[ 3419.215461][ T6084]  __sys_sendmsg+0xf7/0x1c0
[ 3419.219983][ T6084]  ? __sys_sendmsg_sock+0x40/0x40
[ 3419.225030][ T6084]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3419.230970][ T6084]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3419.236887][ T6084]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3419.242108][ T6084]  do_syscall_64+0x39/0xb0
[ 3419.246555][ T6084]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3419.252473][ T6084] RIP: 0033:0x7f837868c169
[ 3419.256903][ T6084] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
07:14:12 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffff9e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3419.276526][ T6084] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3419.284958][ T6084] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3419.292943][ T6084] RDX: 4de0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3419.300928][ T6084] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3419.308910][ T6084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3419.316894][ T6084] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3419.324893][ T6084]  </TASK>
07:14:12 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x4ee0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:12 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$inet(0x2, 0x800, 0xff)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
getsockopt(r2, 0x1bb017e1, 0x5, &(0x7f0000000080)=""/174, &(0x7f0000000140)=0xae)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
getsockname$packet(r4, &(0x7f00000004c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000540)=0x14)
getsockopt$PNPIPE_IFINDEX(r4, 0x113, 0x2, &(0x7f00000013c0)=<r6=>0x0, &(0x7f0000001400)=0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000001700)={'batadv0\x00', <r7=>0x0})
sendmmsg$inet(r1, &(0x7f00000018c0)=[{{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000300)="64c16fc1d279bf1a82fb2b2ad2934e9920ec1718ebf5a62319633129eb958835e326a757e7f648ad8a3007e2ed782de0ac8d993e9b624df57dd33c4bb42fea67bf09b15c4ecb", 0x46}, {&(0x7f00000005c0)="17177cb3c64f942f2a6cb54c536200c81fc53ba14e37310c7146780e80017e0c093af5e2df567a6c03912deeda69a07d3d6b51336699872ee77a6c8be2097fb8ea37cac0e10c5b9a019db4f40718fdc12df6f6944ce47db2c5a32b98dcae2ed59a5d859a3eb785bde54af56c3397c43537b44a6f6852eb2000fc7f01aacec924fa9529896f539eafa480cd76f9ba9077866f16457d086a683bce27efbf48c8b5c5e0f878b7c523d355a35edc44d6fa400767d6a18b0c15ea645362519b001e79f8484ca2294e3289b532eb084d9b8d5267ed49", 0xd3}, {&(0x7f0000000700)="f94ee390378def498a4a20e59da84850ccf838bfd16d8018d5a3a2b7a15e6a80e876c0c3a485b9f63af202443bda7f4317ecffb28782d60a1756ec6f6a27b6e7ef8e8c52eef5ad8967ec7c953867fa8bb45e9cdde81089d0659a4e1f9b959fa92ed0daa05e1af859155d7cb2fd392b5267717ea530a65cab9dc49d477dcbcaea4a48bedcbe41c101ad5f9a7fb6ab3c79c545c02b6be1", 0x96}, {&(0x7f0000000940)="718e45f9acabda898d69b95b806a83e56e13509ad08e53589608842c12bf23dd9679711fe699f59d5ffa8ee333a4aad96c20155137553fbb0483cfddc040041d4ae6a994dd72c14bbe3fe552151737a942155721bece4d2c22f1f0a4ea1c116ae04f2dd47642d804f45498d9b07c9f22f292cc532449dce79bbed82e5feba760b6a9fe7d68141f82ff30e8b70d3a0a9cc37679628a9c982bfc2686c0884884c78f90f8897f78c5a7d95bc1840042f18d12821742fe765007dba5a43de39cd1a2ca1ea581cdf02f6edb06f3c5df58365b95a1310d13c38055bb", 0xd9}, {&(0x7f0000000380)="c068eed7e999c8662c2392117123daf4fbb46f7eb5db19fa431a5e1974b4732812a4c2cacd24d52104e26d86368c3939ebe38df6e3ac8427d8022646", 0x3c}, {&(0x7f00000007c0)="a735ea0b0122d96584006a15813f1174100f1c3edcc7cd443201f2f48f9efcaf82eb4ca16c076317aa9e1cd3f180a8af67b96e6ed9b7a76b43d294f87e3009345185addc6ce0f75fc68911ba6e2c1f70f24eb8e636647579b744c9e088a974220ed26a0d17a961a912d12cb445226ae5c7eda7b35d2597a276352e38f2d8a28ec5fbe3354ba42b4c1aed96b182904f89d75b8967fdbfd8", 0x97}, {&(0x7f0000000a40)="cdaa4f5c0b47cad29cd044f5ffcc21a794709fea6bdd312c2c261bc2b0bb4ec91ebc28a79bd76146f82ddafd4c43907794166805c16f9cddcca3e0d92dd4a2e5703b7f1123aa5dca06cbc66b254641b12b0aeca5c7a269d69b0cae46635c3d1b9097cb22147549c2bc48274502471ac78130f7212e7db19f8f00687dd4d79eaf52d187ffe5411b6dbab903790e4a0ffcec3d3d4e7abbf044edfa0107871ac2e618e118b2ab139076a447e068fda118efac1e86", 0xb3}, {&(0x7f0000000b00)="b5bc09924b8031913054dc695176b14b82b172957cafd5955f5039674082375855b37c437a37d6b3e06710e7b9c8f147a508f1c4fe43ce2b80e9f679f632bdf4a4dd328d7760fb4c0be93bc3d47381f474f46df3484decad54dd8bd19fa3f4e4f74772be", 0x64}, {&(0x7f0000000b80)="53f06b847b0c5dc39a3d1cd48cddc5c12e2463e9a0bb589052e49c5195f15076afcd2c0fc0128e8b81f7e561943271d1b7531aab1714dad3a8aba0bb94de48826744b70132e5924a048605a73dd6ccece42a2d4bff72d116da54a2f917ddc9760f5bdd47d7ec623a6a3e1a8e66e901453b03c1426442abdad93dcfdc396edf93098e295a05b2f1c1a3ce9506b7c726dca81fa5539e18a5ece5fe73049b2a8ced257a1a15f3aba57e919aa0c70ab525e5b5919a6a5ea962ebc25a9ef04e5d4af308", 0xc1}, {&(0x7f0000000c80)="c9053d32ba43a154e94bde4f6851fc3a0268617759011476cb7ca5ae12fe14e275aaff670f7a52b99f6d6fc0c2d61ca3a9f0f3e473422cdaa357bec6a4f11ebd147a14c503", 0x45}], 0xa, &(0x7f0000000dc0)=[@ip_retopts={{0x34, 0x0, 0x7, {[@rr={0x7, 0x23, 0x65, [@empty, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102, @dev={0xac, 0x14, 0x14, 0x2f}, @multicast1, @multicast2, @dev={0xac, 0x14, 0x14, 0x36}]}]}}}, @ip_retopts={{0x10}}, @ip_retopts={{0x2c, 0x0, 0x7, {[@timestamp_prespec={0x44, 0xc, 0x5b, 0x3, 0xc, [{@multicast2, 0x100}]}, @timestamp={0x44, 0x10, 0x64, 0x0, 0x8, [0x5, 0x5, 0x56]}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x2}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}], 0xa8}}, {{&(0x7f00000003c0)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000001340)=[{&(0x7f0000000e80)="3347ab79942a7969a1b5fd2a8319c4af3c1fc02c1a36a7bbbc2ce02dd407ecfb4b0c14d922303129a02f888afc8365e46bf25e8ea4062f1558f4c86c940304838f821780f822fe309b56f0d2f8124f6ade53b5147408d0a55c57347a47c601ab33685c94641ccb83e4051f9e00f017b286f420a13f6725b4c257532d5325f42b85fd96b26d1bb633a5cfc126d7603b3405d9918fbde9937aa9ce7481a0e8205acc910e36528b32805549fc3569a87ad728b205d2568c574a7495", 0xba}, {&(0x7f0000000f40)="a44af6f2659e690518e5ed0734d64a30050f935433fee1ecad9805400989c1b5ad9d97e9a5cb37618e1471e2c1238bd9da3296af053e6730c9bdaa9ff0e012cf2903cc8b119c490e02d95fd878ea27fb6a8cbbec19daf57e1b3021a77881e90fae4710aeaff1d6076fd8a0d299f5563c2fe434d3386e4f43614abf908a30cdc50045a748ae9d3867e1d60b4fc7d35c75232d5f884274d923c7b805e8637ccd7a17b7a308f6f8a1f9737bd44187e3219fc1e1169ede0ddb25", 0xb8}, {&(0x7f0000001000)="8d9a2a0554928b81112f570c639a06160320a14635eb783af58b3bc96cb0bd0b1df0ae118f295d76376d3a09e9bffd0a45267423939efd03cf76917546ccddec20c3b8bdf73fc51e8118a6e94699b931eecc5372e4aac2080a6d79646dbc7a3a766f58551e55232f5df2aa416d74926837f27ef2f9190038736203b38caf56e50d1bdec01c763f1128006856ca0d4a0a09f2", 0x92}, {&(0x7f00000010c0)="394ac8c70031bde6884a4a5f6156ffcb0a43b45c0a6b4a71afce5de5a7ff0a24bef6318354bd9a4e27bca874e7c3025cc31fd7e3afe640268c6c082dd0a106b6e6744168be14f4710b2671adf35bf93130dd61a634bb09039d3059bae68e00e73fc6f4c2c82312d7a12e370121b4b7288cbd2d23b3b7300b56275dc2162426", 0x7f}, {&(0x7f0000001a80)="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", 0x11e}, {&(0x7f0000001bc0)="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", 0x100}, {&(0x7f0000001280)="70cabcdedb3dbedb829b31c18e7b228d8ea6e2449b407ccbabe80f79082ff34ea4dd5d1b45b64b3990037b69ae1e805782519d2a882f931013cbd3416a8c973c2f0e0fb848255913d0c19642f86b27280a3462abcf07bdd81d43425bf7de211cab506fe8c848862db5cf7f6a1819589c53468af327175f97d23baba7cad7f35006ecc0d78bcbdc2809fb8b929b59cc8a73ec01e56062ceb7fac942da0218ce7f48a7ba48", 0xa4}], 0x7, &(0x7f0000001440)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @broadcast, @private=0xa010102}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @loopback}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast1, @rand_addr=0x64010101}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_retopts={{0x40, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x2c, 0xb9, 0x3, 0x9, [{@empty, 0x7}, {@private=0xa010102, 0x101}, {@broadcast, 0x3}, {@remote, 0xfffffffb}, {@local, 0x81}]}, @noop]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @empty}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x24e}}, @ip_ttl={{0x14, 0x0, 0x2, 0x7f}}], 0x110}}, {{&(0x7f0000001580)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000016c0)=[{&(0x7f00000015c0)}, {&(0x7f0000001600)="1cd25f6c04ed4e9aad18f10a248b836cae0266b99c070989704c5089f071df9c91d1a176567879c8713a506985a619dc87849bbff036dfd8dccb8d49fae470112456074126665011ea0efac659bac6aa9875043b7c4184c54ada3041d7fe2a78b10b90c127628364b1a2045c037d128df431a9112bdbb9afe06abc99ba209213ff0dc79dc0ff405ba2c13dc3a69e01f8", 0x90}], 0x2, &(0x7f0000001740)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x8}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010101, @rand_addr=0x64010102}}}, @ip_retopts={{0x94, 0x0, 0x7, {[@timestamp_addr={0x44, 0x34, 0x35, 0x1, 0x6, [{@multicast2, 0xee8}, {@private=0xa010100, 0x8}, {@multicast2}, {@multicast1, 0x2b2}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@broadcast, 0x1000}]}, @end, @cipso={0x86, 0x45, 0x2, [{0x0, 0x4, "ba49"}, {0x2, 0x7, "fa6743526f"}, {0x7, 0xd, "47ef1802787c44d7954e3c"}, {0x0, 0xf, "f4322058d0c008f8b60610b32e"}, {0x0, 0xb, "475825862af27fca6d"}, {0x7, 0x6, "e27921ef"}, {0x924a0def4c1212d7, 0x7, "c1149985c6"}]}, @ra={0x94, 0x4, 0x1}, @timestamp={0x44, 0x4, 0xd8}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @local, @local}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xff}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x7f}}], 0x140}}], 0x3, 0x4044054)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xd, 0x4, 0x7, 0x9, 0xc2e, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x48)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
ioctl$sock_bt_hci(r4, 0x0, &(0x7f00000001c0)="7c59953df3aeabe30a944250707c467b22cd38e5f11edf9202abb5c3a420740453e32707826c7f5cba43c35498291698218df517879a7c7d08250702786a4505a9edfc8470fe8ecb142d8540a8d526883f0943195853aa0321a0f95d288140613505ecb375722c593c7d2d8f6ba1977b4f631b4115609fbdc9d8566e9dccec0a7fabbcff7592e7f7eccdea50beb639d0c89344e45c460009083eed23db218ccdfa9462d852bfb4a72ce0c70e65c7b5760d2a42b8aa9c26119cd207abd3108bfd504daade19e5851fea05abe7842f92bd790ecc55778abc10854ac14ae963662db1")
r9 = syz_genetlink_get_family_id$batadv(&(0x7f0000001980), r4)
connect$tipc(r4, &(0x7f0000001140)=@nameseq={0x1e, 0x1, 0x1, {0x0, 0x1, 0x3}}, 0x10)
sendmsg$BATADV_CMD_GET_HARDIF(r4, &(0x7f0000001a40)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001a00)={&(0x7f00000019c0)={0x24, r9, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x8010}, 0x800)
socketpair(0x18, 0x2, 0x100, &(0x7f0000000180))
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:12 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffff}}}}]}, 0x78}}, 0x131c)

[ 3419.412064][ T6106] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
07:14:12 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xfffffff0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3419.479672][ T6106] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3419.529512][ T6106] CPU: 0 PID: 6106 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3419.539915][ T6106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3419.550006][ T6106] Call Trace:
[ 3419.553308][ T6106]  <TASK>
[ 3419.556264][ T6106]  dump_stack_lvl+0x136/0x150
[ 3419.560991][ T6106]  sysfs_warn_dup+0x80/0xa0
[ 3419.565545][ T6106]  sysfs_do_create_link_sd+0x11e/0x140
[ 3419.571049][ T6106]  sysfs_create_link+0x63/0xc0
[ 3419.575854][ T6106]  device_add+0x5e5/0x1c50
[ 3419.580330][ T6106]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3419.587231][ T6106]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3419.593164][ T6106]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3419.599210][ T6106]  wiphy_register+0x1f88/0x2ae0
[ 3419.604130][ T6106]  ? wiphy_unregister+0xb40/0xb40
[ 3419.609203][ T6106]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3419.614374][ T6106]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3419.620409][ T6106]  ieee80211_register_hw+0x23c1/0x40e0
[ 3419.625932][ T6106]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3419.631527][ T6106]  ? net_generic+0xd9/0x2a0
[ 3419.636073][ T6106]  ? debug_object_free+0x360/0x360
[ 3419.641230][ T6106]  ? lockdep_init_map_type+0x21e/0x810
[ 3419.646736][ T6106]  ? __hrtimer_init+0x145/0x280
[ 3419.651640][ T6106]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3419.657426][ T6106]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3419.664160][ T6106]  hwsim_new_radio_nl+0xad6/0x1210
[ 3419.669319][ T6106]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3419.675271][ T6106]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3419.682677][ T6106]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3419.690009][ T6106]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3419.696206][ T6106]  ? genl_start+0x660/0x660
[ 3419.700756][ T6106]  ? ns_capable+0xe0/0x110
[ 3419.705217][ T6106]  genl_rcv_msg+0x4ff/0x7e0
[ 3419.709758][ T6106]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3419.716124][ T6106]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3419.722076][ T6106]  ? lock_downgrade+0x690/0x690
[ 3419.726969][ T6106]  netlink_rcv_skb+0x165/0x440
[ 3419.731784][ T6106]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3419.738153][ T6106]  ? netlink_ack+0x1360/0x1360
[ 3419.743012][ T6106]  genl_rcv+0x28/0x40
[ 3419.747039][ T6106]  netlink_unicast+0x547/0x7f0
[ 3419.751860][ T6106]  ? netlink_attachskb+0x890/0x890
[ 3419.757021][ T6106]  ? __virt_addr_valid+0x61/0x2e0
[ 3419.762094][ T6106]  ? __phys_addr_symbol+0x30/0x70
[ 3419.767160][ T6106]  ? __check_object_size+0x323/0x730
[ 3419.772490][ T6106]  netlink_sendmsg+0x925/0xe30
[ 3419.777315][ T6106]  ? netlink_unicast+0x7f0/0x7f0
[ 3419.782307][ T6106]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3419.787631][ T6106]  ? netlink_unicast+0x7f0/0x7f0
[ 3419.792613][ T6106]  sock_sendmsg+0xde/0x190
[ 3419.797072][ T6106]  ____sys_sendmsg+0x71c/0x900
[ 3419.801887][ T6106]  ? copy_msghdr_from_user+0xfc/0x150
[ 3419.807297][ T6106]  ? kernel_sendmsg+0x50/0x50
[ 3419.812030][ T6106]  ? futex_unqueue+0xb7/0x120
[ 3419.816749][ T6106]  ? futex_wait+0x503/0x680
[ 3419.821300][ T6106]  ___sys_sendmsg+0x110/0x1b0
[ 3419.826011][ T6106]  ? do_recvmmsg+0x6e0/0x6e0
[ 3419.830636][ T6106]  ? __fget_files+0x248/0x480
[ 3419.835344][ T6106]  ? lock_downgrade+0x690/0x690
[ 3419.840246][ T6106]  ? __fget_files+0x26a/0x480
[ 3419.844964][ T6106]  ? __fget_light+0xe5/0x270
[ 3419.849594][ T6106]  __sys_sendmsg+0xf7/0x1c0
[ 3419.854131][ T6106]  ? __sys_sendmsg_sock+0x40/0x40
[ 3419.859192][ T6106]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3419.865148][ T6106]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3419.871083][ T6106]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3419.876324][ T6106]  do_syscall_64+0x39/0xb0
[ 3419.880791][ T6106]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3419.886732][ T6106] RIP: 0033:0x7fb4bf08c169
[ 3419.891177][ T6106] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3419.910828][ T6106] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3419.919285][ T6106] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3419.927290][ T6106] RDX: 0000000000004800 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3419.935294][ T6106] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3419.943303][ T6106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3419.951306][ T6106] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3419.959335][ T6106]  </TASK>
07:14:13 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:13 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x4c00)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3420.045098][ T6119] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:13 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9effffff}}}}]}, 0x78}}, 0x131c)

[ 3420.094765][ T6119] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3420.118054][ T6119] CPU: 1 PID: 6119 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3420.128453][ T6119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3420.138542][ T6119] Call Trace:
[ 3420.141850][ T6119]  <TASK>
[ 3420.144819][ T6119]  dump_stack_lvl+0x136/0x150
[ 3420.149542][ T6119]  sysfs_warn_dup+0x80/0xa0
[ 3420.154091][ T6119]  sysfs_do_create_link_sd+0x11e/0x140
[ 3420.159598][ T6119]  sysfs_create_link+0x63/0xc0
[ 3420.164408][ T6119]  device_add+0x5e5/0x1c50
[ 3420.168877][ T6119]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3420.175785][ T6119]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3420.181721][ T6119]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3420.187764][ T6119]  wiphy_register+0x1f88/0x2ae0
[ 3420.192674][ T6119]  ? wiphy_unregister+0xb40/0xb40
[ 3420.197747][ T6119]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3420.202927][ T6119]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3420.208964][ T6119]  ieee80211_register_hw+0x23c1/0x40e0
[ 3420.214481][ T6119]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3420.220076][ T6119]  ? debug_object_free+0x360/0x360
[ 3420.225238][ T6119]  ? lockdep_init_map_type+0x21e/0x810
[ 3420.230812][ T6119]  ? __hrtimer_init+0x145/0x280
[ 3420.235691][ T6119]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3420.241452][ T6119]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3420.248165][ T6119]  hwsim_new_radio_nl+0xad6/0x1210
[ 3420.253308][ T6119]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3420.259241][ T6119]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3420.266631][ T6119]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3420.273941][ T6119]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3420.280114][ T6119]  ? genl_start+0x660/0x660
[ 3420.284641][ T6119]  ? ns_capable+0xe0/0x110
[ 3420.289087][ T6119]  genl_rcv_msg+0x4ff/0x7e0
[ 3420.293606][ T6119]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3420.299951][ T6119]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3420.305874][ T6119]  ? lock_downgrade+0x690/0x690
[ 3420.310755][ T6119]  netlink_rcv_skb+0x165/0x440
[ 3420.315547][ T6119]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3420.321900][ T6119]  ? netlink_ack+0x1360/0x1360
[ 3420.326718][ T6119]  genl_rcv+0x28/0x40
[ 3420.330726][ T6119]  netlink_unicast+0x547/0x7f0
[ 3420.335524][ T6119]  ? netlink_attachskb+0x890/0x890
[ 3420.340658][ T6119]  ? __virt_addr_valid+0x61/0x2e0
[ 3420.345710][ T6119]  ? __phys_addr_symbol+0x30/0x70
[ 3420.350758][ T6119]  ? __check_object_size+0x323/0x730
[ 3420.356068][ T6119]  netlink_sendmsg+0x925/0xe30
[ 3420.360868][ T6119]  ? netlink_unicast+0x7f0/0x7f0
[ 3420.365842][ T6119]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3420.371155][ T6119]  ? netlink_unicast+0x7f0/0x7f0
[ 3420.376117][ T6119]  sock_sendmsg+0xde/0x190
[ 3420.380562][ T6119]  ____sys_sendmsg+0x71c/0x900
[ 3420.385352][ T6119]  ? copy_msghdr_from_user+0xfc/0x150
[ 3420.390774][ T6119]  ? kernel_sendmsg+0x50/0x50
[ 3420.395482][ T6119]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3420.401477][ T6119]  ? psi_task_switch+0x216/0x950
[ 3420.406442][ T6119]  ___sys_sendmsg+0x110/0x1b0
[ 3420.411136][ T6119]  ? do_recvmmsg+0x6e0/0x6e0
[ 3420.415748][ T6119]  ? __fget_files+0x248/0x480
[ 3420.420441][ T6119]  ? lock_downgrade+0x690/0x690
[ 3420.425313][ T6119]  ? finish_task_switch.isra.0+0x2b5/0xc80
[ 3420.431140][ T6119]  ? __fget_files+0x26a/0x480
[ 3420.435842][ T6119]  ? __fget_light+0xe5/0x270
[ 3420.440455][ T6119]  __sys_sendmsg+0xf7/0x1c0
[ 3420.444975][ T6119]  ? __sys_sendmsg_sock+0x40/0x40
[ 3420.450036][ T6119]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3420.455951][ T6119]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3420.461174][ T6119]  do_syscall_64+0x39/0xb0
[ 3420.465619][ T6119]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3420.471537][ T6119] RIP: 0033:0x7f837868c169
[ 3420.475966][ T6119] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3420.495587][ T6119] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3420.504016][ T6119] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3420.512000][ T6119] RDX: 4ee0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3420.519982][ T6119] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3420.527962][ T6119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3420.535941][ T6119] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3420.543942][ T6119]  </TASK>
07:14:13 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xfffffff1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:13 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async, rerun: 64)
r1 = socket$inet(0x2, 0x800, 0xff) (async, rerun: 64)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
getsockopt(r2, 0x1bb017e1, 0x5, &(0x7f0000000080)=""/174, &(0x7f0000000140)=0xae) (async)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x4}, 0x6) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
getsockname$packet(r4, &(0x7f00000004c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000540)=0x14)
getsockopt$PNPIPE_IFINDEX(r4, 0x113, 0x2, &(0x7f00000013c0)=<r6=>0x0, &(0x7f0000001400)=0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000001700)={'batadv0\x00', <r7=>0x0})
sendmmsg$inet(r1, &(0x7f00000018c0)=[{{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000300)="64c16fc1d279bf1a82fb2b2ad2934e9920ec1718ebf5a62319633129eb958835e326a757e7f648ad8a3007e2ed782de0ac8d993e9b624df57dd33c4bb42fea67bf09b15c4ecb", 0x46}, {&(0x7f00000005c0)="17177cb3c64f942f2a6cb54c536200c81fc53ba14e37310c7146780e80017e0c093af5e2df567a6c03912deeda69a07d3d6b51336699872ee77a6c8be2097fb8ea37cac0e10c5b9a019db4f40718fdc12df6f6944ce47db2c5a32b98dcae2ed59a5d859a3eb785bde54af56c3397c43537b44a6f6852eb2000fc7f01aacec924fa9529896f539eafa480cd76f9ba9077866f16457d086a683bce27efbf48c8b5c5e0f878b7c523d355a35edc44d6fa400767d6a18b0c15ea645362519b001e79f8484ca2294e3289b532eb084d9b8d5267ed49", 0xd3}, {&(0x7f0000000700)="f94ee390378def498a4a20e59da84850ccf838bfd16d8018d5a3a2b7a15e6a80e876c0c3a485b9f63af202443bda7f4317ecffb28782d60a1756ec6f6a27b6e7ef8e8c52eef5ad8967ec7c953867fa8bb45e9cdde81089d0659a4e1f9b959fa92ed0daa05e1af859155d7cb2fd392b5267717ea530a65cab9dc49d477dcbcaea4a48bedcbe41c101ad5f9a7fb6ab3c79c545c02b6be1", 0x96}, {&(0x7f0000000940)="718e45f9acabda898d69b95b806a83e56e13509ad08e53589608842c12bf23dd9679711fe699f59d5ffa8ee333a4aad96c20155137553fbb0483cfddc040041d4ae6a994dd72c14bbe3fe552151737a942155721bece4d2c22f1f0a4ea1c116ae04f2dd47642d804f45498d9b07c9f22f292cc532449dce79bbed82e5feba760b6a9fe7d68141f82ff30e8b70d3a0a9cc37679628a9c982bfc2686c0884884c78f90f8897f78c5a7d95bc1840042f18d12821742fe765007dba5a43de39cd1a2ca1ea581cdf02f6edb06f3c5df58365b95a1310d13c38055bb", 0xd9}, {&(0x7f0000000380)="c068eed7e999c8662c2392117123daf4fbb46f7eb5db19fa431a5e1974b4732812a4c2cacd24d52104e26d86368c3939ebe38df6e3ac8427d8022646", 0x3c}, {&(0x7f00000007c0)="a735ea0b0122d96584006a15813f1174100f1c3edcc7cd443201f2f48f9efcaf82eb4ca16c076317aa9e1cd3f180a8af67b96e6ed9b7a76b43d294f87e3009345185addc6ce0f75fc68911ba6e2c1f70f24eb8e636647579b744c9e088a974220ed26a0d17a961a912d12cb445226ae5c7eda7b35d2597a276352e38f2d8a28ec5fbe3354ba42b4c1aed96b182904f89d75b8967fdbfd8", 0x97}, {&(0x7f0000000a40)="cdaa4f5c0b47cad29cd044f5ffcc21a794709fea6bdd312c2c261bc2b0bb4ec91ebc28a79bd76146f82ddafd4c43907794166805c16f9cddcca3e0d92dd4a2e5703b7f1123aa5dca06cbc66b254641b12b0aeca5c7a269d69b0cae46635c3d1b9097cb22147549c2bc48274502471ac78130f7212e7db19f8f00687dd4d79eaf52d187ffe5411b6dbab903790e4a0ffcec3d3d4e7abbf044edfa0107871ac2e618e118b2ab139076a447e068fda118efac1e86", 0xb3}, {&(0x7f0000000b00)="b5bc09924b8031913054dc695176b14b82b172957cafd5955f5039674082375855b37c437a37d6b3e06710e7b9c8f147a508f1c4fe43ce2b80e9f679f632bdf4a4dd328d7760fb4c0be93bc3d47381f474f46df3484decad54dd8bd19fa3f4e4f74772be", 0x64}, {&(0x7f0000000b80)="53f06b847b0c5dc39a3d1cd48cddc5c12e2463e9a0bb589052e49c5195f15076afcd2c0fc0128e8b81f7e561943271d1b7531aab1714dad3a8aba0bb94de48826744b70132e5924a048605a73dd6ccece42a2d4bff72d116da54a2f917ddc9760f5bdd47d7ec623a6a3e1a8e66e901453b03c1426442abdad93dcfdc396edf93098e295a05b2f1c1a3ce9506b7c726dca81fa5539e18a5ece5fe73049b2a8ced257a1a15f3aba57e919aa0c70ab525e5b5919a6a5ea962ebc25a9ef04e5d4af308", 0xc1}, {&(0x7f0000000c80)="c9053d32ba43a154e94bde4f6851fc3a0268617759011476cb7ca5ae12fe14e275aaff670f7a52b99f6d6fc0c2d61ca3a9f0f3e473422cdaa357bec6a4f11ebd147a14c503", 0x45}], 0xa, &(0x7f0000000dc0)=[@ip_retopts={{0x34, 0x0, 0x7, {[@rr={0x7, 0x23, 0x65, [@empty, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102, @dev={0xac, 0x14, 0x14, 0x2f}, @multicast1, @multicast2, @dev={0xac, 0x14, 0x14, 0x36}]}]}}}, @ip_retopts={{0x10}}, @ip_retopts={{0x2c, 0x0, 0x7, {[@timestamp_prespec={0x44, 0xc, 0x5b, 0x3, 0xc, [{@multicast2, 0x100}]}, @timestamp={0x44, 0x10, 0x64, 0x0, 0x8, [0x5, 0x5, 0x56]}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x2}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}], 0xa8}}, {{&(0x7f00000003c0)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000001340)=[{&(0x7f0000000e80)="3347ab79942a7969a1b5fd2a8319c4af3c1fc02c1a36a7bbbc2ce02dd407ecfb4b0c14d922303129a02f888afc8365e46bf25e8ea4062f1558f4c86c940304838f821780f822fe309b56f0d2f8124f6ade53b5147408d0a55c57347a47c601ab33685c94641ccb83e4051f9e00f017b286f420a13f6725b4c257532d5325f42b85fd96b26d1bb633a5cfc126d7603b3405d9918fbde9937aa9ce7481a0e8205acc910e36528b32805549fc3569a87ad728b205d2568c574a7495", 0xba}, {&(0x7f0000000f40)="a44af6f2659e690518e5ed0734d64a30050f935433fee1ecad9805400989c1b5ad9d97e9a5cb37618e1471e2c1238bd9da3296af053e6730c9bdaa9ff0e012cf2903cc8b119c490e02d95fd878ea27fb6a8cbbec19daf57e1b3021a77881e90fae4710aeaff1d6076fd8a0d299f5563c2fe434d3386e4f43614abf908a30cdc50045a748ae9d3867e1d60b4fc7d35c75232d5f884274d923c7b805e8637ccd7a17b7a308f6f8a1f9737bd44187e3219fc1e1169ede0ddb25", 0xb8}, {&(0x7f0000001000)="8d9a2a0554928b81112f570c639a06160320a14635eb783af58b3bc96cb0bd0b1df0ae118f295d76376d3a09e9bffd0a45267423939efd03cf76917546ccddec20c3b8bdf73fc51e8118a6e94699b931eecc5372e4aac2080a6d79646dbc7a3a766f58551e55232f5df2aa416d74926837f27ef2f9190038736203b38caf56e50d1bdec01c763f1128006856ca0d4a0a09f2", 0x92}, {&(0x7f00000010c0)="394ac8c70031bde6884a4a5f6156ffcb0a43b45c0a6b4a71afce5de5a7ff0a24bef6318354bd9a4e27bca874e7c3025cc31fd7e3afe640268c6c082dd0a106b6e6744168be14f4710b2671adf35bf93130dd61a634bb09039d3059bae68e00e73fc6f4c2c82312d7a12e370121b4b7288cbd2d23b3b7300b56275dc2162426", 0x7f}, {&(0x7f0000001a80)="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", 0x11e}, {&(0x7f0000001bc0)="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", 0x100}, {&(0x7f0000001280)="70cabcdedb3dbedb829b31c18e7b228d8ea6e2449b407ccbabe80f79082ff34ea4dd5d1b45b64b3990037b69ae1e805782519d2a882f931013cbd3416a8c973c2f0e0fb848255913d0c19642f86b27280a3462abcf07bdd81d43425bf7de211cab506fe8c848862db5cf7f6a1819589c53468af327175f97d23baba7cad7f35006ecc0d78bcbdc2809fb8b929b59cc8a73ec01e56062ceb7fac942da0218ce7f48a7ba48", 0xa4}], 0x7, &(0x7f0000001440)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @broadcast, @private=0xa010102}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @loopback}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast1, @rand_addr=0x64010101}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_retopts={{0x40, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x2c, 0xb9, 0x3, 0x9, [{@empty, 0x7}, {@private=0xa010102, 0x101}, {@broadcast, 0x3}, {@remote, 0xfffffffb}, {@local, 0x81}]}, @noop]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @empty}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x24e}}, @ip_ttl={{0x14, 0x0, 0x2, 0x7f}}], 0x110}}, {{&(0x7f0000001580)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000016c0)=[{&(0x7f00000015c0)}, {&(0x7f0000001600)="1cd25f6c04ed4e9aad18f10a248b836cae0266b99c070989704c5089f071df9c91d1a176567879c8713a506985a619dc87849bbff036dfd8dccb8d49fae470112456074126665011ea0efac659bac6aa9875043b7c4184c54ada3041d7fe2a78b10b90c127628364b1a2045c037d128df431a9112bdbb9afe06abc99ba209213ff0dc79dc0ff405ba2c13dc3a69e01f8", 0x90}], 0x2, &(0x7f0000001740)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x8}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010101, @rand_addr=0x64010102}}}, @ip_retopts={{0x94, 0x0, 0x7, {[@timestamp_addr={0x44, 0x34, 0x35, 0x1, 0x6, [{@multicast2, 0xee8}, {@private=0xa010100, 0x8}, {@multicast2}, {@multicast1, 0x2b2}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@broadcast, 0x1000}]}, @end, @cipso={0x86, 0x45, 0x2, [{0x0, 0x4, "ba49"}, {0x2, 0x7, "fa6743526f"}, {0x7, 0xd, "47ef1802787c44d7954e3c"}, {0x0, 0xf, "f4322058d0c008f8b60610b32e"}, {0x0, 0xb, "475825862af27fca6d"}, {0x7, 0x6, "e27921ef"}, {0x924a0def4c1212d7, 0x7, "c1149985c6"}]}, @ra={0x94, 0x4, 0x1}, @timestamp={0x44, 0x4, 0xd8}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @local, @local}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xff}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x7f}}], 0x140}}], 0x3, 0x4044054) (async)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xd, 0x4, 0x7, 0x9, 0xc2e, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x48)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0) (async)
ioctl$sock_bt_hci(r4, 0x0, &(0x7f00000001c0)="7c59953df3aeabe30a944250707c467b22cd38e5f11edf9202abb5c3a420740453e32707826c7f5cba43c35498291698218df517879a7c7d08250702786a4505a9edfc8470fe8ecb142d8540a8d526883f0943195853aa0321a0f95d288140613505ecb375722c593c7d2d8f6ba1977b4f631b4115609fbdc9d8566e9dccec0a7fabbcff7592e7f7eccdea50beb639d0c89344e45c460009083eed23db218ccdfa9462d852bfb4a72ce0c70e65c7b5760d2a42b8aa9c26119cd207abd3108bfd504daade19e5851fea05abe7842f92bd790ecc55778abc10854ac14ae963662db1") (async)
r9 = syz_genetlink_get_family_id$batadv(&(0x7f0000001980), r4)
connect$tipc(r4, &(0x7f0000001140)=@nameseq={0x1e, 0x1, 0x1, {0x0, 0x1, 0x3}}, 0x10) (async, rerun: 32)
sendmsg$BATADV_CMD_GET_HARDIF(r4, &(0x7f0000001a40)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001a00)={&(0x7f00000019c0)={0x24, r9, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x8010}, 0x800) (async, rerun: 32)
socketpair(0x18, 0x2, 0x100, &(0x7f0000000180)) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:13 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x4fe0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3420.589104][ T6122] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
07:14:13 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9f2a0000}}}}]}, 0x78}}, 0x131c)

07:14:13 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3420.670395][ T6122] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3420.705059][ T6122] CPU: 1 PID: 6122 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3420.715458][ T6122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3420.725548][ T6122] Call Trace:
[ 3420.728848][ T6122]  <TASK>
[ 3420.731803][ T6122]  dump_stack_lvl+0x136/0x150
[ 3420.736522][ T6122]  sysfs_warn_dup+0x80/0xa0
[ 3420.741059][ T6122]  sysfs_do_create_link_sd+0x11e/0x140
[ 3420.746555][ T6122]  sysfs_create_link+0x63/0xc0
[ 3420.751361][ T6122]  device_add+0x5e5/0x1c50
[ 3420.755833][ T6122]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3420.762734][ T6122]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3420.768667][ T6122]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3420.774713][ T6122]  wiphy_register+0x1f88/0x2ae0
[ 3420.779626][ T6122]  ? wiphy_unregister+0xb40/0xb40
[ 3420.784701][ T6122]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3420.789877][ T6122]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3420.795920][ T6122]  ieee80211_register_hw+0x23c1/0x40e0
[ 3420.801440][ T6122]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3420.807026][ T6122]  ? net_generic+0xd9/0x2a0
[ 3420.811570][ T6122]  ? debug_object_free+0x360/0x360
[ 3420.816727][ T6122]  ? lockdep_init_map_type+0x21e/0x810
[ 3420.822232][ T6122]  ? __hrtimer_init+0x145/0x280
[ 3420.827136][ T6122]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3420.832928][ T6122]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3420.839663][ T6122]  hwsim_new_radio_nl+0xad6/0x1210
[ 3420.844822][ T6122]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3420.850785][ T6122]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3420.858191][ T6122]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3420.865520][ T6122]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3420.871713][ T6122]  ? genl_start+0x660/0x660
[ 3420.876262][ T6122]  ? ns_capable+0xe0/0x110
[ 3420.880733][ T6122]  genl_rcv_msg+0x4ff/0x7e0
[ 3420.885276][ T6122]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3420.891645][ T6122]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3420.897595][ T6122]  netlink_rcv_skb+0x165/0x440
[ 3420.902409][ T6122]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3420.908781][ T6122]  ? netlink_ack+0x1360/0x1360
[ 3420.913631][ T6122]  genl_rcv+0x28/0x40
07:14:14 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = socket$inet(0x2, 0x800, 0xff) (async)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
getsockopt(r2, 0x1bb017e1, 0x5, &(0x7f0000000080)=""/174, &(0x7f0000000140)=0xae)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x4}, 0x6) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
getsockname$packet(r4, &(0x7f00000004c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000540)=0x14) (async)
getsockopt$PNPIPE_IFINDEX(r4, 0x113, 0x2, &(0x7f00000013c0)=<r6=>0x0, &(0x7f0000001400)=0x4) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000001700)={'batadv0\x00', <r7=>0x0})
sendmmsg$inet(r1, &(0x7f00000018c0)=[{{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000300)="64c16fc1d279bf1a82fb2b2ad2934e9920ec1718ebf5a62319633129eb958835e326a757e7f648ad8a3007e2ed782de0ac8d993e9b624df57dd33c4bb42fea67bf09b15c4ecb", 0x46}, {&(0x7f00000005c0)="17177cb3c64f942f2a6cb54c536200c81fc53ba14e37310c7146780e80017e0c093af5e2df567a6c03912deeda69a07d3d6b51336699872ee77a6c8be2097fb8ea37cac0e10c5b9a019db4f40718fdc12df6f6944ce47db2c5a32b98dcae2ed59a5d859a3eb785bde54af56c3397c43537b44a6f6852eb2000fc7f01aacec924fa9529896f539eafa480cd76f9ba9077866f16457d086a683bce27efbf48c8b5c5e0f878b7c523d355a35edc44d6fa400767d6a18b0c15ea645362519b001e79f8484ca2294e3289b532eb084d9b8d5267ed49", 0xd3}, {&(0x7f0000000700)="f94ee390378def498a4a20e59da84850ccf838bfd16d8018d5a3a2b7a15e6a80e876c0c3a485b9f63af202443bda7f4317ecffb28782d60a1756ec6f6a27b6e7ef8e8c52eef5ad8967ec7c953867fa8bb45e9cdde81089d0659a4e1f9b959fa92ed0daa05e1af859155d7cb2fd392b5267717ea530a65cab9dc49d477dcbcaea4a48bedcbe41c101ad5f9a7fb6ab3c79c545c02b6be1", 0x96}, {&(0x7f0000000940)="718e45f9acabda898d69b95b806a83e56e13509ad08e53589608842c12bf23dd9679711fe699f59d5ffa8ee333a4aad96c20155137553fbb0483cfddc040041d4ae6a994dd72c14bbe3fe552151737a942155721bece4d2c22f1f0a4ea1c116ae04f2dd47642d804f45498d9b07c9f22f292cc532449dce79bbed82e5feba760b6a9fe7d68141f82ff30e8b70d3a0a9cc37679628a9c982bfc2686c0884884c78f90f8897f78c5a7d95bc1840042f18d12821742fe765007dba5a43de39cd1a2ca1ea581cdf02f6edb06f3c5df58365b95a1310d13c38055bb", 0xd9}, {&(0x7f0000000380)="c068eed7e999c8662c2392117123daf4fbb46f7eb5db19fa431a5e1974b4732812a4c2cacd24d52104e26d86368c3939ebe38df6e3ac8427d8022646", 0x3c}, {&(0x7f00000007c0)="a735ea0b0122d96584006a15813f1174100f1c3edcc7cd443201f2f48f9efcaf82eb4ca16c076317aa9e1cd3f180a8af67b96e6ed9b7a76b43d294f87e3009345185addc6ce0f75fc68911ba6e2c1f70f24eb8e636647579b744c9e088a974220ed26a0d17a961a912d12cb445226ae5c7eda7b35d2597a276352e38f2d8a28ec5fbe3354ba42b4c1aed96b182904f89d75b8967fdbfd8", 0x97}, {&(0x7f0000000a40)="cdaa4f5c0b47cad29cd044f5ffcc21a794709fea6bdd312c2c261bc2b0bb4ec91ebc28a79bd76146f82ddafd4c43907794166805c16f9cddcca3e0d92dd4a2e5703b7f1123aa5dca06cbc66b254641b12b0aeca5c7a269d69b0cae46635c3d1b9097cb22147549c2bc48274502471ac78130f7212e7db19f8f00687dd4d79eaf52d187ffe5411b6dbab903790e4a0ffcec3d3d4e7abbf044edfa0107871ac2e618e118b2ab139076a447e068fda118efac1e86", 0xb3}, {&(0x7f0000000b00)="b5bc09924b8031913054dc695176b14b82b172957cafd5955f5039674082375855b37c437a37d6b3e06710e7b9c8f147a508f1c4fe43ce2b80e9f679f632bdf4a4dd328d7760fb4c0be93bc3d47381f474f46df3484decad54dd8bd19fa3f4e4f74772be", 0x64}, {&(0x7f0000000b80)="53f06b847b0c5dc39a3d1cd48cddc5c12e2463e9a0bb589052e49c5195f15076afcd2c0fc0128e8b81f7e561943271d1b7531aab1714dad3a8aba0bb94de48826744b70132e5924a048605a73dd6ccece42a2d4bff72d116da54a2f917ddc9760f5bdd47d7ec623a6a3e1a8e66e901453b03c1426442abdad93dcfdc396edf93098e295a05b2f1c1a3ce9506b7c726dca81fa5539e18a5ece5fe73049b2a8ced257a1a15f3aba57e919aa0c70ab525e5b5919a6a5ea962ebc25a9ef04e5d4af308", 0xc1}, {&(0x7f0000000c80)="c9053d32ba43a154e94bde4f6851fc3a0268617759011476cb7ca5ae12fe14e275aaff670f7a52b99f6d6fc0c2d61ca3a9f0f3e473422cdaa357bec6a4f11ebd147a14c503", 0x45}], 0xa, &(0x7f0000000dc0)=[@ip_retopts={{0x34, 0x0, 0x7, {[@rr={0x7, 0x23, 0x65, [@empty, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102, @dev={0xac, 0x14, 0x14, 0x2f}, @multicast1, @multicast2, @dev={0xac, 0x14, 0x14, 0x36}]}]}}}, @ip_retopts={{0x10}}, @ip_retopts={{0x2c, 0x0, 0x7, {[@timestamp_prespec={0x44, 0xc, 0x5b, 0x3, 0xc, [{@multicast2, 0x100}]}, @timestamp={0x44, 0x10, 0x64, 0x0, 0x8, [0x5, 0x5, 0x56]}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x2}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}], 0xa8}}, {{&(0x7f00000003c0)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000001340)=[{&(0x7f0000000e80)="3347ab79942a7969a1b5fd2a8319c4af3c1fc02c1a36a7bbbc2ce02dd407ecfb4b0c14d922303129a02f888afc8365e46bf25e8ea4062f1558f4c86c940304838f821780f822fe309b56f0d2f8124f6ade53b5147408d0a55c57347a47c601ab33685c94641ccb83e4051f9e00f017b286f420a13f6725b4c257532d5325f42b85fd96b26d1bb633a5cfc126d7603b3405d9918fbde9937aa9ce7481a0e8205acc910e36528b32805549fc3569a87ad728b205d2568c574a7495", 0xba}, {&(0x7f0000000f40)="a44af6f2659e690518e5ed0734d64a30050f935433fee1ecad9805400989c1b5ad9d97e9a5cb37618e1471e2c1238bd9da3296af053e6730c9bdaa9ff0e012cf2903cc8b119c490e02d95fd878ea27fb6a8cbbec19daf57e1b3021a77881e90fae4710aeaff1d6076fd8a0d299f5563c2fe434d3386e4f43614abf908a30cdc50045a748ae9d3867e1d60b4fc7d35c75232d5f884274d923c7b805e8637ccd7a17b7a308f6f8a1f9737bd44187e3219fc1e1169ede0ddb25", 0xb8}, {&(0x7f0000001000)="8d9a2a0554928b81112f570c639a06160320a14635eb783af58b3bc96cb0bd0b1df0ae118f295d76376d3a09e9bffd0a45267423939efd03cf76917546ccddec20c3b8bdf73fc51e8118a6e94699b931eecc5372e4aac2080a6d79646dbc7a3a766f58551e55232f5df2aa416d74926837f27ef2f9190038736203b38caf56e50d1bdec01c763f1128006856ca0d4a0a09f2", 0x92}, {&(0x7f00000010c0)="394ac8c70031bde6884a4a5f6156ffcb0a43b45c0a6b4a71afce5de5a7ff0a24bef6318354bd9a4e27bca874e7c3025cc31fd7e3afe640268c6c082dd0a106b6e6744168be14f4710b2671adf35bf93130dd61a634bb09039d3059bae68e00e73fc6f4c2c82312d7a12e370121b4b7288cbd2d23b3b7300b56275dc2162426", 0x7f}, {&(0x7f0000001a80)="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", 0x11e}, {&(0x7f0000001bc0)="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", 0x100}, {&(0x7f0000001280)="70cabcdedb3dbedb829b31c18e7b228d8ea6e2449b407ccbabe80f79082ff34ea4dd5d1b45b64b3990037b69ae1e805782519d2a882f931013cbd3416a8c973c2f0e0fb848255913d0c19642f86b27280a3462abcf07bdd81d43425bf7de211cab506fe8c848862db5cf7f6a1819589c53468af327175f97d23baba7cad7f35006ecc0d78bcbdc2809fb8b929b59cc8a73ec01e56062ceb7fac942da0218ce7f48a7ba48", 0xa4}], 0x7, &(0x7f0000001440)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @broadcast, @private=0xa010102}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @loopback}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast1, @rand_addr=0x64010101}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_retopts={{0x40, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x2c, 0xb9, 0x3, 0x9, [{@empty, 0x7}, {@private=0xa010102, 0x101}, {@broadcast, 0x3}, {@remote, 0xfffffffb}, {@local, 0x81}]}, @noop]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @empty}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x24e}}, @ip_ttl={{0x14, 0x0, 0x2, 0x7f}}], 0x110}}, {{&(0x7f0000001580)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000016c0)=[{&(0x7f00000015c0)}, {&(0x7f0000001600)="1cd25f6c04ed4e9aad18f10a248b836cae0266b99c070989704c5089f071df9c91d1a176567879c8713a506985a619dc87849bbff036dfd8dccb8d49fae470112456074126665011ea0efac659bac6aa9875043b7c4184c54ada3041d7fe2a78b10b90c127628364b1a2045c037d128df431a9112bdbb9afe06abc99ba209213ff0dc79dc0ff405ba2c13dc3a69e01f8", 0x90}], 0x2, &(0x7f0000001740)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x8}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010101, @rand_addr=0x64010102}}}, @ip_retopts={{0x94, 0x0, 0x7, {[@timestamp_addr={0x44, 0x34, 0x35, 0x1, 0x6, [{@multicast2, 0xee8}, {@private=0xa010100, 0x8}, {@multicast2}, {@multicast1, 0x2b2}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@broadcast, 0x1000}]}, @end, @cipso={0x86, 0x45, 0x2, [{0x0, 0x4, "ba49"}, {0x2, 0x7, "fa6743526f"}, {0x7, 0xd, "47ef1802787c44d7954e3c"}, {0x0, 0xf, "f4322058d0c008f8b60610b32e"}, {0x0, 0xb, "475825862af27fca6d"}, {0x7, 0x6, "e27921ef"}, {0x924a0def4c1212d7, 0x7, "c1149985c6"}]}, @ra={0x94, 0x4, 0x1}, @timestamp={0x44, 0x4, 0xd8}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @local, @local}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xff}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x7f}}], 0x140}}], 0x3, 0x4044054) (async)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xd, 0x4, 0x7, 0x9, 0xc2e, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x48)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
ioctl$sock_bt_hci(r4, 0x0, &(0x7f00000001c0)="7c59953df3aeabe30a944250707c467b22cd38e5f11edf9202abb5c3a420740453e32707826c7f5cba43c35498291698218df517879a7c7d08250702786a4505a9edfc8470fe8ecb142d8540a8d526883f0943195853aa0321a0f95d288140613505ecb375722c593c7d2d8f6ba1977b4f631b4115609fbdc9d8566e9dccec0a7fabbcff7592e7f7eccdea50beb639d0c89344e45c460009083eed23db218ccdfa9462d852bfb4a72ce0c70e65c7b5760d2a42b8aa9c26119cd207abd3108bfd504daade19e5851fea05abe7842f92bd790ecc55778abc10854ac14ae963662db1") (async)
r9 = syz_genetlink_get_family_id$batadv(&(0x7f0000001980), r4)
connect$tipc(r4, &(0x7f0000001140)=@nameseq={0x1e, 0x1, 0x1, {0x0, 0x1, 0x3}}, 0x10) (async)
sendmsg$BATADV_CMD_GET_HARDIF(r4, &(0x7f0000001a40)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001a00)={&(0x7f00000019c0)={0x24, r9, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x8010}, 0x800)
socketpair(0x18, 0x2, 0x100, &(0x7f0000000180))
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3420.917664][ T6122]  netlink_unicast+0x547/0x7f0
[ 3420.922479][ T6122]  ? netlink_attachskb+0x890/0x890
[ 3420.927637][ T6122]  ? __virt_addr_valid+0x61/0x2e0
[ 3420.932706][ T6122]  ? __phys_addr_symbol+0x30/0x70
[ 3420.937775][ T6122]  ? __check_object_size+0x323/0x730
[ 3420.943107][ T6122]  netlink_sendmsg+0x925/0xe30
[ 3420.947929][ T6122]  ? netlink_unicast+0x7f0/0x7f0
[ 3420.952923][ T6122]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3420.958251][ T6122]  ? netlink_unicast+0x7f0/0x7f0
[ 3420.963236][ T6122]  sock_sendmsg+0xde/0x190
[ 3420.967708][ T6122]  ____sys_sendmsg+0x71c/0x900
[ 3420.972523][ T6122]  ? copy_msghdr_from_user+0xfc/0x150
[ 3420.977934][ T6122]  ? kernel_sendmsg+0x50/0x50
[ 3420.982682][ T6122]  ___sys_sendmsg+0x110/0x1b0
[ 3420.987393][ T6122]  ? do_recvmmsg+0x6e0/0x6e0
[ 3420.992019][ T6122]  ? __fget_files+0x248/0x480
[ 3420.996733][ T6122]  ? lock_downgrade+0x690/0x690
[ 3421.001630][ T6122]  ? futex_wake_mark+0x1a0/0x1a0
[ 3421.006624][ T6122]  ? __fget_files+0x26a/0x480
[ 3421.011347][ T6122]  ? __fget_light+0xe5/0x270
[ 3421.015981][ T6122]  __sys_sendmsg+0xf7/0x1c0
[ 3421.020521][ T6122]  ? __sys_sendmsg_sock+0x40/0x40
[ 3421.025592][ T6122]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3421.031637][ T6122]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3421.037576][ T6122]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3421.042828][ T6122]  do_syscall_64+0x39/0xb0
[ 3421.047294][ T6122]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3421.053232][ T6122] RIP: 0033:0x7fb4bf08c169
[ 3421.057672][ T6122] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3421.077321][ T6122] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3421.085776][ T6122] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3421.093793][ T6122] RDX: 0000000000004c00 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3421.101803][ T6122] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3421.109834][ T6122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
07:14:14 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
write$bt_hci(r0, &(0x7f0000000180)={0x1, @create_logical_link={{0x438, 0x21}, {0xc9, {0x6, 0x3, 0x0, 0x3, 0x8, 0x1}, {0x1f, 0x81, 0x401, 0x2, 0x8, 0xcddf}}}}, 0x25)
ioctl$INCFS_IOC_PERMIT_FILL(r1, 0x40046721, &(0x7f0000000000)={r1})
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)="1b2092f54fb145fe6d134e604eb516427b9b9149d40c78c2efed39cfc5fa1eb345bee394d9d530f67fbd24784416d3fc9115263b5437d15ce99c7f7d", 0x3c}, {&(0x7f0000000780)="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", 0x112}, {&(0x7f0000000240)="d3ee94abd8739250bbea28ab8fd3d99c805af787615d8f3e7f1e9e439d262698289df41e1c19d5ac852cf16525df059a471dda8e8c4f14c2c186bc7bb5c528e58c598886819dc7133b11c75594bbc8f76ae2aa574b24502708ffcab1af3bd44669dd757de8c3b7ec07c363c95eb508e13b58414892526e498bc492b850a56c5575d85c125bc1d71da6fff06fb9bdf32e473d906e61359eb0cb358003174a32f91fbee16eb7c36a0fa5e1ebb56f80719189074c9d8e119aa879ea751991cd3b44973f2d39d77754712518aa81a2be7645687bbe3418614e334d1f6d444b4b388e69720372d47396fb7c0dbfc67dc9f9ed7149", 0xf2}, {&(0x7f00000008c0)="3dde402ef687e41fc84403f9f09101c60b2ddf2b9beb3f7a6e12938f8e6053a28bcc822c2d6c0f661841973f5e65050a5fa688d643f9278cf33f174d4a94e4690dfb53e275013b1aa544b7eca0a2934506b0f2343e20a4025a7805369596930728e447f59f93fff12bfa99fdb84f674834af8d046b59f7a9a09464d616ac749f5925fcd3d372f23631a77e785dbfe6305e5d6c43ed239b9d78c0937a67faa4601f3d67ec99869cf9c89d8d972ff24f1a97a0663a1c24942d12f87aa13f336ac5ee6e2f266d47d7b96ff49702f7ea1b02db5e13c45f7dffd3783fe493cdd68c1ed870155d30563578e96a2e7d7d33d39c81bcb2", 0xf3}, {&(0x7f0000000340)="fd"}, {&(0x7f0000000380)="abddeaeb3ca46d7a1ba5b0c5ef2c0f98dc409f5771910f08752afc91dfa4c936f3fb991280abae4b5969afd5770f633daff41380c5147a0cb3d40243cd8e17ace97f7cf3671136", 0x47}, {&(0x7f0000000400)="efc79b78576237b9a512ddabdb33157ea0b308f3abfd41bf8a44eb312f62700afbc3164c466c5dfbf2cd4c4bf4cb406f079a79a0311e4b22d2cac77bf4f540b1c57d47c509848795ecd039bd02ca35c98e7506ab28c53997d23bcbef9c52eb4c3645201ff2ff69d961c55e4ded03ee7c4228327980b4ef1a582b9e4e96532ebd5d4aefa68cddaa2adc1379d4a2", 0x8d}, {&(0x7f0000000540)="ea2511de7dd2bdf6b700cc575b1da6a516cec78a970af73438392c02f73583701f0773db78dad9e73b70621bda112a14c52fb2c804304ac2281de55b624fe9d3681bd4950efa4d4cc011e9fb985ba5043c9739588e3e50", 0x57}, {&(0x7f00000005c0)="5618ebdc8530e003469c280dbe52b389c52d8f3841cb3550761aad84f035cab582d08339ef320085c318861628b5839fff4ff53db704bc7ff437e933e16088ce48e422c164371529a341e732acd76a0461dbd9541ee3fbd31ca5d45756fa1c3b382ed959fa4b106c051e0903ac148927e7860896af9ed689c9e8202a00543d50f3b78f3fe53052e637555d12a46b33d9ca94e38497f5a5266f281813b3e04553c59b06e6bb1bc6a335d6eb84a354cb717850ea4fd98cb10f21e5b2efc5f3275f7e44b41a03d703743a0b78bba695acf9cda769f2da", 0xd5}], 0x9)

07:14:14 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async, rerun: 64)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async, rerun: 64)
write$bt_hci(r0, &(0x7f0000000180)={0x1, @create_logical_link={{0x438, 0x21}, {0xc9, {0x6, 0x3, 0x0, 0x3, 0x8, 0x1}, {0x1f, 0x81, 0x401, 0x2, 0x8, 0xcddf}}}}, 0x25)
ioctl$INCFS_IOC_PERMIT_FILL(r1, 0x40046721, &(0x7f0000000000)={r1}) (async, rerun: 32)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)="1b2092f54fb145fe6d134e604eb516427b9b9149d40c78c2efed39cfc5fa1eb345bee394d9d530f67fbd24784416d3fc9115263b5437d15ce99c7f7d", 0x3c}, {&(0x7f0000000780)="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", 0x112}, {&(0x7f0000000240)="d3ee94abd8739250bbea28ab8fd3d99c805af787615d8f3e7f1e9e439d262698289df41e1c19d5ac852cf16525df059a471dda8e8c4f14c2c186bc7bb5c528e58c598886819dc7133b11c75594bbc8f76ae2aa574b24502708ffcab1af3bd44669dd757de8c3b7ec07c363c95eb508e13b58414892526e498bc492b850a56c5575d85c125bc1d71da6fff06fb9bdf32e473d906e61359eb0cb358003174a32f91fbee16eb7c36a0fa5e1ebb56f80719189074c9d8e119aa879ea751991cd3b44973f2d39d77754712518aa81a2be7645687bbe3418614e334d1f6d444b4b388e69720372d47396fb7c0dbfc67dc9f9ed7149", 0xf2}, {&(0x7f00000008c0)="3dde402ef687e41fc84403f9f09101c60b2ddf2b9beb3f7a6e12938f8e6053a28bcc822c2d6c0f661841973f5e65050a5fa688d643f9278cf33f174d4a94e4690dfb53e275013b1aa544b7eca0a2934506b0f2343e20a4025a7805369596930728e447f59f93fff12bfa99fdb84f674834af8d046b59f7a9a09464d616ac749f5925fcd3d372f23631a77e785dbfe6305e5d6c43ed239b9d78c0937a67faa4601f3d67ec99869cf9c89d8d972ff24f1a97a0663a1c24942d12f87aa13f336ac5ee6e2f266d47d7b96ff49702f7ea1b02db5e13c45f7dffd3783fe493cdd68c1ed870155d30563578e96a2e7d7d33d39c81bcb2", 0xf3}, {&(0x7f0000000340)="fd"}, {&(0x7f0000000380)="abddeaeb3ca46d7a1ba5b0c5ef2c0f98dc409f5771910f08752afc91dfa4c936f3fb991280abae4b5969afd5770f633daff41380c5147a0cb3d40243cd8e17ace97f7cf3671136", 0x47}, {&(0x7f0000000400)="efc79b78576237b9a512ddabdb33157ea0b308f3abfd41bf8a44eb312f62700afbc3164c466c5dfbf2cd4c4bf4cb406f079a79a0311e4b22d2cac77bf4f540b1c57d47c509848795ecd039bd02ca35c98e7506ab28c53997d23bcbef9c52eb4c3645201ff2ff69d961c55e4ded03ee7c4228327980b4ef1a582b9e4e96532ebd5d4aefa68cddaa2adc1379d4a2", 0x8d}, {&(0x7f0000000540)="ea2511de7dd2bdf6b700cc575b1da6a516cec78a970af73438392c02f73583701f0773db78dad9e73b70621bda112a14c52fb2c804304ac2281de55b624fe9d3681bd4950efa4d4cc011e9fb985ba5043c9739588e3e50", 0x57}, {&(0x7f00000005c0)="5618ebdc8530e003469c280dbe52b389c52d8f3841cb3550761aad84f035cab582d08339ef320085c318861628b5839fff4ff53db704bc7ff437e933e16088ce48e422c164371529a341e732acd76a0461dbd9541ee3fbd31ca5d45756fa1c3b382ed959fa4b106c051e0903ac148927e7860896af9ed689c9e8202a00543d50f3b78f3fe53052e637555d12a46b33d9ca94e38497f5a5266f281813b3e04553c59b06e6bb1bc6a335d6eb84a354cb717850ea4fd98cb10f21e5b2efc5f3275f7e44b41a03d703743a0b78bba695acf9cda769f2da", 0xd5}], 0x9) (rerun: 32)

07:14:14 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf0ffffff}}}}]}, 0x78}}, 0x131c)

[ 3421.117842][ T6122] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3421.125871][ T6122]  </TASK>
07:14:14 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:14 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
write$bt_hci(r0, &(0x7f0000000180)={0x1, @create_logical_link={{0x438, 0x21}, {0xc9, {0x6, 0x3, 0x0, 0x3, 0x8, 0x1}, {0x1f, 0x81, 0x401, 0x2, 0x8, 0xcddf}}}}, 0x25)
ioctl$INCFS_IOC_PERMIT_FILL(r1, 0x40046721, &(0x7f0000000000)={r1})
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)="1b2092f54fb145fe6d134e604eb516427b9b9149d40c78c2efed39cfc5fa1eb345bee394d9d530f67fbd24784416d3fc9115263b5437d15ce99c7f7d", 0x3c}, {&(0x7f0000000780)="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", 0x112}, {&(0x7f0000000240)="d3ee94abd8739250bbea28ab8fd3d99c805af787615d8f3e7f1e9e439d262698289df41e1c19d5ac852cf16525df059a471dda8e8c4f14c2c186bc7bb5c528e58c598886819dc7133b11c75594bbc8f76ae2aa574b24502708ffcab1af3bd44669dd757de8c3b7ec07c363c95eb508e13b58414892526e498bc492b850a56c5575d85c125bc1d71da6fff06fb9bdf32e473d906e61359eb0cb358003174a32f91fbee16eb7c36a0fa5e1ebb56f80719189074c9d8e119aa879ea751991cd3b44973f2d39d77754712518aa81a2be7645687bbe3418614e334d1f6d444b4b388e69720372d47396fb7c0dbfc67dc9f9ed7149", 0xf2}, {&(0x7f00000008c0)="3dde402ef687e41fc84403f9f09101c60b2ddf2b9beb3f7a6e12938f8e6053a28bcc822c2d6c0f661841973f5e65050a5fa688d643f9278cf33f174d4a94e4690dfb53e275013b1aa544b7eca0a2934506b0f2343e20a4025a7805369596930728e447f59f93fff12bfa99fdb84f674834af8d046b59f7a9a09464d616ac749f5925fcd3d372f23631a77e785dbfe6305e5d6c43ed239b9d78c0937a67faa4601f3d67ec99869cf9c89d8d972ff24f1a97a0663a1c24942d12f87aa13f336ac5ee6e2f266d47d7b96ff49702f7ea1b02db5e13c45f7dffd3783fe493cdd68c1ed870155d30563578e96a2e7d7d33d39c81bcb2", 0xf3}, {&(0x7f0000000340)="fd"}, {&(0x7f0000000380)="abddeaeb3ca46d7a1ba5b0c5ef2c0f98dc409f5771910f08752afc91dfa4c936f3fb991280abae4b5969afd5770f633daff41380c5147a0cb3d40243cd8e17ace97f7cf3671136", 0x47}, {&(0x7f0000000400)="efc79b78576237b9a512ddabdb33157ea0b308f3abfd41bf8a44eb312f62700afbc3164c466c5dfbf2cd4c4bf4cb406f079a79a0311e4b22d2cac77bf4f540b1c57d47c509848795ecd039bd02ca35c98e7506ab28c53997d23bcbef9c52eb4c3645201ff2ff69d961c55e4ded03ee7c4228327980b4ef1a582b9e4e96532ebd5d4aefa68cddaa2adc1379d4a2", 0x8d}, {&(0x7f0000000540)="ea2511de7dd2bdf6b700cc575b1da6a516cec78a970af73438392c02f73583701f0773db78dad9e73b70621bda112a14c52fb2c804304ac2281de55b624fe9d3681bd4950efa4d4cc011e9fb985ba5043c9739588e3e50", 0x57}, {&(0x7f00000005c0)="5618ebdc8530e003469c280dbe52b389c52d8f3841cb3550761aad84f035cab582d08339ef320085c318861628b5839fff4ff53db704bc7ff437e933e16088ce48e422c164371529a341e732acd76a0461dbd9541ee3fbd31ca5d45756fa1c3b382ed959fa4b106c051e0903ac148927e7860896af9ed689c9e8202a00543d50f3b78f3fe53052e637555d12a46b33d9ca94e38497f5a5266f281813b3e04553c59b06e6bb1bc6a335d6eb84a354cb717850ea4fd98cb10f21e5b2efc5f3275f7e44b41a03d703743a0b78bba695acf9cda769f2da", 0xd5}], 0x9) (async)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)="1b2092f54fb145fe6d134e604eb516427b9b9149d40c78c2efed39cfc5fa1eb345bee394d9d530f67fbd24784416d3fc9115263b5437d15ce99c7f7d", 0x3c}, {&(0x7f0000000780)="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", 0x112}, {&(0x7f0000000240)="d3ee94abd8739250bbea28ab8fd3d99c805af787615d8f3e7f1e9e439d262698289df41e1c19d5ac852cf16525df059a471dda8e8c4f14c2c186bc7bb5c528e58c598886819dc7133b11c75594bbc8f76ae2aa574b24502708ffcab1af3bd44669dd757de8c3b7ec07c363c95eb508e13b58414892526e498bc492b850a56c5575d85c125bc1d71da6fff06fb9bdf32e473d906e61359eb0cb358003174a32f91fbee16eb7c36a0fa5e1ebb56f80719189074c9d8e119aa879ea751991cd3b44973f2d39d77754712518aa81a2be7645687bbe3418614e334d1f6d444b4b388e69720372d47396fb7c0dbfc67dc9f9ed7149", 0xf2}, {&(0x7f00000008c0)="3dde402ef687e41fc84403f9f09101c60b2ddf2b9beb3f7a6e12938f8e6053a28bcc822c2d6c0f661841973f5e65050a5fa688d643f9278cf33f174d4a94e4690dfb53e275013b1aa544b7eca0a2934506b0f2343e20a4025a7805369596930728e447f59f93fff12bfa99fdb84f674834af8d046b59f7a9a09464d616ac749f5925fcd3d372f23631a77e785dbfe6305e5d6c43ed239b9d78c0937a67faa4601f3d67ec99869cf9c89d8d972ff24f1a97a0663a1c24942d12f87aa13f336ac5ee6e2f266d47d7b96ff49702f7ea1b02db5e13c45f7dffd3783fe493cdd68c1ed870155d30563578e96a2e7d7d33d39c81bcb2", 0xf3}, {&(0x7f0000000340)="fd"}, {&(0x7f0000000380)="abddeaeb3ca46d7a1ba5b0c5ef2c0f98dc409f5771910f08752afc91dfa4c936f3fb991280abae4b5969afd5770f633daff41380c5147a0cb3d40243cd8e17ace97f7cf3671136", 0x47}, {&(0x7f0000000400)="efc79b78576237b9a512ddabdb33157ea0b308f3abfd41bf8a44eb312f62700afbc3164c466c5dfbf2cd4c4bf4cb406f079a79a0311e4b22d2cac77bf4f540b1c57d47c509848795ecd039bd02ca35c98e7506ab28c53997d23bcbef9c52eb4c3645201ff2ff69d961c55e4ded03ee7c4228327980b4ef1a582b9e4e96532ebd5d4aefa68cddaa2adc1379d4a2", 0x8d}, {&(0x7f0000000540)="ea2511de7dd2bdf6b700cc575b1da6a516cec78a970af73438392c02f73583701f0773db78dad9e73b70621bda112a14c52fb2c804304ac2281de55b624fe9d3681bd4950efa4d4cc011e9fb985ba5043c9739588e3e50", 0x57}, {&(0x7f00000005c0)="5618ebdc8530e003469c280dbe52b389c52d8f3841cb3550761aad84f035cab582d08339ef320085c318861628b5839fff4ff53db704bc7ff437e933e16088ce48e422c164371529a341e732acd76a0461dbd9541ee3fbd31ca5d45756fa1c3b382ed959fa4b106c051e0903ac148927e7860896af9ed689c9e8202a00543d50f3b78f3fe53052e637555d12a46b33d9ca94e38497f5a5266f281813b3e04553c59b06e6bb1bc6a335d6eb84a354cb717850ea4fd98cb10f21e5b2efc5f3275f7e44b41a03d703743a0b78bba695acf9cda769f2da", 0xd5}], 0x9)

07:14:14 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5811)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:14 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3421.298978][ T6134] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:14 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf1ffffff}}}}]}, 0x78}}, 0x131c)

[ 3421.351008][ T6134] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3421.397812][ T6134] CPU: 0 PID: 6134 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3421.408208][ T6134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3421.418302][ T6134] Call Trace:
[ 3421.421611][ T6134]  <TASK>
[ 3421.424565][ T6134]  dump_stack_lvl+0x136/0x150
[ 3421.429294][ T6134]  sysfs_warn_dup+0x80/0xa0
[ 3421.433843][ T6134]  sysfs_do_create_link_sd+0x11e/0x140
[ 3421.439346][ T6134]  sysfs_create_link+0x63/0xc0
[ 3421.444145][ T6134]  device_add+0x5e5/0x1c50
[ 3421.448611][ T6134]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3421.455510][ T6134]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3421.461443][ T6134]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3421.467488][ T6134]  wiphy_register+0x1f88/0x2ae0
[ 3421.472402][ T6134]  ? wiphy_unregister+0xb40/0xb40
[ 3421.477472][ T6134]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3421.482645][ T6134]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3421.488685][ T6134]  ieee80211_register_hw+0x23c1/0x40e0
[ 3421.494203][ T6134]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3421.499795][ T6134]  ? debug_object_free+0x360/0x360
[ 3421.504950][ T6134]  ? lockdep_init_map_type+0x21e/0x810
[ 3421.510453][ T6134]  ? __hrtimer_init+0x145/0x280
[ 3421.515352][ T6134]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3421.521131][ T6134]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3421.527862][ T6134]  hwsim_new_radio_nl+0xad6/0x1210
[ 3421.533019][ T6134]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3421.538969][ T6134]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3421.546376][ T6134]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3421.553708][ T6134]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3421.559900][ T6134]  ? genl_start+0x660/0x660
[ 3421.564451][ T6134]  ? ns_capable+0xe0/0x110
[ 3421.568920][ T6134]  genl_rcv_msg+0x4ff/0x7e0
[ 3421.573458][ T6134]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3421.579821][ T6134]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3421.585770][ T6134]  netlink_rcv_skb+0x165/0x440
[ 3421.590584][ T6134]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3421.596952][ T6134]  ? netlink_ack+0x1360/0x1360
[ 3421.601797][ T6134]  genl_rcv+0x28/0x40
[ 3421.605832][ T6134]  netlink_unicast+0x547/0x7f0
[ 3421.610648][ T6134]  ? netlink_attachskb+0x890/0x890
[ 3421.615803][ T6134]  ? __virt_addr_valid+0x61/0x2e0
[ 3421.620874][ T6134]  ? __phys_addr_symbol+0x30/0x70
[ 3421.625939][ T6134]  ? __check_object_size+0x323/0x730
[ 3421.631272][ T6134]  netlink_sendmsg+0x925/0xe30
[ 3421.636094][ T6134]  ? netlink_unicast+0x7f0/0x7f0
[ 3421.641086][ T6134]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3421.646415][ T6134]  ? netlink_unicast+0x7f0/0x7f0
[ 3421.651400][ T6134]  sock_sendmsg+0xde/0x190
[ 3421.655867][ T6134]  ____sys_sendmsg+0x71c/0x900
[ 3421.660679][ T6134]  ? copy_msghdr_from_user+0xfc/0x150
[ 3421.666086][ T6134]  ? kernel_sendmsg+0x50/0x50
[ 3421.670833][ T6134]  ___sys_sendmsg+0x110/0x1b0
[ 3421.675548][ T6134]  ? do_recvmmsg+0x6e0/0x6e0
[ 3421.680173][ T6134]  ? __fget_files+0x248/0x480
[ 3421.684972][ T6134]  ? lock_downgrade+0x690/0x690
[ 3421.689863][ T6134]  ? futex_wake_mark+0x1a0/0x1a0
[ 3421.694860][ T6134]  ? __fget_files+0x26a/0x480
[ 3421.699581][ T6134]  ? __fget_light+0xe5/0x270
[ 3421.704208][ T6134]  __sys_sendmsg+0xf7/0x1c0
[ 3421.708751][ T6134]  ? __sys_sendmsg_sock+0x40/0x40
[ 3421.713812][ T6134]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3421.719764][ T6134]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3421.725699][ T6134]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3421.730935][ T6134]  do_syscall_64+0x39/0xb0
[ 3421.735396][ T6134]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3421.741333][ T6134] RIP: 0033:0x7f837868c169
[ 3421.745774][ T6134] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3421.765422][ T6134] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3421.773872][ T6134] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3421.781863][ T6134] RDX: 4fe0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3421.789828][ T6134] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
07:14:15 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x50e0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:15 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x1, 0x6, 0x10001, 0x80000000, 0x7})
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x4}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:15 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x6000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3421.797809][ T6134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3421.805816][ T6134] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3421.813813][ T6134]  </TASK>
07:14:15 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x1, 0x6, 0x10001, 0x80000000, 0x7})
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x4}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x1, 0x6, 0x10001, 0x80000000, 0x7}) (async)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x4}, 0x6) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)

07:14:15 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffa888}}}}]}, 0x78}}, 0x131c)

07:14:15 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:15 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

[ 3421.868171][ T6185] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3421.901645][ T6185] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3421.941242][ T6185] CPU: 1 PID: 6185 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3421.951639][ T6185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3421.961720][ T6185] Call Trace:
[ 3421.965023][ T6185]  <TASK>
[ 3421.967978][ T6185]  dump_stack_lvl+0x136/0x150
[ 3421.972695][ T6185]  sysfs_warn_dup+0x80/0xa0
[ 3421.977237][ T6185]  sysfs_do_create_link_sd+0x11e/0x140
[ 3421.982736][ T6185]  sysfs_create_link+0x63/0xc0
07:14:15 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x1, 0x6, 0x10001, 0x80000000, 0x7})
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x4}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x1, 0x6, 0x10001, 0x80000000, 0x7}) (async)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x4}, 0x6) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)

[ 3421.987541][ T6185]  device_add+0x5e5/0x1c50
[ 3421.992007][ T6185]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3421.998906][ T6185]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3422.004839][ T6185]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3422.010885][ T6185]  wiphy_register+0x1f88/0x2ae0
[ 3422.015808][ T6185]  ? wiphy_unregister+0xb40/0xb40
[ 3422.020877][ T6185]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3422.026051][ T6185]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3422.032085][ T6185]  ieee80211_register_hw+0x23c1/0x40e0
07:14:15 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000000540)={0x0, 0x0, "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", "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"})

[ 3422.037606][ T6185]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3422.043197][ T6185]  ? debug_object_free+0x360/0x360
[ 3422.048354][ T6185]  ? lockdep_init_map_type+0x21e/0x810
[ 3422.053871][ T6185]  ? __hrtimer_init+0x145/0x280
[ 3422.058780][ T6185]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3422.064572][ T6185]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3422.071309][ T6185]  hwsim_new_radio_nl+0xad6/0x1210
[ 3422.076471][ T6185]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3422.082419][ T6185]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3422.089834][ T6185]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3422.097165][ T6185]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3422.103358][ T6185]  ? genl_start+0x660/0x660
[ 3422.107906][ T6185]  ? ns_capable+0xe0/0x110
[ 3422.112375][ T6185]  genl_rcv_msg+0x4ff/0x7e0
[ 3422.116914][ T6185]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3422.123308][ T6185]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3422.129245][ T6185]  ? lock_downgrade+0x690/0x690
[ 3422.134140][ T6185]  netlink_rcv_skb+0x165/0x440
[ 3422.138958][ T6185]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3422.145318][ T6185]  ? netlink_ack+0x1360/0x1360
[ 3422.150161][ T6185]  genl_rcv+0x28/0x40
[ 3422.154191][ T6185]  netlink_unicast+0x547/0x7f0
[ 3422.159006][ T6185]  ? netlink_attachskb+0x890/0x890
[ 3422.164157][ T6185]  ? __virt_addr_valid+0x61/0x2e0
[ 3422.169224][ T6185]  ? __phys_addr_symbol+0x30/0x70
[ 3422.174298][ T6185]  ? __check_object_size+0x323/0x730
[ 3422.179632][ T6185]  netlink_sendmsg+0x925/0xe30
[ 3422.184450][ T6185]  ? netlink_unicast+0x7f0/0x7f0
[ 3422.189445][ T6185]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3422.194774][ T6185]  ? netlink_unicast+0x7f0/0x7f0
[ 3422.199763][ T6185]  sock_sendmsg+0xde/0x190
[ 3422.204234][ T6185]  ____sys_sendmsg+0x71c/0x900
[ 3422.209044][ T6185]  ? copy_msghdr_from_user+0xfc/0x150
[ 3422.214451][ T6185]  ? kernel_sendmsg+0x50/0x50
[ 3422.219190][ T6185]  ___sys_sendmsg+0x110/0x1b0
[ 3422.223905][ T6185]  ? do_recvmmsg+0x6e0/0x6e0
[ 3422.228534][ T6185]  ? __fget_files+0x248/0x480
[ 3422.233246][ T6185]  ? lock_downgrade+0x690/0x690
[ 3422.238137][ T6185]  ? futex_wake_mark+0x1a0/0x1a0
[ 3422.243134][ T6185]  ? __fget_files+0x26a/0x480
[ 3422.247851][ T6185]  ? __fget_light+0xe5/0x270
[ 3422.252486][ T6185]  __sys_sendmsg+0xf7/0x1c0
[ 3422.257025][ T6185]  ? __sys_sendmsg_sock+0x40/0x40
[ 3422.262090][ T6185]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3422.268049][ T6185]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3422.273981][ T6185]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3422.279218][ T6185]  do_syscall_64+0x39/0xb0
[ 3422.283680][ T6185]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3422.289616][ T6185] RIP: 0033:0x7fb4bf08c169
[ 3422.294056][ T6185] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3422.313700][ T6185] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3422.322147][ T6185] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3422.330148][ T6185] RDX: 0000000000006000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3422.338150][ T6185] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3422.346154][ T6185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3422.354149][ T6185] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3422.362167][ T6185]  </TASK>
07:14:15 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:15 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000000540)={0x0, 0x0, "c1e43ba8138b91a8ed9e2d72420887a3b70c8b3611cabeeef0cba0db75ac40c4e822aadf5a7cd1b921537af13faf4dc7e1259f293e424d14437aeaef0bc8455d232ec873a2193cd04ca3a3f4ce46c0741f17c051d41243da6f9defd141dc3bc214c348e889e6d755ac0e5540bd63255404242fc2dd3fef00b6335b65f2821dcde5d2f3944da33833f0bf45bda22a37121ddbdb2d8eb58c6b8891100e65ca42e6f3edbc49748a02f2e1b6818c24cedcbe4e45f9a9660d6a331f918431b7a0797061706347e9dbfc279291c445681a1d13a8e260a071883b61d721a975ceca71033421330c346925b76cf2058342d643357ad3d73d210d9144ec439e29b2d72fe9", "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"})

[ 3422.397434][ T6187] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:15 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfffff000}}}}]}, 0x78}}, 0x131c)

[ 3422.444278][ T6187] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3422.493828][ T6187] CPU: 1 PID: 6187 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3422.504231][ T6187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3422.514315][ T6187] Call Trace:
[ 3422.517617][ T6187]  <TASK>
[ 3422.520588][ T6187]  dump_stack_lvl+0x136/0x150
[ 3422.525306][ T6187]  sysfs_warn_dup+0x80/0xa0
[ 3422.529851][ T6187]  sysfs_do_create_link_sd+0x11e/0x140
[ 3422.535357][ T6187]  sysfs_create_link+0x63/0xc0
[ 3422.540162][ T6187]  device_add+0x5e5/0x1c50
[ 3422.544634][ T6187]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3422.551541][ T6187]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3422.557477][ T6187]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3422.563533][ T6187]  wiphy_register+0x1f88/0x2ae0
[ 3422.568449][ T6187]  ? wiphy_unregister+0xb40/0xb40
[ 3422.573523][ T6187]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3422.578699][ T6187]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3422.584733][ T6187]  ieee80211_register_hw+0x23c1/0x40e0
[ 3422.590234][ T6187]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3422.595808][ T6187]  ? debug_object_free+0x360/0x360
[ 3422.600948][ T6187]  ? lockdep_init_map_type+0x21e/0x810
[ 3422.606440][ T6187]  ? __hrtimer_init+0x145/0x280
[ 3422.611328][ T6187]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3422.617097][ T6187]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3422.623810][ T6187]  hwsim_new_radio_nl+0xad6/0x1210
[ 3422.628949][ T6187]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3422.634880][ T6187]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3422.642265][ T6187]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3422.649584][ T6187]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3422.655765][ T6187]  ? genl_start+0x660/0x660
[ 3422.660296][ T6187]  ? ns_capable+0xe0/0x110
[ 3422.664769][ T6187]  genl_rcv_msg+0x4ff/0x7e0
[ 3422.669298][ T6187]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3422.675649][ T6187]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3422.681586][ T6187]  netlink_rcv_skb+0x165/0x440
[ 3422.686385][ T6187]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3422.692734][ T6187]  ? netlink_ack+0x1360/0x1360
[ 3422.697554][ T6187]  genl_rcv+0x28/0x40
[ 3422.701563][ T6187]  netlink_unicast+0x547/0x7f0
[ 3422.706361][ T6187]  ? netlink_attachskb+0x890/0x890
[ 3422.711498][ T6187]  ? __virt_addr_valid+0x61/0x2e0
[ 3422.716547][ T6187]  ? __phys_addr_symbol+0x30/0x70
[ 3422.721597][ T6187]  ? __check_object_size+0x323/0x730
[ 3422.726911][ T6187]  netlink_sendmsg+0x925/0xe30
[ 3422.731707][ T6187]  ? netlink_unicast+0x7f0/0x7f0
[ 3422.736683][ T6187]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3422.741992][ T6187]  ? netlink_unicast+0x7f0/0x7f0
[ 3422.746956][ T6187]  sock_sendmsg+0xde/0x190
[ 3422.751403][ T6187]  ____sys_sendmsg+0x71c/0x900
[ 3422.756191][ T6187]  ? copy_msghdr_from_user+0xfc/0x150
[ 3422.761578][ T6187]  ? kernel_sendmsg+0x50/0x50
[ 3422.766296][ T6187]  ___sys_sendmsg+0x110/0x1b0
[ 3422.770991][ T6187]  ? do_recvmmsg+0x6e0/0x6e0
[ 3422.775600][ T6187]  ? __fget_files+0x248/0x480
[ 3422.780288][ T6187]  ? lock_downgrade+0x690/0x690
[ 3422.785158][ T6187]  ? futex_wake_mark+0x1a0/0x1a0
[ 3422.790128][ T6187]  ? __fget_files+0x26a/0x480
[ 3422.794823][ T6187]  ? __fget_light+0xe5/0x270
[ 3422.799432][ T6187]  __sys_sendmsg+0xf7/0x1c0
[ 3422.803957][ T6187]  ? __sys_sendmsg_sock+0x40/0x40
[ 3422.808997][ T6187]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3422.814933][ T6187]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3422.820849][ T6187]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3422.826068][ T6187]  do_syscall_64+0x39/0xb0
[ 3422.830514][ T6187]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3422.836435][ T6187] RIP: 0033:0x7f837868c169
[ 3422.840863][ T6187] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3422.860482][ T6187] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3422.868913][ T6187] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3422.876903][ T6187] RDX: 50e0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3422.884885][ T6187] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
07:14:16 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x60ed)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3422.892878][ T6187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3422.900872][ T6187] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3422.908963][ T6187]  </TASK>
07:14:16 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x51e0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:16 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000000540)={0x0, 0x0, "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", "448c3d9f2db7d4e01658cf704cd70f53e7dff975a454d3fbaeb3ff5aad098bcf4454271a10cd6c40863d5f37d8ed6b44c4e0a35ec52254d13dac4e45874707e4ff4d32e0dc33091c3153414ef06af1e859ba399bd6deb5e1fe67e8d6e5794e92db71ed7945922ae89bbdc8746ab563dedf88f020f37a403c6022526b805f4adfda194c5cfac38d2b71c90a5185fa528e52b5574ca600f909e82a4cd8d682846014e4b7150875a6e32856017f86ea265c9e49c6c1d63ca8b83e1dcbd93346a7305eb5d766272e10858f11f66627590371bc5c4068ffa78eb51cf284a5161a0b9e9fd5e4d0f72d5de276737ee14bfa24ea9d09a40e718761a30142a4cf94ff9b39aaf2cd18a89816a4b2679cb17907065b886ee69c11ca99e498584a70f9bc2ce0fc8349e0e57b193e6e58a83f4bd2bf54cfb576f9ea57e3d2e74e00d191b9fa1128421802695dcd6f81ac3fc7e021a206f87d55215389f7a414ceb19510d5a69afbe44ce188740c282406ee8b8df10484a3a62fdb6a1032065e48fd8d5c8c5f43385c5aaa4247f4327c0f70194da5fe741d1c66609f75ae7c363a0f6874b4c3c6306cf227984aa3eed82feac0f8ed43d63527289285a66578250491c3934a320ee685201b6de491e875a2421fdd5875690e9ea5d81c5b8a7677112fc34cf94d98be60957359bfed4c58462996c2f1f5392c54614f58883e6b4740b564d538b66d5f280b96f02708edc8cf1e621ddaf845a0b75d0038391d475c52e10d13e96a4e45646a0d2ea38fde4cb3765e19db1ccc5185bfaab807248f0d39caab746d06cc8839db2d65dc5c6714be92364b6591383235d45cefadfbf72159dc29709497e693351d82d828690dfce33ffd6c20298e7af55af0365c70badb23619b9519c048d8cbc040a9d750b944bd7fd67ac8d12323dbba1fcd961932dfca54f761548afec250fc4393a991dfcf7888ffd3669d1d806a07c8064e2ca255c005d039477f1e4822a16e24af8f0035ed78fb79f7281297d7a61495ad20f10bc70dc37f28374f835afaa09baa86fb408263b5be9f889f4d16ac3c7352c9d676a41f001947520a1ee4696ac4ff6c66c248c03c4ffc9555b626e9e2d299df470a93a951a8c40a57fb771e852f48bfad5952b90866165a27aa85cc6ab5bc58abd1d1588d79257abba13556b7d815e99a028b1b15a69958a3d62d484db4c7805ea9b98d2735e79f3c2aff4d7cf50551ae5ebe0b553076ef1f5579d22e4d720c0266465438b998012611c3d63f6c509bde128463ad6e546d90fe4ec4ab988da93807448e118f74d9f9663bde237c9a059bde1e913519045b827b177150cd8b4da6ae800d99d57a009801cc4c903d137650a9434b93c13dcb23c478fe0b7f57b6ed48337bd587d83a606ef181e85b8adf9c007be15b697e9d556beabb9a154a26bc354fead8698265b90b403e44861740a106616518ed5c1e88314776ee102977916a530c5386820a7cdbd74157c6638255e94db386aa1e2e18f5a0503be0b9be37be88150601b3ae19873ff92529a209b1f2fb671b7e6f5fa7100385ae3f178130dbb7f0f04d5c07b8cbe2c33874bdb4482ec71bab012e2c3ff488ff86b6134dad013fcc1e3f9bc53483bf8700d1dc5159b5dda56e14d66453abd16e8e4690dfa818dc30d71a7421f6c9da7c2a87f4f5bef7997ada7720ac0b2f3a98cdd0789127f4bb4701c9b0eaefb8989a4a7836994989ed7e79bafe087a8e5bbd83ecadcd52730adfe1ac8186a4ee85b8a8e3d010faaac809f59d59fc5e3c28114e7f75bdbf66557342b0f37c60a6682e4e43a729f534be4fbe3f069fe52313094493b2b996610b319e5f6d7a66abd2b59b9e9f2aad7fe34e854baf94a25381ebd705e7558d1df71132afe16eb273f040ece566b5feb9223dd4a58a53fc2f347c6c78f2797f5512fb8063d1797d8b796d49aeac7d43799bf440ede3b1bddeb5c496d25404bfdcd719c3700c8527b7120d2ece75c0a600bb47333499c270ba50293cbd2a88222a0e6a1e948f920689018847a3302be13333f2d6707318f723112731f108529e7785c0b0c1165cd70a7cb68ed32226f0e6ff107878b8d03f688ac7e8bc8538ff90de263811bb241a3e649b29d3878ce0d6d6b74d35191285f3b33150358d09183f38da996a7752629a1a4c8ee984109cddf88a8c460b76f77818b9fbda904dd87641582438409fa1b170a346570a0263daad9ff2dc2b903fdea9de34f3548c73e0fab9d65e860f0393d46a4662e5845609ff527ab04c37d99c2e8b56360b23ea4da4faa7560a435f3c6d780284b9937fe0ba2ae9dc8159abc402687d73263de89686ef7bc2f85f8c94200d8af954aaee0d8f5ec3e29e257bc8074dede88dac7f2f16c149e6e2b34ab0b37653dfc6db7a1d922ae98df336a20a0eb0c85e2560079924243f32772be3d9e64a9cefa65181669230c2deee5650600a026ca121d0272fb21d50133ded54fff08b99c40edeeedd354c3a0e760ecfebadf3e2b9b230a4bd07aed2c25710db5f70ddb8452a4b00b2ba1351b91682819d33e81c067bac045725f9543c31fa2f901362313173d9d7c5f4ba122241bb2dfd6ff38ff4255c766db98e4b7463d07fc59751c104044f373ceaf0562f5be44c2ba523e9bb1fa4ebab7c42026d2caddd42cb7dcefe600157a99d6239adf5f0677245b20cb43e4ff48a12598a5657e7057e7a9e061d9ed3bdcce40c3a2a579ab20e80f812724fe2c8e51ec10ea55051986c08f433549d8c66a16cea67d33adee27e2c20ee455846318d18128dba0771c21b78585e74db68daa28e641123e4350a999e7d1cf1f3652d588056a1ce64160d636d39d1e262c7d0e276e551e9d6ada8a5292c49c44d3009fd4753e0c9a07d97d174f49712e59464d8afde1f45da4e33ed86a1cfc198c9c386736ad56816ee8dfe54c1bc3f2d6b9203689d720c0d7163ba58fb1fb76a736ab5eb2cccce475bf9929898c6178005334d2507c46586e8c433f6e8874e0e1c8e7016835ace81be7f6778330c6eccbb81e33608890ee42425f5fcc6575f4c38779901c19a794d96a2d7158c0a16b7a12aa22a0436b6e797c6ae5cae915aa912b4b785bb6bc03a5a2e8778c75af8f6a5ecc73799725bdc2aedc7f75f2a3e7787da0a9c13417116991b50f72ea5a8d9d727ebb801ef0e14b235c584f6cb85b1c4fe60920927098271ca2aa62977719ce173bdb7433940f3dfde15b05b215e8fe1f7e6a4bfcc349c215e5c1b7c0c10a0c84e9b2730e1d3004287a5813c52bc73ec2d88fcef119771be281a3723917513192f56b63549c3be674e9801c163dd0f549a4420b8b1affa61715345f2c02d9558509f02263a42dc1647a6857a52794725c33bfcf7ca1b7562473410af2db19a0ece4883683d7150035bb24f953a881ad013a7dd8a45bb0813b538582df8cb3923fe6b5414e4db357b9311caa58030722e0ee43076799987675d5e001eb395a9e14e9ea7dbeac6a58686d3ab62837a9ce150680a3a069f08ba6db944c65d8a3fcf31776cd6c137627d0b610303e3e3f8ce623945425846f61931af638a136a586e90e36dcc347ea4357f4a22b89bc65464c7927ec5e889918c4be709e3afbfebf58363d10b9306137fa08a7c0ac26456d15567adb4ebe844c35efffde0b02d244d8fbcec0e12f5cd7c57c697531484db4071afad5803addacbcabcd1d2a3c6a5e037112a72a2885da3069b808fb60d5e9e5597f3e2f0dbc074e8bb9b1c8c380dabfd72191b3da46aa94fced6df71c57b5d9541b358d05360de01b0740cd467f3acd37b454f97522d6ccd0e3377e5623ea3d9e99720e22b372e0d2caa90bc0136a67b34ebf4dc00824b9a5346886cc1b23851652102aa6c8424eeff07b8d04f351ec487719348ebc32db0697f9c26a9c2b668323806500ecd045420ed0e199a8422708c3e7cf93fdebdc88d5ef5e5bd7c0c26159ed88d6ed9d2bdf8127db0916b402cff2bf120c5b37f53434633222747c5ff1f77127daaa02ed097b921b29b3b7dbd0d699dc3ff9b7a88e2f5c96562f223ae21c51318956798a6fdef0ec5b0664efe28f3e698f78cb9e07b17f33132a79cc7dbd1f6a73ea9bbff22188c9f56d5ac3a7dc8d5b6f01e471a6af8edd900243b33fa612ab3af6293c386f1675584dfaab34c76fc1c8ebbae760371d7e9e3bb8ef1f433f6ff92b49ec01300f4a57abb8f43dc10d263bf427fd593a7fc090326f9e1772cb6105263ca7fab03743907d08181d4cd5e73fa70e0d63d944140ea1f49c5a212b64f51fe7966099777685fccc022bc471ce1858961161ec56e3e8cc89206a003b71680a63b1bc9ab128b8f9ecaaacef1899e32f560a5685b95f74d73bca937393290288020389809a4be62f6783c6bf53949df27ab90d39b9c04ab699eb70250c1e3b919cc2aec6d0933bed182061beefa92bccae6e3c9b68bd419152de07deedb6f2983d8a1ea5fc7b21c282a0098e764fdbabe4a467c2cdaf1f6282b13e731b3befbb37c47184aa81bfd4db4f72008741f802bb95a5ada06ec30c5515a60a47aaaf65a856a48d6159d8ec4f39f1b67d67f5c35ba3a40a2b7010319112636be00ae23332a3b70b0333417ae246cfa93695a7afbb298568a743ab46465c2352d9eb2d3d972904a4a68a83397f3c40bf1a9097cbdcc879a817cdaa703a6aab9dd294819b3978ec0af8270743244c7f295dfb898cb418e615118d43dc7ef2fccd09bf52356e35fac202be42d6c38431acb811d54563089b7352f4d81195fab7571454817e47ccc7ee1b53788cdda2bf57e4901c176e15a88e152c6afcaf897a4f47b686c8e88dff546661d405a412d0c6e0ea122a8d71be81e81eef9e2274a78ab640e9de98ee1ff9edf762d74e5387c85f5b359753c5f3ce2b00b0d20fcd5bd3421098618d2b74969a0b6537ec37a4e463c7236b03b00823c0847452a8bcf70120e14291834dc52cd420dd7af538eef0b75f0cc6b4d94335d89335953e21ecd244618bd0dbe398abde0f9195f18b13931492d6d824f750222334c64c188e8f801f03cbd1b7ddf888e26f696364682ba8c41e98a98892a35bdb985966e14bcf3a8a5311b624bec92d58b1fa4be49c3fd2b449665032d21f4ed6116047631da56d11ad21bcdbc39202f9d8f1a413b1cf29253cbd179fb9b92ec2042ff1bd37b2ead95caa7fd92ab069b6ce1647a75c6882e92ae5ecd34f03a8a3eb490fc0478663efe362143e06f258cdce4e5721e9240b1f444364979627d9ba28ae0cb2be7893d68aecd269f28cc45156edc8f2618c4b7c7ddd36dfb9b6dd53ebacc805f40682ab665f50f51256049ee256f702b23b6d50fc9d3735fb1092dbe383502c33bc0a2c970a449b266dfdb7987810d4a03274244c744776719"})
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000000540)={0x0, 0x0, "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", "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"}) (async)

07:14:16 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:16 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x60ff)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:16 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffff7f}}}}]}, 0x78}}, 0x131c)

[ 3423.028066][ T6230] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3423.073014][ T6230] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3423.093611][ T6230] CPU: 0 PID: 6230 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3423.104014][ T6230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3423.114108][ T6230] Call Trace:
[ 3423.117413][ T6230]  <TASK>
[ 3423.120365][ T6230]  dump_stack_lvl+0x136/0x150
[ 3423.125086][ T6230]  sysfs_warn_dup+0x80/0xa0
[ 3423.129649][ T6230]  sysfs_do_create_link_sd+0x11e/0x140
[ 3423.135151][ T6230]  sysfs_create_link+0x63/0xc0
[ 3423.139955][ T6230]  device_add+0x5e5/0x1c50
[ 3423.144423][ T6230]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3423.151320][ T6230]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3423.157254][ T6230]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3423.163281][ T6230]  wiphy_register+0x1f88/0x2ae0
[ 3423.168169][ T6230]  ? wiphy_unregister+0xb40/0xb40
[ 3423.173218][ T6230]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3423.178368][ T6230]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3423.184380][ T6230]  ieee80211_register_hw+0x23c1/0x40e0
[ 3423.189882][ T6230]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3423.195452][ T6230]  ? net_generic+0xd9/0x2a0
[ 3423.199976][ T6230]  ? debug_object_free+0x360/0x360
[ 3423.205113][ T6230]  ? lockdep_init_map_type+0x21e/0x810
[ 3423.210602][ T6230]  ? __hrtimer_init+0x145/0x280
[ 3423.215487][ T6230]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3423.221245][ T6230]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3423.227954][ T6230]  hwsim_new_radio_nl+0xad6/0x1210
[ 3423.233116][ T6230]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3423.239046][ T6230]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3423.246454][ T6230]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3423.253760][ T6230]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3423.259930][ T6230]  ? genl_start+0x660/0x660
[ 3423.264458][ T6230]  ? ns_capable+0xe0/0x110
[ 3423.268900][ T6230]  genl_rcv_msg+0x4ff/0x7e0
[ 3423.273418][ T6230]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3423.279779][ T6230]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3423.285715][ T6230]  ? lock_downgrade+0x690/0x690
[ 3423.290602][ T6230]  netlink_rcv_skb+0x165/0x440
[ 3423.295407][ T6230]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3423.301761][ T6230]  ? netlink_ack+0x1360/0x1360
[ 3423.306589][ T6230]  genl_rcv+0x28/0x40
[ 3423.310601][ T6230]  netlink_unicast+0x547/0x7f0
[ 3423.315400][ T6230]  ? netlink_attachskb+0x890/0x890
[ 3423.320538][ T6230]  ? __virt_addr_valid+0x61/0x2e0
[ 3423.325590][ T6230]  ? __phys_addr_symbol+0x30/0x70
[ 3423.330643][ T6230]  ? __check_object_size+0x323/0x730
[ 3423.335953][ T6230]  netlink_sendmsg+0x925/0xe30
[ 3423.340750][ T6230]  ? netlink_unicast+0x7f0/0x7f0
[ 3423.345727][ T6230]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3423.351036][ T6230]  ? netlink_unicast+0x7f0/0x7f0
[ 3423.356000][ T6230]  sock_sendmsg+0xde/0x190
[ 3423.360447][ T6230]  ____sys_sendmsg+0x71c/0x900
[ 3423.365238][ T6230]  ? copy_msghdr_from_user+0xfc/0x150
[ 3423.370625][ T6230]  ? kernel_sendmsg+0x50/0x50
[ 3423.375344][ T6230]  ___sys_sendmsg+0x110/0x1b0
[ 3423.380036][ T6230]  ? do_recvmmsg+0x6e0/0x6e0
[ 3423.384644][ T6230]  ? __fget_files+0x248/0x480
[ 3423.389335][ T6230]  ? lock_downgrade+0x690/0x690
[ 3423.394208][ T6230]  ? futex_wake_mark+0x1a0/0x1a0
[ 3423.399180][ T6230]  ? __fget_files+0x26a/0x480
[ 3423.403879][ T6230]  ? __fget_light+0xe5/0x270
[ 3423.408491][ T6230]  __sys_sendmsg+0xf7/0x1c0
[ 3423.413011][ T6230]  ? __sys_sendmsg_sock+0x40/0x40
[ 3423.418071][ T6230]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3423.424010][ T6230]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3423.429924][ T6230]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3423.435149][ T6230]  do_syscall_64+0x39/0xb0
[ 3423.439594][ T6230]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3423.445511][ T6230] RIP: 0033:0x7f837868c169
[ 3423.449939][ T6230] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3423.469565][ T6230] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3423.478005][ T6230] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3423.485990][ T6230] RDX: 51e0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3423.493970][ T6230] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3423.501950][ T6230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3423.509932][ T6230] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3423.517934][ T6230]  </TASK>
07:14:16 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:16 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x0, &(0x7f00000000c0)={<r4=>0x0, <r5=>0x0})
setsockopt$sock_timeval(r3, 0x1, 0x42, &(0x7f0000000100)={r4, r5/1000+60000}, 0x10)
write$binfmt_script(r2, &(0x7f0000000000)={'#! ', './file0', [{}], 0xa, "3c99042c48fabcfc352dbff3cbf6a0663ab8e0b4"}, 0x20)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:16 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:16 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x61ed)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:16 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x62ed)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:16 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:16 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x63ed)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:16 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffff9e}}}}]}, 0x78}}, 0x131c)

07:14:16 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x52e0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:16 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:16 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x64ed)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3423.745680][ T6254] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:17 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfffffff0}}}}]}, 0x78}}, 0x131c)

[ 3423.814013][ T6254] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3423.845794][ T6254] CPU: 1 PID: 6254 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3423.856192][ T6254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3423.866278][ T6254] Call Trace:
[ 3423.869582][ T6254]  <TASK>
[ 3423.872530][ T6254]  dump_stack_lvl+0x136/0x150
[ 3423.877231][ T6254]  sysfs_warn_dup+0x80/0xa0
[ 3423.881752][ T6254]  sysfs_do_create_link_sd+0x11e/0x140
[ 3423.887228][ T6254]  sysfs_create_link+0x63/0xc0
[ 3423.892012][ T6254]  device_add+0x5e5/0x1c50
[ 3423.896461][ T6254]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3423.903334][ T6254]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3423.909244][ T6254]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3423.915260][ T6254]  wiphy_register+0x1f88/0x2ae0
[ 3423.920148][ T6254]  ? wiphy_unregister+0xb40/0xb40
[ 3423.925194][ T6254]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3423.930338][ T6254]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3423.936356][ T6254]  ieee80211_register_hw+0x23c1/0x40e0
[ 3423.941857][ T6254]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3423.947430][ T6254]  ? debug_object_free+0x360/0x360
[ 3423.952565][ T6254]  ? lockdep_init_map_type+0x21e/0x810
[ 3423.958053][ T6254]  ? __hrtimer_init+0x145/0x280
[ 3423.962936][ T6254]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3423.968695][ T6254]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3423.975402][ T6254]  hwsim_new_radio_nl+0xad6/0x1210
[ 3423.980537][ T6254]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3423.986464][ T6254]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3423.993852][ T6254]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3424.001156][ T6254]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3424.007328][ T6254]  ? genl_start+0x660/0x660
[ 3424.011854][ T6254]  ? ns_capable+0xe0/0x110
[ 3424.016295][ T6254]  genl_rcv_msg+0x4ff/0x7e0
[ 3424.020815][ T6254]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3424.027158][ T6254]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3424.033087][ T6254]  netlink_rcv_skb+0x165/0x440
[ 3424.037908][ T6254]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3424.044278][ T6254]  ? netlink_ack+0x1360/0x1360
[ 3424.049113][ T6254]  genl_rcv+0x28/0x40
[ 3424.053128][ T6254]  netlink_unicast+0x547/0x7f0
[ 3424.057928][ T6254]  ? netlink_attachskb+0x890/0x890
[ 3424.063070][ T6254]  ? __virt_addr_valid+0x61/0x2e0
[ 3424.068129][ T6254]  ? __phys_addr_symbol+0x30/0x70
[ 3424.073179][ T6254]  ? __check_object_size+0x323/0x730
[ 3424.078491][ T6254]  netlink_sendmsg+0x925/0xe30
[ 3424.083287][ T6254]  ? netlink_unicast+0x7f0/0x7f0
[ 3424.088259][ T6254]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3424.093565][ T6254]  ? netlink_unicast+0x7f0/0x7f0
[ 3424.098528][ T6254]  sock_sendmsg+0xde/0x190
[ 3424.102972][ T6254]  ____sys_sendmsg+0x71c/0x900
[ 3424.107762][ T6254]  ? copy_msghdr_from_user+0xfc/0x150
[ 3424.113154][ T6254]  ? kernel_sendmsg+0x50/0x50
[ 3424.117878][ T6254]  ___sys_sendmsg+0x110/0x1b0
[ 3424.122571][ T6254]  ? do_recvmmsg+0x6e0/0x6e0
[ 3424.127179][ T6254]  ? __fget_files+0x248/0x480
[ 3424.131871][ T6254]  ? lock_downgrade+0x690/0x690
[ 3424.136743][ T6254]  ? futex_wake_mark+0x1a0/0x1a0
[ 3424.141717][ T6254]  ? __fget_files+0x26a/0x480
[ 3424.146414][ T6254]  ? __fget_light+0xe5/0x270
[ 3424.151024][ T6254]  __sys_sendmsg+0xf7/0x1c0
[ 3424.155547][ T6254]  ? __sys_sendmsg_sock+0x40/0x40
[ 3424.160591][ T6254]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3424.166525][ T6254]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3424.172440][ T6254]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3424.177662][ T6254]  do_syscall_64+0x39/0xb0
[ 3424.182106][ T6254]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3424.188023][ T6254] RIP: 0033:0x7f837868c169
[ 3424.192451][ T6254] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3424.212090][ T6254] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3424.220517][ T6254] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3424.228500][ T6254] RDX: 52e0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3424.236482][ T6254] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3424.244463][ T6254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3424.252446][ T6254] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3424.260455][ T6254]  </TASK>
07:14:17 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:17 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x65ed)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:17 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:17 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x53e0050000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:17 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfffffff1}}}}]}, 0x78}}, 0x131c)

07:14:17 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x0, &(0x7f00000000c0)={<r4=>0x0, <r5=>0x0})
setsockopt$sock_timeval(r3, 0x1, 0x42, &(0x7f0000000100)={r4, r5/1000+60000}, 0x10) (async)
write$binfmt_script(r2, &(0x7f0000000000)={'#! ', './file0', [{}], 0xa, "3c99042c48fabcfc352dbff3cbf6a0663ab8e0b4"}, 0x20) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:17 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x66ed)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:17 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffffff}}}}]}, 0x78}}, 0x131c)

07:14:17 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3424.607639][ T6279] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3424.643858][ T6279] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3424.691264][ T6279] CPU: 0 PID: 6279 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3424.701655][ T6279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3424.711743][ T6279] Call Trace:
[ 3424.715045][ T6279]  <TASK>
[ 3424.717997][ T6279]  dump_stack_lvl+0x136/0x150
[ 3424.722716][ T6279]  sysfs_warn_dup+0x80/0xa0
[ 3424.727264][ T6279]  sysfs_do_create_link_sd+0x11e/0x140
[ 3424.732767][ T6279]  sysfs_create_link+0x63/0xc0
[ 3424.737572][ T6279]  device_add+0x5e5/0x1c50
[ 3424.742042][ T6279]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3424.748940][ T6279]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3424.754856][ T6279]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3424.760886][ T6279]  wiphy_register+0x1f88/0x2ae0
[ 3424.765770][ T6279]  ? wiphy_unregister+0xb40/0xb40
[ 3424.770814][ T6279]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3424.775956][ T6279]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3424.781968][ T6279]  ieee80211_register_hw+0x23c1/0x40e0
[ 3424.787477][ T6279]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3424.793055][ T6279]  ? debug_object_free+0x360/0x360
[ 3424.798191][ T6279]  ? lockdep_init_map_type+0x21e/0x810
[ 3424.803690][ T6279]  ? __hrtimer_init+0x145/0x280
[ 3424.808573][ T6279]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3424.814332][ T6279]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3424.821041][ T6279]  hwsim_new_radio_nl+0xad6/0x1210
[ 3424.826204][ T6279]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3424.832131][ T6279]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3424.839525][ T6279]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3424.846830][ T6279]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3424.853005][ T6279]  ? genl_start+0x660/0x660
[ 3424.857536][ T6279]  ? ns_capable+0xe0/0x110
[ 3424.861986][ T6279]  genl_rcv_msg+0x4ff/0x7e0
[ 3424.866504][ T6279]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3424.872873][ T6279]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3424.878812][ T6279]  netlink_rcv_skb+0x165/0x440
[ 3424.883614][ T6279]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3424.889977][ T6279]  ? netlink_ack+0x1360/0x1360
[ 3424.894823][ T6279]  genl_rcv+0x28/0x40
[ 3424.898849][ T6279]  netlink_unicast+0x547/0x7f0
[ 3424.903657][ T6279]  ? netlink_attachskb+0x890/0x890
[ 3424.908803][ T6279]  ? __virt_addr_valid+0x61/0x2e0
[ 3424.913858][ T6279]  ? __phys_addr_symbol+0x30/0x70
[ 3424.918911][ T6279]  ? __check_object_size+0x323/0x730
[ 3424.924227][ T6279]  netlink_sendmsg+0x925/0xe30
[ 3424.929027][ T6279]  ? netlink_unicast+0x7f0/0x7f0
[ 3424.934003][ T6279]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3424.939313][ T6279]  ? netlink_unicast+0x7f0/0x7f0
[ 3424.944278][ T6279]  sock_sendmsg+0xde/0x190
[ 3424.948745][ T6279]  ____sys_sendmsg+0x71c/0x900
[ 3424.953554][ T6279]  ? copy_msghdr_from_user+0xfc/0x150
[ 3424.958964][ T6279]  ? kernel_sendmsg+0x50/0x50
[ 3424.963699][ T6279]  ___sys_sendmsg+0x110/0x1b0
[ 3424.968406][ T6279]  ? do_recvmmsg+0x6e0/0x6e0
[ 3424.973018][ T6279]  ? __fget_files+0x248/0x480
[ 3424.977728][ T6279]  ? lock_downgrade+0x690/0x690
[ 3424.982606][ T6279]  ? futex_wake_mark+0x1a0/0x1a0
[ 3424.987578][ T6279]  ? __fget_files+0x26a/0x480
[ 3424.992277][ T6279]  ? __fget_light+0xe5/0x270
[ 3424.996889][ T6279]  __sys_sendmsg+0xf7/0x1c0
[ 3425.001410][ T6279]  ? __sys_sendmsg_sock+0x40/0x40
[ 3425.006455][ T6279]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3425.012395][ T6279]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3425.018308][ T6279]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3425.023529][ T6279]  do_syscall_64+0x39/0xb0
[ 3425.027973][ T6279]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3425.033889][ T6279] RIP: 0033:0x7f837868c169
[ 3425.038319][ T6279] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3425.057940][ T6279] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3425.066384][ T6279] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3425.074375][ T6279] RDX: 53e0050000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3425.082365][ T6279] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
07:14:18 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x67ed)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:18 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async, rerun: 32)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (rerun: 32)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async, rerun: 64)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 64)
clock_gettime(0x0, &(0x7f00000000c0)={<r4=>0x0, <r5=>0x0})
setsockopt$sock_timeval(r3, 0x1, 0x42, &(0x7f0000000100)={r4, r5/1000+60000}, 0x10)
write$binfmt_script(r2, &(0x7f0000000000)={'#! ', './file0', [{}], 0xa, "3c99042c48fabcfc352dbff3cbf6a0663ab8e0b4"}, 0x20) (async, rerun: 64)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (rerun: 64)

[ 3425.090348][ T6279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3425.098331][ T6279] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3425.106334][ T6279]  </TASK>
07:14:18 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:18 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:18 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:18 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5811000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:18 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:18 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x6800)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:18 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x2}, 0xfffffffffffffed5)

07:14:18 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x2}, 0xfffffffffffffed5)

[ 3425.525146][ T6309] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
07:14:18 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:18 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}}}]}, 0x78}}, 0x131c)

[ 3425.566786][ T6309] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3425.605414][ T6309] CPU: 1 PID: 6309 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3425.615824][ T6309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3425.625919][ T6309] Call Trace:
[ 3425.629226][ T6309]  <TASK>
[ 3425.632185][ T6309]  dump_stack_lvl+0x136/0x150
[ 3425.636907][ T6309]  sysfs_warn_dup+0x80/0xa0
[ 3425.641449][ T6309]  sysfs_do_create_link_sd+0x11e/0x140
[ 3425.646959][ T6309]  sysfs_create_link+0x63/0xc0
[ 3425.651767][ T6309]  device_add+0x5e5/0x1c50
[ 3425.656232][ T6309]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3425.663127][ T6309]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3425.669065][ T6309]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3425.675109][ T6309]  wiphy_register+0x1f88/0x2ae0
[ 3425.680025][ T6309]  ? wiphy_unregister+0xb40/0xb40
[ 3425.685089][ T6309]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3425.690259][ T6309]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3425.696296][ T6309]  ieee80211_register_hw+0x23c1/0x40e0
[ 3425.701817][ T6309]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3425.707409][ T6309]  ? debug_object_free+0x360/0x360
[ 3425.712566][ T6309]  ? lockdep_init_map_type+0x21e/0x810
[ 3425.718069][ T6309]  ? __hrtimer_init+0x145/0x280
[ 3425.722972][ T6309]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3425.728757][ T6309]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3425.735491][ T6309]  hwsim_new_radio_nl+0xad6/0x1210
[ 3425.740657][ T6309]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3425.746606][ T6309]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3425.754011][ T6309]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3425.761335][ T6309]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3425.767533][ T6309]  ? genl_start+0x660/0x660
[ 3425.772082][ T6309]  ? ns_capable+0xe0/0x110
[ 3425.776549][ T6309]  genl_rcv_msg+0x4ff/0x7e0
[ 3425.781092][ T6309]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3425.787453][ T6309]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3425.793411][ T6309]  netlink_rcv_skb+0x165/0x440
[ 3425.798224][ T6309]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3425.804589][ T6309]  ? netlink_ack+0x1360/0x1360
[ 3425.809449][ T6309]  genl_rcv+0x28/0x40
[ 3425.813487][ T6309]  netlink_unicast+0x547/0x7f0
[ 3425.818309][ T6309]  ? netlink_attachskb+0x890/0x890
[ 3425.823465][ T6309]  ? __virt_addr_valid+0x61/0x2e0
[ 3425.828544][ T6309]  ? __phys_addr_symbol+0x30/0x70
[ 3425.833618][ T6309]  ? __check_object_size+0x323/0x730
[ 3425.838955][ T6309]  netlink_sendmsg+0x925/0xe30
[ 3425.843777][ T6309]  ? netlink_unicast+0x7f0/0x7f0
[ 3425.848769][ T6309]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3425.854098][ T6309]  ? netlink_unicast+0x7f0/0x7f0
[ 3425.859082][ T6309]  sock_sendmsg+0xde/0x190
[ 3425.863547][ T6309]  ____sys_sendmsg+0x71c/0x900
[ 3425.868360][ T6309]  ? copy_msghdr_from_user+0xfc/0x150
[ 3425.873765][ T6309]  ? kernel_sendmsg+0x50/0x50
[ 3425.878513][ T6309]  ___sys_sendmsg+0x110/0x1b0
[ 3425.883229][ T6309]  ? do_recvmmsg+0x6e0/0x6e0
[ 3425.887855][ T6309]  ? __fget_files+0x248/0x480
[ 3425.892565][ T6309]  ? lock_downgrade+0x690/0x690
[ 3425.897464][ T6309]  ? futex_wake_mark+0x1a0/0x1a0
[ 3425.902466][ T6309]  ? __fget_files+0x26a/0x480
[ 3425.907193][ T6309]  ? __fget_light+0xe5/0x270
[ 3425.911825][ T6309]  __sys_sendmsg+0xf7/0x1c0
[ 3425.916362][ T6309]  ? __sys_sendmsg_sock+0x40/0x40
[ 3425.921423][ T6309]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3425.927385][ T6309]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3425.933322][ T6309]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3425.938566][ T6309]  do_syscall_64+0x39/0xb0
[ 3425.943031][ T6309]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3425.948969][ T6309] RIP: 0033:0x7fb4bf08c169
[ 3425.953414][ T6309] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3425.973055][ T6309] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3425.981511][ T6309] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3425.989526][ T6309] RDX: 0000000000006800 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3425.997525][ T6309] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3426.005525][ T6309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
07:14:19 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x2}, 0xfffffffffffffed5)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x2}, 0xfffffffffffffed5) (async)

07:14:19 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3426.013524][ T6309] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3426.021568][ T6309]  </TASK>
07:14:19 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x1, 0x4}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
socketpair(0x25, 0x800, 0x4, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = getpid()
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r5, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r6]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r8, &(0x7f0000000000), 0x248800)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r9=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r9, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r8, 0xffffffffffffffff, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
sendmsg$nl_route_sched(r5, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)=@deltclass={0x4c, 0x29, 0x400, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r9, {0xa, 0x4}, {0xb, 0x2}, {0x7, 0x1}}, [@TCA_RATE={0x6, 0x5, {0x3, 0x8}}, @tclass_kind_options=@c_clsact={0xb}, @tclass_kind_options=@c_taprio={0xb}, @TCA_RATE={0x6, 0x5, {0x2, 0xdd}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008050}, 0x20000000)
sendmsg$netlink(r3, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r4}]}, 0x28}], 0x1}, 0x0)
socketpair(0xf, 0x80000, 0x7fffffff, &(0x7f0000000100)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$nl_netfilter(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000540)={0x440, 0x5, 0x17, 0x5, 0x70bd2c, 0x25dfdbfe, {0x0, 0x0, 0xa}, [@generic="06da955e955ebf8d3b11298a6d24720932424feffd8224e39827a22406a1f6a42924da81a3dca32b5ff7527af14ef0bd9222f354b42f871f4738f07db7ec60c1ea9673f66d270d63ed99543e1fc00a560e0e08a7d92bf0e9bd1840d9090f0d44d896bbc58d2d5d49ac8d08", @typed={0x11, 0x35, 0x0, 0x0, @str='\xbe*&(\\}/+\\*@:\x00'}, @generic="ca29c0dbdf1e54ef18ab2505174b", @generic="f03d5a3de4700232bd4c9cbc54a89704306677c56a37f0e2896b424c148b29400f42d846a1f8bebd7b8204a8b439f805a04c3d5f58de0a617baafe88bf05b86de3256f77bde4429ad968603b974761626c24150a579a2ad09974f1b7241900ea149dfecfad5bf5f78b00bc82753a8c98c586d7", @generic="e1f4c14b3f6efe068b0b460cffeb3acfed3dec", @nested={0x229, 0x10, 0x0, 0x1, [@generic="9d76ee208239685225a724c2c29b902ec8b222efe944663bae9e0a7732cf8e53458876dd8bfa797009bba59983a9a99fd40af9b8ff673b9ddf7d1970b6cc6fdce8ca0bfe9798d09145c0920e9c61b7f53e2cb35a16191b54a104844b4c2e35b0811be403cf5e586140cd82217e248f5fe4ce15213d47a58d6d7ee20cd1da76675292496a2237dcf04def20ba563d7b6c94a5c82905e60ebb29260ec1dfe23df42b7b9b57", @typed={0x8, 0x48, 0x0, 0x0, @pid=r4}, @typed={0x6d, 0x39, 0x0, 0x0, @binary="397b022127ea5dc86076cf626cae75b8ad90667975242b010f70cb384ccf75229c196bc313cb01c4cbbccc7cfa92765c8df1ff59c05243d52e363f58a73b677b6dd06108887a4fcf17452604ce275afa1fbe0ce6219199d7c0bc7eb7ffc88bb99632b53d779af75c2f"}, @typed={0x8, 0x4d, 0x0, 0x0, @u32=0x4}, @typed={0x4, 0x27}, @generic="c9f8ffa83c0f3e73dc65f420abe2a5005fb3d568135726428ea7f67fe0ec701287a74146521a0b14", @generic="af608b1654a540d90cbad5560d33310a84e0878b077965c35656a6db2b5a2a3d9e43a57dcff5ebbe19ae2c25606ae4b5da7420a28a483d761eb25272a7c50a8fbc966309644b43574401e243e72d76d0435fbcb123bfd8a207c77e1484c36476ffa56e59506aed4c26d9a1517da18be2028b2a90b7387bc4f89af5609f75d4beaa15161c851153d743b7af5697fdb99e1153627b50793c8f89ab0db23d08b2bb393eab926aff294b76cc29f10054907184162320299714d8e734ce100b57cdeffd64ae96fc16bd6461a288211ff5e2e08bd5e3d8de"]}, @typed={0x8, 0x0, 0x0, 0x0, @uid}, @nested={0xe4, 0x6b, 0x0, 0x1, [@typed={0xc, 0x3c, 0x0, 0x0, @u64=0xf1}, @typed={0x14, 0x4c, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @loopback}}, @generic="3c9d23f8c09f2bbc22d133e22c7fcc368962208086e019989023091fa3f547a2cc6bb0554acd4705f76bd224e3e2bce6b2ad99196e894c9c6ed432c296c478449d3078d2b7eb1f9af3daadd002244c4d8bbc6ad8027fb92ddbee66a2c2e2af426f91f0df799f53e1482a3f42e68eea4caa9ea7b73e23482c4f212bc0d68d8d9b894eadfc26b5a1839d176f5418b3b385bab3b892aad3f8100669288a9baa590823acb9b1", @typed={0x4, 0x3e}, @typed={0x4, 0x40}, @typed={0x8, 0x74, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x1649, 0x0, 0x0, @fd=r10}, @typed={0x4, 0x2a}]}]}, 0x440}, 0x1, 0x0, 0x0, 0x8000}, 0x40)

[ 3426.117293][ T6311] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3426.164723][ T6311] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3426.183582][ T6311] CPU: 1 PID: 6311 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3426.193965][ T6311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3426.204051][ T6311] Call Trace:
[ 3426.207351][ T6311]  <TASK>
[ 3426.210301][ T6311]  dump_stack_lvl+0x136/0x150
[ 3426.215021][ T6311]  sysfs_warn_dup+0x80/0xa0
[ 3426.219558][ T6311]  sysfs_do_create_link_sd+0x11e/0x140
[ 3426.225055][ T6311]  sysfs_create_link+0x63/0xc0
[ 3426.229853][ T6311]  device_add+0x5e5/0x1c50
[ 3426.234325][ T6311]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3426.241222][ T6311]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3426.247152][ T6311]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3426.253183][ T6311]  wiphy_register+0x1f88/0x2ae0
[ 3426.258075][ T6311]  ? wiphy_unregister+0xb40/0xb40
[ 3426.263117][ T6311]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3426.268264][ T6311]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3426.274282][ T6311]  ieee80211_register_hw+0x23c1/0x40e0
[ 3426.279797][ T6311]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3426.285365][ T6311]  ? debug_object_free+0x360/0x360
[ 3426.290507][ T6311]  ? lockdep_init_map_type+0x21e/0x810
[ 3426.295997][ T6311]  ? __hrtimer_init+0x145/0x280
[ 3426.300891][ T6311]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3426.306653][ T6311]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3426.313365][ T6311]  hwsim_new_radio_nl+0xad6/0x1210
[ 3426.318502][ T6311]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3426.324430][ T6311]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3426.331825][ T6311]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3426.339132][ T6311]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3426.345307][ T6311]  ? genl_start+0x660/0x660
[ 3426.349840][ T6311]  ? ns_capable+0xe0/0x110
[ 3426.354284][ T6311]  genl_rcv_msg+0x4ff/0x7e0
[ 3426.358805][ T6311]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3426.365147][ T6311]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3426.371078][ T6311]  netlink_rcv_skb+0x165/0x440
[ 3426.375872][ T6311]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3426.382217][ T6311]  ? netlink_ack+0x1360/0x1360
[ 3426.387037][ T6311]  genl_rcv+0x28/0x40
[ 3426.391044][ T6311]  netlink_unicast+0x547/0x7f0
[ 3426.395839][ T6311]  ? netlink_attachskb+0x890/0x890
[ 3426.400975][ T6311]  ? __virt_addr_valid+0x61/0x2e0
[ 3426.406025][ T6311]  ? __phys_addr_symbol+0x30/0x70
[ 3426.411072][ T6311]  ? __check_object_size+0x323/0x730
[ 3426.416402][ T6311]  netlink_sendmsg+0x925/0xe30
[ 3426.421204][ T6311]  ? netlink_unicast+0x7f0/0x7f0
[ 3426.426176][ T6311]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3426.431488][ T6311]  ? netlink_unicast+0x7f0/0x7f0
[ 3426.436474][ T6311]  sock_sendmsg+0xde/0x190
[ 3426.440918][ T6311]  ____sys_sendmsg+0x71c/0x900
[ 3426.445710][ T6311]  ? copy_msghdr_from_user+0xfc/0x150
[ 3426.451101][ T6311]  ? kernel_sendmsg+0x50/0x50
[ 3426.455819][ T6311]  ___sys_sendmsg+0x110/0x1b0
[ 3426.460513][ T6311]  ? do_recvmmsg+0x6e0/0x6e0
[ 3426.465122][ T6311]  ? __fget_files+0x248/0x480
[ 3426.469817][ T6311]  ? lock_downgrade+0x690/0x690
[ 3426.474691][ T6311]  ? futex_wake_mark+0x1a0/0x1a0
[ 3426.479662][ T6311]  ? __fget_files+0x26a/0x480
[ 3426.484361][ T6311]  ? __fget_light+0xe5/0x270
[ 3426.488973][ T6311]  __sys_sendmsg+0xf7/0x1c0
[ 3426.493494][ T6311]  ? __sys_sendmsg_sock+0x40/0x40
[ 3426.498539][ T6311]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3426.504478][ T6311]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3426.510396][ T6311]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3426.515635][ T6311]  do_syscall_64+0x39/0xb0
[ 3426.520082][ T6311]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3426.525997][ T6311] RIP: 0033:0x7f837868c169
[ 3426.530423][ T6311] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3426.550052][ T6311] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3426.558572][ T6311] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
07:14:19 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:19 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3426.566552][ T6311] RDX: 5811000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3426.574534][ T6311] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3426.582518][ T6311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3426.590499][ T6311] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3426.598498][ T6311]  </TASK>
07:14:19 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x6000000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:19 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}}}]}, 0x78}}, 0x131c)

07:14:19 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x6c00)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:19 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3426.674066][ T6346] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
07:14:19 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}}]}, 0x78}}, 0x131c)

[ 3426.721062][ T6346] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3426.746258][ T6346] CPU: 0 PID: 6346 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3426.756646][ T6346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3426.766713][ T6346] Call Trace:
[ 3426.769996][ T6346]  <TASK>
[ 3426.772936][ T6346]  dump_stack_lvl+0x136/0x150
[ 3426.777634][ T6346]  sysfs_warn_dup+0x80/0xa0
[ 3426.782184][ T6346]  sysfs_do_create_link_sd+0x11e/0x140
[ 3426.787663][ T6346]  sysfs_create_link+0x63/0xc0
[ 3426.792449][ T6346]  device_add+0x5e5/0x1c50
[ 3426.796889][ T6346]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3426.803766][ T6346]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3426.809678][ T6346]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3426.815696][ T6346]  wiphy_register+0x1f88/0x2ae0
[ 3426.820577][ T6346]  ? wiphy_unregister+0xb40/0xb40
[ 3426.825624][ T6346]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3426.830766][ T6346]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3426.836775][ T6346]  ieee80211_register_hw+0x23c1/0x40e0
[ 3426.842270][ T6346]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3426.847842][ T6346]  ? debug_object_free+0x360/0x360
[ 3426.853057][ T6346]  ? lockdep_init_map_type+0x21e/0x810
[ 3426.858576][ T6346]  ? __hrtimer_init+0x145/0x280
[ 3426.863469][ T6346]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3426.869236][ T6346]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3426.875948][ T6346]  hwsim_new_radio_nl+0xad6/0x1210
[ 3426.881095][ T6346]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3426.887027][ T6346]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3426.894416][ T6346]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3426.901723][ T6346]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3426.907895][ T6346]  ? genl_start+0x660/0x660
[ 3426.912422][ T6346]  ? ns_capable+0xe0/0x110
[ 3426.916954][ T6346]  genl_rcv_msg+0x4ff/0x7e0
[ 3426.921475][ T6346]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3426.927819][ T6346]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3426.933748][ T6346]  netlink_rcv_skb+0x165/0x440
[ 3426.938542][ T6346]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3426.944886][ T6346]  ? netlink_ack+0x1360/0x1360
[ 3426.949707][ T6346]  genl_rcv+0x28/0x40
[ 3426.953713][ T6346]  netlink_unicast+0x547/0x7f0
[ 3426.958513][ T6346]  ? netlink_attachskb+0x890/0x890
[ 3426.963664][ T6346]  ? __virt_addr_valid+0x61/0x2e0
[ 3426.968716][ T6346]  ? __phys_addr_symbol+0x30/0x70
[ 3426.973764][ T6346]  ? __check_object_size+0x323/0x730
[ 3426.979076][ T6346]  netlink_sendmsg+0x925/0xe30
[ 3426.983871][ T6346]  ? netlink_unicast+0x7f0/0x7f0
[ 3426.988842][ T6346]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3426.994148][ T6346]  ? netlink_unicast+0x7f0/0x7f0
[ 3426.999120][ T6346]  sock_sendmsg+0xde/0x190
[ 3427.003566][ T6346]  ____sys_sendmsg+0x71c/0x900
[ 3427.008358][ T6346]  ? copy_msghdr_from_user+0xfc/0x150
[ 3427.013755][ T6346]  ? kernel_sendmsg+0x50/0x50
[ 3427.018476][ T6346]  ___sys_sendmsg+0x110/0x1b0
[ 3427.023173][ T6346]  ? do_recvmmsg+0x6e0/0x6e0
[ 3427.027803][ T6346]  ? __fget_files+0x248/0x480
[ 3427.032496][ T6346]  ? lock_downgrade+0x690/0x690
[ 3427.037388][ T6346]  ? futex_wake_mark+0x1a0/0x1a0
[ 3427.042375][ T6346]  ? __fget_files+0x26a/0x480
[ 3427.047110][ T6346]  ? __fget_light+0xe5/0x270
[ 3427.051750][ T6346]  __sys_sendmsg+0xf7/0x1c0
[ 3427.056280][ T6346]  ? __sys_sendmsg_sock+0x40/0x40
[ 3427.061335][ T6346]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3427.067284][ T6346]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3427.073210][ T6346]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3427.078435][ T6346]  do_syscall_64+0x39/0xb0
[ 3427.082896][ T6346]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3427.088838][ T6346] RIP: 0033:0x7fb4bf08c169
[ 3427.093273][ T6346] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3427.112900][ T6346] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3427.121342][ T6346] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3427.129343][ T6346] RDX: 0000000000006c00 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3427.137331][ T6346] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3427.145321][ T6346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3427.153305][ T6346] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3427.161309][ T6346]  </TASK>
07:14:20 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x1, 0x4}, 0x6) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
socketpair(0x25, 0x800, 0x4, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff}) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = getpid()
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r5, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r6]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) (async)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r8, &(0x7f0000000000), 0x248800)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r9=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r9, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r8, 0xffffffffffffffff, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) (async)
sendmsg$nl_route_sched(r5, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)=@deltclass={0x4c, 0x29, 0x400, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r9, {0xa, 0x4}, {0xb, 0x2}, {0x7, 0x1}}, [@TCA_RATE={0x6, 0x5, {0x3, 0x8}}, @tclass_kind_options=@c_clsact={0xb}, @tclass_kind_options=@c_taprio={0xb}, @TCA_RATE={0x6, 0x5, {0x2, 0xdd}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008050}, 0x20000000)
sendmsg$netlink(r3, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r4}]}, 0x28}], 0x1}, 0x0) (async)
socketpair(0xf, 0x80000, 0x7fffffff, &(0x7f0000000100)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$nl_netfilter(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000540)={0x440, 0x5, 0x17, 0x5, 0x70bd2c, 0x25dfdbfe, {0x0, 0x0, 0xa}, [@generic="06da955e955ebf8d3b11298a6d24720932424feffd8224e39827a22406a1f6a42924da81a3dca32b5ff7527af14ef0bd9222f354b42f871f4738f07db7ec60c1ea9673f66d270d63ed99543e1fc00a560e0e08a7d92bf0e9bd1840d9090f0d44d896bbc58d2d5d49ac8d08", @typed={0x11, 0x35, 0x0, 0x0, @str='\xbe*&(\\}/+\\*@:\x00'}, @generic="ca29c0dbdf1e54ef18ab2505174b", @generic="f03d5a3de4700232bd4c9cbc54a89704306677c56a37f0e2896b424c148b29400f42d846a1f8bebd7b8204a8b439f805a04c3d5f58de0a617baafe88bf05b86de3256f77bde4429ad968603b974761626c24150a579a2ad09974f1b7241900ea149dfecfad5bf5f78b00bc82753a8c98c586d7", @generic="e1f4c14b3f6efe068b0b460cffeb3acfed3dec", @nested={0x229, 0x10, 0x0, 0x1, [@generic="9d76ee208239685225a724c2c29b902ec8b222efe944663bae9e0a7732cf8e53458876dd8bfa797009bba59983a9a99fd40af9b8ff673b9ddf7d1970b6cc6fdce8ca0bfe9798d09145c0920e9c61b7f53e2cb35a16191b54a104844b4c2e35b0811be403cf5e586140cd82217e248f5fe4ce15213d47a58d6d7ee20cd1da76675292496a2237dcf04def20ba563d7b6c94a5c82905e60ebb29260ec1dfe23df42b7b9b57", @typed={0x8, 0x48, 0x0, 0x0, @pid=r4}, @typed={0x6d, 0x39, 0x0, 0x0, @binary="397b022127ea5dc86076cf626cae75b8ad90667975242b010f70cb384ccf75229c196bc313cb01c4cbbccc7cfa92765c8df1ff59c05243d52e363f58a73b677b6dd06108887a4fcf17452604ce275afa1fbe0ce6219199d7c0bc7eb7ffc88bb99632b53d779af75c2f"}, @typed={0x8, 0x4d, 0x0, 0x0, @u32=0x4}, @typed={0x4, 0x27}, @generic="c9f8ffa83c0f3e73dc65f420abe2a5005fb3d568135726428ea7f67fe0ec701287a74146521a0b14", @generic="af608b1654a540d90cbad5560d33310a84e0878b077965c35656a6db2b5a2a3d9e43a57dcff5ebbe19ae2c25606ae4b5da7420a28a483d761eb25272a7c50a8fbc966309644b43574401e243e72d76d0435fbcb123bfd8a207c77e1484c36476ffa56e59506aed4c26d9a1517da18be2028b2a90b7387bc4f89af5609f75d4beaa15161c851153d743b7af5697fdb99e1153627b50793c8f89ab0db23d08b2bb393eab926aff294b76cc29f10054907184162320299714d8e734ce100b57cdeffd64ae96fc16bd6461a288211ff5e2e08bd5e3d8de"]}, @typed={0x8, 0x0, 0x0, 0x0, @uid}, @nested={0xe4, 0x6b, 0x0, 0x1, [@typed={0xc, 0x3c, 0x0, 0x0, @u64=0xf1}, @typed={0x14, 0x4c, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @loopback}}, @generic="3c9d23f8c09f2bbc22d133e22c7fcc368962208086e019989023091fa3f547a2cc6bb0554acd4705f76bd224e3e2bce6b2ad99196e894c9c6ed432c296c478449d3078d2b7eb1f9af3daadd002244c4d8bbc6ad8027fb92ddbee66a2c2e2af426f91f0df799f53e1482a3f42e68eea4caa9ea7b73e23482c4f212bc0d68d8d9b894eadfc26b5a1839d176f5418b3b385bab3b892aad3f8100669288a9baa590823acb9b1", @typed={0x4, 0x3e}, @typed={0x4, 0x40}, @typed={0x8, 0x74, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x1649, 0x0, 0x0, @fd=r10}, @typed={0x4, 0x2a}]}]}, 0x440}, 0x1, 0x0, 0x0, 0x8000}, 0x40)

07:14:20 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:20 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}}}]}, 0x78}}, 0x131c)

[ 3427.272919][ T6349] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3427.323806][ T6349] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3427.343359][ T6349] CPU: 0 PID: 6349 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3427.353747][ T6349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3427.363825][ T6349] Call Trace:
[ 3427.367118][ T6349]  <TASK>
[ 3427.370077][ T6349]  dump_stack_lvl+0x136/0x150
[ 3427.374787][ T6349]  sysfs_warn_dup+0x80/0xa0
[ 3427.379319][ T6349]  sysfs_do_create_link_sd+0x11e/0x140
[ 3427.384801][ T6349]  sysfs_create_link+0x63/0xc0
[ 3427.389585][ T6349]  device_add+0x5e5/0x1c50
[ 3427.394034][ T6349]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3427.400911][ T6349]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3427.406823][ T6349]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3427.412840][ T6349]  wiphy_register+0x1f88/0x2ae0
[ 3427.417723][ T6349]  ? wiphy_unregister+0xb40/0xb40
[ 3427.422770][ T6349]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3427.427927][ T6349]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3427.433951][ T6349]  ieee80211_register_hw+0x23c1/0x40e0
[ 3427.439457][ T6349]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3427.445031][ T6349]  ? net_generic+0xd9/0x2a0
[ 3427.449583][ T6349]  ? debug_object_free+0x360/0x360
[ 3427.454719][ T6349]  ? lockdep_init_map_type+0x21e/0x810
[ 3427.460202][ T6349]  ? __hrtimer_init+0x145/0x280
[ 3427.465083][ T6349]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3427.470844][ T6349]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3427.477552][ T6349]  hwsim_new_radio_nl+0xad6/0x1210
[ 3427.482689][ T6349]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3427.488614][ T6349]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3427.495998][ T6349]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3427.503318][ T6349]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3427.509521][ T6349]  ? genl_start+0x660/0x660
[ 3427.514058][ T6349]  ? ns_capable+0xe0/0x110
[ 3427.518506][ T6349]  genl_rcv_msg+0x4ff/0x7e0
[ 3427.523031][ T6349]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3427.529384][ T6349]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3427.535317][ T6349]  netlink_rcv_skb+0x165/0x440
[ 3427.540116][ T6349]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3427.546463][ T6349]  ? netlink_ack+0x1360/0x1360
[ 3427.551283][ T6349]  genl_rcv+0x28/0x40
[ 3427.555295][ T6349]  netlink_unicast+0x547/0x7f0
[ 3427.560096][ T6349]  ? netlink_attachskb+0x890/0x890
[ 3427.565232][ T6349]  ? __virt_addr_valid+0x61/0x2e0
[ 3427.570284][ T6349]  ? __phys_addr_symbol+0x30/0x70
[ 3427.575345][ T6349]  ? __check_object_size+0x323/0x730
[ 3427.580655][ T6349]  netlink_sendmsg+0x925/0xe30
[ 3427.585451][ T6349]  ? netlink_unicast+0x7f0/0x7f0
[ 3427.590429][ T6349]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3427.595736][ T6349]  ? netlink_unicast+0x7f0/0x7f0
[ 3427.600703][ T6349]  sock_sendmsg+0xde/0x190
[ 3427.605166][ T6349]  ____sys_sendmsg+0x71c/0x900
[ 3427.609960][ T6349]  ? copy_msghdr_from_user+0xfc/0x150
[ 3427.615351][ T6349]  ? kernel_sendmsg+0x50/0x50
[ 3427.620069][ T6349]  ___sys_sendmsg+0x110/0x1b0
[ 3427.624761][ T6349]  ? do_recvmmsg+0x6e0/0x6e0
[ 3427.629369][ T6349]  ? __fget_files+0x248/0x480
[ 3427.634058][ T6349]  ? lock_downgrade+0x690/0x690
[ 3427.638928][ T6349]  ? futex_wake_mark+0x1a0/0x1a0
[ 3427.643899][ T6349]  ? __fget_files+0x26a/0x480
[ 3427.648596][ T6349]  ? __fget_light+0xe5/0x270
[ 3427.653210][ T6349]  __sys_sendmsg+0xf7/0x1c0
[ 3427.657729][ T6349]  ? __sys_sendmsg_sock+0x40/0x40
[ 3427.662772][ T6349]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3427.668708][ T6349]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3427.674626][ T6349]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3427.679842][ T6349]  do_syscall_64+0x39/0xb0
[ 3427.684286][ T6349]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3427.690209][ T6349] RIP: 0033:0x7f837868c169
[ 3427.694635][ T6349] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3427.714258][ T6349] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3427.722687][ T6349] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3427.730669][ T6349] RDX: 6000000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3427.738654][ T6349] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3427.746632][ T6349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3427.754613][ T6349] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3427.762614][ T6349]  </TASK>
07:14:21 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x1, 0x4}, 0x6) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
socketpair(0x25, 0x800, 0x4, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff}) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = getpid()
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r5, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r6]}, 0x80) (async, rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0) (rerun: 32)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) (async)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r8, &(0x7f0000000000), 0x248800)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r9=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r9, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r8, 0xffffffffffffffff, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) (async)
sendmsg$nl_route_sched(r5, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)=@deltclass={0x4c, 0x29, 0x400, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r9, {0xa, 0x4}, {0xb, 0x2}, {0x7, 0x1}}, [@TCA_RATE={0x6, 0x5, {0x3, 0x8}}, @tclass_kind_options=@c_clsact={0xb}, @tclass_kind_options=@c_taprio={0xb}, @TCA_RATE={0x6, 0x5, {0x2, 0xdd}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008050}, 0x20000000) (async)
sendmsg$netlink(r3, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r4}]}, 0x28}], 0x1}, 0x0)
socketpair(0xf, 0x80000, 0x7fffffff, &(0x7f0000000100)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$nl_netfilter(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000540)={0x440, 0x5, 0x17, 0x5, 0x70bd2c, 0x25dfdbfe, {0x0, 0x0, 0xa}, [@generic="06da955e955ebf8d3b11298a6d24720932424feffd8224e39827a22406a1f6a42924da81a3dca32b5ff7527af14ef0bd9222f354b42f871f4738f07db7ec60c1ea9673f66d270d63ed99543e1fc00a560e0e08a7d92bf0e9bd1840d9090f0d44d896bbc58d2d5d49ac8d08", @typed={0x11, 0x35, 0x0, 0x0, @str='\xbe*&(\\}/+\\*@:\x00'}, @generic="ca29c0dbdf1e54ef18ab2505174b", @generic="f03d5a3de4700232bd4c9cbc54a89704306677c56a37f0e2896b424c148b29400f42d846a1f8bebd7b8204a8b439f805a04c3d5f58de0a617baafe88bf05b86de3256f77bde4429ad968603b974761626c24150a579a2ad09974f1b7241900ea149dfecfad5bf5f78b00bc82753a8c98c586d7", @generic="e1f4c14b3f6efe068b0b460cffeb3acfed3dec", @nested={0x229, 0x10, 0x0, 0x1, [@generic="9d76ee208239685225a724c2c29b902ec8b222efe944663bae9e0a7732cf8e53458876dd8bfa797009bba59983a9a99fd40af9b8ff673b9ddf7d1970b6cc6fdce8ca0bfe9798d09145c0920e9c61b7f53e2cb35a16191b54a104844b4c2e35b0811be403cf5e586140cd82217e248f5fe4ce15213d47a58d6d7ee20cd1da76675292496a2237dcf04def20ba563d7b6c94a5c82905e60ebb29260ec1dfe23df42b7b9b57", @typed={0x8, 0x48, 0x0, 0x0, @pid=r4}, @typed={0x6d, 0x39, 0x0, 0x0, @binary="397b022127ea5dc86076cf626cae75b8ad90667975242b010f70cb384ccf75229c196bc313cb01c4cbbccc7cfa92765c8df1ff59c05243d52e363f58a73b677b6dd06108887a4fcf17452604ce275afa1fbe0ce6219199d7c0bc7eb7ffc88bb99632b53d779af75c2f"}, @typed={0x8, 0x4d, 0x0, 0x0, @u32=0x4}, @typed={0x4, 0x27}, @generic="c9f8ffa83c0f3e73dc65f420abe2a5005fb3d568135726428ea7f67fe0ec701287a74146521a0b14", @generic="af608b1654a540d90cbad5560d33310a84e0878b077965c35656a6db2b5a2a3d9e43a57dcff5ebbe19ae2c25606ae4b5da7420a28a483d761eb25272a7c50a8fbc966309644b43574401e243e72d76d0435fbcb123bfd8a207c77e1484c36476ffa56e59506aed4c26d9a1517da18be2028b2a90b7387bc4f89af5609f75d4beaa15161c851153d743b7af5697fdb99e1153627b50793c8f89ab0db23d08b2bb393eab926aff294b76cc29f10054907184162320299714d8e734ce100b57cdeffd64ae96fc16bd6461a288211ff5e2e08bd5e3d8de"]}, @typed={0x8, 0x0, 0x0, 0x0, @uid}, @nested={0xe4, 0x6b, 0x0, 0x1, [@typed={0xc, 0x3c, 0x0, 0x0, @u64=0xf1}, @typed={0x14, 0x4c, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @loopback}}, @generic="3c9d23f8c09f2bbc22d133e22c7fcc368962208086e019989023091fa3f547a2cc6bb0554acd4705f76bd224e3e2bce6b2ad99196e894c9c6ed432c296c478449d3078d2b7eb1f9af3daadd002244c4d8bbc6ad8027fb92ddbee66a2c2e2af426f91f0df799f53e1482a3f42e68eea4caa9ea7b73e23482c4f212bc0d68d8d9b894eadfc26b5a1839d176f5418b3b385bab3b892aad3f8100669288a9baa590823acb9b1", @typed={0x4, 0x3e}, @typed={0x4, 0x40}, @typed={0x8, 0x74, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x1649, 0x0, 0x0, @fd=r10}, @typed={0x4, 0x2a}]}]}, 0x440}, 0x1, 0x0, 0x0, 0x8000}, 0x40)

07:14:21 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x7400)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:21 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:21 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x48, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:21 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}}}]}, 0x78}}, 0x131c)

07:14:21 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="6c58725ccc79388d80d8a520000861e0"], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x59}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x20000004)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2, 0x2}, 0x6)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
openat$cgroup_ro(r1, &(0x7f00000000c0)='memory.swap.events\x00', 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000421000/0x3000)=nil, 0x3000, 0x2000002, 0x11, r2, 0xcf09a000)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r4=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r4, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
r5 = socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000380)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="48000000100005075100000000000000000000000156e310a2ff9570c124fae85339ddb81c78a21932023197fd30b0acdcf50a8708cbab26bd96db28", @ANYRES32=r6, @ANYBLOB="0000000000000000283fd26c9efc8497d2422788"], 0x48}}, 0x0)
bind$can_raw(0xffffffffffffffff, &(0x7f0000000100)={0x1d, r6}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000680)={'ip_vti0\x00', &(0x7f00000005c0)={'gre0\x00', <r7=>0x0, 0x8, 0x8, 0x3f, 0x6, {{0x1c, 0x4, 0x3, 0x33, 0x70, 0x64, 0x0, 0x1, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, {[@noop, @generic={0x17, 0x2}, @rr={0x7, 0xb, 0x62, [@rand_addr=0x64010102, @broadcast]}, @timestamp_addr={0x44, 0x1c, 0xbf, 0x1, 0xd, [{@remote, 0x3}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x3}, {@empty, 0x3}]}, @cipso={0x86, 0x14, 0x3, [{0x2, 0xe, "ead360996749267b43dcf1de"}]}, @lsrr={0x83, 0x7, 0xe8, [@multicast1]}, @ssrr={0x89, 0x17, 0xfa, [@multicast2, @rand_addr=0x64010102, @broadcast, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r9, &(0x7f0000000000), 0x248800)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r10=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r10, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r9, 0xffffffffffffffff, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000740)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000700)={&(0x7f0000000940)={0xa9c, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {}, [{{0x8}, {0x104, 0x2, 0x0, 0x1, [{0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xb01a}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}]}}, {{0x8}, {0x130, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xd}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}]}}, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8}, {0xb4, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}]}}, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}]}}, {{0x8}, {0x204, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x200}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x1, 0x7f, 0x7, 0x9f32}, {0x17, 0x0, 0x8}, {0x3, 0x2, 0x6, 0x20}, {0x4, 0x54, 0x3f, 0x1ff}]}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xb2d}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r4}}}]}}, {{0x8}, {0x264, 0x2, 0x0, 0x1, [{0x5c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x2c, 0x4, [{0x7, 0x0, 0x7f, 0xab9}, {0xbd, 0x1, 0x0, 0x8001}, {0x5, 0x3, 0x9, 0xc32c0000}, {0x20, 0x2, 0x5d, 0x4}, {0x6, 0x8, 0x40, 0x3ff}]}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x4}}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x6e45, 0x9, 0x2, 0x27}, {0x101, 0xd3, 0x7, 0x8}, {0x7f, 0x1, 0x7, 0x3}, {0x4, 0x2, 0x0, 0x2a}]}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x80000001}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}]}}, {{0x8, 0x1, r6}, {0x200, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r10}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x52a}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x5da, 0x0, 0x66, 0x400}, {0x7, 0x1, 0xbc, 0x3ff}, {0x3, 0x0, 0x7, 0x5}, {0x200, 0x0, 0x2, 0x2}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}]}}]}, 0xa9c}, 0x1, 0x0, 0x0, 0x8011}, 0x41011)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r11]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0x1, 0x7}, 0x6)

07:14:21 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x6800000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3428.108024][ T6379] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3428.137152][ T6379] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3428.180195][ T6379] CPU: 1 PID: 6379 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3428.190596][ T6379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3428.200686][ T6379] Call Trace:
[ 3428.203983][ T6379]  <TASK>
[ 3428.206940][ T6379]  dump_stack_lvl+0x136/0x150
[ 3428.211665][ T6379]  sysfs_warn_dup+0x80/0xa0
[ 3428.216209][ T6379]  sysfs_do_create_link_sd+0x11e/0x140
[ 3428.221712][ T6379]  sysfs_create_link+0x63/0xc0
[ 3428.226518][ T6379]  device_add+0x5e5/0x1c50
[ 3428.230988][ T6379]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3428.237892][ T6379]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3428.243827][ T6379]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3428.249874][ T6379]  wiphy_register+0x1f88/0x2ae0
[ 3428.254789][ T6379]  ? wiphy_unregister+0xb40/0xb40
[ 3428.259859][ T6379]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3428.265031][ T6379]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3428.271072][ T6379]  ieee80211_register_hw+0x23c1/0x40e0
[ 3428.276591][ T6379]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3428.282176][ T6379]  ? net_generic+0xd9/0x2a0
[ 3428.286718][ T6379]  ? debug_object_free+0x360/0x360
[ 3428.291869][ T6379]  ? lockdep_init_map_type+0x21e/0x810
[ 3428.297373][ T6379]  ? __hrtimer_init+0x145/0x280
[ 3428.302284][ T6379]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3428.308077][ T6379]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3428.314809][ T6379]  hwsim_new_radio_nl+0xad6/0x1210
[ 3428.319972][ T6379]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3428.325922][ T6379]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3428.333333][ T6379]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3428.340665][ T6379]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3428.346858][ T6379]  ? genl_start+0x660/0x660
[ 3428.351413][ T6379]  ? ns_capable+0xe0/0x110
[ 3428.355879][ T6379]  genl_rcv_msg+0x4ff/0x7e0
[ 3428.360426][ T6379]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3428.366796][ T6379]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3428.372751][ T6379]  netlink_rcv_skb+0x165/0x440
[ 3428.377569][ T6379]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3428.383935][ T6379]  ? netlink_ack+0x1360/0x1360
[ 3428.388780][ T6379]  genl_rcv+0x28/0x40
[ 3428.392806][ T6379]  netlink_unicast+0x547/0x7f0
[ 3428.397624][ T6379]  ? netlink_attachskb+0x890/0x890
[ 3428.402782][ T6379]  ? __virt_addr_valid+0x61/0x2e0
[ 3428.407850][ T6379]  ? __phys_addr_symbol+0x30/0x70
[ 3428.412918][ T6379]  ? __check_object_size+0x323/0x730
[ 3428.418249][ T6379]  netlink_sendmsg+0x925/0xe30
[ 3428.423072][ T6379]  ? netlink_unicast+0x7f0/0x7f0
[ 3428.428064][ T6379]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3428.433398][ T6379]  ? netlink_unicast+0x7f0/0x7f0
[ 3428.438388][ T6379]  sock_sendmsg+0xde/0x190
[ 3428.442853][ T6379]  ____sys_sendmsg+0x71c/0x900
[ 3428.447667][ T6379]  ? copy_msghdr_from_user+0xfc/0x150
[ 3428.453077][ T6379]  ? kernel_sendmsg+0x50/0x50
[ 3428.457817][ T6379]  ___sys_sendmsg+0x110/0x1b0
[ 3428.462532][ T6379]  ? do_recvmmsg+0x6e0/0x6e0
[ 3428.467158][ T6379]  ? __fget_files+0x248/0x480
[ 3428.471868][ T6379]  ? lock_downgrade+0x690/0x690
[ 3428.476758][ T6379]  ? futex_wake_mark+0x1a0/0x1a0
[ 3428.481749][ T6379]  ? __fget_files+0x26a/0x480
[ 3428.486470][ T6379]  ? __fget_light+0xe5/0x270
[ 3428.491104][ T6379]  __sys_sendmsg+0xf7/0x1c0
[ 3428.495643][ T6379]  ? __sys_sendmsg_sock+0x40/0x40
[ 3428.500707][ T6379]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3428.506664][ T6379]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3428.512598][ T6379]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3428.517839][ T6379]  do_syscall_64+0x39/0xb0
[ 3428.522308][ T6379]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3428.528244][ T6379] RIP: 0033:0x7fb4bf08c169
[ 3428.532690][ T6379] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3428.552339][ T6379] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3428.560790][ T6379] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3428.568792][ T6379] RDX: 0000000000007400 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3428.576792][ T6379] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3428.584796][ T6379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3428.592797][ T6379] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3428.600816][ T6379]  </TASK>
07:14:21 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3428.644397][ T6388] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:21 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}}}]}, 0x78}}, 0x131c)

07:14:21 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x7a00)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3428.685633][ T6388] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3428.730145][ T6388] CPU: 1 PID: 6388 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3428.740547][ T6388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3428.750638][ T6388] Call Trace:
[ 3428.753944][ T6388]  <TASK>
[ 3428.756904][ T6388]  dump_stack_lvl+0x136/0x150
[ 3428.761624][ T6388]  sysfs_warn_dup+0x80/0xa0
[ 3428.766522][ T6388]  sysfs_do_create_link_sd+0x11e/0x140
[ 3428.772027][ T6388]  sysfs_create_link+0x63/0xc0
[ 3428.776835][ T6388]  device_add+0x5e5/0x1c50
[ 3428.781312][ T6388]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3428.788215][ T6388]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3428.794161][ T6388]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3428.800207][ T6388]  wiphy_register+0x1f88/0x2ae0
[ 3428.805124][ T6388]  ? wiphy_unregister+0xb40/0xb40
[ 3428.810195][ T6388]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3428.815371][ T6388]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3428.821410][ T6388]  ieee80211_register_hw+0x23c1/0x40e0
[ 3428.826929][ T6388]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3428.832507][ T6388]  ? debug_object_free+0x360/0x360
[ 3428.837666][ T6388]  ? lockdep_init_map_type+0x21e/0x810
[ 3428.843185][ T6388]  ? __hrtimer_init+0x145/0x280
[ 3428.848084][ T6388]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3428.853868][ T6388]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3428.860596][ T6388]  hwsim_new_radio_nl+0xad6/0x1210
[ 3428.865741][ T6388]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3428.871673][ T6388]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3428.879066][ T6388]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3428.886373][ T6388]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3428.892544][ T6388]  ? genl_start+0x660/0x660
[ 3428.897074][ T6388]  ? ns_capable+0xe0/0x110
[ 3428.901540][ T6388]  genl_rcv_msg+0x4ff/0x7e0
[ 3428.906075][ T6388]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3428.912443][ T6388]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3428.918384][ T6388]  netlink_rcv_skb+0x165/0x440
[ 3428.923182][ T6388]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3428.929534][ T6388]  ? netlink_ack+0x1360/0x1360
[ 3428.934356][ T6388]  genl_rcv+0x28/0x40
[ 3428.938366][ T6388]  netlink_unicast+0x547/0x7f0
[ 3428.943165][ T6388]  ? netlink_attachskb+0x890/0x890
[ 3428.948321][ T6388]  ? __virt_addr_valid+0x61/0x2e0
[ 3428.953385][ T6388]  ? __phys_addr_symbol+0x30/0x70
[ 3428.958434][ T6388]  ? __check_object_size+0x323/0x730
[ 3428.963742][ T6388]  netlink_sendmsg+0x925/0xe30
[ 3428.968544][ T6388]  ? netlink_unicast+0x7f0/0x7f0
[ 3428.973515][ T6388]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3428.978826][ T6388]  ? netlink_unicast+0x7f0/0x7f0
[ 3428.983803][ T6388]  sock_sendmsg+0xde/0x190
[ 3428.988261][ T6388]  ____sys_sendmsg+0x71c/0x900
[ 3428.993068][ T6388]  ? copy_msghdr_from_user+0xfc/0x150
[ 3428.998466][ T6388]  ? kernel_sendmsg+0x50/0x50
[ 3429.003224][ T6388]  ___sys_sendmsg+0x110/0x1b0
[ 3429.007933][ T6388]  ? do_recvmmsg+0x6e0/0x6e0
[ 3429.012554][ T6388]  ? __fget_files+0x248/0x480
[ 3429.017297][ T6388]  ? lock_downgrade+0x690/0x690
[ 3429.022179][ T6388]  ? futex_wake_mark+0x1a0/0x1a0
[ 3429.027157][ T6388]  ? __fget_files+0x26a/0x480
[ 3429.031879][ T6388]  ? __fget_light+0xe5/0x270
[ 3429.036506][ T6388]  __sys_sendmsg+0xf7/0x1c0
[ 3429.041044][ T6388]  ? __sys_sendmsg_sock+0x40/0x40
[ 3429.046096][ T6388]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3429.052047][ T6388]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3429.057974][ T6388]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3429.063198][ T6388]  do_syscall_64+0x39/0xb0
[ 3429.067652][ T6388]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3429.073575][ T6388] RIP: 0033:0x7f837868c169
[ 3429.078005][ T6388] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3429.097630][ T6388] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3429.106063][ T6388] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3429.114045][ T6388] RDX: 6800000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3429.122024][ T6388] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3429.130003][ T6388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3429.137987][ T6388] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3429.145989][ T6388]  </TASK>
07:14:22 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x6c00000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:22 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3429.205468][ T6401] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3429.255435][ T6401] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3429.276773][ T6401] CPU: 0 PID: 6401 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3429.287165][ T6401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3429.297261][ T6401] Call Trace:
[ 3429.300556][ T6401]  <TASK>
[ 3429.303505][ T6401]  dump_stack_lvl+0x136/0x150
[ 3429.308245][ T6401]  sysfs_warn_dup+0x80/0xa0
[ 3429.312786][ T6401]  sysfs_do_create_link_sd+0x11e/0x140
[ 3429.318292][ T6401]  sysfs_create_link+0x63/0xc0
[ 3429.323095][ T6401]  device_add+0x5e5/0x1c50
[ 3429.327564][ T6401]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3429.334476][ T6401]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3429.340408][ T6401]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3429.346447][ T6401]  wiphy_register+0x1f88/0x2ae0
[ 3429.351360][ T6401]  ? wiphy_unregister+0xb40/0xb40
[ 3429.356428][ T6401]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3429.361599][ T6401]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3429.367640][ T6401]  ieee80211_register_hw+0x23c1/0x40e0
[ 3429.373159][ T6401]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3429.378767][ T6401]  ? debug_object_free+0x360/0x360
[ 3429.383920][ T6401]  ? lockdep_init_map_type+0x21e/0x810
[ 3429.389422][ T6401]  ? __hrtimer_init+0x145/0x280
[ 3429.394320][ T6401]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3429.400105][ T6401]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3429.406846][ T6401]  hwsim_new_radio_nl+0xad6/0x1210
[ 3429.412011][ T6401]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3429.417962][ T6401]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3429.425367][ T6401]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3429.432696][ T6401]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3429.438889][ T6401]  ? genl_start+0x660/0x660
[ 3429.443433][ T6401]  ? ns_capable+0xe0/0x110
[ 3429.447898][ T6401]  genl_rcv_msg+0x4ff/0x7e0
[ 3429.452436][ T6401]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3429.458801][ T6401]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3429.464752][ T6401]  netlink_rcv_skb+0x165/0x440
[ 3429.469564][ T6401]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3429.475928][ T6401]  ? netlink_ack+0x1360/0x1360
[ 3429.480771][ T6401]  genl_rcv+0x28/0x40
[ 3429.484797][ T6401]  netlink_unicast+0x547/0x7f0
[ 3429.489612][ T6401]  ? netlink_attachskb+0x890/0x890
[ 3429.494763][ T6401]  ? __virt_addr_valid+0x61/0x2e0
[ 3429.499831][ T6401]  ? __phys_addr_symbol+0x30/0x70
07:14:22 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

[ 3429.504900][ T6401]  ? __check_object_size+0x323/0x730
[ 3429.510232][ T6401]  netlink_sendmsg+0x925/0xe30
[ 3429.515045][ T6401]  ? netlink_unicast+0x7f0/0x7f0
[ 3429.520037][ T6401]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3429.525376][ T6401]  ? netlink_unicast+0x7f0/0x7f0
[ 3429.530361][ T6401]  sock_sendmsg+0xde/0x190
[ 3429.534833][ T6401]  ____sys_sendmsg+0x71c/0x900
[ 3429.539643][ T6401]  ? copy_msghdr_from_user+0xfc/0x150
[ 3429.545047][ T6401]  ? kernel_sendmsg+0x50/0x50
[ 3429.549792][ T6401]  ___sys_sendmsg+0x110/0x1b0
[ 3429.554504][ T6401]  ? do_recvmmsg+0x6e0/0x6e0
[ 3429.559130][ T6401]  ? __fget_files+0x248/0x480
[ 3429.563847][ T6401]  ? lock_downgrade+0x690/0x690
[ 3429.568734][ T6401]  ? futex_wake_mark+0x1a0/0x1a0
[ 3429.573722][ T6401]  ? __fget_files+0x26a/0x480
[ 3429.578441][ T6401]  ? __fget_light+0xe5/0x270
[ 3429.583072][ T6401]  __sys_sendmsg+0xf7/0x1c0
[ 3429.587610][ T6401]  ? __sys_sendmsg_sock+0x40/0x40
[ 3429.592670][ T6401]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3429.598628][ T6401]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3429.604563][ T6401]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3429.609803][ T6401]  do_syscall_64+0x39/0xb0
[ 3429.614267][ T6401]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3429.620202][ T6401] RIP: 0033:0x7fb4bf08c169
[ 3429.624645][ T6401] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3429.644288][ T6401] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
07:14:22 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="6c58725ccc79388d80d8a520000861e0"], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) (async)
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x59}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x20000004) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2, 0x2}, 0x6) (async)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
openat$cgroup_ro(r1, &(0x7f00000000c0)='memory.swap.events\x00', 0x0, 0x0) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000421000/0x3000)=nil, 0x3000, 0x2000002, 0x11, r2, 0xcf09a000) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r4=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r4, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
r5 = socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000380)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="48000000100005075100000000000000000000000156e310a2ff9570c124fae85339ddb81c78a21932023197fd30b0acdcf50a8708cbab26bd96db28", @ANYRES32=r6, @ANYBLOB="0000000000000000283fd26c9efc8497d2422788"], 0x48}}, 0x0) (async)
bind$can_raw(0xffffffffffffffff, &(0x7f0000000100)={0x1d, r6}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000680)={'ip_vti0\x00', &(0x7f00000005c0)={'gre0\x00', <r7=>0x0, 0x8, 0x8, 0x3f, 0x6, {{0x1c, 0x4, 0x3, 0x33, 0x70, 0x64, 0x0, 0x1, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, {[@noop, @generic={0x17, 0x2}, @rr={0x7, 0xb, 0x62, [@rand_addr=0x64010102, @broadcast]}, @timestamp_addr={0x44, 0x1c, 0xbf, 0x1, 0xd, [{@remote, 0x3}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x3}, {@empty, 0x3}]}, @cipso={0x86, 0x14, 0x3, [{0x2, 0xe, "ead360996749267b43dcf1de"}]}, @lsrr={0x83, 0x7, 0xe8, [@multicast1]}, @ssrr={0x89, 0x17, 0xfa, [@multicast2, @rand_addr=0x64010102, @broadcast, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}}) (async)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) (async, rerun: 64)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) (rerun: 64)
write$cgroup_type(r9, &(0x7f0000000000), 0x248800) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r10=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r10, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r9, 0xffffffffffffffff, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000740)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000700)={&(0x7f0000000940)={0xa9c, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {}, [{{0x8}, {0x104, 0x2, 0x0, 0x1, [{0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xb01a}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}]}}, {{0x8}, {0x130, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xd}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}]}}, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8}, {0xb4, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}]}}, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}]}}, {{0x8}, {0x204, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x200}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x1, 0x7f, 0x7, 0x9f32}, {0x17, 0x0, 0x8}, {0x3, 0x2, 0x6, 0x20}, {0x4, 0x54, 0x3f, 0x1ff}]}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xb2d}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r4}}}]}}, {{0x8}, {0x264, 0x2, 0x0, 0x1, [{0x5c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x2c, 0x4, [{0x7, 0x0, 0x7f, 0xab9}, {0xbd, 0x1, 0x0, 0x8001}, {0x5, 0x3, 0x9, 0xc32c0000}, {0x20, 0x2, 0x5d, 0x4}, {0x6, 0x8, 0x40, 0x3ff}]}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x4}}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x6e45, 0x9, 0x2, 0x27}, {0x101, 0xd3, 0x7, 0x8}, {0x7f, 0x1, 0x7, 0x3}, {0x4, 0x2, 0x0, 0x2a}]}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x80000001}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}]}}, {{0x8, 0x1, r6}, {0x200, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r10}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x52a}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x5da, 0x0, 0x66, 0x400}, {0x7, 0x1, 0xbc, 0x3ff}, {0x3, 0x0, 0x7, 0x5}, {0x200, 0x0, 0x2, 0x2}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}]}}]}, 0xa9c}, 0x1, 0x0, 0x0, 0x8011}, 0x41011) (async)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r11]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) (async)
bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0x1, 0x7}, 0x6)

[ 3429.652774][ T6401] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3429.660782][ T6401] RDX: 0000000000007a00 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3429.668787][ T6401] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3429.676792][ T6401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3429.684797][ T6401] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3429.692815][ T6401]  </TASK>
07:14:22 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}}}]}, 0x78}}, 0x131c)

07:14:22 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xde20)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:22 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x300, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3429.736953][ T6405] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3429.770733][ T6405] sysfs: cannot create duplicate filename '/class/ieee80211/!'
07:14:22 executing program 5:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (async)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="6c58725ccc79388d80d8a520000861e0"], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="6c58725ccc79388d80d8a520000861e0"], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x59}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x20000004)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2, 0x2}, 0x6) (async)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2, 0x2}, 0x6)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
openat$cgroup_ro(r1, &(0x7f00000000c0)='memory.swap.events\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000421000/0x3000)=nil, 0x3000, 0x2000002, 0x11, r2, 0xcf09a000) (async)
mmap(&(0x7f0000421000/0x3000)=nil, 0x3000, 0x2000002, 0x11, r2, 0xcf09a000)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r4=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r4, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
r5 = socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000380)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="48000000100005075100000000000000000000000156e310a2ff9570c124fae85339ddb81c78a21932023197fd30b0acdcf50a8708cbab26bd96db28", @ANYRES32=r6, @ANYBLOB="0000000000000000283fd26c9efc8497d2422788"], 0x48}}, 0x0)
bind$can_raw(0xffffffffffffffff, &(0x7f0000000100)={0x1d, r6}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000680)={'ip_vti0\x00', &(0x7f00000005c0)={'gre0\x00', <r7=>0x0, 0x8, 0x8, 0x3f, 0x6, {{0x1c, 0x4, 0x3, 0x33, 0x70, 0x64, 0x0, 0x1, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, {[@noop, @generic={0x17, 0x2}, @rr={0x7, 0xb, 0x62, [@rand_addr=0x64010102, @broadcast]}, @timestamp_addr={0x44, 0x1c, 0xbf, 0x1, 0xd, [{@remote, 0x3}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x3}, {@empty, 0x3}]}, @cipso={0x86, 0x14, 0x3, [{0x2, 0xe, "ead360996749267b43dcf1de"}]}, @lsrr={0x83, 0x7, 0xe8, [@multicast1]}, @ssrr={0x89, 0x17, 0xfa, [@multicast2, @rand_addr=0x64010102, @broadcast, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) (async)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r9, &(0x7f0000000000), 0x248800)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r10=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r10, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r9, 0xffffffffffffffff, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000740)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000700)={&(0x7f0000000940)={0xa9c, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {}, [{{0x8}, {0x104, 0x2, 0x0, 0x1, [{0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xb01a}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}]}}, {{0x8}, {0x130, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xd}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}]}}, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8}, {0xb4, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}]}}, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}]}}, {{0x8}, {0x204, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x200}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x1, 0x7f, 0x7, 0x9f32}, {0x17, 0x0, 0x8}, {0x3, 0x2, 0x6, 0x20}, {0x4, 0x54, 0x3f, 0x1ff}]}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xb2d}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r4}}}]}}, {{0x8}, {0x264, 0x2, 0x0, 0x1, [{0x5c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x2c, 0x4, [{0x7, 0x0, 0x7f, 0xab9}, {0xbd, 0x1, 0x0, 0x8001}, {0x5, 0x3, 0x9, 0xc32c0000}, {0x20, 0x2, 0x5d, 0x4}, {0x6, 0x8, 0x40, 0x3ff}]}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x4}}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x6e45, 0x9, 0x2, 0x27}, {0x101, 0xd3, 0x7, 0x8}, {0x7f, 0x1, 0x7, 0x3}, {0x4, 0x2, 0x0, 0x2a}]}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x80000001}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}]}}, {{0x8, 0x1, r6}, {0x200, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r10}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x52a}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x5da, 0x0, 0x66, 0x400}, {0x7, 0x1, 0xbc, 0x3ff}, {0x3, 0x0, 0x7, 0x5}, {0x200, 0x0, 0x2, 0x2}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}]}}]}, 0xa9c}, 0x1, 0x0, 0x0, 0x8011}, 0x41011)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r11]}, 0x80) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r11]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0x1, 0x7}, 0x6)

[ 3429.809580][ T6405] CPU: 0 PID: 6405 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3429.819983][ T6405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3429.830075][ T6405] Call Trace:
[ 3429.833387][ T6405]  <TASK>
[ 3429.836344][ T6405]  dump_stack_lvl+0x136/0x150
[ 3429.841069][ T6405]  sysfs_warn_dup+0x80/0xa0
[ 3429.845611][ T6405]  sysfs_do_create_link_sd+0x11e/0x140
[ 3429.851117][ T6405]  sysfs_create_link+0x63/0xc0
[ 3429.855926][ T6405]  device_add+0x5e5/0x1c50
[ 3429.860399][ T6405]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3429.867312][ T6405]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3429.873254][ T6405]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3429.879301][ T6405]  wiphy_register+0x1f88/0x2ae0
[ 3429.884219][ T6405]  ? wiphy_unregister+0xb40/0xb40
[ 3429.889293][ T6405]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3429.894463][ T6405]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3429.900500][ T6405]  ieee80211_register_hw+0x23c1/0x40e0
[ 3429.906021][ T6405]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3429.911615][ T6405]  ? debug_object_free+0x360/0x360
[ 3429.916767][ T6405]  ? lockdep_init_map_type+0x21e/0x810
[ 3429.922260][ T6405]  ? __hrtimer_init+0x145/0x280
[ 3429.927149][ T6405]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3429.932920][ T6405]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3429.939648][ T6405]  hwsim_new_radio_nl+0xad6/0x1210
[ 3429.944789][ T6405]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3429.950717][ T6405]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3429.958112][ T6405]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3429.965423][ T6405]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3429.971598][ T6405]  ? genl_start+0x660/0x660
[ 3429.976133][ T6405]  ? ns_capable+0xe0/0x110
[ 3429.980579][ T6405]  genl_rcv_msg+0x4ff/0x7e0
[ 3429.985109][ T6405]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3429.991456][ T6405]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3429.997386][ T6405]  netlink_rcv_skb+0x165/0x440
[ 3430.002178][ T6405]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3430.008523][ T6405]  ? netlink_ack+0x1360/0x1360
[ 3430.013343][ T6405]  genl_rcv+0x28/0x40
[ 3430.017349][ T6405]  netlink_unicast+0x547/0x7f0
[ 3430.022147][ T6405]  ? netlink_attachskb+0x890/0x890
[ 3430.027306][ T6405]  ? __virt_addr_valid+0x61/0x2e0
[ 3430.032360][ T6405]  ? __phys_addr_symbol+0x30/0x70
[ 3430.037410][ T6405]  ? __check_object_size+0x323/0x730
[ 3430.042724][ T6405]  netlink_sendmsg+0x925/0xe30
[ 3430.047524][ T6405]  ? netlink_unicast+0x7f0/0x7f0
[ 3430.052500][ T6405]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3430.057815][ T6405]  ? netlink_unicast+0x7f0/0x7f0
[ 3430.062783][ T6405]  sock_sendmsg+0xde/0x190
[ 3430.067250][ T6405]  ____sys_sendmsg+0x71c/0x900
[ 3430.072044][ T6405]  ? copy_msghdr_from_user+0xfc/0x150
[ 3430.077436][ T6405]  ? kernel_sendmsg+0x50/0x50
[ 3430.082154][ T6405]  ___sys_sendmsg+0x110/0x1b0
[ 3430.086847][ T6405]  ? do_recvmmsg+0x6e0/0x6e0
[ 3430.091458][ T6405]  ? __fget_files+0x248/0x480
[ 3430.096150][ T6405]  ? lock_downgrade+0x690/0x690
[ 3430.101022][ T6405]  ? futex_wake_mark+0x1a0/0x1a0
[ 3430.105993][ T6405]  ? __fget_files+0x26a/0x480
[ 3430.110690][ T6405]  ? __fget_light+0xe5/0x270
[ 3430.115304][ T6405]  __sys_sendmsg+0xf7/0x1c0
[ 3430.119824][ T6405]  ? __sys_sendmsg_sock+0x40/0x40
[ 3430.124867][ T6405]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3430.130802][ T6405]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3430.136717][ T6405]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3430.141936][ T6405]  do_syscall_64+0x39/0xb0
[ 3430.146379][ T6405]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3430.152299][ T6405] RIP: 0033:0x7f837868c169
[ 3430.156727][ T6405] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3430.176367][ T6405] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3430.184800][ T6405] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3430.192783][ T6405] RDX: 6c00000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3430.200763][ T6405] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3430.208745][ T6405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3430.216725][ T6405] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3430.224722][ T6405]  </TASK>
07:14:23 executing program 5:
listen(0xffffffffffffffff, 0x4)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = epoll_create1(0x0)
ioctl$FIONCLEX(r1, 0x5450)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f00000000c0)={0x0, @local, 0x4e20, 0x2, 'wrr\x00', 0x48, 0xf464, 0x1a}, 0x2c)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000300)={<r6=>0xffffffffffffffff, 0x8, 0x3f, 0xffffffffffffff17})
openat$cgroup_ro(r6, &(0x7f0000000340)='blkio.bfq.time_recursive\x00', 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r7, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="6ca420000800f87500"/27], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='objagg_obj_create\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='svcrdma_send_err\x00'}, 0x10)

07:14:23 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:23 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}}}}]}, 0x78}}, 0x131c)

07:14:23 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x7400000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3430.384809][ T6427] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
07:14:23 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x600, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3430.426903][ T6427] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3430.450027][ T6438] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:20000
[ 3430.477757][ T6427] CPU: 1 PID: 6427 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3430.488158][ T6427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3430.498246][ T6427] Call Trace:
[ 3430.501548][ T6427]  <TASK>
[ 3430.504504][ T6427]  dump_stack_lvl+0x136/0x150
[ 3430.509219][ T6427]  sysfs_warn_dup+0x80/0xa0
[ 3430.513756][ T6427]  sysfs_do_create_link_sd+0x11e/0x140
[ 3430.519260][ T6427]  sysfs_create_link+0x63/0xc0
[ 3430.524072][ T6427]  device_add+0x5e5/0x1c50
[ 3430.528545][ T6427]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3430.535447][ T6427]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3430.541384][ T6427]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3430.547429][ T6427]  wiphy_register+0x1f88/0x2ae0
[ 3430.552321][ T6427]  ? wiphy_unregister+0xb40/0xb40
[ 3430.557368][ T6427]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3430.562512][ T6427]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3430.568524][ T6427]  ieee80211_register_hw+0x23c1/0x40e0
[ 3430.574028][ T6427]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3430.579621][ T6427]  ? debug_object_free+0x360/0x360
[ 3430.584756][ T6427]  ? lockdep_init_map_type+0x21e/0x810
[ 3430.590244][ T6427]  ? __hrtimer_init+0x145/0x280
[ 3430.595130][ T6427]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3430.600893][ T6427]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3430.607604][ T6427]  hwsim_new_radio_nl+0xad6/0x1210
[ 3430.612743][ T6427]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3430.618671][ T6427]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3430.626063][ T6427]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3430.633376][ T6427]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3430.639550][ T6427]  ? genl_start+0x660/0x660
[ 3430.644098][ T6427]  ? ns_capable+0xe0/0x110
[ 3430.648545][ T6427]  genl_rcv_msg+0x4ff/0x7e0
[ 3430.653072][ T6427]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3430.659419][ T6427]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3430.665348][ T6427]  netlink_rcv_skb+0x165/0x440
[ 3430.670144][ T6427]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3430.676490][ T6427]  ? netlink_ack+0x1360/0x1360
[ 3430.681306][ T6427]  genl_rcv+0x28/0x40
[ 3430.685315][ T6427]  netlink_unicast+0x547/0x7f0
[ 3430.690111][ T6427]  ? netlink_attachskb+0x890/0x890
[ 3430.695247][ T6427]  ? __virt_addr_valid+0x61/0x2e0
[ 3430.700298][ T6427]  ? __phys_addr_symbol+0x30/0x70
[ 3430.705349][ T6427]  ? __check_object_size+0x323/0x730
[ 3430.710660][ T6427]  netlink_sendmsg+0x925/0xe30
[ 3430.715476][ T6427]  ? netlink_unicast+0x7f0/0x7f0
[ 3430.720446][ T6427]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3430.725754][ T6427]  ? netlink_unicast+0x7f0/0x7f0
[ 3430.730718][ T6427]  sock_sendmsg+0xde/0x190
[ 3430.735166][ T6427]  ____sys_sendmsg+0x71c/0x900
[ 3430.739959][ T6427]  ? copy_msghdr_from_user+0xfc/0x150
[ 3430.745347][ T6427]  ? kernel_sendmsg+0x50/0x50
[ 3430.750071][ T6427]  ___sys_sendmsg+0x110/0x1b0
[ 3430.754763][ T6427]  ? do_recvmmsg+0x6e0/0x6e0
[ 3430.759389][ T6427]  ? __fget_files+0x248/0x480
[ 3430.764082][ T6427]  ? lock_downgrade+0x690/0x690
[ 3430.768965][ T6427]  ? futex_wake_mark+0x1a0/0x1a0
[ 3430.773946][ T6427]  ? __fget_files+0x26a/0x480
[ 3430.778644][ T6427]  ? __fget_light+0xe5/0x270
[ 3430.783255][ T6427]  __sys_sendmsg+0xf7/0x1c0
[ 3430.787774][ T6427]  ? __sys_sendmsg_sock+0x40/0x40
[ 3430.792819][ T6427]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3430.798753][ T6427]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3430.804668][ T6427]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3430.809888][ T6427]  do_syscall_64+0x39/0xb0
[ 3430.814335][ T6427]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3430.820253][ T6427] RIP: 0033:0x7fb4bf08c169
[ 3430.824681][ T6427] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3430.844305][ T6427] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3430.852735][ T6427] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3430.860717][ T6427] RDX: 000000000000de20 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3430.868700][ T6427] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
07:14:24 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

[ 3430.876682][ T6427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3430.884662][ T6427] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3430.892678][ T6427]  </TASK>
07:14:24 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x700, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3430.934448][ T6442] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:24 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa}}}}]}, 0x78}}, 0x131c)

07:14:24 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xe703)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3430.988640][ T6442] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3431.042016][ T6442] CPU: 0 PID: 6442 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3431.052416][ T6442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3431.062508][ T6442] Call Trace:
[ 3431.065817][ T6442]  <TASK>
[ 3431.068774][ T6442]  dump_stack_lvl+0x136/0x150
[ 3431.073494][ T6442]  sysfs_warn_dup+0x80/0xa0
[ 3431.078041][ T6442]  sysfs_do_create_link_sd+0x11e/0x140
[ 3431.083543][ T6442]  sysfs_create_link+0x63/0xc0
[ 3431.088355][ T6442]  device_add+0x5e5/0x1c50
[ 3431.092826][ T6442]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3431.099732][ T6442]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3431.105670][ T6442]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3431.111714][ T6442]  wiphy_register+0x1f88/0x2ae0
[ 3431.116635][ T6442]  ? wiphy_unregister+0xb40/0xb40
[ 3431.121704][ T6442]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3431.126879][ T6442]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3431.132922][ T6442]  ieee80211_register_hw+0x23c1/0x40e0
[ 3431.138446][ T6442]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3431.144048][ T6442]  ? debug_object_free+0x360/0x360
[ 3431.149200][ T6442]  ? lockdep_init_map_type+0x21e/0x810
[ 3431.154687][ T6442]  ? __hrtimer_init+0x145/0x280
[ 3431.159568][ T6442]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3431.165347][ T6442]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3431.172063][ T6442]  hwsim_new_radio_nl+0xad6/0x1210
[ 3431.177203][ T6442]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3431.183129][ T6442]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3431.190519][ T6442]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3431.197828][ T6442]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3431.204003][ T6442]  ? genl_start+0x660/0x660
[ 3431.208534][ T6442]  ? ns_capable+0xe0/0x110
[ 3431.212982][ T6442]  genl_rcv_msg+0x4ff/0x7e0
[ 3431.217506][ T6442]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3431.223857][ T6442]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3431.229783][ T6442]  ? lock_downgrade+0x690/0x690
[ 3431.234657][ T6442]  netlink_rcv_skb+0x165/0x440
[ 3431.239451][ T6442]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3431.245796][ T6442]  ? netlink_ack+0x1360/0x1360
[ 3431.250635][ T6442]  genl_rcv+0x28/0x40
[ 3431.254647][ T6442]  netlink_unicast+0x547/0x7f0
[ 3431.259459][ T6442]  ? netlink_attachskb+0x890/0x890
[ 3431.264599][ T6442]  ? __virt_addr_valid+0x61/0x2e0
[ 3431.269653][ T6442]  ? __phys_addr_symbol+0x30/0x70
[ 3431.274702][ T6442]  ? __check_object_size+0x323/0x730
[ 3431.280013][ T6442]  netlink_sendmsg+0x925/0xe30
[ 3431.284813][ T6442]  ? netlink_unicast+0x7f0/0x7f0
[ 3431.289800][ T6442]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3431.295108][ T6442]  ? netlink_unicast+0x7f0/0x7f0
[ 3431.300075][ T6442]  sock_sendmsg+0xde/0x190
[ 3431.304523][ T6442]  ____sys_sendmsg+0x71c/0x900
[ 3431.309319][ T6442]  ? copy_msghdr_from_user+0xfc/0x150
[ 3431.314710][ T6442]  ? kernel_sendmsg+0x50/0x50
[ 3431.319432][ T6442]  ___sys_sendmsg+0x110/0x1b0
[ 3431.324128][ T6442]  ? do_recvmmsg+0x6e0/0x6e0
[ 3431.328751][ T6442]  ? __fget_files+0x248/0x480
[ 3431.333447][ T6442]  ? lock_downgrade+0x690/0x690
[ 3431.338317][ T6442]  ? futex_wake_mark+0x1a0/0x1a0
[ 3431.343288][ T6442]  ? __fget_files+0x26a/0x480
[ 3431.347987][ T6442]  ? __fget_light+0xe5/0x270
[ 3431.352603][ T6442]  __sys_sendmsg+0xf7/0x1c0
[ 3431.357122][ T6442]  ? __sys_sendmsg_sock+0x40/0x40
[ 3431.362168][ T6442]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3431.368104][ T6442]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3431.374042][ T6442]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3431.379264][ T6442]  do_syscall_64+0x39/0xb0
[ 3431.383712][ T6442]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3431.389629][ T6442] RIP: 0033:0x7f837868c169
[ 3431.394059][ T6442] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3431.413683][ T6442] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3431.422114][ T6442] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3431.430100][ T6442] RDX: 7400000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3431.438083][ T6442] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3431.446063][ T6442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3431.454045][ T6442] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3431.462046][ T6442]  </TASK>
07:14:24 executing program 5:
listen(0xffffffffffffffff, 0x4) (async)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = epoll_create1(0x0)
ioctl$FIONCLEX(r1, 0x5450)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f00000000c0)={0x0, @local, 0x4e20, 0x2, 'wrr\x00', 0x48, 0xf464, 0x1a}, 0x2c)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000300)={<r6=>0xffffffffffffffff, 0x8, 0x3f, 0xffffffffffffff17})
openat$cgroup_ro(r6, &(0x7f0000000340)='blkio.bfq.time_recursive\x00', 0x0, 0x0) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4]}, 0x80) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) (async)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r7, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="6ca420000800f87500"/27], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='objagg_obj_create\x00', r7}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='svcrdma_send_err\x00'}, 0x10)

07:14:24 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x900, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:24 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x7a00000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:24 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}}}}]}, 0x78}}, 0x131c)

[ 3431.571773][ T6461] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:20000
07:14:24 executing program 5:
listen(0xffffffffffffffff, 0x4) (async)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = epoll_create1(0x0)
ioctl$FIONCLEX(r1, 0x5450)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f00000000c0)={0x0, @local, 0x4e20, 0x2, 'wrr\x00', 0x48, 0xf464, 0x1a}, 0x2c)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000300)={<r6=>0xffffffffffffffff, 0x8, 0x3f, 0xffffffffffffff17})
openat$cgroup_ro(r6, &(0x7f0000000340)='blkio.bfq.time_recursive\x00', 0x0, 0x0) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) (async)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r7, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="6ca420000800f87500"/27], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='objagg_obj_create\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='svcrdma_send_err\x00'}, 0x10)

07:14:24 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3431.646981][ T6469] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3431.689357][ T6469] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3431.720335][ T6469] CPU: 1 PID: 6469 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3431.730734][ T6469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3431.740820][ T6469] Call Trace:
[ 3431.744126][ T6469]  <TASK>
[ 3431.747090][ T6469]  dump_stack_lvl+0x136/0x150
[ 3431.751807][ T6469]  sysfs_warn_dup+0x80/0xa0
[ 3431.756348][ T6469]  sysfs_do_create_link_sd+0x11e/0x140
[ 3431.761847][ T6469]  sysfs_create_link+0x63/0xc0
[ 3431.766644][ T6469]  device_add+0x5e5/0x1c50
[ 3431.771097][ T6469]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3431.777972][ T6469]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3431.783884][ T6469]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3431.789901][ T6469]  wiphy_register+0x1f88/0x2ae0
[ 3431.794786][ T6469]  ? wiphy_unregister+0xb40/0xb40
[ 3431.799829][ T6469]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3431.804974][ T6469]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3431.810993][ T6469]  ieee80211_register_hw+0x23c1/0x40e0
[ 3431.816501][ T6469]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3431.822078][ T6469]  ? debug_object_free+0x360/0x360
[ 3431.827227][ T6469]  ? lockdep_init_map_type+0x21e/0x810
[ 3431.832725][ T6469]  ? __hrtimer_init+0x145/0x280
[ 3431.837606][ T6469]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3431.843365][ T6469]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3431.850081][ T6469]  hwsim_new_radio_nl+0xad6/0x1210
[ 3431.855220][ T6469]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3431.861147][ T6469]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3431.868623][ T6469]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3431.875930][ T6469]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3431.882102][ T6469]  ? genl_start+0x660/0x660
[ 3431.886628][ T6469]  ? ns_capable+0xe0/0x110
[ 3431.891081][ T6469]  genl_rcv_msg+0x4ff/0x7e0
[ 3431.895601][ T6469]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3431.901947][ T6469]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3431.907885][ T6469]  ? lock_downgrade+0x690/0x690
[ 3431.912758][ T6469]  netlink_rcv_skb+0x165/0x440
[ 3431.917550][ T6469]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3431.923896][ T6469]  ? netlink_ack+0x1360/0x1360
[ 3431.928711][ T6469]  genl_rcv+0x28/0x40
[ 3431.932717][ T6469]  netlink_unicast+0x547/0x7f0
[ 3431.937515][ T6469]  ? netlink_attachskb+0x890/0x890
[ 3431.942649][ T6469]  ? __virt_addr_valid+0x61/0x2e0
[ 3431.947698][ T6469]  ? __phys_addr_symbol+0x30/0x70
[ 3431.952763][ T6469]  ? __check_object_size+0x323/0x730
[ 3431.958073][ T6469]  netlink_sendmsg+0x925/0xe30
[ 3431.962869][ T6469]  ? netlink_unicast+0x7f0/0x7f0
[ 3431.967837][ T6469]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3431.973150][ T6469]  ? netlink_unicast+0x7f0/0x7f0
[ 3431.978119][ T6469]  sock_sendmsg+0xde/0x190
[ 3431.982562][ T6469]  ____sys_sendmsg+0x71c/0x900
[ 3431.987351][ T6469]  ? copy_msghdr_from_user+0xfc/0x150
[ 3431.992740][ T6469]  ? kernel_sendmsg+0x50/0x50
[ 3431.997459][ T6469]  ___sys_sendmsg+0x110/0x1b0
[ 3432.002153][ T6469]  ? do_recvmmsg+0x6e0/0x6e0
[ 3432.006765][ T6469]  ? __fget_files+0x248/0x480
[ 3432.011454][ T6469]  ? lock_downgrade+0x690/0x690
[ 3432.016325][ T6469]  ? futex_wake_mark+0x1a0/0x1a0
[ 3432.021296][ T6469]  ? __fget_files+0x26a/0x480
[ 3432.025991][ T6469]  ? __fget_light+0xe5/0x270
[ 3432.030604][ T6469]  __sys_sendmsg+0xf7/0x1c0
[ 3432.035126][ T6469]  ? __sys_sendmsg_sock+0x40/0x40
[ 3432.040194][ T6469]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3432.046151][ T6469]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3432.052097][ T6469]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3432.057326][ T6469]  do_syscall_64+0x39/0xb0
[ 3432.061778][ T6469]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3432.067698][ T6469] RIP: 0033:0x7f837868c169
[ 3432.072131][ T6469] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3432.091757][ T6469] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3432.100185][ T6469] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3432.108165][ T6469] RDX: 7a00000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3432.116145][ T6469] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3432.124129][ T6469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3432.132111][ T6469] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
07:14:24 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xed60)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:25 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xc}}}}]}, 0x78}}, 0x131c)

[ 3432.140108][ T6469]  </TASK>
07:14:25 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:25 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xb00, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3432.199893][ T6476] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3432.214060][ T6478] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:20000
07:14:25 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x97ffffff00000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:25 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xc00, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:25 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe}}}}]}, 0x78}}, 0x131c)

[ 3432.302052][ T6476] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3432.313481][ T6476] CPU: 1 PID: 6476 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3432.323865][ T6476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3432.333956][ T6476] Call Trace:
[ 3432.337255][ T6476]  <TASK>
[ 3432.340206][ T6476]  dump_stack_lvl+0x136/0x150
[ 3432.344926][ T6476]  sysfs_warn_dup+0x80/0xa0
[ 3432.349482][ T6476]  sysfs_do_create_link_sd+0x11e/0x140
[ 3432.354989][ T6476]  sysfs_create_link+0x63/0xc0
[ 3432.359792][ T6476]  device_add+0x5e5/0x1c50
[ 3432.364260][ T6476]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3432.371160][ T6476]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3432.377093][ T6476]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3432.383137][ T6476]  wiphy_register+0x1f88/0x2ae0
[ 3432.388042][ T6476]  ? wiphy_unregister+0xb40/0xb40
[ 3432.393112][ T6476]  ? minstrel_ht_alloc+0x4a9/0x9b0
07:14:25 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x208e24b)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}, 0x80)
r5 = accept$inet(r1, &(0x7f0000000080)={0x2, 0x0, @local}, &(0x7f00000000c0)=0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000200)={r2, &(0x7f0000000000)="ffd33244c927da21d82a7ea233d351992090e29007665d3d969286441be1fc01bf783f3b095b930dd72d10", &(0x7f0000000180)=@udp=r5, 0x1}, 0x20)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r7 = socket$packet(0x11, 0x2, 0x300)
write$binfmt_misc(r7, &(0x7f0000000240)={'syz1', "da54d18d5a58625cb7da20beb5cce2500d0f1c561e0175c32a5036b6e3472cf594e820"}, 0x27)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r6, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x3, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3432.398273][ T6476]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3432.404313][ T6476]  ieee80211_register_hw+0x23c1/0x40e0
[ 3432.409829][ T6476]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3432.415421][ T6476]  ? debug_object_free+0x360/0x360
[ 3432.420579][ T6476]  ? lockdep_init_map_type+0x21e/0x810
[ 3432.426092][ T6476]  ? __hrtimer_init+0x145/0x280
[ 3432.430991][ T6476]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3432.436775][ T6476]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3432.443504][ T6476]  hwsim_new_radio_nl+0xad6/0x1210
[ 3432.448664][ T6476]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3432.454619][ T6476]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3432.462034][ T6476]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3432.469360][ T6476]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3432.475551][ T6476]  ? genl_start+0x660/0x660
[ 3432.480100][ T6476]  ? ns_capable+0xe0/0x110
[ 3432.484562][ T6476]  genl_rcv_msg+0x4ff/0x7e0
[ 3432.489099][ T6476]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3432.495461][ T6476]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3432.501403][ T6476]  ? lock_downgrade+0x690/0x690
[ 3432.506296][ T6476]  netlink_rcv_skb+0x165/0x440
[ 3432.511113][ T6476]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3432.517478][ T6476]  ? netlink_ack+0x1360/0x1360
[ 3432.522323][ T6476]  genl_rcv+0x28/0x40
[ 3432.526350][ T6476]  netlink_unicast+0x547/0x7f0
[ 3432.531167][ T6476]  ? netlink_attachskb+0x890/0x890
[ 3432.536323][ T6476]  ? __virt_addr_valid+0x61/0x2e0
[ 3432.541393][ T6476]  ? __phys_addr_symbol+0x30/0x70
[ 3432.546463][ T6476]  ? __check_object_size+0x323/0x730
[ 3432.551799][ T6476]  netlink_sendmsg+0x925/0xe30
[ 3432.556619][ T6476]  ? netlink_unicast+0x7f0/0x7f0
[ 3432.561614][ T6476]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3432.566952][ T6476]  ? netlink_unicast+0x7f0/0x7f0
[ 3432.571942][ T6476]  sock_sendmsg+0xde/0x190
[ 3432.576409][ T6476]  ____sys_sendmsg+0x71c/0x900
[ 3432.581221][ T6476]  ? copy_msghdr_from_user+0xfc/0x150
[ 3432.586632][ T6476]  ? kernel_sendmsg+0x50/0x50
[ 3432.591375][ T6476]  ___sys_sendmsg+0x110/0x1b0
[ 3432.596088][ T6476]  ? do_recvmmsg+0x6e0/0x6e0
[ 3432.600715][ T6476]  ? __fget_files+0x248/0x480
[ 3432.605425][ T6476]  ? lock_downgrade+0x690/0x690
[ 3432.610316][ T6476]  ? futex_wake_mark+0x1a0/0x1a0
[ 3432.615309][ T6476]  ? __fget_files+0x26a/0x480
[ 3432.620031][ T6476]  ? __fget_light+0xe5/0x270
[ 3432.624661][ T6476]  __sys_sendmsg+0xf7/0x1c0
[ 3432.629194][ T6476]  ? __sys_sendmsg_sock+0x40/0x40
[ 3432.634259][ T6476]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3432.640215][ T6476]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3432.646152][ T6476]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3432.651391][ T6476]  do_syscall_64+0x39/0xb0
[ 3432.655855][ T6476]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3432.661800][ T6476] RIP: 0033:0x7fb4bf08c169
[ 3432.666245][ T6476] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3432.685888][ T6476] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3432.694349][ T6476] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
07:14:25 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x208e24b)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}, 0x80)
accept$inet(r1, &(0x7f0000000080)={0x2, 0x0, @local}, &(0x7f00000000c0)=0x10) (async)
r5 = accept$inet(r1, &(0x7f0000000080)={0x2, 0x0, @local}, &(0x7f00000000c0)=0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000200)={r2, &(0x7f0000000000)="ffd33244c927da21d82a7ea233d351992090e29007665d3d969286441be1fc01bf783f3b095b930dd72d10", &(0x7f0000000180)=@udp=r5, 0x1}, 0x20)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
socket$packet(0x11, 0x2, 0x300) (async)
r7 = socket$packet(0x11, 0x2, 0x300)
write$binfmt_misc(r7, &(0x7f0000000240)={'syz1', "da54d18d5a58625cb7da20beb5cce2500d0f1c561e0175c32a5036b6e3472cf594e820"}, 0x27)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r6, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x3, 0x1}, 0x6) (async)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x3, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3432.702356][ T6476] RDX: 000000000000ed60 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3432.710360][ T6476] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3432.718362][ T6476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3432.726361][ T6476] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3432.734381][ T6476]  </TASK>
07:14:26 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xe00, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:26 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xed61)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:26 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}}}]}, 0x78}}, 0x131c)

[ 3432.834744][ T6488] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3432.892616][ T6488] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3432.915854][ T6488] CPU: 1 PID: 6488 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3432.926255][ T6488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3432.936348][ T6488] Call Trace:
[ 3432.939657][ T6488]  <TASK>
07:14:26 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xed62)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:26 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}, 0x80) (async)
r5 = accept$inet(r1, &(0x7f0000000080)={0x2, 0x0, @local}, &(0x7f00000000c0)=0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000200)={r2, &(0x7f0000000000)="ffd33244c927da21d82a7ea233d351992090e29007665d3d969286441be1fc01bf783f3b095b930dd72d10", &(0x7f0000000180)=@udp=r5, 0x1}, 0x20)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (async)
r7 = socket$packet(0x11, 0x2, 0x300)
write$binfmt_misc(r7, &(0x7f0000000240)={'syz1', "da54d18d5a58625cb7da20beb5cce2500d0f1c561e0175c32a5036b6e3472cf594e820"}, 0x27) (async)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r6, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x80) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0) (async)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x3, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3432.942616][ T6488]  dump_stack_lvl+0x136/0x150
[ 3432.947337][ T6488]  sysfs_warn_dup+0x80/0xa0
[ 3432.951884][ T6488]  sysfs_do_create_link_sd+0x11e/0x140
[ 3432.957385][ T6488]  sysfs_create_link+0x63/0xc0
[ 3432.962189][ T6488]  device_add+0x5e5/0x1c50
[ 3432.966659][ T6488]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3432.973562][ T6488]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3432.979498][ T6488]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3432.985548][ T6488]  wiphy_register+0x1f88/0x2ae0
[ 3432.990460][ T6488]  ? wiphy_unregister+0xb40/0xb40
[ 3432.995535][ T6488]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3433.000707][ T6488]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3433.006740][ T6488]  ieee80211_register_hw+0x23c1/0x40e0
[ 3433.012270][ T6488]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3433.017856][ T6488]  ? net_generic+0xd9/0x2a0
[ 3433.022400][ T6488]  ? debug_object_free+0x360/0x360
[ 3433.027555][ T6488]  ? lockdep_init_map_type+0x21e/0x810
[ 3433.033074][ T6488]  ? __hrtimer_init+0x145/0x280
[ 3433.037980][ T6488]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3433.043764][ T6488]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3433.050502][ T6488]  hwsim_new_radio_nl+0xad6/0x1210
[ 3433.055661][ T6488]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3433.061607][ T6488]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3433.069012][ T6488]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3433.076354][ T6488]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3433.082548][ T6488]  ? genl_start+0x660/0x660
[ 3433.087111][ T6488]  ? ns_capable+0xe0/0x110
[ 3433.091574][ T6488]  genl_rcv_msg+0x4ff/0x7e0
[ 3433.096119][ T6488]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3433.102490][ T6488]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3433.108442][ T6488]  netlink_rcv_skb+0x165/0x440
[ 3433.113256][ T6488]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3433.119619][ T6488]  ? netlink_ack+0x1360/0x1360
[ 3433.124462][ T6488]  genl_rcv+0x28/0x40
[ 3433.128501][ T6488]  netlink_unicast+0x547/0x7f0
[ 3433.133316][ T6488]  ? netlink_attachskb+0x890/0x890
[ 3433.138472][ T6488]  ? __virt_addr_valid+0x61/0x2e0
[ 3433.143543][ T6488]  ? __phys_addr_symbol+0x30/0x70
[ 3433.148608][ T6488]  ? __check_object_size+0x323/0x730
[ 3433.153943][ T6488]  netlink_sendmsg+0x925/0xe30
[ 3433.158761][ T6488]  ? netlink_unicast+0x7f0/0x7f0
[ 3433.163751][ T6488]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3433.169082][ T6488]  ? netlink_unicast+0x7f0/0x7f0
[ 3433.174045][ T6488]  sock_sendmsg+0xde/0x190
[ 3433.178512][ T6488]  ____sys_sendmsg+0x71c/0x900
[ 3433.183316][ T6488]  ? copy_msghdr_from_user+0xfc/0x150
[ 3433.188728][ T6488]  ? kernel_sendmsg+0x50/0x50
[ 3433.193447][ T6488]  ___sys_sendmsg+0x110/0x1b0
[ 3433.198161][ T6488]  ? do_recvmmsg+0x6e0/0x6e0
[ 3433.202790][ T6488]  ? __fget_files+0x248/0x480
[ 3433.207496][ T6488]  ? lock_downgrade+0x690/0x690
[ 3433.212387][ T6488]  ? futex_wake_mark+0x1a0/0x1a0
[ 3433.217352][ T6488]  ? __fget_files+0x26a/0x480
[ 3433.222061][ T6488]  ? __fget_light+0xe5/0x270
[ 3433.226669][ T6488]  __sys_sendmsg+0xf7/0x1c0
[ 3433.231203][ T6488]  ? __sys_sendmsg_sock+0x40/0x40
[ 3433.236265][ T6488]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3433.242204][ T6488]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3433.248111][ T6488]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3433.253353][ T6488]  do_syscall_64+0x39/0xb0
[ 3433.257819][ T6488]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3433.263757][ T6488] RIP: 0033:0x7f837868c169
[ 3433.268196][ T6488] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3433.287836][ T6488] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3433.296283][ T6488] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3433.304283][ T6488] RDX: 97ffffff00000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3433.312267][ T6488] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3433.320243][ T6488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3433.328242][ T6488] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3433.336263][ T6488]  </TASK>
07:14:26 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:26 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1, @remote_oob_data_neg_reply={{0x433, 0x6}}}, 0xa)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="6ca52000080000009500000000404b8d"], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x208e24b)
r6 = bpf$ITER_CREATE(0x21, &(0x7f0000000200)={r4}, 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x3, &(0x7f0000000240)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @map_fd={0x18, 0x9, 0x1, 0x0, r6}], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5]}, 0x80)
clock_gettime(0x0, &(0x7f0000000540)={<r7=>0x0, <r8=>0x0})
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{&(0x7f0000000340)=@tipc=@id, 0x80, &(0x7f0000002a80)=[{&(0x7f00000005c0)=""/219, 0xdb}, {&(0x7f00000003c0)=""/41, 0x29}, {&(0x7f0000001940)=""/4096, 0x1000}, {&(0x7f0000000700)=""/181, 0xb5}, {&(0x7f00000007c0)=""/151, 0x97}, {&(0x7f0000002940)=""/107, 0x6b}, {&(0x7f00000029c0)=""/141, 0x8d}], 0x7, &(0x7f0000002b00)=""/166, 0xa6}, 0x9}, {{&(0x7f0000002bc0)=@l2tp={0x2, 0x0, @initdev}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000002c40)=""/81, 0x51}], 0x1, &(0x7f0000002cc0)=""/158, 0x9e}, 0x3}], 0x2, 0x100, &(0x7f0000002e00)={r7, r8+10000000})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
sendto$inet6(r4, &(0x7f0000000940)="38251f6a781cf73efe945f3b2d93d58d230226d5a0172879733d53881d87e4093935bc680a473baa7b23f0a1ee6ed315d09737f2b28366eeafc26ebb928981476a9c86aedbe4bb26b4984f5605559c654627de1c7ef3c56cfe696545e8b01e6b4a895a7c2c283454d089508c87f576e6ba8326869456430d28bb7c379ccf0c08498aa17d94a0910f1b705264587a919d74b5c39f63644b504e0450f8f40bb8efea6a5acfa6e5cefa5733be32b9f07ad7a439ea2f3e48cb731cf4915d2d77253e0a1172c8b51e138572b233ae0ba9bc51a1b3359dc6dcdcdfcd0f5e35064721eecbb1362b117e674d907c91d074a2c4d09b6fd20cd9d6a8c2252b695c1f6a27e4cb1a4d1abb16e7f0b178b06169dc6c2d35cd1470248cf97a77c54b0d391148fa99c5dfedebcf02a11739e1f57273df60e8f6556815c8474fa6fe63ea38dec681a30a3609eed84ee42345bb9b23fa550ea06bd985245e25a55e74aa520eef6d0084072aeeab1188f982bc49eb9157dffebfb8946f1f3e800e7d75926dfe49640f0c0551636e4aaff7215556f1e22c0e70849e744508104eedb1e3ae3b5164a3bb12bb5632358e1141a499183d8552a3d791d2df97a4bedf9aa1dfad0c1204b991bbfbe9264099eb5b22abfa8ce779cfe3656fc9154e848b603960d2c387624817ecc6f29ba1f46f7aac53b10d52f839c822a67368e35fa187540e01ea206ea1142e98ff43b84f2ea87b758e08f148de5c717f079e914f9aa94503fb0688812174e6794eaf8261513bdfd0c5f237560932f3607ad877cf928f7ae0de424b9d863f3087c44e9cafd401380f5df2dba854420a38a339abd3beb33d3d2539a005188d33c0d551a11c9c2439bdb0d8e5e37d9002aaddcb06d48afc36d5446673766018337b219fb65be8fc326d1781dbd25e34a643f803e6d5385fb98f11e97a6474780d0b4c502ac4370386013ab390eecae9e3f0d7d426fafa10ab09de00eea4beee60ec4e0bbfd813af24f26b350288eb7314e2827d7c83a613179ee3965cf482196e06ec5eb5df93a6d18cc52b3d18ffbccdaf665500ec45bd7ffd4ba5190be723337d76194db159f8bb1341bbdb9a45464e19c83d8c83c24b9d0cd3bc7f1686e96de347bdbca4d40c5b79b206b044d3c2281b17148c5f411f4a3e05cb3a5944d5e32a8c8c57df1d220b0bb152e5106d21ae02939d254471f92da16c7d5c038c1f5c57525f5093c3702ced9e8f160d334e5b4830fade9b9613e984cbeae92dde1656e297c89a0975a23617cbb7da52d7490f89e43667feaa8efa95585060a154023fdc4de7dc34b95ca4752a34e3d07314e4e79071ae50699578305348a3fdee4ef10edf82e6aff47cccf5f47057cda27ea6f55b6e4940e79025b65f6a7f6697f8786645f1c82b7bc8696e90c6c36a6507b8e34bf56e04cd458a7fc71690e0d4117724e29be4122ee957973ad1f8bce379f512141ad82c4cfbd8682053c0942b0041374008d678dfe4f69799ba364ffaeb5937f8964148040e6d2e3d3968f85cbf891bb6b809fbd9ed72fb4b58c37322677b57926febf86771300df6d1c086259cbaad464cec53edec6fbba95dc63b5ffd9e64f5e3aeea3c097427f42610388219c7a9f8b25c30d676e4ae770241f360d176d1bb0f982c98f083155a1754609107d0d3d780e53cffe29e588734f8b4e45e3ae316f9ba9ae8f799caafcb39fc5ea6d4b939328e4b74a3532809392b208ef1f8ced9e65670ac2a52115c67e7b8e6d6f9c79512c9323c19fd3d383b3cdd9a3e3b716a2cc7008b34577a570b2b37e37312053376b9a5075347c43258055acab8014ef90896de22daf235972875b6ab4465441ed4f3ebdc70ed439e22dcab0840e3c4b5bc8c7d8cf683da2ef5aeb86969f24695ae75d5efd59a32597a5267b52a6ef071b7a54eb959eabea16463ab9755e5f170e02145f0228571c8d26b06cc73b582ebd3cfaf9e8bf9427829744c24cde1e621b28783f79883262da46be3fbab34debe85119d4f21b4ea7ab15c86c843fc025d12eeb54ea4fc34683f27c182400a6471fcc557362c830ad6e43785d340b58d42668c7e0b14e43859c5d86d4ab9ef04b417cd255f5e281e13f2660a36e5d3909773efcc13e2421ec836babe01f55fdefefd1074c036ae568d98dd90e0d91b89584661815d2faa82ae3bdb9e4cc75aa376e1c6233b80849a0dd555f4a8bbc6e1d1dfb78a5befcfe7a5eff51834513ac1b26814da7c01274dae1d8874a381a729b67de80745f56413a1f16014bf214c3d3b03b3431b7a556149e95b27792d4e518b55c9d33710f0258f992147258c67f90c490c6d41c88aa5c5886697070eabf58bc24bae93952292fcae786f387d04da7c62fb8c9164c6c060969dc8a385c6ea97c880eb8bc21d00433e247eed439a8f71490a55277fb1f30529c54d5e3dee50b05d50b344a5e82d689c1f978372a5ab70f051c988803cd85e69fd5a861263e8b71047a49b430d9f2154e6c6dcadb68e9f2fa087bd97f89d351d974cc5d1c8375fe43910565e8f368a854cc1ef1bbd328213e14978f6f9594ee8383945218193d6052d3ac68ea88dd338f6e4e5a18a9fc7285063b5ae002b4f8ca7dbef2e19cfd37b9a50f4793e5f88ebfa23b3dff211557d7e733c9d6fbc1fcc294387d2277fb4f5a9bb97623f87b94e4426df7b7c47592234ebad2a45884d0550cc8b8bd186ceff34e9de2e0c29c7a1346ed8ead260b2183fd7a416705187ab67e2d82ac39988f238ea622b97203ab3fd53f2127537a23c163a457580be64a7eabcd4d3350b6f938ffb77acf17ac5712f91c114c0d9237f0cee3e3de76156dde944646459c65ef87448610ba7697dca4df906baf1226dc9ae96c6502e87517ddaae0ad8af14a08ee5ef2cb9cb60dc5ddf198dd0363934243b703cda69651ac10a2002a4a8ff980f91ed5e5c2e521f265583f3342635aaa42a8c99eeadbc803a422cc9b9312113b6f46346f7ccc9610a4aa8d14f0c17cce3ef5a87a2cfccf8657bdbfdce684a58b6fedba2e7201ef8fa6a760be1769e617a19e53b1bfc4c5d0f43ece2a55c4d2711ad90da7d11eb77431e851ec54c83eee2dab0ea057bba465016d7f0801489de9a2085cc092a1142e7bf27042568ff9c3c365365b78de00996da77804063018d6b104e4a369b105886ee10493bcc42547c00d0c40252b7032b0837a06c0a4c9b6f2ea08460cfe40fce4c21c1683ed529598405ad28cb08ff1a92f07ecca588eaedb53958e45071c676fcc8f2a467215dabe40c6fdeacd189a2aa3d577b20e69784d77f152507d2023a588d93a75018f0ead8196d9a358dbc1d81db95561cdd46f248c6d0a68ece1066011eda8048d150b43eb1fa3e9402e6f956107a99866bfb06f346b917d85a5144276bf6ba00eb5d3a0077d29c406e063134af978d744ca38fb5df74e4a9d08453f3298e6c4523767774623edba861781f1f0db3379520ff8833ce2a296504a54173c9b7e2926a065c0e5d233cc649dd6c2b46f92ba51cf546f7cdb5a43f472f4ebdb9f2fc88bc23c156bd7890bfe816a8527a9b1ac29b428965dffed02b1959379ae12272ccbc64db46d3b6f4b1579076b1254b8501c7c86144e631454806bbfd6d8402f30447c40027faafd9a2b518b032d09b28afd6b4eca65bb960587142b9346b5117554466a47315bdfd865eafeb7ebcf2ec6dae1064323a251504b2570a16879686798aa7f4890f17ff2edf4ceb150bf78994e95f36a36a6bc69e715fc512e4e1b0d3ba9037763021237df31b5c65290f9eb999faef275fd300ef60955cb428e4bdc21ff0ce1b4ece21a0290ac780bde2bf8d59da6adbbb590ba50a6bc3c8f05cc04f6103efe3bb71faf55d69211c7098202dea200538b144445abf4347e2372770c906960e2b33e8b2f09c56723a9f5f4e4aafcdd051313b8a7b372c342d703fe89db07d1c3a4fe47a8b71696f0f8a6136fbaa57846113dde005f43f509db54ab4859e03feb5a99dbf26529c9675eec465f491b2d54f72314ae9fb3c07c17b0c686a0453b5bc6b5e0b185b9d4bf0d4d85b63f1b39444f7768de2962dfc0c402530c29607956ae062f01d04cde9fa94543b0f63775c2de2f36871f45548b408b05eabf29444431248189728140a036a6001976b3f68b78c5629f67f2d74eaf8d05fb7a983d20995fa098eab7d17384a7f009b09113995ecf45df0b1900be65a3e2b91de0d191cd6f9ee0d8b03c1d4428ae32c4a67f7359cd24a5447a2918d122a980b8a24217c0a4d85b261f078f67ac49cbd6d954cee9f17928275f04a9cc90ba572c0264233900ce4ebf4564b42e1a8d4089c39b1ea65794a7e31b2dd39c76df3a0020765e18550a329e2616b9797e0efd07ae5fbcb6a4ddd0655a0595067eb4c2218520992c802f032ffa48e815c95ce03ac8db894bb3c8a257193382d1247a518c8cdfa67fbeb28e4730cde2158c526f78af84b7c9b25aaf7d9023b6efd885883d3649f57dcbb961d89a5871950305f3560df3b9ffc73a18adae248765481b545fd0fb27d748adc87a56aab31dce53e0dc80db60c2eaaffbbe5b5949fced0f88a43fd9a48aceb223c3c9ca617dee4d314f114b184889c98606d5116a6b5f35d9ebc82de2857c04f3d70a408ba9cb1e332057a4c81500b3ce548bda4a1da3887bbad3bb19abdc1b8bc8c3c71087f8899fe4d2b01fe8c9bb1ee56b71e3c9fa2f7360c8b1c6d5b5f6ea8e853cf4dd1e79adec1083f1726c9ab626d2a44a2bf08aaf56789112eb41d3d795dc8dbf9afb535fcf0e8a43ace527e275f34d2ffc145327e81c9c8087935c7fb8fe0a2c38e4943506f4d2f0e44dcf11c24c3aa936b0d4bc4fa89adf41a5a4bfc946f772933637cea35a8b3118827a5915991660225b89b6488159ba6fe088bfd2826d21d4eb0e5a7f99254aaf3026c72b4a277eb560da7d5155d77966f1fc80389cfb028f30adf5b02a02b7d3c145c16928550aec73c90c5a93557c4cda034c17478558006b68ac9dd24396a7e81b6ce6ae48e018bfc698db5d884e17b5999e86260f6ee20dbd490cde7d09e8f1ab1694c9823cb46aa1a780c6648d7f77ba93df2188b61c682ce429e04c1b93fa6b4b64a79e0e2776af32503e2854964ab7c0c53e621be675bc5178bb477b046469fb26aa864a4055428f622331b3446b23e727daa76b3a8964dcfb733b42d81c3b4f9ae6c1a693082ea4657d52fb45ee805d37e8f5a42745adec6aaf6551841f761a19ceec0de148085953d3e3b7b14795aa535e812c398f4bc48f241aa57e2882efc906053e565f4c8ae74f3fa4f951be6e07f93c3d0b17d0432cd60da13bc1916a205c43eadb14c8db3c0a2f70738d232e6bc199ea0de2772f0a4e4d554376e2a0fa3bdefa902bbfc88d890a2aef55b085c3916166be6c90a319b6ce5b38c7a157f9ef7ffc4bf1866178e68307c8ab157ee06f3b001b01abe0b8cbdead07490db178f09be405424208bc47d2c19798fe3245a53337d945b9cf99f4f63d555a190c4caf787fcf7ee1773523d4e3572ff032cefdbb0e32d9e5375212431a8d0f7a094299ce615569fcc5a5bd4a0108df06c9c4d7ebaeb51cb60ab4e96ec557d094b73fec232194a1f50454fbb240a357f71be6a78e76f944a7c767de1790ace93a0b9da08e8d308ca723e11ba49238daa83bddd3324e22fa84437fba3013f2c87380ba329272eddfd42ffbb7b55f46e0816aa127dee71112e36c35c73b4802ede648c77231cc459798cfb06408ad35cc36b523575da3e59e862", 0x1000, 0x40840, &(0x7f0000000180)={0xa, 0x4e21, 0x800, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}, 0x1c)
bind$bt_hci(r4, &(0x7f0000000300)={0x1f, 0x4}, 0x6)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000000080)={0x2, 0x0, 'M>6', 0x9, 0x5})
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000002e40)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)
setsockopt$sock_timeval(r9, 0x1, 0x0, &(0x7f00000000c0)={0x0, 0x2710}, 0x10)

07:14:26 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x1100, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:26 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x9cb0000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:26 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x11}}}}]}, 0x78}}, 0x131c)

[ 3433.382253][ T6518] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3433.434907][ T6518] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3433.454567][ T6518] CPU: 0 PID: 6518 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3433.464961][ T6518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3433.475045][ T6518] Call Trace:
[ 3433.478345][ T6518]  <TASK>
[ 3433.481300][ T6518]  dump_stack_lvl+0x136/0x150
[ 3433.486024][ T6518]  sysfs_warn_dup+0x80/0xa0
[ 3433.490566][ T6518]  sysfs_do_create_link_sd+0x11e/0x140
[ 3433.496071][ T6518]  sysfs_create_link+0x63/0xc0
[ 3433.500874][ T6518]  device_add+0x5e5/0x1c50
[ 3433.505342][ T6518]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3433.512244][ T6518]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3433.518177][ T6518]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3433.524216][ T6518]  wiphy_register+0x1f88/0x2ae0
[ 3433.529125][ T6518]  ? wiphy_unregister+0xb40/0xb40
[ 3433.534192][ T6518]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3433.539360][ T6518]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3433.545393][ T6518]  ieee80211_register_hw+0x23c1/0x40e0
[ 3433.550909][ T6518]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3433.556494][ T6518]  ? net_generic+0xd9/0x2a0
[ 3433.561046][ T6518]  ? debug_object_free+0x360/0x360
[ 3433.566204][ T6518]  ? lockdep_init_map_type+0x21e/0x810
[ 3433.571700][ T6518]  ? __hrtimer_init+0x145/0x280
[ 3433.576585][ T6518]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3433.582353][ T6518]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3433.589063][ T6518]  hwsim_new_radio_nl+0xad6/0x1210
[ 3433.594200][ T6518]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3433.600128][ T6518]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3433.607521][ T6518]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3433.614827][ T6518]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3433.621020][ T6518]  ? genl_start+0x660/0x660
[ 3433.625555][ T6518]  ? ns_capable+0xe0/0x110
[ 3433.630001][ T6518]  genl_rcv_msg+0x4ff/0x7e0
[ 3433.634527][ T6518]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3433.640872][ T6518]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3433.646801][ T6518]  netlink_rcv_skb+0x165/0x440
[ 3433.651592][ T6518]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3433.657949][ T6518]  ? netlink_ack+0x1360/0x1360
[ 3433.662769][ T6518]  genl_rcv+0x28/0x40
[ 3433.666780][ T6518]  netlink_unicast+0x547/0x7f0
[ 3433.671581][ T6518]  ? netlink_attachskb+0x890/0x890
[ 3433.676715][ T6518]  ? __virt_addr_valid+0x61/0x2e0
[ 3433.681766][ T6518]  ? __phys_addr_symbol+0x30/0x70
[ 3433.686818][ T6518]  ? __check_object_size+0x323/0x730
[ 3433.692130][ T6518]  netlink_sendmsg+0x925/0xe30
[ 3433.696930][ T6518]  ? netlink_unicast+0x7f0/0x7f0
[ 3433.701905][ T6518]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3433.707214][ T6518]  ? netlink_unicast+0x7f0/0x7f0
[ 3433.712180][ T6518]  sock_sendmsg+0xde/0x190
[ 3433.716633][ T6518]  ____sys_sendmsg+0x71c/0x900
[ 3433.721444][ T6518]  ? copy_msghdr_from_user+0xfc/0x150
[ 3433.726832][ T6518]  ? kernel_sendmsg+0x50/0x50
[ 3433.731552][ T6518]  ___sys_sendmsg+0x110/0x1b0
[ 3433.736248][ T6518]  ? do_recvmmsg+0x6e0/0x6e0
[ 3433.740870][ T6518]  ? __fget_files+0x248/0x480
[ 3433.745562][ T6518]  ? lock_downgrade+0x690/0x690
[ 3433.750434][ T6518]  ? futex_wake_mark+0x1a0/0x1a0
[ 3433.755405][ T6518]  ? __fget_files+0x26a/0x480
[ 3433.760108][ T6518]  ? __fget_light+0xe5/0x270
[ 3433.764716][ T6518]  __sys_sendmsg+0xf7/0x1c0
[ 3433.769236][ T6518]  ? __sys_sendmsg_sock+0x40/0x40
[ 3433.774277][ T6518]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3433.780214][ T6518]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3433.786128][ T6518]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3433.791348][ T6518]  do_syscall_64+0x39/0xb0
[ 3433.795792][ T6518]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3433.801727][ T6518] RIP: 0033:0x7fb4bf08c169
[ 3433.806156][ T6518] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3433.825778][ T6518] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3433.834218][ T6518] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3433.842222][ T6518] RDX: 000000000000ed62 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3433.850229][ T6518] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3433.858211][ T6518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3433.866191][ T6518] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3433.874190][ T6518]  </TASK>
07:14:27 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x1300, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3433.891019][ T6529] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:27 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x1f00, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:27 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x13}}}}]}, 0x78}}, 0x131c)

07:14:27 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async, rerun: 64)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async, rerun: 64)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1, @remote_oob_data_neg_reply={{0x433, 0x6}}}, 0xa)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x208e24b) (async, rerun: 64)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="6ca52000080000009500000000404b8d"], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x80) (rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
r6 = bpf$ITER_CREATE(0x21, &(0x7f0000000200)={r4}, 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x3, &(0x7f0000000240)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @map_fd={0x18, 0x9, 0x1, 0x0, r6}], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5]}, 0x80) (async)
clock_gettime(0x0, &(0x7f0000000540)={<r7=>0x0, <r8=>0x0})
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{&(0x7f0000000340)=@tipc=@id, 0x80, &(0x7f0000002a80)=[{&(0x7f00000005c0)=""/219, 0xdb}, {&(0x7f00000003c0)=""/41, 0x29}, {&(0x7f0000001940)=""/4096, 0x1000}, {&(0x7f0000000700)=""/181, 0xb5}, {&(0x7f00000007c0)=""/151, 0x97}, {&(0x7f0000002940)=""/107, 0x6b}, {&(0x7f00000029c0)=""/141, 0x8d}], 0x7, &(0x7f0000002b00)=""/166, 0xa6}, 0x9}, {{&(0x7f0000002bc0)=@l2tp={0x2, 0x0, @initdev}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000002c40)=""/81, 0x51}], 0x1, &(0x7f0000002cc0)=""/158, 0x9e}, 0x3}], 0x2, 0x100, &(0x7f0000002e00)={r7, r8+10000000}) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0) (async)
sendto$inet6(r4, &(0x7f0000000940)="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", 0x1000, 0x40840, &(0x7f0000000180)={0xa, 0x4e21, 0x800, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}, 0x1c)
bind$bt_hci(r4, &(0x7f0000000300)={0x1f, 0x4}, 0x6) (async)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000000080)={0x2, 0x0, 'M>6', 0x9, 0x5})
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000002e40)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)
setsockopt$sock_timeval(r9, 0x1, 0x0, &(0x7f00000000c0)={0x0, 0x2710}, 0x10)

[ 3433.976464][ T6529] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3434.035242][ T6529] CPU: 1 PID: 6529 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3434.045643][ T6529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3434.055717][ T6529] Call Trace:
[ 3434.059002][ T6529]  <TASK>
[ 3434.061944][ T6529]  dump_stack_lvl+0x136/0x150
[ 3434.066644][ T6529]  sysfs_warn_dup+0x80/0xa0
[ 3434.071204][ T6529]  sysfs_do_create_link_sd+0x11e/0x140
[ 3434.076686][ T6529]  sysfs_create_link+0x63/0xc0
[ 3434.081468][ T6529]  device_add+0x5e5/0x1c50
[ 3434.085911][ T6529]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3434.092784][ T6529]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3434.098695][ T6529]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3434.104710][ T6529]  wiphy_register+0x1f88/0x2ae0
[ 3434.109599][ T6529]  ? wiphy_unregister+0xb40/0xb40
[ 3434.114644][ T6529]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3434.119789][ T6529]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3434.125798][ T6529]  ieee80211_register_hw+0x23c1/0x40e0
[ 3434.131297][ T6529]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3434.136870][ T6529]  ? debug_object_free+0x360/0x360
[ 3434.142005][ T6529]  ? lockdep_init_map_type+0x21e/0x810
[ 3434.147486][ T6529]  ? __hrtimer_init+0x145/0x280
[ 3434.152380][ T6529]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3434.158154][ T6529]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3434.164869][ T6529]  hwsim_new_radio_nl+0xad6/0x1210
[ 3434.170005][ T6529]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3434.175929][ T6529]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3434.183317][ T6529]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3434.190622][ T6529]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3434.196794][ T6529]  ? genl_start+0x660/0x660
[ 3434.201326][ T6529]  ? ns_capable+0xe0/0x110
[ 3434.205771][ T6529]  genl_rcv_msg+0x4ff/0x7e0
[ 3434.210294][ T6529]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3434.216639][ T6529]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3434.222567][ T6529]  netlink_rcv_skb+0x165/0x440
[ 3434.227363][ T6529]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3434.233707][ T6529]  ? netlink_ack+0x1360/0x1360
[ 3434.238524][ T6529]  genl_rcv+0x28/0x40
[ 3434.242531][ T6529]  netlink_unicast+0x547/0x7f0
[ 3434.247326][ T6529]  ? netlink_attachskb+0x890/0x890
[ 3434.252463][ T6529]  ? __virt_addr_valid+0x61/0x2e0
[ 3434.257509][ T6529]  ? __phys_addr_symbol+0x30/0x70
[ 3434.262557][ T6529]  ? __check_object_size+0x323/0x730
[ 3434.267867][ T6529]  netlink_sendmsg+0x925/0xe30
[ 3434.272661][ T6529]  ? netlink_unicast+0x7f0/0x7f0
[ 3434.277637][ T6529]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3434.282947][ T6529]  ? netlink_unicast+0x7f0/0x7f0
[ 3434.287911][ T6529]  sock_sendmsg+0xde/0x190
[ 3434.292356][ T6529]  ____sys_sendmsg+0x71c/0x900
[ 3434.297170][ T6529]  ? copy_msghdr_from_user+0xfc/0x150
[ 3434.302584][ T6529]  ? kernel_sendmsg+0x50/0x50
[ 3434.307319][ T6529]  ___sys_sendmsg+0x110/0x1b0
[ 3434.312030][ T6529]  ? do_recvmmsg+0x6e0/0x6e0
[ 3434.316642][ T6529]  ? __fget_files+0x248/0x480
[ 3434.321340][ T6529]  ? lock_downgrade+0x690/0x690
[ 3434.326213][ T6529]  ? futex_wake_mark+0x1a0/0x1a0
[ 3434.331184][ T6529]  ? __fget_files+0x26a/0x480
[ 3434.335886][ T6529]  ? __fget_light+0xe5/0x270
[ 3434.340494][ T6529]  __sys_sendmsg+0xf7/0x1c0
[ 3434.345014][ T6529]  ? __sys_sendmsg_sock+0x40/0x40
[ 3434.350056][ T6529]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3434.355991][ T6529]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3434.361909][ T6529]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3434.367127][ T6529]  do_syscall_64+0x39/0xb0
[ 3434.371573][ T6529]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3434.377491][ T6529] RIP: 0033:0x7f837868c169
[ 3434.381918][ T6529] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3434.401541][ T6529] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3434.409995][ T6529] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3434.417978][ T6529] RDX: 9cb0000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3434.425961][ T6529] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3434.433940][ T6529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3434.441924][ T6529] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3434.449932][ T6529]  </TASK>
07:14:27 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x9db0000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:27 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xed63)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:27 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x3687, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3434.588664][ T6552] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3434.635380][ T6552] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3434.654106][ T6552] CPU: 1 PID: 6552 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3434.664497][ T6552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3434.674581][ T6552] Call Trace:
[ 3434.677881][ T6552]  <TASK>
[ 3434.680832][ T6552]  dump_stack_lvl+0x136/0x150
[ 3434.685550][ T6552]  sysfs_warn_dup+0x80/0xa0
[ 3434.690081][ T6552]  sysfs_do_create_link_sd+0x11e/0x140
[ 3434.695561][ T6552]  sysfs_create_link+0x63/0xc0
[ 3434.700340][ T6552]  device_add+0x5e5/0x1c50
[ 3434.704784][ T6552]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3434.711661][ T6552]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3434.717572][ T6552]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3434.723588][ T6552]  wiphy_register+0x1f88/0x2ae0
[ 3434.728473][ T6552]  ? wiphy_unregister+0xb40/0xb40
[ 3434.733522][ T6552]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3434.738667][ T6552]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3434.744680][ T6552]  ieee80211_register_hw+0x23c1/0x40e0
[ 3434.750177][ T6552]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3434.755744][ T6552]  ? debug_object_free+0x360/0x360
[ 3434.760877][ T6552]  ? lockdep_init_map_type+0x21e/0x810
[ 3434.766361][ T6552]  ? __hrtimer_init+0x145/0x280
[ 3434.771263][ T6552]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3434.777028][ T6552]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3434.783737][ T6552]  hwsim_new_radio_nl+0xad6/0x1210
[ 3434.788884][ T6552]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3434.794821][ T6552]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3434.802225][ T6552]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3434.809535][ T6552]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3434.815708][ T6552]  ? genl_start+0x660/0x660
[ 3434.820236][ T6552]  ? ns_capable+0xe0/0x110
[ 3434.824685][ T6552]  genl_rcv_msg+0x4ff/0x7e0
[ 3434.829206][ T6552]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3434.835549][ T6552]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3434.841481][ T6552]  netlink_rcv_skb+0x165/0x440
[ 3434.846275][ T6552]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3434.852625][ T6552]  ? netlink_ack+0x1360/0x1360
[ 3434.857444][ T6552]  genl_rcv+0x28/0x40
[ 3434.861453][ T6552]  netlink_unicast+0x547/0x7f0
[ 3434.866249][ T6552]  ? netlink_attachskb+0x890/0x890
[ 3434.871388][ T6552]  ? __virt_addr_valid+0x61/0x2e0
[ 3434.876439][ T6552]  ? __phys_addr_symbol+0x30/0x70
[ 3434.881487][ T6552]  ? __check_object_size+0x323/0x730
[ 3434.886801][ T6552]  netlink_sendmsg+0x925/0xe30
[ 3434.891604][ T6552]  ? netlink_unicast+0x7f0/0x7f0
[ 3434.896576][ T6552]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3434.901883][ T6552]  ? netlink_unicast+0x7f0/0x7f0
[ 3434.906850][ T6552]  sock_sendmsg+0xde/0x190
[ 3434.911297][ T6552]  ____sys_sendmsg+0x71c/0x900
[ 3434.916089][ T6552]  ? copy_msghdr_from_user+0xfc/0x150
[ 3434.921479][ T6552]  ? kernel_sendmsg+0x50/0x50
[ 3434.926190][ T6552]  ? futex_unqueue+0xb7/0x120
[ 3434.930892][ T6552]  ? futex_wait+0x503/0x680
[ 3434.935424][ T6552]  ___sys_sendmsg+0x110/0x1b0
[ 3434.940120][ T6552]  ? do_recvmmsg+0x6e0/0x6e0
[ 3434.944728][ T6552]  ? __fget_files+0x248/0x480
[ 3434.949421][ T6552]  ? lock_downgrade+0x690/0x690
[ 3434.954309][ T6552]  ? __fget_files+0x26a/0x480
[ 3434.959010][ T6552]  ? __fget_light+0xe5/0x270
[ 3434.963640][ T6552]  __sys_sendmsg+0xf7/0x1c0
[ 3434.968158][ T6552]  ? __sys_sendmsg_sock+0x40/0x40
[ 3434.973200][ T6552]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3434.979136][ T6552]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3434.985050][ T6552]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3434.990270][ T6552]  do_syscall_64+0x39/0xb0
[ 3434.994722][ T6552]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3435.000640][ T6552] RIP: 0033:0x7f837868c169
[ 3435.005068][ T6552] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3435.024711][ T6552] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3435.033143][ T6552] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3435.041144][ T6552] RDX: 9db0000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3435.049130][ T6552] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3435.057111][ T6552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3435.065091][ T6552] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3435.073102][ T6552]  </TASK>
07:14:28 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:28 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}}}]}, 0x78}}, 0x131c)

07:14:28 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:28 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1, @remote_oob_data_neg_reply={{0x433, 0x6}}}, 0xa) (async)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1, @remote_oob_data_neg_reply={{0x433, 0x6}}}, 0xa)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="6ca52000080000009500000000404b8d"], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x208e24b)
r6 = bpf$ITER_CREATE(0x21, &(0x7f0000000200)={r4}, 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x3, &(0x7f0000000240)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @map_fd={0x18, 0x9, 0x1, 0x0, r6}], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5]}, 0x80)
clock_gettime(0x0, &(0x7f0000000540)) (async)
clock_gettime(0x0, &(0x7f0000000540)={<r7=>0x0, <r8=>0x0})
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{&(0x7f0000000340)=@tipc=@id, 0x80, &(0x7f0000002a80)=[{&(0x7f00000005c0)=""/219, 0xdb}, {&(0x7f00000003c0)=""/41, 0x29}, {&(0x7f0000001940)=""/4096, 0x1000}, {&(0x7f0000000700)=""/181, 0xb5}, {&(0x7f00000007c0)=""/151, 0x97}, {&(0x7f0000002940)=""/107, 0x6b}, {&(0x7f00000029c0)=""/141, 0x8d}], 0x7, &(0x7f0000002b00)=""/166, 0xa6}, 0x9}, {{&(0x7f0000002bc0)=@l2tp={0x2, 0x0, @initdev}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000002c40)=""/81, 0x51}], 0x1, &(0x7f0000002cc0)=""/158, 0x9e}, 0x3}], 0x2, 0x100, &(0x7f0000002e00)={r7, r8+10000000})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
sendto$inet6(r4, &(0x7f0000000940)="38251f6a781cf73efe945f3b2d93d58d230226d5a0172879733d53881d87e4093935bc680a473baa7b23f0a1ee6ed315d09737f2b28366eeafc26ebb928981476a9c86aedbe4bb26b4984f5605559c654627de1c7ef3c56cfe696545e8b01e6b4a895a7c2c283454d089508c87f576e6ba8326869456430d28bb7c379ccf0c08498aa17d94a0910f1b705264587a919d74b5c39f63644b504e0450f8f40bb8efea6a5acfa6e5cefa5733be32b9f07ad7a439ea2f3e48cb731cf4915d2d77253e0a1172c8b51e138572b233ae0ba9bc51a1b3359dc6dcdcdfcd0f5e35064721eecbb1362b117e674d907c91d074a2c4d09b6fd20cd9d6a8c2252b695c1f6a27e4cb1a4d1abb16e7f0b178b06169dc6c2d35cd1470248cf97a77c54b0d391148fa99c5dfedebcf02a11739e1f57273df60e8f6556815c8474fa6fe63ea38dec681a30a3609eed84ee42345bb9b23fa550ea06bd985245e25a55e74aa520eef6d0084072aeeab1188f982bc49eb9157dffebfb8946f1f3e800e7d75926dfe49640f0c0551636e4aaff7215556f1e22c0e70849e744508104eedb1e3ae3b5164a3bb12bb5632358e1141a499183d8552a3d791d2df97a4bedf9aa1dfad0c1204b991bbfbe9264099eb5b22abfa8ce779cfe3656fc9154e848b603960d2c387624817ecc6f29ba1f46f7aac53b10d52f839c822a67368e35fa187540e01ea206ea1142e98ff43b84f2ea87b758e08f148de5c717f079e914f9aa94503fb0688812174e6794eaf8261513bdfd0c5f237560932f3607ad877cf928f7ae0de424b9d863f3087c44e9cafd401380f5df2dba854420a38a339abd3beb33d3d2539a005188d33c0d551a11c9c2439bdb0d8e5e37d9002aaddcb06d48afc36d5446673766018337b219fb65be8fc326d1781dbd25e34a643f803e6d5385fb98f11e97a6474780d0b4c502ac4370386013ab390eecae9e3f0d7d426fafa10ab09de00eea4beee60ec4e0bbfd813af24f26b350288eb7314e2827d7c83a613179ee3965cf482196e06ec5eb5df93a6d18cc52b3d18ffbccdaf665500ec45bd7ffd4ba5190be723337d76194db159f8bb1341bbdb9a45464e19c83d8c83c24b9d0cd3bc7f1686e96de347bdbca4d40c5b79b206b044d3c2281b17148c5f411f4a3e05cb3a5944d5e32a8c8c57df1d220b0bb152e5106d21ae02939d254471f92da16c7d5c038c1f5c57525f5093c3702ced9e8f160d334e5b4830fade9b9613e984cbeae92dde1656e297c89a0975a23617cbb7da52d7490f89e43667feaa8efa95585060a154023fdc4de7dc34b95ca4752a34e3d07314e4e79071ae50699578305348a3fdee4ef10edf82e6aff47cccf5f47057cda27ea6f55b6e4940e79025b65f6a7f6697f8786645f1c82b7bc8696e90c6c36a6507b8e34bf56e04cd458a7fc71690e0d4117724e29be4122ee957973ad1f8bce379f512141ad82c4cfbd8682053c0942b0041374008d678dfe4f69799ba364ffaeb5937f8964148040e6d2e3d3968f85cbf891bb6b809fbd9ed72fb4b58c37322677b57926febf86771300df6d1c086259cbaad464cec53edec6fbba95dc63b5ffd9e64f5e3aeea3c097427f42610388219c7a9f8b25c30d676e4ae770241f360d176d1bb0f982c98f083155a1754609107d0d3d780e53cffe29e588734f8b4e45e3ae316f9ba9ae8f799caafcb39fc5ea6d4b939328e4b74a3532809392b208ef1f8ced9e65670ac2a52115c67e7b8e6d6f9c79512c9323c19fd3d383b3cdd9a3e3b716a2cc7008b34577a570b2b37e37312053376b9a5075347c43258055acab8014ef90896de22daf235972875b6ab4465441ed4f3ebdc70ed439e22dcab0840e3c4b5bc8c7d8cf683da2ef5aeb86969f24695ae75d5efd59a32597a5267b52a6ef071b7a54eb959eabea16463ab9755e5f170e02145f0228571c8d26b06cc73b582ebd3cfaf9e8bf9427829744c24cde1e621b28783f79883262da46be3fbab34debe85119d4f21b4ea7ab15c86c843fc025d12eeb54ea4fc34683f27c182400a6471fcc557362c830ad6e43785d340b58d42668c7e0b14e43859c5d86d4ab9ef04b417cd255f5e281e13f2660a36e5d3909773efcc13e2421ec836babe01f55fdefefd1074c036ae568d98dd90e0d91b89584661815d2faa82ae3bdb9e4cc75aa376e1c6233b80849a0dd555f4a8bbc6e1d1dfb78a5befcfe7a5eff51834513ac1b26814da7c01274dae1d8874a381a729b67de80745f56413a1f16014bf214c3d3b03b3431b7a556149e95b27792d4e518b55c9d33710f0258f992147258c67f90c490c6d41c88aa5c5886697070eabf58bc24bae93952292fcae786f387d04da7c62fb8c9164c6c060969dc8a385c6ea97c880eb8bc21d00433e247eed439a8f71490a55277fb1f30529c54d5e3dee50b05d50b344a5e82d689c1f978372a5ab70f051c988803cd85e69fd5a861263e8b71047a49b430d9f2154e6c6dcadb68e9f2fa087bd97f89d351d974cc5d1c8375fe43910565e8f368a854cc1ef1bbd328213e14978f6f9594ee8383945218193d6052d3ac68ea88dd338f6e4e5a18a9fc7285063b5ae002b4f8ca7dbef2e19cfd37b9a50f4793e5f88ebfa23b3dff211557d7e733c9d6fbc1fcc294387d2277fb4f5a9bb97623f87b94e4426df7b7c47592234ebad2a45884d0550cc8b8bd186ceff34e9de2e0c29c7a1346ed8ead260b2183fd7a416705187ab67e2d82ac39988f238ea622b97203ab3fd53f2127537a23c163a457580be64a7eabcd4d3350b6f938ffb77acf17ac5712f91c114c0d9237f0cee3e3de76156dde944646459c65ef87448610ba7697dca4df906baf1226dc9ae96c6502e87517ddaae0ad8af14a08ee5ef2cb9cb60dc5ddf198dd0363934243b703cda69651ac10a2002a4a8ff980f91ed5e5c2e521f265583f3342635aaa42a8c99eeadbc803a422cc9b9312113b6f46346f7ccc9610a4aa8d14f0c17cce3ef5a87a2cfccf8657bdbfdce684a58b6fedba2e7201ef8fa6a760be1769e617a19e53b1bfc4c5d0f43ece2a55c4d2711ad90da7d11eb77431e851ec54c83eee2dab0ea057bba465016d7f0801489de9a2085cc092a1142e7bf27042568ff9c3c365365b78de00996da77804063018d6b104e4a369b105886ee10493bcc42547c00d0c40252b7032b0837a06c0a4c9b6f2ea08460cfe40fce4c21c1683ed529598405ad28cb08ff1a92f07ecca588eaedb53958e45071c676fcc8f2a467215dabe40c6fdeacd189a2aa3d577b20e69784d77f152507d2023a588d93a75018f0ead8196d9a358dbc1d81db95561cdd46f248c6d0a68ece1066011eda8048d150b43eb1fa3e9402e6f956107a99866bfb06f346b917d85a5144276bf6ba00eb5d3a0077d29c406e063134af978d744ca38fb5df74e4a9d08453f3298e6c4523767774623edba861781f1f0db3379520ff8833ce2a296504a54173c9b7e2926a065c0e5d233cc649dd6c2b46f92ba51cf546f7cdb5a43f472f4ebdb9f2fc88bc23c156bd7890bfe816a8527a9b1ac29b428965dffed02b1959379ae12272ccbc64db46d3b6f4b1579076b1254b8501c7c86144e631454806bbfd6d8402f30447c40027faafd9a2b518b032d09b28afd6b4eca65bb960587142b9346b5117554466a47315bdfd865eafeb7ebcf2ec6dae1064323a251504b2570a16879686798aa7f4890f17ff2edf4ceb150bf78994e95f36a36a6bc69e715fc512e4e1b0d3ba9037763021237df31b5c65290f9eb999faef275fd300ef60955cb428e4bdc21ff0ce1b4ece21a0290ac780bde2bf8d59da6adbbb590ba50a6bc3c8f05cc04f6103efe3bb71faf55d69211c7098202dea200538b144445abf4347e2372770c906960e2b33e8b2f09c56723a9f5f4e4aafcdd051313b8a7b372c342d703fe89db07d1c3a4fe47a8b71696f0f8a6136fbaa57846113dde005f43f509db54ab4859e03feb5a99dbf26529c9675eec465f491b2d54f72314ae9fb3c07c17b0c686a0453b5bc6b5e0b185b9d4bf0d4d85b63f1b39444f7768de2962dfc0c402530c29607956ae062f01d04cde9fa94543b0f63775c2de2f36871f45548b408b05eabf29444431248189728140a036a6001976b3f68b78c5629f67f2d74eaf8d05fb7a983d20995fa098eab7d17384a7f009b09113995ecf45df0b1900be65a3e2b91de0d191cd6f9ee0d8b03c1d4428ae32c4a67f7359cd24a5447a2918d122a980b8a24217c0a4d85b261f078f67ac49cbd6d954cee9f17928275f04a9cc90ba572c0264233900ce4ebf4564b42e1a8d4089c39b1ea65794a7e31b2dd39c76df3a0020765e18550a329e2616b9797e0efd07ae5fbcb6a4ddd0655a0595067eb4c2218520992c802f032ffa48e815c95ce03ac8db894bb3c8a257193382d1247a518c8cdfa67fbeb28e4730cde2158c526f78af84b7c9b25aaf7d9023b6efd885883d3649f57dcbb961d89a5871950305f3560df3b9ffc73a18adae248765481b545fd0fb27d748adc87a56aab31dce53e0dc80db60c2eaaffbbe5b5949fced0f88a43fd9a48aceb223c3c9ca617dee4d314f114b184889c98606d5116a6b5f35d9ebc82de2857c04f3d70a408ba9cb1e332057a4c81500b3ce548bda4a1da3887bbad3bb19abdc1b8bc8c3c71087f8899fe4d2b01fe8c9bb1ee56b71e3c9fa2f7360c8b1c6d5b5f6ea8e853cf4dd1e79adec1083f1726c9ab626d2a44a2bf08aaf56789112eb41d3d795dc8dbf9afb535fcf0e8a43ace527e275f34d2ffc145327e81c9c8087935c7fb8fe0a2c38e4943506f4d2f0e44dcf11c24c3aa936b0d4bc4fa89adf41a5a4bfc946f772933637cea35a8b3118827a5915991660225b89b6488159ba6fe088bfd2826d21d4eb0e5a7f99254aaf3026c72b4a277eb560da7d5155d77966f1fc80389cfb028f30adf5b02a02b7d3c145c16928550aec73c90c5a93557c4cda034c17478558006b68ac9dd24396a7e81b6ce6ae48e018bfc698db5d884e17b5999e86260f6ee20dbd490cde7d09e8f1ab1694c9823cb46aa1a780c6648d7f77ba93df2188b61c682ce429e04c1b93fa6b4b64a79e0e2776af32503e2854964ab7c0c53e621be675bc5178bb477b046469fb26aa864a4055428f622331b3446b23e727daa76b3a8964dcfb733b42d81c3b4f9ae6c1a693082ea4657d52fb45ee805d37e8f5a42745adec6aaf6551841f761a19ceec0de148085953d3e3b7b14795aa535e812c398f4bc48f241aa57e2882efc906053e565f4c8ae74f3fa4f951be6e07f93c3d0b17d0432cd60da13bc1916a205c43eadb14c8db3c0a2f70738d232e6bc199ea0de2772f0a4e4d554376e2a0fa3bdefa902bbfc88d890a2aef55b085c3916166be6c90a319b6ce5b38c7a157f9ef7ffc4bf1866178e68307c8ab157ee06f3b001b01abe0b8cbdead07490db178f09be405424208bc47d2c19798fe3245a53337d945b9cf99f4f63d555a190c4caf787fcf7ee1773523d4e3572ff032cefdbb0e32d9e5375212431a8d0f7a094299ce615569fcc5a5bd4a0108df06c9c4d7ebaeb51cb60ab4e96ec557d094b73fec232194a1f50454fbb240a357f71be6a78e76f944a7c767de1790ace93a0b9da08e8d308ca723e11ba49238daa83bddd3324e22fa84437fba3013f2c87380ba329272eddfd42ffbb7b55f46e0816aa127dee71112e36c35c73b4802ede648c77231cc459798cfb06408ad35cc36b523575da3e59e862", 0x1000, 0x40840, &(0x7f0000000180)={0xa, 0x4e21, 0x800, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}, 0x1c)
bind$bt_hci(r4, &(0x7f0000000300)={0x1f, 0x4}, 0x6) (async)
bind$bt_hci(r4, &(0x7f0000000300)={0x1f, 0x4}, 0x6)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000000080)={0x2, 0x0, 'M>6', 0x9, 0x5}) (async)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000000080)={0x2, 0x0, 'M>6', 0x9, 0x5})
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000002e40)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)
setsockopt$sock_timeval(r9, 0x1, 0x0, &(0x7f00000000c0)={0x0, 0x2710}, 0x10)

07:14:28 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xed64)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:28 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x9eb0000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:28 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x5865, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:28 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x60}}}}]}, 0x78}}, 0x131c)

[ 3435.152620][ T6566] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3435.189313][ T6566] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3435.234713][ T6566] CPU: 1 PID: 6566 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3435.245111][ T6566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3435.255199][ T6566] Call Trace:
[ 3435.258506][ T6566]  <TASK>
[ 3435.261462][ T6566]  dump_stack_lvl+0x136/0x150
[ 3435.266184][ T6566]  sysfs_warn_dup+0x80/0xa0
[ 3435.270733][ T6566]  sysfs_do_create_link_sd+0x11e/0x140
[ 3435.276236][ T6566]  sysfs_create_link+0x63/0xc0
[ 3435.281046][ T6566]  device_add+0x5e5/0x1c50
[ 3435.285521][ T6566]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3435.292419][ T6566]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3435.298355][ T6566]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3435.304390][ T6566]  wiphy_register+0x1f88/0x2ae0
[ 3435.309284][ T6566]  ? wiphy_unregister+0xb40/0xb40
[ 3435.314329][ T6566]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3435.319469][ T6566]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3435.325482][ T6566]  ieee80211_register_hw+0x23c1/0x40e0
[ 3435.330982][ T6566]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3435.336552][ T6566]  ? debug_object_free+0x360/0x360
[ 3435.341686][ T6566]  ? lockdep_init_map_type+0x21e/0x810
[ 3435.347169][ T6566]  ? __hrtimer_init+0x145/0x280
[ 3435.352048][ T6566]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3435.357814][ T6566]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3435.364526][ T6566]  hwsim_new_radio_nl+0xad6/0x1210
[ 3435.369664][ T6566]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3435.375593][ T6566]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3435.382985][ T6566]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3435.390291][ T6566]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3435.396465][ T6566]  ? genl_start+0x660/0x660
[ 3435.400992][ T6566]  ? ns_capable+0xe0/0x110
[ 3435.405437][ T6566]  genl_rcv_msg+0x4ff/0x7e0
[ 3435.409960][ T6566]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3435.416308][ T6566]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3435.422237][ T6566]  netlink_rcv_skb+0x165/0x440
[ 3435.427032][ T6566]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3435.433380][ T6566]  ? netlink_ack+0x1360/0x1360
[ 3435.438199][ T6566]  genl_rcv+0x28/0x40
[ 3435.442213][ T6566]  netlink_unicast+0x547/0x7f0
[ 3435.447012][ T6566]  ? netlink_attachskb+0x890/0x890
[ 3435.452147][ T6566]  ? __virt_addr_valid+0x61/0x2e0
[ 3435.457198][ T6566]  ? __phys_addr_symbol+0x30/0x70
[ 3435.462258][ T6566]  ? __check_object_size+0x323/0x730
[ 3435.467571][ T6566]  netlink_sendmsg+0x925/0xe30
[ 3435.472368][ T6566]  ? netlink_unicast+0x7f0/0x7f0
[ 3435.477343][ T6566]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3435.482654][ T6566]  ? netlink_unicast+0x7f0/0x7f0
[ 3435.487618][ T6566]  sock_sendmsg+0xde/0x190
[ 3435.492064][ T6566]  ____sys_sendmsg+0x71c/0x900
[ 3435.496858][ T6566]  ? copy_msghdr_from_user+0xfc/0x150
[ 3435.502252][ T6566]  ? kernel_sendmsg+0x50/0x50
[ 3435.506970][ T6566]  ___sys_sendmsg+0x110/0x1b0
[ 3435.511663][ T6566]  ? do_recvmmsg+0x6e0/0x6e0
[ 3435.516270][ T6566]  ? __fget_files+0x248/0x480
[ 3435.520964][ T6566]  ? lock_downgrade+0x690/0x690
[ 3435.525833][ T6566]  ? futex_wake_mark+0x1a0/0x1a0
[ 3435.530800][ T6566]  ? __fget_files+0x26a/0x480
[ 3435.535603][ T6566]  ? __fget_light+0xe5/0x270
[ 3435.540214][ T6566]  __sys_sendmsg+0xf7/0x1c0
[ 3435.544737][ T6566]  ? __sys_sendmsg_sock+0x40/0x40
[ 3435.549782][ T6566]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3435.555728][ T6566]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3435.561645][ T6566]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3435.566880][ T6566]  do_syscall_64+0x39/0xb0
[ 3435.571325][ T6566]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3435.577245][ T6566] RIP: 0033:0x7fb4bf08c169
[ 3435.581672][ T6566] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3435.601295][ T6566] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3435.609726][ T6566] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3435.617712][ T6566] RDX: 000000000000ed64 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3435.625692][ T6566] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3435.633673][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3435.641654][ T6566] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3435.649654][ T6566]  </TASK>
07:14:28 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$TUNSETSTEERINGEBPF(r0, 0x800454e0, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000000c0)="598650ba409f7905e0f49a2f8abb70428584efd4e6b9250d2bfd83a2a9b65b240a36553c4e5359e7a1818fddea2c5613ca99ea91e3d6114520928a18b1f09bcfb0add0d2a7830244bd6759330356a9490f505cb2915d8d3fb997e5dc06e6044d80bd09ce06a8f434ca32eacb1207c1740555923db98a0ceaa8a25547ace271371328b0bed30f12f41de59c27e104617ae5c700932f32619a", 0x98)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r3, &(0x7f0000000200), 0x5a, 0x40000102, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r3, 0x8983, &(0x7f0000000000)={0x7, 'veth0_vlan\x00', {0x7}, 0x20})
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$nl_route(r4, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0xdae2f177c939dc5b}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)=@getaddr={0x14, 0x16, 0x100, 0x70bd26, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc800}, 0x4004880)
bind$bt_hci(r6, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r2, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:29 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}, 0x80) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) (async)
ioctl$TUNSETSTEERINGEBPF(r0, 0x800454e0, &(0x7f0000000180)) (async)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (async)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000000c0)="598650ba409f7905e0f49a2f8abb70428584efd4e6b9250d2bfd83a2a9b65b240a36553c4e5359e7a1818fddea2c5613ca99ea91e3d6114520928a18b1f09bcfb0add0d2a7830244bd6759330356a9490f505cb2915d8d3fb997e5dc06e6044d80bd09ce06a8f434ca32eacb1207c1740555923db98a0ceaa8a25547ace271371328b0bed30f12f41de59c27e104617ae5c700932f32619a", 0x98)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
recvmmsg(r3, &(0x7f0000000200), 0x5a, 0x40000102, 0x0) (async)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r3, 0x8983, &(0x7f0000000000)={0x7, 'veth0_vlan\x00', {0x7}, 0x20})
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$nl_route(r4, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0xdae2f177c939dc5b}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)=@getaddr={0x14, 0x16, 0x100, 0x70bd26, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc800}, 0x4004880)
bind$bt_hci(r6, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r2, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:29 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$TUNSETSTEERINGEBPF(r0, 0x800454e0, &(0x7f0000000180)) (async)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0) (async)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000000c0)="598650ba409f7905e0f49a2f8abb70428584efd4e6b9250d2bfd83a2a9b65b240a36553c4e5359e7a1818fddea2c5613ca99ea91e3d6114520928a18b1f09bcfb0add0d2a7830244bd6759330356a9490f505cb2915d8d3fb997e5dc06e6044d80bd09ce06a8f434ca32eacb1207c1740555923db98a0ceaa8a25547ace271371328b0bed30f12f41de59c27e104617ae5c700932f32619a", 0x98) (async)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r3, &(0x7f0000000200), 0x5a, 0x40000102, 0x0) (async)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r3, 0x8983, &(0x7f0000000000)={0x7, 'veth0_vlan\x00', {0x7}, 0x20}) (async)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$nl_route(r4, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0xdae2f177c939dc5b}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)=@getaddr={0x14, 0x16, 0x100, 0x70bd26, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc800}, 0x4004880) (async)
bind$bt_hci(r6, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r2, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:29 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3436.344063][ T6569] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3436.365622][ T6569] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3436.389035][ T6569] CPU: 0 PID: 6569 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3436.399434][ T6569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3436.409523][ T6569] Call Trace:
[ 3436.412816][ T6569]  <TASK>
[ 3436.415773][ T6569]  dump_stack_lvl+0x136/0x150
[ 3436.420492][ T6569]  sysfs_warn_dup+0x80/0xa0
[ 3436.425015][ T6569]  sysfs_do_create_link_sd+0x11e/0x140
[ 3436.430495][ T6569]  sysfs_create_link+0x63/0xc0
[ 3436.435276][ T6569]  device_add+0x5e5/0x1c50
[ 3436.439745][ T6569]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3436.446621][ T6569]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3436.452534][ T6569]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3436.458551][ T6569]  wiphy_register+0x1f88/0x2ae0
[ 3436.463439][ T6569]  ? wiphy_unregister+0xb40/0xb40
[ 3436.468483][ T6569]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3436.473636][ T6569]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3436.479657][ T6569]  ieee80211_register_hw+0x23c1/0x40e0
[ 3436.485160][ T6569]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3436.490735][ T6569]  ? debug_object_free+0x360/0x360
[ 3436.495873][ T6569]  ? lockdep_init_map_type+0x21e/0x810
[ 3436.501356][ T6569]  ? __hrtimer_init+0x145/0x280
[ 3436.506239][ T6569]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3436.511998][ T6569]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3436.518718][ T6569]  hwsim_new_radio_nl+0xad6/0x1210
[ 3436.523856][ T6569]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3436.529783][ T6569]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3436.537168][ T6569]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3436.544474][ T6569]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3436.550655][ T6569]  ? genl_start+0x660/0x660
[ 3436.555185][ T6569]  ? ns_capable+0xe0/0x110
[ 3436.559646][ T6569]  genl_rcv_msg+0x4ff/0x7e0
[ 3436.564169][ T6569]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3436.570514][ T6569]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3436.576442][ T6569]  netlink_rcv_skb+0x165/0x440
[ 3436.581235][ T6569]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3436.587580][ T6569]  ? netlink_ack+0x1360/0x1360
[ 3436.592427][ T6569]  genl_rcv+0x28/0x40
[ 3436.596433][ T6569]  netlink_unicast+0x547/0x7f0
[ 3436.601247][ T6569]  ? netlink_attachskb+0x890/0x890
[ 3436.606382][ T6569]  ? __virt_addr_valid+0x61/0x2e0
[ 3436.611432][ T6569]  ? __phys_addr_symbol+0x30/0x70
[ 3436.616480][ T6569]  ? __check_object_size+0x323/0x730
[ 3436.621790][ T6569]  netlink_sendmsg+0x925/0xe30
[ 3436.626585][ T6569]  ? netlink_unicast+0x7f0/0x7f0
[ 3436.631558][ T6569]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3436.636870][ T6569]  ? netlink_unicast+0x7f0/0x7f0
[ 3436.641835][ T6569]  sock_sendmsg+0xde/0x190
[ 3436.646280][ T6569]  ____sys_sendmsg+0x71c/0x900
[ 3436.651072][ T6569]  ? copy_msghdr_from_user+0xfc/0x150
[ 3436.656473][ T6569]  ? kernel_sendmsg+0x50/0x50
[ 3436.661194][ T6569]  ___sys_sendmsg+0x110/0x1b0
[ 3436.665889][ T6569]  ? do_recvmmsg+0x6e0/0x6e0
[ 3436.670498][ T6569]  ? __fget_files+0x248/0x480
[ 3436.675205][ T6569]  ? lock_downgrade+0x690/0x690
[ 3436.680078][ T6569]  ? futex_wake_mark+0x1a0/0x1a0
[ 3436.685053][ T6569]  ? __fget_files+0x26a/0x480
[ 3436.689751][ T6569]  ? __fget_light+0xe5/0x270
[ 3436.694362][ T6569]  __sys_sendmsg+0xf7/0x1c0
[ 3436.698883][ T6569]  ? __sys_sendmsg_sock+0x40/0x40
[ 3436.703940][ T6569]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3436.709877][ T6569]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3436.715794][ T6569]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3436.721014][ T6569]  do_syscall_64+0x39/0xb0
[ 3436.725460][ T6569]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3436.731377][ T6569] RIP: 0033:0x7f837868c169
[ 3436.735806][ T6569] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3436.755430][ T6569] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3436.763861][ T6569] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3436.771844][ T6569] RDX: 9eb0000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3436.779826][ T6569] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3436.787807][ T6569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3436.795792][ T6569] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3436.803792][ T6569]  </TASK>
07:14:30 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:30 executing program 5:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:30 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xed65)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:30 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf0}}}}]}, 0x78}}, 0x131c)

07:14:30 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:30 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x9effffff00000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:30 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xed66)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:30 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6) (async)

07:14:30 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x6558, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:30 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x300}}}}]}, 0x78}}, 0x131c)

[ 3436.969350][ T6607] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:30 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x7f00, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3437.013994][ T6607] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3437.043702][ T6607] CPU: 0 PID: 6607 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3437.054103][ T6607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3437.064192][ T6607] Call Trace:
[ 3437.067492][ T6607]  <TASK>
[ 3437.070444][ T6607]  dump_stack_lvl+0x136/0x150
[ 3437.075159][ T6607]  sysfs_warn_dup+0x80/0xa0
[ 3437.079696][ T6607]  sysfs_do_create_link_sd+0x11e/0x140
[ 3437.085203][ T6607]  sysfs_create_link+0x63/0xc0
[ 3437.090013][ T6607]  device_add+0x5e5/0x1c50
[ 3437.094487][ T6607]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3437.101395][ T6607]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3437.107337][ T6607]  ? ieee80211_set_bitrate_flags+0x222/0x660
07:14:30 executing program 5:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
openat$cgroup_ro(r2, &(0x7f00000000c0)='memory.numa_stat\x00', 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f0000000000)={0x0, 0x3f, "c4f247", 0x4, 0x6})
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x4}, 0x6)

[ 3437.113383][ T6607]  wiphy_register+0x1f88/0x2ae0
[ 3437.118296][ T6607]  ? wiphy_unregister+0xb40/0xb40
[ 3437.123367][ T6607]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3437.128534][ T6607]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3437.134593][ T6607]  ieee80211_register_hw+0x23c1/0x40e0
[ 3437.140122][ T6607]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3437.145710][ T6607]  ? net_generic+0xd9/0x2a0
[ 3437.150255][ T6607]  ? debug_object_free+0x360/0x360
[ 3437.155410][ T6607]  ? lockdep_init_map_type+0x21e/0x810
[ 3437.160914][ T6607]  ? __hrtimer_init+0x145/0x280
[ 3437.165815][ T6607]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3437.171604][ T6607]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3437.178342][ T6607]  hwsim_new_radio_nl+0xad6/0x1210
[ 3437.183505][ T6607]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3437.189464][ T6607]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3437.196873][ T6607]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3437.204206][ T6607]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3437.210400][ T6607]  ? genl_start+0x660/0x660
[ 3437.214945][ T6607]  ? ns_capable+0xe0/0x110
[ 3437.219407][ T6607]  genl_rcv_msg+0x4ff/0x7e0
[ 3437.223944][ T6607]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3437.230313][ T6607]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3437.236255][ T6607]  ? lock_downgrade+0x690/0x690
[ 3437.241149][ T6607]  netlink_rcv_skb+0x165/0x440
[ 3437.245964][ T6607]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3437.252333][ T6607]  ? netlink_ack+0x1360/0x1360
[ 3437.257179][ T6607]  genl_rcv+0x28/0x40
[ 3437.261208][ T6607]  netlink_unicast+0x547/0x7f0
[ 3437.266027][ T6607]  ? netlink_attachskb+0x890/0x890
[ 3437.271185][ T6607]  ? __virt_addr_valid+0x61/0x2e0
[ 3437.276258][ T6607]  ? __phys_addr_symbol+0x30/0x70
[ 3437.281329][ T6607]  ? __check_object_size+0x323/0x730
[ 3437.286658][ T6607]  netlink_sendmsg+0x925/0xe30
[ 3437.291482][ T6607]  ? netlink_unicast+0x7f0/0x7f0
[ 3437.296483][ T6607]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3437.301824][ T6607]  ? netlink_unicast+0x7f0/0x7f0
[ 3437.306813][ T6607]  sock_sendmsg+0xde/0x190
[ 3437.311278][ T6607]  ____sys_sendmsg+0x71c/0x900
[ 3437.316083][ T6607]  ? copy_msghdr_from_user+0xfc/0x150
[ 3437.321493][ T6607]  ? kernel_sendmsg+0x50/0x50
[ 3437.326226][ T6607]  ? futex_unqueue+0xb7/0x120
[ 3437.330947][ T6607]  ? futex_wait+0x503/0x680
[ 3437.335498][ T6607]  ___sys_sendmsg+0x110/0x1b0
[ 3437.340221][ T6607]  ? do_recvmmsg+0x6e0/0x6e0
[ 3437.344850][ T6607]  ? __fget_files+0x248/0x480
[ 3437.349571][ T6607]  ? lock_downgrade+0x690/0x690
[ 3437.354476][ T6607]  ? __fget_files+0x26a/0x480
[ 3437.359199][ T6607]  ? __fget_light+0xe5/0x270
[ 3437.363830][ T6607]  __sys_sendmsg+0xf7/0x1c0
[ 3437.368370][ T6607]  ? __sys_sendmsg_sock+0x40/0x40
[ 3437.373438][ T6607]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3437.379397][ T6607]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3437.385335][ T6607]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3437.390575][ T6607]  do_syscall_64+0x39/0xb0
[ 3437.395035][ T6607]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3437.400971][ T6607] RIP: 0033:0x7f837868c169
[ 3437.405411][ T6607] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3437.425060][ T6607] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3437.433514][ T6607] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3437.441531][ T6607] RDX: 9effffff00000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3437.449543][ T6607] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3437.457549][ T6607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
07:14:30 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x8100, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:30 executing program 5:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
openat$cgroup_ro(r2, &(0x7f00000000c0)='memory.numa_stat\x00', 0x0, 0x0) (async, rerun: 64)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (rerun: 64)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x80) (async, rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) (async, rerun: 64)
ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f0000000000)={0x0, 0x3f, "c4f247", 0x4, 0x6})
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x4}, 0x6)

[ 3437.465552][ T6607] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3437.473574][ T6607]  </TASK>
07:14:30 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x500}}}}]}, 0x78}}, 0x131c)

07:14:30 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x9fb0000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3437.515134][ T6610] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3437.545023][ T6610] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3437.604161][ T6610] CPU: 0 PID: 6610 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3437.614566][ T6610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3437.624653][ T6610] Call Trace:
[ 3437.627962][ T6610]  <TASK>
[ 3437.630914][ T6610]  dump_stack_lvl+0x136/0x150
[ 3437.635637][ T6610]  sysfs_warn_dup+0x80/0xa0
[ 3437.640179][ T6610]  sysfs_do_create_link_sd+0x11e/0x140
[ 3437.645679][ T6610]  sysfs_create_link+0x63/0xc0
[ 3437.650484][ T6610]  device_add+0x5e5/0x1c50
[ 3437.654961][ T6610]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3437.661867][ T6610]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3437.667807][ T6610]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3437.673858][ T6610]  wiphy_register+0x1f88/0x2ae0
[ 3437.678776][ T6610]  ? wiphy_unregister+0xb40/0xb40
[ 3437.683848][ T6610]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3437.689025][ T6610]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3437.695059][ T6610]  ieee80211_register_hw+0x23c1/0x40e0
[ 3437.700586][ T6610]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3437.706186][ T6610]  ? debug_object_free+0x360/0x360
[ 3437.711344][ T6610]  ? lockdep_init_map_type+0x21e/0x810
[ 3437.716849][ T6610]  ? __hrtimer_init+0x145/0x280
[ 3437.721737][ T6610]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3437.727507][ T6610]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3437.734217][ T6610]  hwsim_new_radio_nl+0xad6/0x1210
[ 3437.739355][ T6610]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3437.745283][ T6610]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3437.752672][ T6610]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3437.759977][ T6610]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3437.766152][ T6610]  ? genl_start+0x660/0x660
[ 3437.770688][ T6610]  ? ns_capable+0xe0/0x110
[ 3437.775132][ T6610]  genl_rcv_msg+0x4ff/0x7e0
[ 3437.779654][ T6610]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3437.785999][ T6610]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3437.791927][ T6610]  netlink_rcv_skb+0x165/0x440
[ 3437.796722][ T6610]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3437.803070][ T6610]  ? netlink_ack+0x1360/0x1360
[ 3437.807889][ T6610]  genl_rcv+0x28/0x40
[ 3437.811897][ T6610]  netlink_unicast+0x547/0x7f0
[ 3437.816693][ T6610]  ? netlink_attachskb+0x890/0x890
[ 3437.821827][ T6610]  ? __virt_addr_valid+0x61/0x2e0
[ 3437.826877][ T6610]  ? __phys_addr_symbol+0x30/0x70
[ 3437.831925][ T6610]  ? __check_object_size+0x323/0x730
[ 3437.837241][ T6610]  netlink_sendmsg+0x925/0xe30
[ 3437.842038][ T6610]  ? netlink_unicast+0x7f0/0x7f0
[ 3437.847023][ T6610]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3437.852344][ T6610]  ? netlink_unicast+0x7f0/0x7f0
[ 3437.857309][ T6610]  sock_sendmsg+0xde/0x190
[ 3437.861752][ T6610]  ____sys_sendmsg+0x71c/0x900
[ 3437.866544][ T6610]  ? copy_msghdr_from_user+0xfc/0x150
[ 3437.871938][ T6610]  ? kernel_sendmsg+0x50/0x50
[ 3437.876660][ T6610]  ___sys_sendmsg+0x110/0x1b0
[ 3437.881354][ T6610]  ? do_recvmmsg+0x6e0/0x6e0
[ 3437.885966][ T6610]  ? __fget_files+0x248/0x480
[ 3437.890657][ T6610]  ? lock_downgrade+0x690/0x690
[ 3437.895531][ T6610]  ? futex_wake_mark+0x1a0/0x1a0
[ 3437.900509][ T6610]  ? __fget_files+0x26a/0x480
[ 3437.905208][ T6610]  ? __fget_light+0xe5/0x270
[ 3437.909822][ T6610]  __sys_sendmsg+0xf7/0x1c0
[ 3437.914340][ T6610]  ? __sys_sendmsg_sock+0x40/0x40
[ 3437.919387][ T6610]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3437.925323][ T6610]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3437.931238][ T6610]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3437.936460][ T6610]  do_syscall_64+0x39/0xb0
[ 3437.940910][ T6610]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3437.946829][ T6610] RIP: 0033:0x7fb4bf08c169
[ 3437.951258][ T6610] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3437.970883][ T6610] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3437.979316][ T6610] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3437.987300][ T6610] RDX: 000000000000ed66 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3437.995284][ T6610] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3438.003266][ T6610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3438.011245][ T6610] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3438.019244][ T6610]  </TASK>
07:14:31 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:31 executing program 5:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) (async, rerun: 64)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff}) (rerun: 64)
openat$cgroup_ro(r2, &(0x7f00000000c0)='memory.numa_stat\x00', 0x0, 0x0) (async, rerun: 64)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (rerun: 64)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x6, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x80) (async, rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) (async, rerun: 32)
ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f0000000000)={0x0, 0x3f, "c4f247", 0x4, 0x6}) (async)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x4}, 0x6)

07:14:31 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xa0b0000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:31 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xed67)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:31 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x8736, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3438.135526][ T6652] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:31 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xf000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:31 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x600}}}}]}, 0x78}}, 0x131c)

07:14:31 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3438.214614][ T6652] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3438.256315][ T6652] CPU: 1 PID: 6652 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3438.266713][ T6652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3438.276804][ T6652] Call Trace:
[ 3438.280108][ T6652]  <TASK>
[ 3438.283072][ T6652]  dump_stack_lvl+0x136/0x150
[ 3438.287799][ T6652]  sysfs_warn_dup+0x80/0xa0
[ 3438.292342][ T6652]  sysfs_do_create_link_sd+0x11e/0x140
[ 3438.297843][ T6652]  sysfs_create_link+0x63/0xc0
[ 3438.302633][ T6652]  device_add+0x5e5/0x1c50
[ 3438.307078][ T6652]  ? write_comp_data+0x3c/0x90
[ 3438.311877][ T6652]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3438.318751][ T6652]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3438.324665][ T6652]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3438.330685][ T6652]  wiphy_register+0x1f88/0x2ae0
[ 3438.335568][ T6652]  ? wiphy_unregister+0xb40/0xb40
[ 3438.340616][ T6652]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3438.345761][ T6652]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3438.351780][ T6652]  ieee80211_register_hw+0x23c1/0x40e0
[ 3438.357276][ T6652]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3438.362847][ T6652]  ? debug_object_free+0x360/0x360
[ 3438.367988][ T6652]  ? lockdep_init_map_type+0x21e/0x810
[ 3438.373481][ T6652]  ? __hrtimer_init+0x145/0x280
[ 3438.378377][ T6652]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3438.384145][ T6652]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3438.390858][ T6652]  hwsim_new_radio_nl+0xad6/0x1210
[ 3438.395999][ T6652]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3438.401927][ T6652]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3438.409320][ T6652]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3438.416629][ T6652]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3438.422802][ T6652]  ? genl_start+0x660/0x660
[ 3438.427330][ T6652]  ? ns_capable+0xe0/0x110
[ 3438.431776][ T6652]  genl_rcv_msg+0x4ff/0x7e0
[ 3438.436300][ T6652]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3438.442648][ T6652]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3438.448580][ T6652]  netlink_rcv_skb+0x165/0x440
[ 3438.453371][ T6652]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3438.459717][ T6652]  ? netlink_ack+0x1360/0x1360
[ 3438.464538][ T6652]  genl_rcv+0x28/0x40
[ 3438.468548][ T6652]  netlink_unicast+0x547/0x7f0
[ 3438.473356][ T6652]  ? netlink_attachskb+0x890/0x890
[ 3438.478504][ T6652]  ? __virt_addr_valid+0x61/0x2e0
[ 3438.483565][ T6652]  ? __phys_addr_symbol+0x30/0x70
[ 3438.488616][ T6652]  ? __check_object_size+0x323/0x730
[ 3438.493926][ T6652]  netlink_sendmsg+0x925/0xe30
[ 3438.498727][ T6652]  ? netlink_unicast+0x7f0/0x7f0
[ 3438.503701][ T6652]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3438.509008][ T6652]  ? netlink_unicast+0x7f0/0x7f0
[ 3438.513977][ T6652]  sock_sendmsg+0xde/0x190
[ 3438.518422][ T6652]  ____sys_sendmsg+0x71c/0x900
[ 3438.523210][ T6652]  ? copy_msghdr_from_user+0xfc/0x150
[ 3438.528599][ T6652]  ? kernel_sendmsg+0x50/0x50
[ 3438.533318][ T6652]  ___sys_sendmsg+0x110/0x1b0
[ 3438.538012][ T6652]  ? do_recvmmsg+0x6e0/0x6e0
[ 3438.542620][ T6652]  ? __fget_files+0x248/0x480
[ 3438.547311][ T6652]  ? lock_downgrade+0x690/0x690
[ 3438.552179][ T6652]  ? futex_wake_mark+0x1a0/0x1a0
[ 3438.557153][ T6652]  ? __fget_files+0x26a/0x480
[ 3438.561851][ T6652]  ? __fget_light+0xe5/0x270
[ 3438.566463][ T6652]  __sys_sendmsg+0xf7/0x1c0
[ 3438.570984][ T6652]  ? __sys_sendmsg_sock+0x40/0x40
[ 3438.576029][ T6652]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3438.581968][ T6652]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3438.587884][ T6652]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3438.593105][ T6652]  do_syscall_64+0x39/0xb0
[ 3438.597566][ T6652]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3438.603484][ T6652] RIP: 0033:0x7f837868c169
[ 3438.607911][ T6652] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3438.627540][ T6652] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3438.635971][ T6652] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3438.643954][ T6652] RDX: a0b0000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
07:14:31 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0x4}, 0xfffffffffffffd95)
r3 = socket$tipc(0x1e, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000006780)=[{{&(0x7f00000000c0)=@caif=@rfm, 0x80, &(0x7f0000000300)=[{&(0x7f0000000140)=""/48, 0x30}, {&(0x7f0000000180)=""/104, 0x68}, {&(0x7f0000000200)=""/212, 0xd4}, {&(0x7f0000000540)=""/4096, 0x1000}], 0x4}, 0x6}, {{&(0x7f0000000340)=@nl, 0x80, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/69, 0x45}], 0x1, &(0x7f0000000480)=""/99, 0x63}, 0xffffffff}, {{0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000001540)=""/119, 0x77}, {&(0x7f00000015c0)=""/140, 0x8c}], 0x2, &(0x7f00000016c0)=""/13, 0xd}, 0x400}, {{0x0, 0x0, &(0x7f0000002b40)=[{&(0x7f0000001700)=""/231, 0xe7}, {&(0x7f0000001800)=""/4096, 0x1000}, {&(0x7f0000002800)=""/168, 0xa8}, {&(0x7f00000028c0)=""/117, 0x75}, {&(0x7f0000002940)=""/245, 0xf5}, {&(0x7f0000002a40)=""/207, 0xcf}], 0x6, &(0x7f0000002bc0)=""/232, 0xe8}, 0x4}, {{&(0x7f0000002cc0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f0000002f00)=[{&(0x7f0000002d40)=""/75, 0x4b}, {&(0x7f0000002dc0)=""/115, 0x73}, {&(0x7f0000002e40)=""/7, 0x7}, {&(0x7f0000002e80)=""/72, 0x48}], 0x4}, 0xa9}, {{&(0x7f0000002f40)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000005500)=[{&(0x7f0000002fc0)=""/108, 0x6c}, {&(0x7f0000003040)=""/81, 0x51}, {&(0x7f00000030c0)=""/182, 0xb6}, {&(0x7f0000003180)=""/4096, 0x1000}, {&(0x7f0000004180)=""/185, 0xb9}, {&(0x7f0000004240)=""/129, 0x81}, {&(0x7f0000004300)=""/28, 0x1c}, {&(0x7f0000004340)=""/4096, 0x1000}, {&(0x7f0000005340)=""/228, 0xe4}, {&(0x7f0000005440)=""/152, 0x98}], 0xa, &(0x7f00000055c0)=""/241, 0xf1}, 0x8e}, {{&(0x7f00000056c0)=@isdn, 0x80, &(0x7f0000005900)=[{&(0x7f0000005740)=""/233, 0xe9}, {&(0x7f0000005840)=""/134, 0x86}], 0x2, &(0x7f0000005940)=""/191, 0xbf}, 0x6}, {{&(0x7f0000005a00)=@alg, 0x80, &(0x7f0000006040)=[{&(0x7f0000005a80)=""/102, 0x66}, {&(0x7f0000005b00)=""/88, 0x58}, {&(0x7f0000005b80)=""/188, 0xbc}, {&(0x7f0000005c40)=""/74, 0x4a}, {&(0x7f0000005cc0)=""/82, 0x52}, {&(0x7f0000005d40)=""/100, 0x64}, {&(0x7f0000005dc0)=""/133, 0x85}, {&(0x7f0000005e80)}, {&(0x7f0000005ec0)=""/192, 0xc0}, {&(0x7f0000005f80)=""/147, 0x93}], 0xa, &(0x7f0000006100)=""/151, 0x97}, 0x9}, {{&(0x7f00000061c0)=@ax25={{}, [@default, @bcast, @null, @default, @rose, @remote, @null, @rose]}, 0x80, &(0x7f0000006440)=[{&(0x7f0000006240)=""/2, 0x2}, {&(0x7f0000006280)=""/202, 0xca}, {&(0x7f0000006380)=""/180, 0xb4}], 0x3, &(0x7f0000006480)=""/114, 0x72}, 0xc59}, {{&(0x7f0000006500)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000006740)=[{&(0x7f0000006580)=""/133, 0x85}, {&(0x7f0000006640)=""/89, 0x59}, {&(0x7f00000066c0)=""/63, 0x3f}, {&(0x7f0000006700)=""/25, 0x19}], 0x4}, 0x20}], 0xa, 0x10082, &(0x7f0000006a00))
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3438.651941][ T6652] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3438.659925][ T6652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3438.667918][ T6652] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3438.675922][ T6652]  </TASK>
07:14:32 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x34000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:32 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xa1b0000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3438.919184][ T6662] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3438.958415][ T6662] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3438.973499][ T6662] CPU: 1 PID: 6662 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3438.983901][ T6662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3438.994001][ T6662] Call Trace:
[ 3438.997312][ T6662]  <TASK>
[ 3439.000276][ T6662]  dump_stack_lvl+0x136/0x150
[ 3439.005002][ T6662]  sysfs_warn_dup+0x80/0xa0
[ 3439.009549][ T6662]  sysfs_do_create_link_sd+0x11e/0x140
[ 3439.015057][ T6662]  sysfs_create_link+0x63/0xc0
[ 3439.019869][ T6662]  device_add+0x5e5/0x1c50
[ 3439.024339][ T6662]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3439.031245][ T6662]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3439.037183][ T6662]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3439.043223][ T6662]  wiphy_register+0x1f88/0x2ae0
[ 3439.048128][ T6662]  ? wiphy_unregister+0xb40/0xb40
[ 3439.053193][ T6662]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3439.058368][ T6662]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3439.064405][ T6662]  ieee80211_register_hw+0x23c1/0x40e0
[ 3439.069928][ T6662]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3439.075526][ T6662]  ? debug_object_free+0x360/0x360
[ 3439.080687][ T6662]  ? lockdep_init_map_type+0x21e/0x810
[ 3439.086206][ T6662]  ? __hrtimer_init+0x145/0x280
[ 3439.091117][ T6662]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3439.096906][ T6662]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3439.103643][ T6662]  hwsim_new_radio_nl+0xad6/0x1210
[ 3439.108804][ T6662]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3439.114761][ T6662]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
07:14:32 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3439.122168][ T6662]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3439.129502][ T6662]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3439.135698][ T6662]  ? genl_start+0x660/0x660
[ 3439.140256][ T6662]  ? ns_capable+0xe0/0x110
[ 3439.144728][ T6662]  genl_rcv_msg+0x4ff/0x7e0
[ 3439.149269][ T6662]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3439.155640][ T6662]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3439.161595][ T6662]  netlink_rcv_skb+0x165/0x440
[ 3439.166409][ T6662]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3439.172786][ T6662]  ? netlink_ack+0x1360/0x1360
[ 3439.177633][ T6662]  genl_rcv+0x28/0x40
[ 3439.181662][ T6662]  netlink_unicast+0x547/0x7f0
[ 3439.186489][ T6662]  ? netlink_attachskb+0x890/0x890
[ 3439.191648][ T6662]  ? __virt_addr_valid+0x61/0x2e0
[ 3439.196722][ T6662]  ? __phys_addr_symbol+0x30/0x70
[ 3439.201790][ T6662]  ? __check_object_size+0x323/0x730
[ 3439.207122][ T6662]  netlink_sendmsg+0x925/0xe30
[ 3439.211942][ T6662]  ? netlink_unicast+0x7f0/0x7f0
[ 3439.216947][ T6662]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3439.222281][ T6662]  ? netlink_unicast+0x7f0/0x7f0
[ 3439.227272][ T6662]  sock_sendmsg+0xde/0x190
[ 3439.231741][ T6662]  ____sys_sendmsg+0x71c/0x900
[ 3439.236557][ T6662]  ? copy_msghdr_from_user+0xfc/0x150
[ 3439.241968][ T6662]  ? kernel_sendmsg+0x50/0x50
[ 3439.246707][ T6662]  ? futex_unqueue+0xb7/0x120
[ 3439.251433][ T6662]  ? futex_wait+0x503/0x680
[ 3439.255995][ T6662]  ___sys_sendmsg+0x110/0x1b0
[ 3439.260712][ T6662]  ? do_recvmmsg+0x6e0/0x6e0
[ 3439.265341][ T6662]  ? __fget_files+0x248/0x480
[ 3439.270064][ T6662]  ? lock_downgrade+0x690/0x690
[ 3439.274965][ T6662]  ? __fget_files+0x26a/0x480
[ 3439.279686][ T6662]  ? __fget_light+0xe5/0x270
[ 3439.284318][ T6662]  __sys_sendmsg+0xf7/0x1c0
[ 3439.288857][ T6662]  ? __sys_sendmsg_sock+0x40/0x40
[ 3439.293924][ T6662]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3439.299884][ T6662]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3439.305823][ T6662]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3439.311066][ T6662]  do_syscall_64+0x39/0xb0
[ 3439.315532][ T6662]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3439.321470][ T6662] RIP: 0033:0x7fb4bf08c169
[ 3439.325910][ T6662] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3439.345554][ T6662] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3439.354006][ T6662] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3439.362006][ T6662] RDX: 000000000000f000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3439.370004][ T6662] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3439.378005][ T6662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3439.386001][ T6662] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3439.394017][ T6662]  </TASK>
[ 3439.441042][ T6677] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3439.469787][ T6677] sysfs: cannot create duplicate filename '/class/ieee80211/!'
07:14:32 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:32 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x700}}}}]}, 0x78}}, 0x131c)

07:14:32 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x400300, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:32 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x20000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3439.489075][ T6677] CPU: 1 PID: 6677 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3439.499470][ T6677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3439.509567][ T6677] Call Trace:
[ 3439.512857][ T6677]  <TASK>
[ 3439.515793][ T6677]  dump_stack_lvl+0x136/0x150
[ 3439.520489][ T6677]  sysfs_warn_dup+0x80/0xa0
[ 3439.525009][ T6677]  sysfs_do_create_link_sd+0x11e/0x140
[ 3439.530489][ T6677]  sysfs_create_link+0x63/0xc0
[ 3439.535269][ T6677]  device_add+0x5e5/0x1c50
[ 3439.539715][ T6677]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3439.546586][ T6677]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3439.552500][ T6677]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3439.558520][ T6677]  wiphy_register+0x1f88/0x2ae0
[ 3439.563408][ T6677]  ? wiphy_unregister+0xb40/0xb40
[ 3439.568458][ T6677]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3439.573601][ T6677]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3439.579615][ T6677]  ieee80211_register_hw+0x23c1/0x40e0
[ 3439.585111][ T6677]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3439.590687][ T6677]  ? debug_object_free+0x360/0x360
[ 3439.595821][ T6677]  ? lockdep_init_map_type+0x21e/0x810
[ 3439.601309][ T6677]  ? __hrtimer_init+0x145/0x280
[ 3439.606190][ T6677]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3439.611953][ T6677]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3439.618663][ T6677]  hwsim_new_radio_nl+0xad6/0x1210
[ 3439.623799][ T6677]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3439.629724][ T6677]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3439.637111][ T6677]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3439.644450][ T6677]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3439.650622][ T6677]  ? genl_start+0x660/0x660
[ 3439.655168][ T6677]  ? ns_capable+0xe0/0x110
[ 3439.659613][ T6677]  genl_rcv_msg+0x4ff/0x7e0
[ 3439.664146][ T6677]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3439.670499][ T6677]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3439.676435][ T6677]  netlink_rcv_skb+0x165/0x440
[ 3439.681230][ T6677]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3439.687578][ T6677]  ? netlink_ack+0x1360/0x1360
[ 3439.692396][ T6677]  genl_rcv+0x28/0x40
[ 3439.696409][ T6677]  netlink_unicast+0x547/0x7f0
[ 3439.701222][ T6677]  ? netlink_attachskb+0x890/0x890
[ 3439.706358][ T6677]  ? __virt_addr_valid+0x61/0x2e0
[ 3439.711435][ T6677]  ? __phys_addr_symbol+0x30/0x70
[ 3439.716482][ T6677]  ? __check_object_size+0x323/0x730
[ 3439.721793][ T6677]  netlink_sendmsg+0x925/0xe30
[ 3439.726588][ T6677]  ? netlink_unicast+0x7f0/0x7f0
[ 3439.731559][ T6677]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3439.736865][ T6677]  ? netlink_unicast+0x7f0/0x7f0
[ 3439.741833][ T6677]  sock_sendmsg+0xde/0x190
[ 3439.746278][ T6677]  ____sys_sendmsg+0x71c/0x900
[ 3439.751068][ T6677]  ? copy_msghdr_from_user+0xfc/0x150
[ 3439.756454][ T6677]  ? kernel_sendmsg+0x50/0x50
[ 3439.761176][ T6677]  ___sys_sendmsg+0x110/0x1b0
[ 3439.765871][ T6677]  ? do_recvmmsg+0x6e0/0x6e0
[ 3439.770480][ T6677]  ? __fget_files+0x248/0x480
[ 3439.775172][ T6677]  ? lock_downgrade+0x690/0x690
[ 3439.780045][ T6677]  ? futex_wake_mark+0x1a0/0x1a0
[ 3439.785017][ T6677]  ? __fget_files+0x26a/0x480
[ 3439.789715][ T6677]  ? __fget_light+0xe5/0x270
[ 3439.794324][ T6677]  __sys_sendmsg+0xf7/0x1c0
[ 3439.798848][ T6677]  ? __sys_sendmsg_sock+0x40/0x40
[ 3439.803889][ T6677]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3439.809822][ T6677]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3439.815753][ T6677]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3439.820971][ T6677]  do_syscall_64+0x39/0xb0
[ 3439.825425][ T6677]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3439.831340][ T6677] RIP: 0033:0x7f837868c169
[ 3439.835769][ T6677] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3439.855403][ T6677] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3439.863837][ T6677] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3439.871828][ T6677] RDX: a1b0000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3439.879816][ T6677] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
07:14:33 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0x4}, 0xfffffffffffffd95) (async)
r3 = socket$tipc(0x1e, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000006780)=[{{&(0x7f00000000c0)=@caif=@rfm, 0x80, &(0x7f0000000300)=[{&(0x7f0000000140)=""/48, 0x30}, {&(0x7f0000000180)=""/104, 0x68}, {&(0x7f0000000200)=""/212, 0xd4}, {&(0x7f0000000540)=""/4096, 0x1000}], 0x4}, 0x6}, {{&(0x7f0000000340)=@nl, 0x80, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/69, 0x45}], 0x1, &(0x7f0000000480)=""/99, 0x63}, 0xffffffff}, {{0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000001540)=""/119, 0x77}, {&(0x7f00000015c0)=""/140, 0x8c}], 0x2, &(0x7f00000016c0)=""/13, 0xd}, 0x400}, {{0x0, 0x0, &(0x7f0000002b40)=[{&(0x7f0000001700)=""/231, 0xe7}, {&(0x7f0000001800)=""/4096, 0x1000}, {&(0x7f0000002800)=""/168, 0xa8}, {&(0x7f00000028c0)=""/117, 0x75}, {&(0x7f0000002940)=""/245, 0xf5}, {&(0x7f0000002a40)=""/207, 0xcf}], 0x6, &(0x7f0000002bc0)=""/232, 0xe8}, 0x4}, {{&(0x7f0000002cc0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f0000002f00)=[{&(0x7f0000002d40)=""/75, 0x4b}, {&(0x7f0000002dc0)=""/115, 0x73}, {&(0x7f0000002e40)=""/7, 0x7}, {&(0x7f0000002e80)=""/72, 0x48}], 0x4}, 0xa9}, {{&(0x7f0000002f40)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000005500)=[{&(0x7f0000002fc0)=""/108, 0x6c}, {&(0x7f0000003040)=""/81, 0x51}, {&(0x7f00000030c0)=""/182, 0xb6}, {&(0x7f0000003180)=""/4096, 0x1000}, {&(0x7f0000004180)=""/185, 0xb9}, {&(0x7f0000004240)=""/129, 0x81}, {&(0x7f0000004300)=""/28, 0x1c}, {&(0x7f0000004340)=""/4096, 0x1000}, {&(0x7f0000005340)=""/228, 0xe4}, {&(0x7f0000005440)=""/152, 0x98}], 0xa, &(0x7f00000055c0)=""/241, 0xf1}, 0x8e}, {{&(0x7f00000056c0)=@isdn, 0x80, &(0x7f0000005900)=[{&(0x7f0000005740)=""/233, 0xe9}, {&(0x7f0000005840)=""/134, 0x86}], 0x2, &(0x7f0000005940)=""/191, 0xbf}, 0x6}, {{&(0x7f0000005a00)=@alg, 0x80, &(0x7f0000006040)=[{&(0x7f0000005a80)=""/102, 0x66}, {&(0x7f0000005b00)=""/88, 0x58}, {&(0x7f0000005b80)=""/188, 0xbc}, {&(0x7f0000005c40)=""/74, 0x4a}, {&(0x7f0000005cc0)=""/82, 0x52}, {&(0x7f0000005d40)=""/100, 0x64}, {&(0x7f0000005dc0)=""/133, 0x85}, {&(0x7f0000005e80)}, {&(0x7f0000005ec0)=""/192, 0xc0}, {&(0x7f0000005f80)=""/147, 0x93}], 0xa, &(0x7f0000006100)=""/151, 0x97}, 0x9}, {{&(0x7f00000061c0)=@ax25={{}, [@default, @bcast, @null, @default, @rose, @remote, @null, @rose]}, 0x80, &(0x7f0000006440)=[{&(0x7f0000006240)=""/2, 0x2}, {&(0x7f0000006280)=""/202, 0xca}, {&(0x7f0000006380)=""/180, 0xb4}], 0x3, &(0x7f0000006480)=""/114, 0x72}, 0xc59}, {{&(0x7f0000006500)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000006740)=[{&(0x7f0000006580)=""/133, 0x85}, {&(0x7f0000006640)=""/89, 0x59}, {&(0x7f00000066c0)=""/63, 0x3f}, {&(0x7f0000006700)=""/25, 0x19}], 0x4}, 0x20}], 0xa, 0x10082, &(0x7f0000006a00)) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3439.887807][ T6677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3439.895792][ T6677] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3439.903792][ T6677]  </TASK>
07:14:33 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xa2b0000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3439.956309][ T6688] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
07:14:33 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xf0ffff, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3440.000066][ T6688] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3440.031273][ T6688] CPU: 0 PID: 6688 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3440.041676][ T6688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3440.051770][ T6688] Call Trace:
[ 3440.055084][ T6688]  <TASK>
[ 3440.058042][ T6688]  dump_stack_lvl+0x136/0x150
[ 3440.062779][ T6688]  sysfs_warn_dup+0x80/0xa0
[ 3440.067322][ T6688]  sysfs_do_create_link_sd+0x11e/0x140
[ 3440.072829][ T6688]  sysfs_create_link+0x63/0xc0
[ 3440.077633][ T6688]  device_add+0x5e5/0x1c50
[ 3440.082103][ T6688]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3440.089007][ T6688]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3440.094942][ T6688]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3440.100983][ T6688]  wiphy_register+0x1f88/0x2ae0
[ 3440.105900][ T6688]  ? wiphy_unregister+0xb40/0xb40
[ 3440.110965][ T6688]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3440.116137][ T6688]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3440.122177][ T6688]  ieee80211_register_hw+0x23c1/0x40e0
[ 3440.127701][ T6688]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3440.133309][ T6688]  ? debug_object_free+0x360/0x360
[ 3440.138463][ T6688]  ? lockdep_init_map_type+0x21e/0x810
[ 3440.143965][ T6688]  ? __hrtimer_init+0x145/0x280
07:14:33 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x900}}}}]}, 0x78}}, 0x131c)

[ 3440.148872][ T6688]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3440.154662][ T6688]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3440.161404][ T6688]  hwsim_new_radio_nl+0xad6/0x1210
[ 3440.166564][ T6688]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3440.172513][ T6688]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3440.179924][ T6688]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3440.187347][ T6688]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3440.193542][ T6688]  ? genl_start+0x660/0x660
[ 3440.198086][ T6688]  ? ns_capable+0xe0/0x110
[ 3440.202555][ T6688]  genl_rcv_msg+0x4ff/0x7e0
[ 3440.207100][ T6688]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3440.213468][ T6688]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3440.219427][ T6688]  netlink_rcv_skb+0x165/0x440
[ 3440.224239][ T6688]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3440.230607][ T6688]  ? netlink_ack+0x1360/0x1360
[ 3440.235453][ T6688]  genl_rcv+0x28/0x40
[ 3440.239479][ T6688]  netlink_unicast+0x547/0x7f0
[ 3440.244295][ T6688]  ? netlink_attachskb+0x890/0x890
[ 3440.249457][ T6688]  ? __virt_addr_valid+0x61/0x2e0
[ 3440.254526][ T6688]  ? __phys_addr_symbol+0x30/0x70
[ 3440.259593][ T6688]  ? __check_object_size+0x323/0x730
[ 3440.264924][ T6688]  netlink_sendmsg+0x925/0xe30
[ 3440.269743][ T6688]  ? netlink_unicast+0x7f0/0x7f0
[ 3440.274737][ T6688]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3440.280064][ T6688]  ? netlink_unicast+0x7f0/0x7f0
[ 3440.285048][ T6688]  sock_sendmsg+0xde/0x190
[ 3440.289509][ T6688]  ____sys_sendmsg+0x71c/0x900
[ 3440.294316][ T6688]  ? copy_msghdr_from_user+0xfc/0x150
[ 3440.299728][ T6688]  ? kernel_sendmsg+0x50/0x50
[ 3440.304470][ T6688]  ___sys_sendmsg+0x110/0x1b0
[ 3440.309188][ T6688]  ? do_recvmmsg+0x6e0/0x6e0
[ 3440.313816][ T6688]  ? __fget_files+0x248/0x480
[ 3440.318530][ T6688]  ? lock_downgrade+0x690/0x690
[ 3440.323424][ T6688]  ? futex_wake_mark+0x1a0/0x1a0
[ 3440.328414][ T6688]  ? __fget_files+0x26a/0x480
[ 3440.333129][ T6688]  ? __fget_light+0xe5/0x270
[ 3440.337756][ T6688]  __sys_sendmsg+0xf7/0x1c0
[ 3440.342292][ T6688]  ? __sys_sendmsg_sock+0x40/0x40
[ 3440.347364][ T6688]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3440.353321][ T6688]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3440.359260][ T6688]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3440.364503][ T6688]  do_syscall_64+0x39/0xb0
[ 3440.368968][ T6688]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3440.374907][ T6688] RIP: 0033:0x7fb4bf08c169
[ 3440.379354][ T6688] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3440.399000][ T6688] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3440.407451][ T6688] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3440.415457][ T6688] RDX: 0000000000020000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3440.423463][ T6688] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3440.431467][ T6688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3440.439455][ T6688] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3440.447458][ T6688]  </TASK>
07:14:33 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x30000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:33 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:33 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa00}}}}]}, 0x78}}, 0x131c)

[ 3440.595968][ T6694] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3440.615033][ T6694] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3440.625322][ T6694] CPU: 0 PID: 6694 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3440.635704][ T6694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3440.645792][ T6694] Call Trace:
[ 3440.649091][ T6694]  <TASK>
[ 3440.652039][ T6694]  dump_stack_lvl+0x136/0x150
[ 3440.656757][ T6694]  sysfs_warn_dup+0x80/0xa0
[ 3440.661308][ T6694]  sysfs_do_create_link_sd+0x11e/0x140
[ 3440.666813][ T6694]  sysfs_create_link+0x63/0xc0
[ 3440.671580][ T6694]  device_add+0x5e5/0x1c50
[ 3440.676003][ T6694]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3440.682858][ T6694]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3440.688766][ T6694]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3440.694813][ T6694]  wiphy_register+0x1f88/0x2ae0
[ 3440.699723][ T6694]  ? wiphy_unregister+0xb40/0xb40
[ 3440.704787][ T6694]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3440.709938][ T6694]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3440.715945][ T6694]  ieee80211_register_hw+0x23c1/0x40e0
[ 3440.721445][ T6694]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3440.726995][ T6694]  ? debug_object_free+0x360/0x360
[ 3440.732122][ T6694]  ? lockdep_init_map_type+0x21e/0x810
[ 3440.737631][ T6694]  ? __hrtimer_init+0x145/0x280
[ 3440.742536][ T6694]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3440.748337][ T6694]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3440.755056][ T6694]  hwsim_new_radio_nl+0xad6/0x1210
[ 3440.760184][ T6694]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3440.766111][ T6694]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3440.773480][ T6694]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3440.780786][ T6694]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3440.786951][ T6694]  ? genl_start+0x660/0x660
[ 3440.791499][ T6694]  ? ns_capable+0xe0/0x110
[ 3440.795961][ T6694]  genl_rcv_msg+0x4ff/0x7e0
[ 3440.800499][ T6694]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3440.806862][ T6694]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3440.812792][ T6694]  netlink_rcv_skb+0x165/0x440
[ 3440.817558][ T6694]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3440.823882][ T6694]  ? netlink_ack+0x1360/0x1360
[ 3440.828669][ T6694]  genl_rcv+0x28/0x40
[ 3440.832671][ T6694]  netlink_unicast+0x547/0x7f0
[ 3440.837488][ T6694]  ? netlink_attachskb+0x890/0x890
[ 3440.842640][ T6694]  ? __virt_addr_valid+0x61/0x2e0
[ 3440.847708][ T6694]  ? __phys_addr_symbol+0x30/0x70
[ 3440.852772][ T6694]  ? __check_object_size+0x323/0x730
[ 3440.858106][ T6694]  netlink_sendmsg+0x925/0xe30
[ 3440.862934][ T6694]  ? netlink_unicast+0x7f0/0x7f0
[ 3440.867924][ T6694]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3440.873255][ T6694]  ? netlink_unicast+0x7f0/0x7f0
[ 3440.878228][ T6694]  sock_sendmsg+0xde/0x190
[ 3440.882656][ T6694]  ____sys_sendmsg+0x71c/0x900
[ 3440.887442][ T6694]  ? copy_msghdr_from_user+0xfc/0x150
[ 3440.892847][ T6694]  ? kernel_sendmsg+0x50/0x50
[ 3440.897588][ T6694]  ___sys_sendmsg+0x110/0x1b0
[ 3440.902299][ T6694]  ? do_recvmmsg+0x6e0/0x6e0
[ 3440.906918][ T6694]  ? __fget_files+0x248/0x480
[ 3440.911624][ T6694]  ? lock_downgrade+0x690/0x690
[ 3440.916473][ T6694]  ? futex_wake_mark+0x1a0/0x1a0
[ 3440.921434][ T6694]  ? __fget_files+0x26a/0x480
[ 3440.926136][ T6694]  ? __fget_light+0xe5/0x270
[ 3440.930731][ T6694]  __sys_sendmsg+0xf7/0x1c0
[ 3440.935249][ T6694]  ? __sys_sendmsg_sock+0x40/0x40
[ 3440.940309][ T6694]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3440.946265][ T6694]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3440.952201][ T6694]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3440.957427][ T6694]  do_syscall_64+0x39/0xb0
[ 3440.961846][ T6694]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3440.967741][ T6694] RIP: 0033:0x7f837868c169
[ 3440.972150][ T6694] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
07:14:34 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0x4}, 0xfffffffffffffd95)
r3 = socket$tipc(0x1e, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000006780)=[{{&(0x7f00000000c0)=@caif=@rfm, 0x80, &(0x7f0000000300)=[{&(0x7f0000000140)=""/48, 0x30}, {&(0x7f0000000180)=""/104, 0x68}, {&(0x7f0000000200)=""/212, 0xd4}, {&(0x7f0000000540)=""/4096, 0x1000}], 0x4}, 0x6}, {{&(0x7f0000000340)=@nl, 0x80, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/69, 0x45}], 0x1, &(0x7f0000000480)=""/99, 0x63}, 0xffffffff}, {{0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000001540)=""/119, 0x77}, {&(0x7f00000015c0)=""/140, 0x8c}], 0x2, &(0x7f00000016c0)=""/13, 0xd}, 0x400}, {{0x0, 0x0, &(0x7f0000002b40)=[{&(0x7f0000001700)=""/231, 0xe7}, {&(0x7f0000001800)=""/4096, 0x1000}, {&(0x7f0000002800)=""/168, 0xa8}, {&(0x7f00000028c0)=""/117, 0x75}, {&(0x7f0000002940)=""/245, 0xf5}, {&(0x7f0000002a40)=""/207, 0xcf}], 0x6, &(0x7f0000002bc0)=""/232, 0xe8}, 0x4}, {{&(0x7f0000002cc0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f0000002f00)=[{&(0x7f0000002d40)=""/75, 0x4b}, {&(0x7f0000002dc0)=""/115, 0x73}, {&(0x7f0000002e40)=""/7, 0x7}, {&(0x7f0000002e80)=""/72, 0x48}], 0x4}, 0xa9}, {{&(0x7f0000002f40)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000005500)=[{&(0x7f0000002fc0)=""/108, 0x6c}, {&(0x7f0000003040)=""/81, 0x51}, {&(0x7f00000030c0)=""/182, 0xb6}, {&(0x7f0000003180)=""/4096, 0x1000}, {&(0x7f0000004180)=""/185, 0xb9}, {&(0x7f0000004240)=""/129, 0x81}, {&(0x7f0000004300)=""/28, 0x1c}, {&(0x7f0000004340)=""/4096, 0x1000}, {&(0x7f0000005340)=""/228, 0xe4}, {&(0x7f0000005440)=""/152, 0x98}], 0xa, &(0x7f00000055c0)=""/241, 0xf1}, 0x8e}, {{&(0x7f00000056c0)=@isdn, 0x80, &(0x7f0000005900)=[{&(0x7f0000005740)=""/233, 0xe9}, {&(0x7f0000005840)=""/134, 0x86}], 0x2, &(0x7f0000005940)=""/191, 0xbf}, 0x6}, {{&(0x7f0000005a00)=@alg, 0x80, &(0x7f0000006040)=[{&(0x7f0000005a80)=""/102, 0x66}, {&(0x7f0000005b00)=""/88, 0x58}, {&(0x7f0000005b80)=""/188, 0xbc}, {&(0x7f0000005c40)=""/74, 0x4a}, {&(0x7f0000005cc0)=""/82, 0x52}, {&(0x7f0000005d40)=""/100, 0x64}, {&(0x7f0000005dc0)=""/133, 0x85}, {&(0x7f0000005e80)}, {&(0x7f0000005ec0)=""/192, 0xc0}, {&(0x7f0000005f80)=""/147, 0x93}], 0xa, &(0x7f0000006100)=""/151, 0x97}, 0x9}, {{&(0x7f00000061c0)=@ax25={{}, [@default, @bcast, @null, @default, @rose, @remote, @null, @rose]}, 0x80, &(0x7f0000006440)=[{&(0x7f0000006240)=""/2, 0x2}, {&(0x7f0000006280)=""/202, 0xca}, {&(0x7f0000006380)=""/180, 0xb4}], 0x3, &(0x7f0000006480)=""/114, 0x72}, 0xc59}, {{&(0x7f0000006500)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000006740)=[{&(0x7f0000006580)=""/133, 0x85}, {&(0x7f0000006640)=""/89, 0x59}, {&(0x7f00000066c0)=""/63, 0x3f}, {&(0x7f0000006700)=""/25, 0x19}], 0x4}, 0x20}], 0xa, 0x10082, &(0x7f0000006a00)) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

[ 3440.991769][ T6694] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3441.000353][ T6694] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3441.008357][ T6694] RDX: a2b0000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3441.016345][ T6694] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3441.024319][ T6694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3441.032290][ T6694] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3441.040303][ T6694]  </TASK>
07:14:34 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x800000017fc)

07:14:34 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xa3b0000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:34 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3441.106520][ T6712] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
07:14:34 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb00}}}}]}, 0x78}}, 0x131c)

[ 3441.164098][ T6712] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3441.182826][ T6712] CPU: 0 PID: 6712 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3441.193215][ T6712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3441.203298][ T6712] Call Trace:
[ 3441.206603][ T6712]  <TASK>
[ 3441.209562][ T6712]  dump_stack_lvl+0x136/0x150
[ 3441.214286][ T6712]  sysfs_warn_dup+0x80/0xa0
[ 3441.218830][ T6712]  sysfs_do_create_link_sd+0x11e/0x140
[ 3441.224334][ T6712]  sysfs_create_link+0x63/0xc0
[ 3441.229137][ T6712]  device_add+0x5e5/0x1c50
[ 3441.233603][ T6712]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3441.240499][ T6712]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3441.246432][ T6712]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3441.252470][ T6712]  wiphy_register+0x1f88/0x2ae0
[ 3441.257383][ T6712]  ? wiphy_unregister+0xb40/0xb40
[ 3441.262452][ T6712]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 3441.268665][ T6712]  ? ieee80211_register_hw+0x239b/0x40e0
[ 3441.274352][ T6712]  ieee80211_register_hw+0x23c1/0x40e0
[ 3441.279871][ T6712]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3441.285461][ T6712]  ? debug_object_free+0x360/0x360
[ 3441.290618][ T6712]  ? lockdep_init_map_type+0x21e/0x810
[ 3441.296122][ T6712]  ? __hrtimer_init+0x145/0x280
[ 3441.301024][ T6712]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3441.306813][ T6712]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3441.313546][ T6712]  hwsim_new_radio_nl+0xad6/0x1210
[ 3441.318707][ T6712]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3441.324654][ T6712]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3441.332058][ T6712]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3441.339386][ T6712]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3441.345578][ T6712]  ? genl_start+0x660/0x660
[ 3441.350128][ T6712]  ? ns_capable+0xe0/0x110
[ 3441.354596][ T6712]  genl_rcv_msg+0x4ff/0x7e0
[ 3441.359136][ T6712]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3441.365501][ T6712]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3441.371451][ T6712]  netlink_rcv_skb+0x165/0x440
[ 3441.376270][ T6712]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3441.382638][ T6712]  ? netlink_ack+0x1360/0x1360
[ 3441.387482][ T6712]  genl_rcv+0x28/0x40
[ 3441.391509][ T6712]  netlink_unicast+0x547/0x7f0
[ 3441.396328][ T6712]  ? netlink_attachskb+0x890/0x890
[ 3441.401482][ T6712]  ? __virt_addr_valid+0x61/0x2e0
[ 3441.406552][ T6712]  ? __phys_addr_symbol+0x30/0x70
[ 3441.411623][ T6712]  ? __check_object_size+0x323/0x730
[ 3441.416957][ T6712]  netlink_sendmsg+0x925/0xe30
[ 3441.421777][ T6712]  ? netlink_unicast+0x7f0/0x7f0
[ 3441.426772][ T6712]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3441.432106][ T6712]  ? netlink_unicast+0x7f0/0x7f0
[ 3441.437090][ T6712]  sock_sendmsg+0xde/0x190
[ 3441.441551][ T6712]  ____sys_sendmsg+0x71c/0x900
[ 3441.446362][ T6712]  ? copy_msghdr_from_user+0xfc/0x150
[ 3441.451767][ T6712]  ? kernel_sendmsg+0x50/0x50
[ 3441.456506][ T6712]  ? futex_unqueue+0xb7/0x120
[ 3441.461232][ T6712]  ? futex_wait+0x503/0x680
[ 3441.465790][ T6712]  ___sys_sendmsg+0x110/0x1b0
[ 3441.470507][ T6712]  ? do_recvmmsg+0x6e0/0x6e0
[ 3441.475134][ T6712]  ? __fget_files+0x248/0x480
[ 3441.479842][ T6712]  ? lock_downgrade+0x690/0x690
[ 3441.484742][ T6712]  ? __fget_files+0x26a/0x480
[ 3441.489468][ T6712]  ? __fget_light+0xe5/0x270
[ 3441.494095][ T6712]  __sys_sendmsg+0xf7/0x1c0
[ 3441.498634][ T6712]  ? __sys_sendmsg_sock+0x40/0x40
[ 3441.503695][ T6712]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3441.509652][ T6712]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3441.515591][ T6712]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3441.520836][ T6712]  do_syscall_64+0x39/0xb0
[ 3441.525300][ T6712]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3441.531237][ T6712] RIP: 0033:0x7fb4bf08c169
[ 3441.535678][ T6712] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3441.555325][ T6712] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
07:14:34 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x3000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3441.563781][ T6712] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3441.571753][ T6712] RDX: 0000000000030000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3441.579753][ T6712] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3441.587746][ T6712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3441.595715][ T6712] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3441.603712][ T6712]  </TASK>
07:14:34 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0dd)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:34 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:34 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xc00}}}}]}, 0x78}}, 0x131c)

07:14:34 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0de)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3441.658710][ T6718] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3441.680447][ T6718] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3441.738530][ T6718] CPU: 1 PID: 6718 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3441.748935][ T6718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3441.759025][ T6718] Call Trace:
[ 3441.762323][ T6718]  <TASK>
[ 3441.765280][ T6718]  dump_stack_lvl+0x136/0x150
[ 3441.769997][ T6718]  sysfs_warn_dup+0x80/0xa0
[ 3441.774540][ T6718]  sysfs_do_create_link_sd+0x11e/0x140
[ 3441.780039][ T6718]  sysfs_create_link+0x63/0xc0
[ 3441.784839][ T6718]  device_add+0x5e5/0x1c50
[ 3441.789316][ T6718]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3441.796225][ T6718]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3441.802165][ T6718]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3441.808226][ T6718]  wiphy_register+0x1f88/0x2ae0
[ 3441.813138][ T6718]  ? wiphy_unregister+0xb40/0xb40
[ 3441.818194][ T6718]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3441.823370][ T6718]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3441.829421][ T6718]  ieee80211_register_hw+0x23c1/0x40e0
[ 3441.834922][ T6718]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3441.840502][ T6718]  ? debug_object_free+0x360/0x360
[ 3441.845649][ T6718]  ? lockdep_init_map_type+0x21e/0x810
[ 3441.851149][ T6718]  ? __hrtimer_init+0x145/0x280
[ 3441.856040][ T6718]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3441.861803][ T6718]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3441.868516][ T6718]  hwsim_new_radio_nl+0xad6/0x1210
[ 3441.873654][ T6718]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3441.879584][ T6718]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3441.886972][ T6718]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3441.894375][ T6718]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3441.900571][ T6718]  ? genl_start+0x660/0x660
[ 3441.905106][ T6718]  ? ns_capable+0xe0/0x110
[ 3441.909556][ T6718]  genl_rcv_msg+0x4ff/0x7e0
[ 3441.914085][ T6718]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3441.920434][ T6718]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3441.926367][ T6718]  netlink_rcv_skb+0x165/0x440
[ 3441.931158][ T6718]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3441.937588][ T6718]  ? netlink_ack+0x1360/0x1360
[ 3441.942424][ T6718]  genl_rcv+0x28/0x40
[ 3441.946445][ T6718]  netlink_unicast+0x547/0x7f0
[ 3441.951261][ T6718]  ? netlink_attachskb+0x890/0x890
[ 3441.956407][ T6718]  ? __virt_addr_valid+0x61/0x2e0
[ 3441.961464][ T6718]  ? __phys_addr_symbol+0x30/0x70
[ 3441.966515][ T6718]  ? __check_object_size+0x323/0x730
[ 3441.971827][ T6718]  netlink_sendmsg+0x925/0xe30
[ 3441.976627][ T6718]  ? netlink_unicast+0x7f0/0x7f0
[ 3441.981611][ T6718]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3441.986940][ T6718]  ? netlink_unicast+0x7f0/0x7f0
[ 3441.991921][ T6718]  sock_sendmsg+0xde/0x190
[ 3441.996377][ T6718]  ____sys_sendmsg+0x71c/0x900
[ 3442.001176][ T6718]  ? copy_msghdr_from_user+0xfc/0x150
[ 3442.006575][ T6718]  ? kernel_sendmsg+0x50/0x50
[ 3442.011304][ T6718]  ___sys_sendmsg+0x110/0x1b0
[ 3442.015999][ T6718]  ? do_recvmmsg+0x6e0/0x6e0
[ 3442.020625][ T6718]  ? __fget_files+0x248/0x480
[ 3442.025342][ T6718]  ? lock_downgrade+0x690/0x690
[ 3442.030230][ T6718]  ? futex_wake_mark+0x1a0/0x1a0
[ 3442.035212][ T6718]  ? __fget_files+0x26a/0x480
[ 3442.039916][ T6718]  ? __fget_light+0xe5/0x270
[ 3442.044532][ T6718]  __sys_sendmsg+0xf7/0x1c0
[ 3442.049056][ T6718]  ? __sys_sendmsg_sock+0x40/0x40
[ 3442.054103][ T6718]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3442.060039][ T6718]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3442.065956][ T6718]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3442.071178][ T6718]  do_syscall_64+0x39/0xb0
[ 3442.075626][ T6718]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3442.081558][ T6718] RIP: 0033:0x7f837868c169
[ 3442.085991][ T6718] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3442.105612][ T6718] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3442.114039][ T6718] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3442.122020][ T6718] RDX: a3b0000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3442.130000][ T6718] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
07:14:35 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
r2 = accept(r0, &(0x7f0000000080)=@l2tp={0x2, 0x0, @local}, &(0x7f0000000000)=0x80)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0x1, 0x4}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000540)={{<r3=>0x0, 0x9, 0xff, 0x20, 0x5, 0xfff, 0x4, 0x1ff, 0x3f, 0xbd, 0x7, 0x7, 0x100000000, 0x80000000, 0x1}})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f0000000140)={{r3, 0x10000, 0x40, 0x6, 0x3, 0x9, 0x3f, 0x0, 0x5, 0xb5, 0x900000, 0x8, 0x401, 0x8000, 0x5}, 0x20, [0x0, 0x0, 0x0, 0x0]})

[ 3442.137980][ T6718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3442.145974][ T6718] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3442.153978][ T6718]  </TASK>
07:14:35 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x800000017fc)

[ 3442.192817][ T6741] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3442.215880][ T6741] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3442.230286][ T6741] CPU: 0 PID: 6741 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3442.240679][ T6741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3442.250761][ T6741] Call Trace:
[ 3442.254062][ T6741]  <TASK>
[ 3442.257071][ T6741]  dump_stack_lvl+0x136/0x150
[ 3442.261789][ T6741]  sysfs_warn_dup+0x80/0xa0
[ 3442.266332][ T6741]  sysfs_do_create_link_sd+0x11e/0x140
[ 3442.271829][ T6741]  sysfs_create_link+0x63/0xc0
[ 3442.276633][ T6741]  device_add+0x5e5/0x1c50
[ 3442.281107][ T6741]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3442.288006][ T6741]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3442.293944][ T6741]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3442.299987][ T6741]  wiphy_register+0x1f88/0x2ae0
[ 3442.304896][ T6741]  ? wiphy_unregister+0xb40/0xb40
[ 3442.309969][ T6741]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3442.315153][ T6741]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3442.321186][ T6741]  ieee80211_register_hw+0x23c1/0x40e0
[ 3442.326703][ T6741]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3442.332293][ T6741]  ? debug_object_free+0x360/0x360
[ 3442.337451][ T6741]  ? lockdep_init_map_type+0x21e/0x810
[ 3442.342959][ T6741]  ? __hrtimer_init+0x145/0x280
[ 3442.347858][ T6741]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3442.353642][ T6741]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3442.360381][ T6741]  hwsim_new_radio_nl+0xad6/0x1210
[ 3442.365542][ T6741]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3442.371494][ T6741]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3442.378902][ T6741]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3442.386221][ T6741]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3442.392423][ T6741]  ? genl_start+0x660/0x660
[ 3442.396955][ T6741]  ? ns_capable+0xe0/0x110
[ 3442.401398][ T6741]  genl_rcv_msg+0x4ff/0x7e0
[ 3442.405920][ T6741]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3442.412269][ T6741]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3442.418198][ T6741]  netlink_rcv_skb+0x165/0x440
[ 3442.422990][ T6741]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3442.429336][ T6741]  ? netlink_ack+0x1360/0x1360
[ 3442.434157][ T6741]  genl_rcv+0x28/0x40
[ 3442.438168][ T6741]  netlink_unicast+0x547/0x7f0
[ 3442.442968][ T6741]  ? netlink_attachskb+0x890/0x890
[ 3442.448105][ T6741]  ? __virt_addr_valid+0x61/0x2e0
[ 3442.453175][ T6741]  ? __phys_addr_symbol+0x30/0x70
[ 3442.458227][ T6741]  ? __check_object_size+0x323/0x730
[ 3442.463541][ T6741]  netlink_sendmsg+0x925/0xe30
[ 3442.468344][ T6741]  ? netlink_unicast+0x7f0/0x7f0
[ 3442.473319][ T6741]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3442.478628][ T6741]  ? netlink_unicast+0x7f0/0x7f0
[ 3442.483599][ T6741]  sock_sendmsg+0xde/0x190
[ 3442.488048][ T6741]  ____sys_sendmsg+0x71c/0x900
[ 3442.492838][ T6741]  ? copy_msghdr_from_user+0xfc/0x150
[ 3442.498230][ T6741]  ? kernel_sendmsg+0x50/0x50
[ 3442.502953][ T6741]  ___sys_sendmsg+0x110/0x1b0
[ 3442.507652][ T6741]  ? do_recvmmsg+0x6e0/0x6e0
[ 3442.512262][ T6741]  ? __fget_files+0x248/0x480
[ 3442.516953][ T6741]  ? lock_downgrade+0x690/0x690
[ 3442.521825][ T6741]  ? futex_wake_mark+0x1a0/0x1a0
[ 3442.526797][ T6741]  ? __fget_files+0x26a/0x480
[ 3442.531501][ T6741]  ? __fget_light+0xe5/0x270
[ 3442.536114][ T6741]  __sys_sendmsg+0xf7/0x1c0
[ 3442.540633][ T6741]  ? __sys_sendmsg_sock+0x40/0x40
[ 3442.545680][ T6741]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3442.551634][ T6741]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3442.557554][ T6741]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3442.562775][ T6741]  do_syscall_64+0x39/0xb0
[ 3442.567218][ T6741]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3442.573136][ T6741] RIP: 0033:0x7fb4bf08c169
[ 3442.577587][ T6741] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3442.597218][ T6741] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3442.605656][ T6741] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3442.613660][ T6741] RDX: 000000000005f0de RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3442.621664][ T6741] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3442.629653][ T6741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
07:14:35 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
r2 = accept(r0, &(0x7f0000000080)=@l2tp={0x2, 0x0, @local}, &(0x7f0000000000)=0x80)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0x1, 0x4}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000540)={{<r3=>0x0, 0x9, 0xff, 0x20, 0x5, 0xfff, 0x4, 0x1ff, 0x3f, 0xbd, 0x7, 0x7, 0x100000000, 0x80000000, 0x1}})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f0000000140)={{r3, 0x10000, 0x40, 0x6, 0x3, 0x9, 0x3f, 0x0, 0x5, 0xb5, 0x900000, 0x8, 0x401, 0x8000, 0x5}, 0x20, [0x0, 0x0, 0x0, 0x0]})

[ 3442.637639][ T6741] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3442.645644][ T6741]  </TASK>
07:14:35 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async, rerun: 32)
r2 = accept(r0, &(0x7f0000000080)=@l2tp={0x2, 0x0, @local}, &(0x7f0000000000)=0x80) (rerun: 32)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0x1, 0x4}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000540)={{<r3=>0x0, 0x9, 0xff, 0x20, 0x5, 0xfff, 0x4, 0x1ff, 0x3f, 0xbd, 0x7, 0x7, 0x100000000, 0x80000000, 0x1}})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f0000000140)={{r3, 0x10000, 0x40, 0x6, 0x3, 0x9, 0x3f, 0x0, 0x5, 0xb5, 0x900000, 0x8, 0x401, 0x8000, 0x5}, 0x20, [0x0, 0x0, 0x0, 0x0]})

07:14:35 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xbc1f000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:36 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = accept4(r1, &(0x7f0000000040)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, &(0x7f00000000c0)=0x80, 0x80000)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0x2, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x3}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:36 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = accept4(r1, &(0x7f0000000040)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, &(0x7f00000000c0)=0x80, 0x80000)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0x2, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x3}, 0x6) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:36 executing program 5:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = accept4(r1, &(0x7f0000000040)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, &(0x7f00000000c0)=0x80, 0x80000)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0x2, 0x1}, 0x6) (async)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0x2, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x3}, 0x6)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:36 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0df)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:36 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x5000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:36 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe00}}}}]}, 0x78}}, 0x131c)

07:14:36 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x0)

[ 3443.038193][ T6768] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3443.069079][ T6768] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3443.132790][ T6768] CPU: 0 PID: 6768 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3443.143192][ T6768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3443.153283][ T6768] Call Trace:
[ 3443.156592][ T6768]  <TASK>
[ 3443.159551][ T6768]  dump_stack_lvl+0x136/0x150
[ 3443.164281][ T6768]  sysfs_warn_dup+0x80/0xa0
[ 3443.168828][ T6768]  sysfs_do_create_link_sd+0x11e/0x140
[ 3443.174342][ T6768]  sysfs_create_link+0x63/0xc0
[ 3443.179152][ T6768]  device_add+0x5e5/0x1c50
[ 3443.183620][ T6768]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3443.190527][ T6768]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3443.196462][ T6768]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3443.202503][ T6768]  wiphy_register+0x1f88/0x2ae0
[ 3443.207416][ T6768]  ? wiphy_unregister+0xb40/0xb40
[ 3443.212492][ T6768]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3443.217669][ T6768]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3443.223712][ T6768]  ieee80211_register_hw+0x23c1/0x40e0
[ 3443.229248][ T6768]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3443.234848][ T6768]  ? debug_object_free+0x360/0x360
[ 3443.240011][ T6768]  ? lockdep_init_map_type+0x21e/0x810
[ 3443.245522][ T6768]  ? __hrtimer_init+0x145/0x280
[ 3443.250428][ T6768]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3443.256223][ T6768]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3443.262970][ T6768]  hwsim_new_radio_nl+0xad6/0x1210
[ 3443.268137][ T6768]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3443.274087][ T6768]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
07:14:36 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000200)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x5, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x7e, &(0x7f0000000400)=""/126, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x80007, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
r3 = socket$inet_sctp(0x2, 0x0, 0x84)
getsockopt$IP_VS_SO_GET_TIMEOUT(r3, 0x0, 0x486, &(0x7f0000000000), &(0x7f0000000080)=0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r6, &(0x7f0000000000), 0x248800)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r7=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r7, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r6, 0xffffffffffffffff, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
r8 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000005c0)={0xffffffffffffffff}, 0x4)
r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000600)={0x0, 0x2, 0x18}, 0xc)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x2, 0x7fffffff, 0x6, 0x400, 0x1004, r1, 0xf0, '\x00', 0x0, r1, 0x4, 0x4}, 0x48)
r11 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000700)={0xffffffffffffffff, 0x800, 0x10}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0xc, &(0x7f0000000380)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, [@exit, @map_idx={0x18, 0xa, 0x5, 0x0, 0xc}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffffd}, @exit, @call={0x85, 0x0, 0x0, 0xbe}, @cb_func={0x18, 0x1, 0x4, 0x0, 0x4}]}, &(0x7f00000000c0)='GPL\x00', 0x63, 0x68, &(0x7f0000000480)=""/104, 0x40f00, 0x0, '\x00', r7, 0x18, r1, 0x8, &(0x7f0000000180)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000540)={0x4, 0x1, 0x3, 0x1}, 0x10, 0xffffffffffffffff, r8, 0x0, &(0x7f0000000740)=[r2, r9, r1, r10, r11, r2]}, 0x80)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r3, 0x50009418, &(0x7f00000008c0)={{r4}, 0x0, 0x4, @inherit={0x68, &(0x7f0000000300)={0x0, 0x4, 0x7, 0x100, {0x0, 0x101, 0x3, 0x202d8ab7, 0x7ff}, [0x7f, 0x1, 0x6d0, 0x9]}}, @devid})
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0xf000)
sendfile(0xffffffffffffffff, r12, 0x0, 0xf03b2b00)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002d00)={r12, 0xe0, &(0x7f0000001c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000001dc0)=[0x0, 0x0], &(0x7f0000001d80), <r13=>0x0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000002b40), &(0x7f0000002b80), 0x8, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000002e40)=r13, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000001c00)={0xf, 0x1, &(0x7f0000000800)=@raw=[@ldst={0x1, 0x0, 0x6, 0xb, 0x7, 0xffffffffffffffe0}], &(0x7f0000000840)='GPL\x00', 0x3, 0x51, &(0x7f00000018c0)=""/81, 0x40f00, 0x18, '\x00', 0x0, 0x6, 0xffffffffffffffff, 0x8, &(0x7f0000001940)={0x4, 0x4}, 0x8, 0x10, &(0x7f00000019c0)={0x5, 0xb, 0x1, 0x2}, 0x10, r13, 0xffffffffffffffff, 0x0, &(0x7f0000001bc0)=[r6, 0xffffffffffffffff, 0x1]}, 0x80)

[ 3443.281502][ T6768]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3443.288838][ T6768]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3443.295035][ T6768]  ? genl_start+0x660/0x660
[ 3443.299589][ T6768]  ? ns_capable+0xe0/0x110
[ 3443.304066][ T6768]  genl_rcv_msg+0x4ff/0x7e0
[ 3443.308611][ T6768]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3443.314981][ T6768]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3443.320935][ T6768]  netlink_rcv_skb+0x165/0x440
[ 3443.325757][ T6768]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3443.332132][ T6768]  ? netlink_ack+0x1360/0x1360
[ 3443.336982][ T6768]  genl_rcv+0x28/0x40
[ 3443.341015][ T6768]  netlink_unicast+0x547/0x7f0
[ 3443.345842][ T6768]  ? netlink_attachskb+0x890/0x890
[ 3443.351000][ T6768]  ? __virt_addr_valid+0x61/0x2e0
[ 3443.356069][ T6768]  ? __phys_addr_symbol+0x30/0x70
[ 3443.361140][ T6768]  ? __check_object_size+0x323/0x730
[ 3443.366469][ T6768]  netlink_sendmsg+0x925/0xe30
[ 3443.371286][ T6768]  ? netlink_unicast+0x7f0/0x7f0
[ 3443.376278][ T6768]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3443.381612][ T6768]  ? netlink_unicast+0x7f0/0x7f0
[ 3443.386601][ T6768]  sock_sendmsg+0xde/0x190
[ 3443.391067][ T6768]  ____sys_sendmsg+0x71c/0x900
[ 3443.395881][ T6768]  ? copy_msghdr_from_user+0xfc/0x150
[ 3443.401287][ T6768]  ? kernel_sendmsg+0x50/0x50
[ 3443.406030][ T6768]  ___sys_sendmsg+0x110/0x1b0
[ 3443.410748][ T6768]  ? do_recvmmsg+0x6e0/0x6e0
[ 3443.415379][ T6768]  ? __fget_files+0x248/0x480
[ 3443.420092][ T6768]  ? lock_downgrade+0x690/0x690
[ 3443.424981][ T6768]  ? futex_wake_mark+0x1a0/0x1a0
[ 3443.429977][ T6768]  ? __fget_files+0x26a/0x480
[ 3443.434699][ T6768]  ? __fget_light+0xe5/0x270
[ 3443.439332][ T6768]  __sys_sendmsg+0xf7/0x1c0
[ 3443.443869][ T6768]  ? __sys_sendmsg_sock+0x40/0x40
[ 3443.448939][ T6768]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3443.454895][ T6768]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3443.460829][ T6768]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3443.466069][ T6768]  do_syscall_64+0x39/0xb0
[ 3443.470538][ T6768]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3443.476475][ T6768] RIP: 0033:0x7f837868c169
[ 3443.480919][ T6768] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3443.500563][ T6768] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3443.509017][ T6768] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3443.517025][ T6768] RDX: bc1f000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3443.525034][ T6768] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
07:14:36 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0e0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3443.533036][ T6768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3443.541041][ T6768] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3443.549068][ T6768]  </TASK>
07:14:36 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x6000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:36 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1100}}}}]}, 0x78}}, 0x131c)

[ 3443.586984][ T6784] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3443.608280][ T6784] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3443.616039][ T6784] CPU: 0 PID: 6784 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3443.626410][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
07:14:36 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xe4ffffff00000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3443.636498][ T6784] Call Trace:
[ 3443.639806][ T6784]  <TASK>
[ 3443.642770][ T6784]  dump_stack_lvl+0x136/0x150
[ 3443.647502][ T6784]  sysfs_warn_dup+0x80/0xa0
[ 3443.652045][ T6784]  sysfs_do_create_link_sd+0x11e/0x140
[ 3443.657550][ T6784]  sysfs_create_link+0x63/0xc0
[ 3443.662354][ T6784]  device_add+0x5e5/0x1c50
[ 3443.666825][ T6784]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3443.673726][ T6784]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3443.679660][ T6784]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3443.685687][ T6784]  wiphy_register+0x1f88/0x2ae0
[ 3443.690581][ T6784]  ? wiphy_unregister+0xb40/0xb40
[ 3443.695631][ T6784]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3443.700776][ T6784]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3443.706791][ T6784]  ieee80211_register_hw+0x23c1/0x40e0
[ 3443.712289][ T6784]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3443.717863][ T6784]  ? debug_object_free+0x360/0x360
[ 3443.722999][ T6784]  ? lockdep_init_map_type+0x21e/0x810
[ 3443.728487][ T6784]  ? __hrtimer_init+0x145/0x280
[ 3443.733371][ T6784]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3443.739136][ T6784]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3443.745847][ T6784]  hwsim_new_radio_nl+0xad6/0x1210
[ 3443.750988][ T6784]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3443.756916][ T6784]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3443.764303][ T6784]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3443.771608][ T6784]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3443.777780][ T6784]  ? genl_start+0x660/0x660
[ 3443.782307][ T6784]  ? ns_capable+0xe0/0x110
[ 3443.786754][ T6784]  genl_rcv_msg+0x4ff/0x7e0
[ 3443.791281][ T6784]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3443.797625][ T6784]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3443.803546][ T6784]  ? lock_downgrade+0x690/0x690
[ 3443.808420][ T6784]  netlink_rcv_skb+0x165/0x440
[ 3443.813217][ T6784]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3443.819566][ T6784]  ? netlink_ack+0x1360/0x1360
[ 3443.824386][ T6784]  genl_rcv+0x28/0x40
[ 3443.828397][ T6784]  netlink_unicast+0x547/0x7f0
[ 3443.833198][ T6784]  ? netlink_attachskb+0x890/0x890
[ 3443.838333][ T6784]  ? __virt_addr_valid+0x61/0x2e0
[ 3443.843387][ T6784]  ? __phys_addr_symbol+0x30/0x70
[ 3443.848435][ T6784]  ? __check_object_size+0x323/0x730
[ 3443.853749][ T6784]  netlink_sendmsg+0x925/0xe30
[ 3443.858559][ T6784]  ? netlink_unicast+0x7f0/0x7f0
[ 3443.863533][ T6784]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3443.868847][ T6784]  ? netlink_unicast+0x7f0/0x7f0
[ 3443.873832][ T6784]  sock_sendmsg+0xde/0x190
[ 3443.878297][ T6784]  ____sys_sendmsg+0x71c/0x900
[ 3443.883096][ T6784]  ? copy_msghdr_from_user+0xfc/0x150
[ 3443.888488][ T6784]  ? kernel_sendmsg+0x50/0x50
[ 3443.893208][ T6784]  ___sys_sendmsg+0x110/0x1b0
[ 3443.897904][ T6784]  ? do_recvmmsg+0x6e0/0x6e0
[ 3443.902513][ T6784]  ? __fget_files+0x248/0x480
[ 3443.907206][ T6784]  ? lock_downgrade+0x690/0x690
[ 3443.912081][ T6784]  ? futex_wake_mark+0x1a0/0x1a0
[ 3443.917068][ T6784]  ? __fget_files+0x26a/0x480
[ 3443.921771][ T6784]  ? __fget_light+0xe5/0x270
[ 3443.926384][ T6784]  __sys_sendmsg+0xf7/0x1c0
[ 3443.930906][ T6784]  ? __sys_sendmsg_sock+0x40/0x40
[ 3443.935965][ T6784]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3443.941906][ T6784]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3443.947822][ T6784]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3443.953058][ T6784]  do_syscall_64+0x39/0xb0
[ 3443.957506][ T6784]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3443.963426][ T6784] RIP: 0033:0x7fb4bf08c169
[ 3443.967861][ T6784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3443.987487][ T6784] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3443.995917][ T6784] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3444.003921][ T6784] RDX: 000000000005f0e0 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3444.011924][ T6784] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3444.019931][ T6784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3444.027916][ T6784] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3444.035918][ T6784]  </TASK>
07:14:37 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x7000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:37 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x0)

[ 3444.120109][ T6794] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:37 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:37 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1300}}}}]}, 0x78}}, 0x131c)

[ 3444.171962][ T6794] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3444.198701][ T6794] CPU: 1 PID: 6794 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3444.209117][ T6794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3444.219209][ T6794] Call Trace:
[ 3444.222507][ T6794]  <TASK>
[ 3444.225463][ T6794]  dump_stack_lvl+0x136/0x150
[ 3444.230203][ T6794]  sysfs_warn_dup+0x80/0xa0
[ 3444.234756][ T6794]  sysfs_do_create_link_sd+0x11e/0x140
[ 3444.240258][ T6794]  sysfs_create_link+0x63/0xc0
[ 3444.245066][ T6794]  device_add+0x5e5/0x1c50
[ 3444.249538][ T6794]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3444.256444][ T6794]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3444.262377][ T6794]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3444.268421][ T6794]  wiphy_register+0x1f88/0x2ae0
[ 3444.273324][ T6794]  ? wiphy_unregister+0xb40/0xb40
[ 3444.278382][ T6794]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3444.283549][ T6794]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3444.289586][ T6794]  ieee80211_register_hw+0x23c1/0x40e0
[ 3444.295122][ T6794]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3444.300716][ T6794]  ? debug_object_free+0x360/0x360
[ 3444.305871][ T6794]  ? lockdep_init_map_type+0x21e/0x810
[ 3444.311383][ T6794]  ? __hrtimer_init+0x145/0x280
[ 3444.316292][ T6794]  mac80211_hwsim_new_radio+0x26c1/0x4c10
07:14:37 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0e1)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3444.322082][ T6794]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3444.328821][ T6794]  hwsim_new_radio_nl+0xad6/0x1210
[ 3444.334000][ T6794]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3444.339959][ T6794]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3444.347377][ T6794]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3444.354712][ T6794]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3444.360921][ T6794]  ? genl_start+0x660/0x660
[ 3444.365481][ T6794]  ? ns_capable+0xe0/0x110
[ 3444.369956][ T6794]  genl_rcv_msg+0x4ff/0x7e0
[ 3444.374507][ T6794]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3444.380890][ T6794]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3444.386846][ T6794]  ? lock_downgrade+0x690/0x690
[ 3444.391836][ T6794]  netlink_rcv_skb+0x165/0x440
[ 3444.396656][ T6794]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3444.403026][ T6794]  ? netlink_ack+0x1360/0x1360
[ 3444.407877][ T6794]  genl_rcv+0x28/0x40
[ 3444.411915][ T6794]  netlink_unicast+0x547/0x7f0
[ 3444.416735][ T6794]  ? netlink_attachskb+0x890/0x890
[ 3444.421894][ T6794]  ? __virt_addr_valid+0x61/0x2e0
[ 3444.426969][ T6794]  ? __phys_addr_symbol+0x30/0x70
[ 3444.432042][ T6794]  ? __check_object_size+0x323/0x730
[ 3444.437376][ T6794]  netlink_sendmsg+0x925/0xe30
[ 3444.442201][ T6794]  ? netlink_unicast+0x7f0/0x7f0
[ 3444.447195][ T6794]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3444.452528][ T6794]  ? netlink_unicast+0x7f0/0x7f0
[ 3444.457525][ T6794]  sock_sendmsg+0xde/0x190
[ 3444.461992][ T6794]  ____sys_sendmsg+0x71c/0x900
[ 3444.466802][ T6794]  ? copy_msghdr_from_user+0xfc/0x150
[ 3444.472208][ T6794]  ? kernel_sendmsg+0x50/0x50
[ 3444.476953][ T6794]  ___sys_sendmsg+0x110/0x1b0
[ 3444.481669][ T6794]  ? do_recvmmsg+0x6e0/0x6e0
[ 3444.486304][ T6794]  ? __fget_files+0x248/0x480
[ 3444.491017][ T6794]  ? lock_downgrade+0x690/0x690
[ 3444.495909][ T6794]  ? futex_wake_mark+0x1a0/0x1a0
[ 3444.500900][ T6794]  ? __fget_files+0x26a/0x480
[ 3444.505619][ T6794]  ? __fget_light+0xe5/0x270
[ 3444.510249][ T6794]  __sys_sendmsg+0xf7/0x1c0
[ 3444.514785][ T6794]  ? __sys_sendmsg_sock+0x40/0x40
[ 3444.519851][ T6794]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3444.525811][ T6794]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3444.531751][ T6794]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3444.536995][ T6794]  do_syscall_64+0x39/0xb0
[ 3444.541466][ T6794]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3444.547414][ T6794] RIP: 0033:0x7f837868c169
[ 3444.551867][ T6794] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
07:14:37 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00}}}}]}, 0x78}}, 0x131c)

[ 3444.571517][ T6794] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3444.579973][ T6794] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3444.588006][ T6794] RDX: e4ffffff00000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3444.596017][ T6794] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3444.604025][ T6794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3444.612064][ T6794] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3444.620096][ T6794]  </TASK>
07:14:37 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x9000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:37 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48) (async)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000200)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x5, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x7e, &(0x7f0000000400)=""/126, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x80007, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
r3 = socket$inet_sctp(0x2, 0x0, 0x84)
getsockopt$IP_VS_SO_GET_TIMEOUT(r3, 0x0, 0x486, &(0x7f0000000000), &(0x7f0000000080)=0xc) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) (async)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r6, &(0x7f0000000000), 0x248800)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r7=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r7, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r6, 0xffffffffffffffff, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
r8 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000005c0)={0xffffffffffffffff}, 0x4) (async)
r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000600)={0x0, 0x2, 0x18}, 0xc) (async)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x2, 0x7fffffff, 0x6, 0x400, 0x1004, r1, 0xf0, '\x00', 0x0, r1, 0x4, 0x4}, 0x48) (async)
r11 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000700)={0xffffffffffffffff, 0x800, 0x10}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0xc, &(0x7f0000000380)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, [@exit, @map_idx={0x18, 0xa, 0x5, 0x0, 0xc}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffffd}, @exit, @call={0x85, 0x0, 0x0, 0xbe}, @cb_func={0x18, 0x1, 0x4, 0x0, 0x4}]}, &(0x7f00000000c0)='GPL\x00', 0x63, 0x68, &(0x7f0000000480)=""/104, 0x40f00, 0x0, '\x00', r7, 0x18, r1, 0x8, &(0x7f0000000180)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000540)={0x4, 0x1, 0x3, 0x1}, 0x10, 0xffffffffffffffff, r8, 0x0, &(0x7f0000000740)=[r2, r9, r1, r10, r11, r2]}, 0x80) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r3, 0x50009418, &(0x7f00000008c0)={{r4}, 0x0, 0x4, @inherit={0x68, &(0x7f0000000300)={0x0, 0x4, 0x7, 0x100, {0x0, 0x101, 0x3, 0x202d8ab7, 0x7ff}, [0x7f, 0x1, 0x6d0, 0x9]}}, @devid}) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0xf000) (async)
sendfile(0xffffffffffffffff, r12, 0x0, 0xf03b2b00) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002d00)={r12, 0xe0, &(0x7f0000001c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000001dc0)=[0x0, 0x0], &(0x7f0000001d80), <r13=>0x0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000002b40), &(0x7f0000002b80), 0x8, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000002e40)=r13, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000001c00)={0xf, 0x1, &(0x7f0000000800)=@raw=[@ldst={0x1, 0x0, 0x6, 0xb, 0x7, 0xffffffffffffffe0}], &(0x7f0000000840)='GPL\x00', 0x3, 0x51, &(0x7f00000018c0)=""/81, 0x40f00, 0x18, '\x00', 0x0, 0x6, 0xffffffffffffffff, 0x8, &(0x7f0000001940)={0x4, 0x4}, 0x8, 0x10, &(0x7f00000019c0)={0x5, 0xb, 0x1, 0x2}, 0x10, r13, 0xffffffffffffffff, 0x0, &(0x7f0000001bc0)=[r6, 0xffffffffffffffff, 0x1]}, 0x80)

07:14:37 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0e2)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:38 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x208e24b) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000200)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x5, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x7e, &(0x7f0000000400)=""/126, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x80007, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) (async)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6) (async)
r3 = socket$inet_sctp(0x2, 0x0, 0x84)
getsockopt$IP_VS_SO_GET_TIMEOUT(r3, 0x0, 0x486, &(0x7f0000000000), &(0x7f0000000080)=0xc) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r6, &(0x7f0000000000), 0x248800) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r7=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r7, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r6, 0xffffffffffffffff, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) (async)
r8 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000005c0)={0xffffffffffffffff}, 0x4) (async)
r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000600)={0x0, 0x2, 0x18}, 0xc) (async)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x2, 0x7fffffff, 0x6, 0x400, 0x1004, r1, 0xf0, '\x00', 0x0, r1, 0x4, 0x4}, 0x48) (async)
r11 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000700)={0xffffffffffffffff, 0x800, 0x10}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0xc, &(0x7f0000000380)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, [@exit, @map_idx={0x18, 0xa, 0x5, 0x0, 0xc}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffffd}, @exit, @call={0x85, 0x0, 0x0, 0xbe}, @cb_func={0x18, 0x1, 0x4, 0x0, 0x4}]}, &(0x7f00000000c0)='GPL\x00', 0x63, 0x68, &(0x7f0000000480)=""/104, 0x40f00, 0x0, '\x00', r7, 0x18, r1, 0x8, &(0x7f0000000180)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000540)={0x4, 0x1, 0x3, 0x1}, 0x10, 0xffffffffffffffff, r8, 0x0, &(0x7f0000000740)=[r2, r9, r1, r10, r11, r2]}, 0x80)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r3, 0x50009418, &(0x7f00000008c0)={{r4}, 0x0, 0x4, @inherit={0x68, &(0x7f0000000300)={0x0, 0x4, 0x7, 0x100, {0x0, 0x101, 0x3, 0x202d8ab7, 0x7ff}, [0x7f, 0x1, 0x6d0, 0x9]}}, @devid}) (async)
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) (async)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0xf000)
sendfile(0xffffffffffffffff, r12, 0x0, 0xf03b2b00)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002d00)={r12, 0xe0, &(0x7f0000001c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000001dc0)=[0x0, 0x0], &(0x7f0000001d80), <r13=>0x0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000002b40), &(0x7f0000002b80), 0x8, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000002e40)=r13, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000001c00)={0xf, 0x1, &(0x7f0000000800)=@raw=[@ldst={0x1, 0x0, 0x6, 0xb, 0x7, 0xffffffffffffffe0}], &(0x7f0000000840)='GPL\x00', 0x3, 0x51, &(0x7f00000018c0)=""/81, 0x40f00, 0x18, '\x00', 0x0, 0x6, 0xffffffffffffffff, 0x8, &(0x7f0000001940)={0x4, 0x4}, 0x8, 0x10, &(0x7f00000019c0)={0x5, 0xb, 0x1, 0x2}, 0x10, r13, 0xffffffffffffffff, 0x0, &(0x7f0000001bc0)=[r6, 0xffffffffffffffff, 0x1]}, 0x80)

07:14:38 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xa000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:38 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xe703000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:38 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2a9f}}}}]}, 0x78}}, 0x131c)

[ 3445.092548][ T6818] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3445.130822][ T6818] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3445.166818][ T6818] CPU: 1 PID: 6818 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3445.177205][ T6818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3445.187292][ T6818] Call Trace:
[ 3445.190590][ T6818]  <TASK>
[ 3445.193541][ T6818]  dump_stack_lvl+0x136/0x150
[ 3445.198259][ T6818]  sysfs_warn_dup+0x80/0xa0
[ 3445.202799][ T6818]  sysfs_do_create_link_sd+0x11e/0x140
[ 3445.208296][ T6818]  sysfs_create_link+0x63/0xc0
[ 3445.213096][ T6818]  device_add+0x5e5/0x1c50
[ 3445.217561][ T6818]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3445.224454][ T6818]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3445.230373][ T6818]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3445.236396][ T6818]  wiphy_register+0x1f88/0x2ae0
[ 3445.241292][ T6818]  ? wiphy_unregister+0xb40/0xb40
[ 3445.246337][ T6818]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3445.251492][ T6818]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3445.257503][ T6818]  ieee80211_register_hw+0x23c1/0x40e0
[ 3445.263006][ T6818]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3445.268581][ T6818]  ? debug_object_free+0x360/0x360
[ 3445.273735][ T6818]  ? lockdep_init_map_type+0x21e/0x810
[ 3445.279220][ T6818]  ? __hrtimer_init+0x145/0x280
[ 3445.284102][ T6818]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3445.289865][ T6818]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3445.296573][ T6818]  hwsim_new_radio_nl+0xad6/0x1210
[ 3445.301712][ T6818]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3445.307637][ T6818]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3445.315028][ T6818]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3445.322337][ T6818]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3445.328510][ T6818]  ? genl_start+0x660/0x660
[ 3445.333046][ T6818]  ? ns_capable+0xe0/0x110
[ 3445.337509][ T6818]  genl_rcv_msg+0x4ff/0x7e0
[ 3445.342036][ T6818]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3445.348383][ T6818]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3445.354309][ T6818]  netlink_rcv_skb+0x165/0x440
[ 3445.359102][ T6818]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3445.365446][ T6818]  ? netlink_ack+0x1360/0x1360
[ 3445.370264][ T6818]  genl_rcv+0x28/0x40
[ 3445.374270][ T6818]  netlink_unicast+0x547/0x7f0
[ 3445.379075][ T6818]  ? netlink_attachskb+0x890/0x890
[ 3445.384211][ T6818]  ? __virt_addr_valid+0x61/0x2e0
[ 3445.389263][ T6818]  ? __phys_addr_symbol+0x30/0x70
[ 3445.394321][ T6818]  ? __check_object_size+0x323/0x730
[ 3445.399633][ T6818]  netlink_sendmsg+0x925/0xe30
[ 3445.404428][ T6818]  ? netlink_unicast+0x7f0/0x7f0
[ 3445.409398][ T6818]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3445.414791][ T6818]  ? netlink_unicast+0x7f0/0x7f0
[ 3445.419758][ T6818]  sock_sendmsg+0xde/0x190
[ 3445.424201][ T6818]  ____sys_sendmsg+0x71c/0x900
[ 3445.428991][ T6818]  ? copy_msghdr_from_user+0xfc/0x150
[ 3445.434383][ T6818]  ? kernel_sendmsg+0x50/0x50
[ 3445.439093][ T6818]  ? futex_unqueue+0xb7/0x120
[ 3445.443796][ T6818]  ? futex_wait+0x503/0x680
[ 3445.448330][ T6818]  ___sys_sendmsg+0x110/0x1b0
[ 3445.453027][ T6818]  ? do_recvmmsg+0x6e0/0x6e0
[ 3445.457668][ T6818]  ? __fget_files+0x248/0x480
[ 3445.462362][ T6818]  ? lock_downgrade+0x690/0x690
[ 3445.467244][ T6818]  ? __fget_files+0x26a/0x480
[ 3445.471946][ T6818]  ? __fget_light+0xe5/0x270
[ 3445.476556][ T6818]  __sys_sendmsg+0xf7/0x1c0
[ 3445.481078][ T6818]  ? __sys_sendmsg_sock+0x40/0x40
[ 3445.486123][ T6818]  ? __x64_sys_futex+0x1d3/0x4d0
[ 3445.491097][ T6818]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3445.497017][ T6818]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3445.502239][ T6818]  do_syscall_64+0x39/0xb0
[ 3445.506684][ T6818]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3445.512602][ T6818] RIP: 0033:0x7fb4bf08c169
[ 3445.517032][ T6818] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3445.536653][ T6818] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3445.545081][ T6818] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3445.553075][ T6818] RDX: 000000000005f0e2 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3445.561055][ T6818] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3445.569038][ T6818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3445.577025][ T6818] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3445.585027][ T6818]  </TASK>
07:14:38 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0x7b9c0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202010002020000715ba30d6f3304f67c044a3aab7751a4958b4ec6987ceae8f0467d1bf169b9b59a627fa00aa1231ca782203ed4fac1549bb401"], 0x28}, 0x1, 0x0, 0x0, 0x400000c1}, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYRES64, @ANYRES32=r3, @ANYBLOB="d230ab000000000ad4b743201f64285607d25cdc8be6454842c6361830e54ae6f704ad6861f831385c13abc36deffb67a3a336ef25d645063404"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
socketpair(0x25, 0x2, 0xfffffffb, &(0x7f0000000600)={<r7=>0xffffffffffffffff})
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r10, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xc0, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7f, 0x3f}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x311}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x50}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x215}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x4080004}, 0x41)
socketpair(0x10, 0x80000, 0x3, &(0x7f00000003c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$NL80211_CMD_LEAVE_MESH(r11, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="100028bd7000fbdbdf254500000008000300", @ANYRES32=r3, @ANYBLOB="ab7c09d4bf19a746ffe513de2cc97f44e6cd36a4c17eca765a6d59b615a0cdd5b9dafb04a3478ea18745abe4d7c260ed3da1799cfcc04ef74d5abda9fe60828faed102c80bb5040000000000000000b296a2b8df9189efd8188e2f4a3fc5d4539eabecaab7ac895a21cb100d53b5fca6330ed6f1837ce58b4b98080f654e046b48056fb88a04a8071ab79022537a3f059cda12cf514694d1da0c5077e914b0df40533f10d4da8765bfa287534a704c034f8df6bf21b80be11d89db4fc7d79bef4704427fc6afc4131daff716ba9b714e1c07768c8fd0cbd43ca33991059c13a94400609e93741da1cda9"], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1e5a70fae9757eaa}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400001d", @ANYRES16=r5, @ANYBLOB="9b902dbd7073d75d8925fb220000c157cdb3225a8277e6"], 0x14}, 0x1, 0x0, 0x0, 0x200048d0}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendfile(r12, 0xffffffffffffffff, 0x0, 0x0)

07:14:38 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000200)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@alu={0x4, 0x1, 0x5, 0x5, 0xa, 0x20, 0x8}, @exit], &(0x7f00000002c0)='GPL\x00', 0x81, 0x7e, &(0x7f0000000400)=""/126, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x80007, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
r3 = socket$inet_sctp(0x2, 0x0, 0x84)
getsockopt$IP_VS_SO_GET_TIMEOUT(r3, 0x0, 0x486, &(0x7f0000000000), &(0x7f0000000080)=0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r6, &(0x7f0000000000), 0x248800)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r7=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x7, &(0x7f0000001800)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffffd}]}, 0x0, 0x7, 0xd0, &(0x7f0000001ac0)=""/208, 0x41100, 0x0, '\x00', r7, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x4, 0xd, 0x0, 0xf6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001a00)=[0xffffffffffffffff, 0xffffffffffffffff, r6, 0xffffffffffffffff, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
r8 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000005c0)={0xffffffffffffffff}, 0x4)
r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000600)={0x0, 0x2, 0x18}, 0xc)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x2, 0x7fffffff, 0x6, 0x400, 0x1004, r1, 0xf0, '\x00', 0x0, r1, 0x4, 0x4}, 0x48)
r11 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000700)={0xffffffffffffffff, 0x800, 0x10}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0xc, &(0x7f0000000380)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, [@exit, @map_idx={0x18, 0xa, 0x5, 0x0, 0xc}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffffd}, @exit, @call={0x85, 0x0, 0x0, 0xbe}, @cb_func={0x18, 0x1, 0x4, 0x0, 0x4}]}, &(0x7f00000000c0)='GPL\x00', 0x63, 0x68, &(0x7f0000000480)=""/104, 0x40f00, 0x0, '\x00', r7, 0x18, r1, 0x8, &(0x7f0000000180)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000540)={0x4, 0x1, 0x3, 0x1}, 0x10, 0xffffffffffffffff, r8, 0x0, &(0x7f0000000740)=[r2, r9, r1, r10, r11, r2]}, 0x80)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r3, 0x50009418, &(0x7f00000008c0)={{r4}, 0x0, 0x4, @inherit={0x68, &(0x7f0000000300)={0x0, 0x4, 0x7, 0x100, {0x0, 0x101, 0x3, 0x202d8ab7, 0x7ff}, [0x7f, 0x1, 0x6d0, 0x9]}}, @devid})
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0xf000)
sendfile(0xffffffffffffffff, r12, 0x0, 0xf03b2b00)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002d00)={r12, 0xe0, &(0x7f0000001c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000001dc0)=[0x0, 0x0], &(0x7f0000001d80), <r13=>0x0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000002b40), &(0x7f0000002b80), 0x8, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000002e40)=r13, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000001c00)={0xf, 0x1, &(0x7f0000000800)=@raw=[@ldst={0x1, 0x0, 0x6, 0xb, 0x7, 0xffffffffffffffe0}], &(0x7f0000000840)='GPL\x00', 0x3, 0x51, &(0x7f00000018c0)=""/81, 0x40f00, 0x18, '\x00', 0x0, 0x6, 0xffffffffffffffff, 0x8, &(0x7f0000001940)={0x4, 0x4}, 0x8, 0x10, &(0x7f00000019c0)={0x5, 0xb, 0x1, 0x2}, 0x10, r13, 0xffffffffffffffff, 0x0, &(0x7f0000001bc0)=[r6, 0xffffffffffffffff, 0x1]}, 0x80)

07:14:38 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xb000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:38 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4800}}}}]}, 0x78}}, 0x131c)

07:14:38 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0e3)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3445.633343][ T6840] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3445.669747][ T6840] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3445.701875][ T6840] CPU: 0 PID: 6840 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3445.712271][ T6840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3445.722365][ T6840] Call Trace:
[ 3445.725673][ T6840]  <TASK>
[ 3445.728627][ T6840]  dump_stack_lvl+0x136/0x150
[ 3445.733352][ T6840]  sysfs_warn_dup+0x80/0xa0
[ 3445.737899][ T6840]  sysfs_do_create_link_sd+0x11e/0x140
[ 3445.743410][ T6840]  sysfs_create_link+0x63/0xc0
[ 3445.748216][ T6840]  device_add+0x5e5/0x1c50
[ 3445.752683][ T6840]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3445.759588][ T6840]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3445.765527][ T6840]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3445.771575][ T6840]  wiphy_register+0x1f88/0x2ae0
[ 3445.776495][ T6840]  ? wiphy_unregister+0xb40/0xb40
[ 3445.781568][ T6840]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3445.786740][ T6840]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3445.792778][ T6840]  ieee80211_register_hw+0x23c1/0x40e0
[ 3445.798298][ T6840]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3445.803891][ T6840]  ? debug_object_free+0x360/0x360
[ 3445.809050][ T6840]  ? lockdep_init_map_type+0x21e/0x810
[ 3445.814556][ T6840]  ? __hrtimer_init+0x145/0x280
[ 3445.819459][ T6840]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3445.825252][ T6840]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3445.831989][ T6840]  hwsim_new_radio_nl+0xad6/0x1210
[ 3445.837155][ T6840]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3445.843109][ T6840]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3445.850517][ T6840]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3445.857848][ T6840]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3445.864046][ T6840]  ? genl_start+0x660/0x660
[ 3445.868602][ T6840]  ? ns_capable+0xe0/0x110
[ 3445.873076][ T6840]  genl_rcv_msg+0x4ff/0x7e0
[ 3445.877621][ T6840]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3445.883988][ T6840]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3445.889948][ T6840]  netlink_rcv_skb+0x165/0x440
[ 3445.894767][ T6840]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3445.901133][ T6840]  ? netlink_ack+0x1360/0x1360
[ 3445.905984][ T6840]  genl_rcv+0x28/0x40
[ 3445.910014][ T6840]  netlink_unicast+0x547/0x7f0
[ 3445.914834][ T6840]  ? netlink_attachskb+0x890/0x890
[ 3445.919991][ T6840]  ? __virt_addr_valid+0x61/0x2e0
[ 3445.925060][ T6840]  ? __phys_addr_symbol+0x30/0x70
[ 3445.930135][ T6840]  ? __check_object_size+0x323/0x730
[ 3445.935468][ T6840]  netlink_sendmsg+0x925/0xe30
[ 3445.940289][ T6840]  ? netlink_unicast+0x7f0/0x7f0
[ 3445.945282][ T6840]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3445.950618][ T6840]  ? netlink_unicast+0x7f0/0x7f0
[ 3445.955607][ T6840]  sock_sendmsg+0xde/0x190
[ 3445.960080][ T6840]  ____sys_sendmsg+0x71c/0x900
[ 3445.964891][ T6840]  ? copy_msghdr_from_user+0xfc/0x150
[ 3445.970306][ T6840]  ? kernel_sendmsg+0x50/0x50
[ 3445.975049][ T6840]  ___sys_sendmsg+0x110/0x1b0
[ 3445.979764][ T6840]  ? do_recvmmsg+0x6e0/0x6e0
[ 3445.984394][ T6840]  ? __fget_files+0x248/0x480
[ 3445.989104][ T6840]  ? lock_downgrade+0x690/0x690
[ 3445.993996][ T6840]  ? futex_wake_mark+0x1a0/0x1a0
[ 3445.998989][ T6840]  ? __fget_files+0x26a/0x480
[ 3446.003714][ T6840]  ? __fget_light+0xe5/0x270
[ 3446.008351][ T6840]  __sys_sendmsg+0xf7/0x1c0
[ 3446.012892][ T6840]  ? __sys_sendmsg_sock+0x40/0x40
[ 3446.017964][ T6840]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3446.023928][ T6840]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3446.029865][ T6840]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3446.035114][ T6840]  do_syscall_64+0x39/0xb0
[ 3446.039580][ T6840]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3446.045518][ T6840] RIP: 0033:0x7f837868c169
[ 3446.049966][ T6840] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3446.069614][ T6840] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3446.078072][ T6840] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3446.086080][ T6840] RDX: e703000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3446.094087][ T6840] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
07:14:39 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xc000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3446.102092][ T6840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3446.110102][ T6840] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3446.118127][ T6840]  </TASK>
07:14:39 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xf0ffffff00000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:39 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0e4)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:39 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5865}}}}]}, 0x78}}, 0x131c)

07:14:39 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0xe000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3446.274056][ T6864] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:39 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6000}}}}]}, 0x78}}, 0x131c)

[ 3446.317192][ T6864] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3446.338120][ T6864] CPU: 1 PID: 6864 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3446.348518][ T6864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3446.358609][ T6864] Call Trace:
[ 3446.361922][ T6864]  <TASK>
[ 3446.364885][ T6864]  dump_stack_lvl+0x136/0x150
[ 3446.369603][ T6864]  sysfs_warn_dup+0x80/0xa0
[ 3446.374146][ T6864]  sysfs_do_create_link_sd+0x11e/0x140
[ 3446.379648][ T6864]  sysfs_create_link+0x63/0xc0
[ 3446.384455][ T6864]  device_add+0x5e5/0x1c50
[ 3446.388933][ T6864]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3446.395840][ T6864]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3446.401786][ T6864]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3446.407855][ T6864]  wiphy_register+0x1f88/0x2ae0
[ 3446.412770][ T6864]  ? wiphy_unregister+0xb40/0xb40
[ 3446.417842][ T6864]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3446.423032][ T6864]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3446.429085][ T6864]  ieee80211_register_hw+0x23c1/0x40e0
[ 3446.434610][ T6864]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3446.440204][ T6864]  ? debug_object_free+0x360/0x360
[ 3446.445359][ T6864]  ? lockdep_init_map_type+0x21e/0x810
[ 3446.450868][ T6864]  ? __hrtimer_init+0x145/0x280
[ 3446.455771][ T6864]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3446.461558][ T6864]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3446.468291][ T6864]  hwsim_new_radio_nl+0xad6/0x1210
[ 3446.473450][ T6864]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3446.479404][ T6864]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3446.486817][ T6864]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3446.494149][ T6864]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3446.500345][ T6864]  ? genl_start+0x660/0x660
[ 3446.504899][ T6864]  ? ns_capable+0xe0/0x110
[ 3446.509367][ T6864]  genl_rcv_msg+0x4ff/0x7e0
[ 3446.513912][ T6864]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3446.520277][ T6864]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3446.526221][ T6864]  ? lock_downgrade+0x690/0x690
[ 3446.531117][ T6864]  netlink_rcv_skb+0x165/0x440
[ 3446.535935][ T6864]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3446.542302][ T6864]  ? netlink_ack+0x1360/0x1360
[ 3446.547147][ T6864]  genl_rcv+0x28/0x40
[ 3446.551177][ T6864]  netlink_unicast+0x547/0x7f0
[ 3446.555998][ T6864]  ? netlink_attachskb+0x890/0x890
[ 3446.561162][ T6864]  ? __virt_addr_valid+0x61/0x2e0
[ 3446.566232][ T6864]  ? __phys_addr_symbol+0x30/0x70
[ 3446.571304][ T6864]  ? __check_object_size+0x323/0x730
[ 3446.576636][ T6864]  netlink_sendmsg+0x925/0xe30
[ 3446.581461][ T6864]  ? netlink_unicast+0x7f0/0x7f0
[ 3446.586457][ T6864]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3446.591783][ T6864]  ? netlink_unicast+0x7f0/0x7f0
[ 3446.596770][ T6864]  sock_sendmsg+0xde/0x190
[ 3446.601236][ T6864]  ____sys_sendmsg+0x71c/0x900
[ 3446.606047][ T6864]  ? copy_msghdr_from_user+0xfc/0x150
[ 3446.611457][ T6864]  ? kernel_sendmsg+0x50/0x50
[ 3446.616201][ T6864]  ___sys_sendmsg+0x110/0x1b0
[ 3446.620917][ T6864]  ? do_recvmmsg+0x6e0/0x6e0
[ 3446.625550][ T6864]  ? __fget_files+0x248/0x480
[ 3446.630258][ T6864]  ? lock_downgrade+0x690/0x690
[ 3446.635149][ T6864]  ? futex_wake_mark+0x1a0/0x1a0
[ 3446.640141][ T6864]  ? __fget_files+0x26a/0x480
[ 3446.644861][ T6864]  ? __fget_light+0xe5/0x270
[ 3446.649490][ T6864]  __sys_sendmsg+0xf7/0x1c0
[ 3446.654027][ T6864]  ? __sys_sendmsg_sock+0x40/0x40
[ 3446.659100][ T6864]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3446.665063][ T6864]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3446.670999][ T6864]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3446.676246][ T6864]  do_syscall_64+0x39/0xb0
[ 3446.680714][ T6864]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3446.686655][ T6864] RIP: 0033:0x7f837868c169
[ 3446.691098][ T6864] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3446.710744][ T6864] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
07:14:39 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0e5)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3446.719207][ T6864] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3446.727212][ T6864] RDX: f0ffffff00000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3446.735214][ T6864] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3446.743212][ T6864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3446.751212][ T6864] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3446.759238][ T6864]  </TASK>
07:14:40 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3446.843397][   T27] audit: type=1800 audit(1681802080.006:524): pid=6874 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.5" name="memory.events" dev="sda1" ino=1179 res=0 errno=0
07:14:40 executing program 5:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x20000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:40 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xfdffffff00000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:40 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6558}}}}]}, 0x78}}, 0x131c)

07:14:40 executing program 1:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xa2b0000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:40 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0e6)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:40 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x11000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3446.935420][ T6888] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:40 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7f00}}}}]}, 0x78}}, 0x131c)

[ 3446.992935][ T6888] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3447.024316][ T6888] CPU: 1 PID: 6888 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3447.034722][ T6888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3447.044809][ T6888] Call Trace:
[ 3447.048112][ T6888]  <TASK>
[ 3447.051072][ T6888]  dump_stack_lvl+0x136/0x150
[ 3447.055801][ T6888]  sysfs_warn_dup+0x80/0xa0
[ 3447.060349][ T6888]  sysfs_do_create_link_sd+0x11e/0x140
[ 3447.065854][ T6888]  sysfs_create_link+0x63/0xc0
[ 3447.070668][ T6888]  device_add+0x5e5/0x1c50
[ 3447.075145][ T6888]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3447.082049][ T6888]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3447.087990][ T6888]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3447.094040][ T6888]  wiphy_register+0x1f88/0x2ae0
[ 3447.098965][ T6888]  ? wiphy_unregister+0xb40/0xb40
[ 3447.104037][ T6888]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3447.109210][ T6888]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3447.115247][ T6888]  ieee80211_register_hw+0x23c1/0x40e0
[ 3447.120768][ T6888]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3447.126372][ T6888]  ? debug_object_free+0x360/0x360
[ 3447.131533][ T6888]  ? lockdep_init_map_type+0x21e/0x810
[ 3447.137039][ T6888]  ? __hrtimer_init+0x145/0x280
[ 3447.141942][ T6888]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3447.147832][ T6888]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3447.154568][ T6888]  hwsim_new_radio_nl+0xad6/0x1210
[ 3447.159726][ T6888]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3447.165675][ T6888]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3447.173072][ T6888]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3447.180393][ T6888]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3447.186596][ T6888]  ? genl_start+0x660/0x660
[ 3447.191147][ T6888]  ? ns_capable+0xe0/0x110
[ 3447.195609][ T6888]  genl_rcv_msg+0x4ff/0x7e0
[ 3447.200149][ T6888]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3447.206520][ T6888]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3447.212463][ T6888]  ? lock_downgrade+0x690/0x690
[ 3447.217359][ T6888]  netlink_rcv_skb+0x165/0x440
[ 3447.222174][ T6888]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3447.228544][ T6888]  ? netlink_ack+0x1360/0x1360
[ 3447.233391][ T6888]  genl_rcv+0x28/0x40
[ 3447.237421][ T6888]  netlink_unicast+0x547/0x7f0
[ 3447.242238][ T6888]  ? netlink_attachskb+0x890/0x890
[ 3447.247394][ T6888]  ? __virt_addr_valid+0x61/0x2e0
[ 3447.252450][ T6888]  ? __phys_addr_symbol+0x30/0x70
[ 3447.257491][ T6888]  ? __check_object_size+0x323/0x730
[ 3447.262808][ T6888]  netlink_sendmsg+0x925/0xe30
[ 3447.267596][ T6888]  ? netlink_unicast+0x7f0/0x7f0
[ 3447.272571][ T6888]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3447.277880][ T6888]  ? netlink_unicast+0x7f0/0x7f0
[ 3447.282867][ T6888]  sock_sendmsg+0xde/0x190
[ 3447.287347][ T6888]  ____sys_sendmsg+0x71c/0x900
[ 3447.292159][ T6888]  ? copy_msghdr_from_user+0xfc/0x150
[ 3447.297564][ T6888]  ? kernel_sendmsg+0x50/0x50
[ 3447.302309][ T6888]  ___sys_sendmsg+0x110/0x1b0
[ 3447.307008][ T6888]  ? do_recvmmsg+0x6e0/0x6e0
[ 3447.311636][ T6888]  ? __fget_files+0x248/0x480
[ 3447.316349][ T6888]  ? lock_downgrade+0x690/0x690
[ 3447.321237][ T6888]  ? futex_wake_mark+0x1a0/0x1a0
[ 3447.326235][ T6888]  ? __fget_files+0x26a/0x480
[ 3447.330954][ T6888]  ? __fget_light+0xe5/0x270
[ 3447.335584][ T6888]  __sys_sendmsg+0xf7/0x1c0
[ 3447.340121][ T6888]  ? __sys_sendmsg_sock+0x40/0x40
[ 3447.345185][ T6888]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3447.351142][ T6888]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3447.357082][ T6888]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3447.362321][ T6888]  do_syscall_64+0x39/0xb0
[ 3447.366790][ T6888]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3447.372715][ T6888] RIP: 0033:0x7f837868c169
[ 3447.377138][ T6888] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3447.396784][ T6888] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3447.405237][ T6888] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3447.413241][ T6888] RDX: fdffffff00000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3447.421240][ T6888] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3447.429240][ T6888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3447.437239][ T6888] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3447.445262][ T6888]  </TASK>
07:14:40 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x13000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:40 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8100}}}}]}, 0x78}}, 0x131c)

[ 3447.473461][ T6890] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3447.518418][ T6890] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3447.530534][ T6890] CPU: 1 PID: 6890 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3447.540920][ T6890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3447.551006][ T6890] Call Trace:
[ 3447.554307][ T6890]  <TASK>
[ 3447.557264][ T6890]  dump_stack_lvl+0x136/0x150
[ 3447.561982][ T6890]  sysfs_warn_dup+0x80/0xa0
[ 3447.566523][ T6890]  sysfs_do_create_link_sd+0x11e/0x140
[ 3447.572030][ T6890]  sysfs_create_link+0x63/0xc0
[ 3447.576833][ T6890]  device_add+0x5e5/0x1c50
[ 3447.581295][ T6890]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3447.588196][ T6890]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3447.594129][ T6890]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3447.600169][ T6890]  wiphy_register+0x1f88/0x2ae0
[ 3447.605080][ T6890]  ? wiphy_unregister+0xb40/0xb40
[ 3447.610147][ T6890]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3447.615324][ T6890]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3447.621359][ T6890]  ieee80211_register_hw+0x23c1/0x40e0
[ 3447.626878][ T6890]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3447.632462][ T6890]  ? net_generic+0xd9/0x2a0
[ 3447.636981][ T6890]  ? debug_object_free+0x360/0x360
[ 3447.642132][ T6890]  ? lockdep_init_map_type+0x21e/0x810
[ 3447.647633][ T6890]  ? __hrtimer_init+0x145/0x280
[ 3447.652535][ T6890]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3447.658292][ T6890]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3447.665029][ T6890]  hwsim_new_radio_nl+0xad6/0x1210
[ 3447.670220][ T6890]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3447.676168][ T6890]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3447.683572][ T6890]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3447.690898][ T6890]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3447.697089][ T6890]  ? genl_start+0x660/0x660
[ 3447.701638][ T6890]  ? ns_capable+0xe0/0x110
[ 3447.706101][ T6890]  genl_rcv_msg+0x4ff/0x7e0
[ 3447.710636][ T6890]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3447.717001][ T6890]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3447.722951][ T6890]  netlink_rcv_skb+0x165/0x440
[ 3447.727774][ T6890]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3447.734135][ T6890]  ? netlink_ack+0x1360/0x1360
[ 3447.738977][ T6890]  genl_rcv+0x28/0x40
[ 3447.742993][ T6890]  netlink_unicast+0x547/0x7f0
[ 3447.747785][ T6890]  ? netlink_attachskb+0x890/0x890
[ 3447.752933][ T6890]  ? __virt_addr_valid+0x61/0x2e0
[ 3447.757973][ T6890]  ? __phys_addr_symbol+0x30/0x70
[ 3447.763030][ T6890]  ? __check_object_size+0x323/0x730
[ 3447.768337][ T6890]  netlink_sendmsg+0x925/0xe30
[ 3447.773139][ T6890]  ? netlink_unicast+0x7f0/0x7f0
[ 3447.778126][ T6890]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3447.783449][ T6890]  ? netlink_unicast+0x7f0/0x7f0
[ 3447.788433][ T6890]  sock_sendmsg+0xde/0x190
[ 3447.792896][ T6890]  ____sys_sendmsg+0x71c/0x900
[ 3447.797709][ T6890]  ? copy_msghdr_from_user+0xfc/0x150
[ 3447.803115][ T6890]  ? kernel_sendmsg+0x50/0x50
[ 3447.807854][ T6890]  ___sys_sendmsg+0x110/0x1b0
[ 3447.812562][ T6890]  ? do_recvmmsg+0x6e0/0x6e0
[ 3447.817190][ T6890]  ? __fget_files+0x248/0x480
[ 3447.821897][ T6890]  ? lock_downgrade+0x690/0x690
[ 3447.826789][ T6890]  ? futex_wake_mark+0x1a0/0x1a0
[ 3447.831778][ T6890]  ? __fget_files+0x26a/0x480
[ 3447.836494][ T6890]  ? __fget_light+0xe5/0x270
[ 3447.841124][ T6890]  __sys_sendmsg+0xf7/0x1c0
[ 3447.845670][ T6890]  ? __sys_sendmsg_sock+0x40/0x40
[ 3447.850740][ T6890]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3447.856703][ T6890]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3447.862645][ T6890]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3447.867885][ T6890]  do_syscall_64+0x39/0xb0
[ 3447.872348][ T6890]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3447.878269][ T6890] RIP: 0033:0x7fb4bf08c169
[ 3447.882715][ T6890] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3447.902355][ T6890] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3447.910809][ T6890] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
07:14:41 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x1f000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:41 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xffffff7f00000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3447.918817][ T6890] RDX: 000000000005f0e6 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3447.926819][ T6890] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3447.934822][ T6890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3447.942810][ T6890] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3447.950808][ T6890]  </TASK>
07:14:41 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9f2a}}}}]}, 0x78}}, 0x131c)

[ 3448.011268][ T6898] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 3448.044595][ T6898] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3448.061301][ T6898] CPU: 1 PID: 6898 Comm: syz-executor.5 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3448.071711][ T6898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3448.081785][ T6898] Call Trace:
[ 3448.085075][ T6898]  <TASK>
[ 3448.088017][ T6898]  dump_stack_lvl+0x136/0x150
[ 3448.092716][ T6898]  sysfs_warn_dup+0x80/0xa0
[ 3448.097236][ T6898]  sysfs_do_create_link_sd+0x11e/0x140
[ 3448.102734][ T6898]  sysfs_create_link+0x63/0xc0
[ 3448.107519][ T6898]  device_add+0x5e5/0x1c50
[ 3448.111964][ T6898]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3448.118840][ T6898]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3448.124751][ T6898]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3448.130771][ T6898]  wiphy_register+0x1f88/0x2ae0
[ 3448.135659][ T6898]  ? wiphy_unregister+0xb40/0xb40
[ 3448.140705][ T6898]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3448.145849][ T6898]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3448.151867][ T6898]  ieee80211_register_hw+0x23c1/0x40e0
[ 3448.157370][ T6898]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3448.162938][ T6898]  ? net_generic+0xd9/0x2a0
[ 3448.167488][ T6898]  ? debug_object_free+0x360/0x360
[ 3448.172625][ T6898]  ? lockdep_init_map_type+0x21e/0x810
[ 3448.178110][ T6898]  ? __hrtimer_init+0x145/0x280
[ 3448.182995][ T6898]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3448.188755][ T6898]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3448.195469][ T6898]  hwsim_new_radio_nl+0xad6/0x1210
[ 3448.200607][ T6898]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3448.206533][ T6898]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3448.213920][ T6898]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3448.221245][ T6898]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3448.227421][ T6898]  ? genl_start+0x660/0x660
[ 3448.231957][ T6898]  ? ns_capable+0xe0/0x110
[ 3448.236402][ T6898]  genl_rcv_msg+0x4ff/0x7e0
[ 3448.240924][ T6898]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3448.247269][ T6898]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3448.253205][ T6898]  netlink_rcv_skb+0x165/0x440
[ 3448.257997][ T6898]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3448.264343][ T6898]  ? netlink_ack+0x1360/0x1360
[ 3448.269176][ T6898]  genl_rcv+0x28/0x40
[ 3448.273190][ T6898]  netlink_unicast+0x547/0x7f0
[ 3448.277985][ T6898]  ? netlink_attachskb+0x890/0x890
[ 3448.283122][ T6898]  ? __virt_addr_valid+0x61/0x2e0
[ 3448.288178][ T6898]  ? __phys_addr_symbol+0x30/0x70
[ 3448.293228][ T6898]  ? __check_object_size+0x323/0x730
[ 3448.298542][ T6898]  netlink_sendmsg+0x925/0xe30
[ 3448.303343][ T6898]  ? netlink_unicast+0x7f0/0x7f0
[ 3448.308314][ T6898]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3448.313620][ T6898]  ? netlink_unicast+0x7f0/0x7f0
[ 3448.318584][ T6898]  sock_sendmsg+0xde/0x190
[ 3448.323030][ T6898]  ____sys_sendmsg+0x71c/0x900
[ 3448.327823][ T6898]  ? copy_msghdr_from_user+0xfc/0x150
[ 3448.333211][ T6898]  ? kernel_sendmsg+0x50/0x50
[ 3448.337934][ T6898]  ___sys_sendmsg+0x110/0x1b0
[ 3448.342632][ T6898]  ? do_recvmmsg+0x6e0/0x6e0
[ 3448.347249][ T6898]  ? __fget_files+0x248/0x480
[ 3448.351944][ T6898]  ? lock_downgrade+0x690/0x690
[ 3448.356817][ T6898]  ? futex_wake_mark+0x1a0/0x1a0
[ 3448.361797][ T6898]  ? __fget_files+0x26a/0x480
[ 3448.366493][ T6898]  ? __fget_light+0xe5/0x270
[ 3448.371106][ T6898]  __sys_sendmsg+0xf7/0x1c0
[ 3448.375627][ T6898]  ? __sys_sendmsg_sock+0x40/0x40
[ 3448.380669][ T6898]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3448.386609][ T6898]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3448.392544][ T6898]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3448.397767][ T6898]  do_syscall_64+0x39/0xb0
[ 3448.402214][ T6898]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3448.408134][ T6898] RIP: 0033:0x7f359468c169
[ 3448.412565][ T6898] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3448.432206][ T6898] RSP: 002b:00007f35953a6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3448.440640][ T6898] RAX: ffffffffffffffda RBX: 00007f35947abf80 RCX: 00007f359468c169
[ 3448.448623][ T6898] RDX: 0000000000020000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3448.456603][ T6898] RBP: 00007f35946e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3448.464583][ T6898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3448.472566][ T6898] R13: 00007fffddd375cf R14: 00007f35953a6300 R15: 0000000000022000
[ 3448.480566][ T6898]  </TASK>
07:14:41 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:41 executing program 5:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x20000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:41 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0e7)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3448.514814][ T6900] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3448.542257][ T6900] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3448.560708][ T6900] CPU: 0 PID: 6900 Comm: syz-executor.1 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3448.571104][ T6900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3448.581196][ T6900] Call Trace:
[ 3448.584507][ T6900]  <TASK>
[ 3448.587470][ T6900]  dump_stack_lvl+0x136/0x150
[ 3448.592191][ T6900]  sysfs_warn_dup+0x80/0xa0
[ 3448.596733][ T6900]  sysfs_do_create_link_sd+0x11e/0x140
[ 3448.602242][ T6900]  sysfs_create_link+0x63/0xc0
[ 3448.607044][ T6900]  device_add+0x5e5/0x1c50
[ 3448.611513][ T6900]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3448.618414][ T6900]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3448.624346][ T6900]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3448.630388][ T6900]  wiphy_register+0x1f88/0x2ae0
[ 3448.635295][ T6900]  ? wiphy_unregister+0xb40/0xb40
[ 3448.640368][ T6900]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3448.645541][ T6900]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3448.651582][ T6900]  ieee80211_register_hw+0x23c1/0x40e0
[ 3448.657081][ T6900]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3448.662668][ T6900]  ? debug_object_free+0x360/0x360
[ 3448.667797][ T6900]  ? lockdep_init_map_type+0x21e/0x810
[ 3448.673299][ T6900]  ? __hrtimer_init+0x145/0x280
[ 3448.678195][ T6900]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3448.683958][ T6900]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3448.690639][ T6900]  hwsim_new_radio_nl+0xad6/0x1210
[ 3448.695757][ T6900]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3448.701656][ T6900]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3448.709025][ T6900]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3448.716331][ T6900]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3448.722526][ T6900]  ? genl_start+0x660/0x660
[ 3448.727072][ T6900]  ? ns_capable+0xe0/0x110
[ 3448.731537][ T6900]  genl_rcv_msg+0x4ff/0x7e0
[ 3448.736088][ T6900]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3448.742413][ T6900]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3448.748311][ T6900]  ? lock_downgrade+0x690/0x690
[ 3448.753199][ T6900]  netlink_rcv_skb+0x165/0x440
[ 3448.757969][ T6900]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3448.764310][ T6900]  ? netlink_ack+0x1360/0x1360
[ 3448.769150][ T6900]  genl_rcv+0x28/0x40
[ 3448.773173][ T6900]  netlink_unicast+0x547/0x7f0
[ 3448.777989][ T6900]  ? netlink_attachskb+0x890/0x890
[ 3448.783146][ T6900]  ? __virt_addr_valid+0x61/0x2e0
[ 3448.788224][ T6900]  ? __phys_addr_symbol+0x30/0x70
[ 3448.793261][ T6900]  ? __check_object_size+0x323/0x730
[ 3448.798562][ T6900]  netlink_sendmsg+0x925/0xe30
[ 3448.803334][ T6900]  ? netlink_unicast+0x7f0/0x7f0
[ 3448.808282][ T6900]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3448.813581][ T6900]  ? netlink_unicast+0x7f0/0x7f0
[ 3448.818571][ T6900]  sock_sendmsg+0xde/0x190
[ 3448.823038][ T6900]  ____sys_sendmsg+0x71c/0x900
[ 3448.827847][ T6900]  ? copy_msghdr_from_user+0xfc/0x150
[ 3448.833262][ T6900]  ? kernel_sendmsg+0x50/0x50
[ 3448.838010][ T6900]  ___sys_sendmsg+0x110/0x1b0
[ 3448.842686][ T6900]  ? do_recvmmsg+0x6e0/0x6e0
[ 3448.847310][ T6900]  ? __fget_files+0x248/0x480
[ 3448.852005][ T6900]  ? lock_downgrade+0x690/0x690
[ 3448.856874][ T6900]  ? futex_wake_mark+0x1a0/0x1a0
[ 3448.861833][ T6900]  ? __fget_files+0x26a/0x480
[ 3448.866554][ T6900]  ? __fget_light+0xe5/0x270
[ 3448.871198][ T6900]  __sys_sendmsg+0xf7/0x1c0
[ 3448.875743][ T6900]  ? __sys_sendmsg_sock+0x40/0x40
[ 3448.880806][ T6900]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3448.886746][ T6900]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3448.892642][ T6900]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3448.897841][ T6900]  do_syscall_64+0x39/0xb0
[ 3448.902260][ T6900]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3448.908159][ T6900] RIP: 0033:0x7feedbe8c169
[ 3448.912584][ T6900] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3448.932230][ T6900] RSP: 002b:00007feedcbc4168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3448.940677][ T6900] RAX: ffffffffffffffda RBX: 00007feedbfabf80 RCX: 00007feedbe8c169
[ 3448.948650][ T6900] RDX: a2b0000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3448.956632][ T6900] RBP: 00007feedbee7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3448.964615][ T6900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3448.972619][ T6900] R13: 00007ffdb31ac92f R14: 00007feedcbc4300 R15: 0000000000022000
[ 3448.980643][ T6900]  </TASK>
07:14:42 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0x4}, 0xfffffffffffffd95)
r3 = socket$tipc(0x1e, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000006780)=[{{&(0x7f00000000c0)=@caif=@rfm, 0x80, &(0x7f0000000300)=[{&(0x7f0000000140)=""/48, 0x30}, {&(0x7f0000000180)=""/104, 0x68}, {&(0x7f0000000200)=""/212, 0xd4}, {&(0x7f0000000540)=""/4096, 0x1000}], 0x4}, 0x6}, {{&(0x7f0000000340)=@nl, 0x80, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/69, 0x45}], 0x1, &(0x7f0000000480)=""/99, 0x63}, 0xffffffff}, {{0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000001540)=""/119, 0x77}, {&(0x7f00000015c0)=""/140, 0x8c}], 0x2, &(0x7f00000016c0)=""/13, 0xd}, 0x400}, {{0x0, 0x0, &(0x7f0000002b40)=[{&(0x7f0000001700)=""/231, 0xe7}, {&(0x7f0000001800)=""/4096, 0x1000}, {&(0x7f0000002800)=""/168, 0xa8}, {&(0x7f00000028c0)=""/117, 0x75}, {&(0x7f0000002940)=""/245, 0xf5}, {&(0x7f0000002a40)=""/207, 0xcf}], 0x6, &(0x7f0000002bc0)=""/232, 0xe8}, 0x4}, {{&(0x7f0000002cc0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f0000002f00)=[{&(0x7f0000002d40)=""/75, 0x4b}, {&(0x7f0000002dc0)=""/115, 0x73}, {&(0x7f0000002e40)=""/7, 0x7}, {&(0x7f0000002e80)=""/72, 0x48}], 0x4}, 0xa9}, {{&(0x7f0000002f40)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000005500)=[{&(0x7f0000002fc0)=""/108, 0x6c}, {&(0x7f0000003040)=""/81, 0x51}, {&(0x7f00000030c0)=""/182, 0xb6}, {&(0x7f0000003180)=""/4096, 0x1000}, {&(0x7f0000004180)=""/185, 0xb9}, {&(0x7f0000004240)=""/129, 0x81}, {&(0x7f0000004300)=""/28, 0x1c}, {&(0x7f0000004340)=""/4096, 0x1000}, {&(0x7f0000005340)=""/228, 0xe4}, {&(0x7f0000005440)=""/152, 0x98}], 0xa, &(0x7f00000055c0)=""/241, 0xf1}, 0x8e}, {{&(0x7f00000056c0)=@isdn, 0x80, &(0x7f0000005900)=[{&(0x7f0000005740)=""/233, 0xe9}, {&(0x7f0000005840)=""/134, 0x86}], 0x2, &(0x7f0000005940)=""/191, 0xbf}, 0x6}, {{&(0x7f0000005a00)=@alg, 0x80, &(0x7f0000006040)=[{&(0x7f0000005a80)=""/102, 0x66}, {&(0x7f0000005b00)=""/88, 0x58}, {&(0x7f0000005b80)=""/188, 0xbc}, {&(0x7f0000005c40)=""/74, 0x4a}, {&(0x7f0000005cc0)=""/82, 0x52}, {&(0x7f0000005d40)=""/100, 0x64}, {&(0x7f0000005dc0)=""/133, 0x85}, {&(0x7f0000005e80)}, {&(0x7f0000005ec0)=""/192, 0xc0}, {&(0x7f0000005f80)=""/147, 0x93}], 0xa, &(0x7f0000006100)=""/151, 0x97}, 0x9}, {{&(0x7f00000061c0)=@ax25={{}, [@default, @bcast, @null, @default, @rose, @remote, @null, @rose]}, 0x80, &(0x7f0000006440)=[{&(0x7f0000006240)=""/2, 0x2}, {&(0x7f0000006280)=""/202, 0xca}, {&(0x7f0000006380)=""/180, 0xb4}], 0x3, &(0x7f0000006480)=""/114, 0x72}, 0xc59}, {{&(0x7f0000006500)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000006740)=[{&(0x7f0000006580)=""/133, 0x85}, {&(0x7f0000006640)=""/89, 0x59}, {&(0x7f00000066c0)=""/63, 0x3f}, {&(0x7f0000006700)=""/25, 0x19}], 0x4}, 0x20}], 0xa, 0x10082, &(0x7f0000006a00))
bind$bt_hci(r0, &(0x7f0000000500)={0x1f, 0x0, 0x1}, 0x6)

07:14:42 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf000}}}}]}, 0x78}}, 0x131c)

07:14:42 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0e8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:42 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3449.021897][ T6913] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3449.061898][ T6913] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3449.088441][ T6913] CPU: 1 PID: 6913 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3449.098828][ T6913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3449.108910][ T6913] Call Trace:
[ 3449.112206][ T6913]  <TASK>
[ 3449.115165][ T6913]  dump_stack_lvl+0x136/0x150
[ 3449.119884][ T6913]  sysfs_warn_dup+0x80/0xa0
[ 3449.124429][ T6913]  sysfs_do_create_link_sd+0x11e/0x140
[ 3449.129929][ T6913]  sysfs_create_link+0x63/0xc0
[ 3449.134728][ T6913]  device_add+0x5e5/0x1c50
[ 3449.139205][ T6913]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3449.146101][ T6913]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3449.152037][ T6913]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3449.158082][ T6913]  wiphy_register+0x1f88/0x2ae0
[ 3449.162995][ T6913]  ? wiphy_unregister+0xb40/0xb40
[ 3449.168057][ T6913]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3449.173224][ T6913]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3449.179258][ T6913]  ieee80211_register_hw+0x23c1/0x40e0
[ 3449.184779][ T6913]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3449.190369][ T6913]  ? debug_object_free+0x360/0x360
[ 3449.195525][ T6913]  ? lockdep_init_map_type+0x21e/0x810
[ 3449.201031][ T6913]  ? __hrtimer_init+0x145/0x280
[ 3449.205932][ T6913]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3449.211714][ T6913]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3449.218449][ T6913]  hwsim_new_radio_nl+0xad6/0x1210
[ 3449.223609][ T6913]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3449.229557][ T6913]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3449.236960][ T6913]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3449.244284][ T6913]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3449.250476][ T6913]  ? genl_start+0x660/0x660
[ 3449.255023][ T6913]  ? ns_capable+0xe0/0x110
[ 3449.259488][ T6913]  genl_rcv_msg+0x4ff/0x7e0
[ 3449.264026][ T6913]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3449.270386][ T6913]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3449.276336][ T6913]  netlink_rcv_skb+0x165/0x440
[ 3449.281148][ T6913]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3449.287515][ T6913]  ? netlink_ack+0x1360/0x1360
[ 3449.292358][ T6913]  genl_rcv+0x28/0x40
[ 3449.296385][ T6913]  netlink_unicast+0x547/0x7f0
[ 3449.301199][ T6913]  ? netlink_attachskb+0x890/0x890
[ 3449.306355][ T6913]  ? __virt_addr_valid+0x61/0x2e0
[ 3449.311422][ T6913]  ? __phys_addr_symbol+0x30/0x70
[ 3449.316489][ T6913]  ? __check_object_size+0x323/0x730
[ 3449.321819][ T6913]  netlink_sendmsg+0x925/0xe30
[ 3449.326634][ T6913]  ? netlink_unicast+0x7f0/0x7f0
[ 3449.331617][ T6913]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3449.336943][ T6913]  ? netlink_unicast+0x7f0/0x7f0
[ 3449.341932][ T6913]  sock_sendmsg+0xde/0x190
[ 3449.346391][ T6913]  ____sys_sendmsg+0x71c/0x900
[ 3449.351202][ T6913]  ? copy_msghdr_from_user+0xfc/0x150
[ 3449.356611][ T6913]  ? kernel_sendmsg+0x50/0x50
[ 3449.361339][ T6913]  ? futex_unqueue+0xb7/0x120
[ 3449.366063][ T6913]  ? futex_wait+0x503/0x680
[ 3449.370615][ T6913]  ___sys_sendmsg+0x110/0x1b0
[ 3449.375327][ T6913]  ? do_recvmmsg+0x6e0/0x6e0
[ 3449.379956][ T6913]  ? __fget_files+0x248/0x480
[ 3449.384665][ T6913]  ? lock_downgrade+0x690/0x690
[ 3449.389568][ T6913]  ? __fget_files+0x26a/0x480
[ 3449.394282][ T6913]  ? __fget_light+0xe5/0x270
[ 3449.398912][ T6913]  __sys_sendmsg+0xf7/0x1c0
[ 3449.403449][ T6913]  ? __sys_sendmsg_sock+0x40/0x40
[ 3449.408511][ T6913]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3449.414467][ T6913]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3449.420401][ T6913]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3449.425673][ T6913]  do_syscall_64+0x39/0xb0
[ 3449.430141][ T6913]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3449.436072][ T6913] RIP: 0033:0x7f837868c169
[ 3449.440511][ T6913] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3449.460155][ T6913] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3449.468606][ T6913] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3449.476606][ T6913] RDX: ffffff7f00000000 RSI: 0000000020001ac0 RDI: 0000000000000004
07:14:42 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x65580000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:42 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xffffffff00000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3449.484610][ T6913] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3449.492608][ T6913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3449.500606][ T6913] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3449.508632][ T6913]  </TASK>
[ 3449.523955][ T6922] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.5'.
07:14:42 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x34000}}}}]}, 0x78}}, 0x131c)

[ 3449.570902][ T6922] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3449.599461][ T6922] CPU: 1 PID: 6922 Comm: syz-executor.5 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3449.612376][ T6922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3449.622462][ T6922] Call Trace:
[ 3449.625763][ T6922]  <TASK>
[ 3449.628721][ T6922]  dump_stack_lvl+0x136/0x150
[ 3449.633438][ T6922]  sysfs_warn_dup+0x80/0xa0
[ 3449.637982][ T6922]  sysfs_do_create_link_sd+0x11e/0x140
[ 3449.643480][ T6922]  sysfs_create_link+0x63/0xc0
[ 3449.648271][ T6922]  device_add+0x5e5/0x1c50
[ 3449.652723][ T6922]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3449.659599][ T6922]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3449.665515][ T6922]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3449.671533][ T6922]  wiphy_register+0x1f88/0x2ae0
[ 3449.676420][ T6922]  ? wiphy_unregister+0xb40/0xb40
[ 3449.681551][ T6922]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3449.686693][ T6922]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3449.692716][ T6922]  ieee80211_register_hw+0x23c1/0x40e0
[ 3449.698237][ T6922]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3449.703811][ T6922]  ? debug_object_free+0x360/0x360
[ 3449.709051][ T6922]  ? lockdep_init_map_type+0x21e/0x810
[ 3449.714535][ T6922]  ? __hrtimer_init+0x145/0x280
[ 3449.719415][ T6922]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3449.725176][ T6922]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3449.731902][ T6922]  hwsim_new_radio_nl+0xad6/0x1210
[ 3449.737043][ T6922]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3449.742972][ T6922]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3449.750368][ T6922]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3449.757687][ T6922]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3449.763870][ T6922]  ? genl_start+0x660/0x660
[ 3449.768407][ T6922]  ? ns_capable+0xe0/0x110
[ 3449.772852][ T6922]  genl_rcv_msg+0x4ff/0x7e0
[ 3449.777381][ T6922]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3449.783729][ T6922]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3449.789660][ T6922]  netlink_rcv_skb+0x165/0x440
[ 3449.794456][ T6922]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3449.800801][ T6922]  ? netlink_ack+0x1360/0x1360
[ 3449.805619][ T6922]  genl_rcv+0x28/0x40
[ 3449.809633][ T6922]  netlink_unicast+0x547/0x7f0
[ 3449.814434][ T6922]  ? netlink_attachskb+0x890/0x890
[ 3449.819569][ T6922]  ? __virt_addr_valid+0x61/0x2e0
[ 3449.824619][ T6922]  ? __phys_addr_symbol+0x30/0x70
[ 3449.829684][ T6922]  ? __check_object_size+0x323/0x730
[ 3449.835007][ T6922]  netlink_sendmsg+0x925/0xe30
[ 3449.839819][ T6922]  ? netlink_unicast+0x7f0/0x7f0
[ 3449.844801][ T6922]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3449.850121][ T6922]  ? netlink_unicast+0x7f0/0x7f0
[ 3449.855091][ T6922]  sock_sendmsg+0xde/0x190
[ 3449.859551][ T6922]  ____sys_sendmsg+0x71c/0x900
[ 3449.864342][ T6922]  ? copy_msghdr_from_user+0xfc/0x150
[ 3449.869734][ T6922]  ? kernel_sendmsg+0x50/0x50
[ 3449.874453][ T6922]  ___sys_sendmsg+0x110/0x1b0
[ 3449.879152][ T6922]  ? do_recvmmsg+0x6e0/0x6e0
[ 3449.883760][ T6922]  ? __fget_files+0x248/0x480
[ 3449.888452][ T6922]  ? lock_downgrade+0x690/0x690
[ 3449.893337][ T6922]  ? futex_wake_mark+0x1a0/0x1a0
[ 3449.898318][ T6922]  ? __fget_files+0x26a/0x480
[ 3449.903033][ T6922]  ? __fget_light+0xe5/0x270
[ 3449.907655][ T6922]  __sys_sendmsg+0xf7/0x1c0
[ 3449.912208][ T6922]  ? __sys_sendmsg_sock+0x40/0x40
[ 3449.917259][ T6922]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3449.923202][ T6922]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3449.929121][ T6922]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3449.934346][ T6922]  do_syscall_64+0x39/0xb0
[ 3449.938796][ T6922]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3449.944727][ T6922] RIP: 0033:0x7f359468c169
[ 3449.949158][ T6922] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3449.968798][ T6922] RSP: 002b:00007f35953a6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3449.977229][ T6922] RAX: ffffffffffffffda RBX: 00007f35947abf80 RCX: 00007f359468c169
[ 3449.985213][ T6922] RDX: 0000000000020000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3449.993211][ T6922] RBP: 00007f35946e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3450.001191][ T6922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3450.009173][ T6922] R13: 00007fffddd375cf R14: 00007f35953a6300 R15: 0000000000022000
[ 3450.017171][ T6922]  </TASK>
07:14:43 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x7f000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:43 executing program 1:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x9effffff00000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:43 executing program 5:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x20000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3450.042006][ T6939] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3450.071333][ T6939] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3450.091009][ T6939] CPU: 1 PID: 6939 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3450.101405][ T6939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3450.111486][ T6939] Call Trace:
[ 3450.114786][ T6939]  <TASK>
[ 3450.117753][ T6939]  dump_stack_lvl+0x136/0x150
[ 3450.122482][ T6939]  sysfs_warn_dup+0x80/0xa0
[ 3450.127012][ T6939]  sysfs_do_create_link_sd+0x11e/0x140
[ 3450.132496][ T6939]  sysfs_create_link+0x63/0xc0
[ 3450.137278][ T6939]  device_add+0x5e5/0x1c50
[ 3450.141726][ T6939]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3450.148608][ T6939]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3450.154526][ T6939]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3450.160544][ T6939]  wiphy_register+0x1f88/0x2ae0
[ 3450.165432][ T6939]  ? wiphy_unregister+0xb40/0xb40
[ 3450.170494][ T6939]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3450.175639][ T6939]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3450.181658][ T6939]  ieee80211_register_hw+0x23c1/0x40e0
[ 3450.187163][ T6939]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3450.192733][ T6939]  ? debug_object_free+0x360/0x360
[ 3450.197866][ T6939]  ? lockdep_init_map_type+0x21e/0x810
[ 3450.203362][ T6939]  ? __hrtimer_init+0x145/0x280
[ 3450.208244][ T6939]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3450.214006][ T6939]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3450.220716][ T6939]  hwsim_new_radio_nl+0xad6/0x1210
[ 3450.225853][ T6939]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3450.231805][ T6939]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3450.239193][ T6939]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3450.246512][ T6939]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3450.252705][ T6939]  ? genl_start+0x660/0x660
[ 3450.257247][ T6939]  ? ns_capable+0xe0/0x110
[ 3450.261702][ T6939]  genl_rcv_msg+0x4ff/0x7e0
[ 3450.266227][ T6939]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3450.272575][ T6939]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3450.278507][ T6939]  netlink_rcv_skb+0x165/0x440
[ 3450.283310][ T6939]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3450.289656][ T6939]  ? netlink_ack+0x1360/0x1360
[ 3450.294477][ T6939]  genl_rcv+0x28/0x40
[ 3450.298497][ T6939]  netlink_unicast+0x547/0x7f0
[ 3450.303384][ T6939]  ? netlink_attachskb+0x890/0x890
[ 3450.308541][ T6939]  ? __virt_addr_valid+0x61/0x2e0
[ 3450.313619][ T6939]  ? __phys_addr_symbol+0x30/0x70
[ 3450.318671][ T6939]  ? __check_object_size+0x323/0x730
[ 3450.323995][ T6939]  netlink_sendmsg+0x925/0xe30
[ 3450.328811][ T6939]  ? netlink_unicast+0x7f0/0x7f0
[ 3450.333786][ T6939]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3450.339104][ T6939]  ? netlink_unicast+0x7f0/0x7f0
[ 3450.344078][ T6939]  sock_sendmsg+0xde/0x190
[ 3450.348535][ T6939]  ____sys_sendmsg+0x71c/0x900
[ 3450.353328][ T6939]  ? copy_msghdr_from_user+0xfc/0x150
[ 3450.358719][ T6939]  ? kernel_sendmsg+0x50/0x50
[ 3450.363433][ T6939]  ? futex_unqueue+0xb7/0x120
[ 3450.368137][ T6939]  ? futex_wait+0x503/0x680
[ 3450.372668][ T6939]  ___sys_sendmsg+0x110/0x1b0
[ 3450.377361][ T6939]  ? do_recvmmsg+0x6e0/0x6e0
[ 3450.381973][ T6939]  ? __fget_files+0x248/0x480
[ 3450.386669][ T6939]  ? lock_downgrade+0x690/0x690
[ 3450.391548][ T6939]  ? __fget_files+0x26a/0x480
[ 3450.396246][ T6939]  ? __fget_light+0xe5/0x270
[ 3450.400855][ T6939]  __sys_sendmsg+0xf7/0x1c0
[ 3450.405376][ T6939]  ? __sys_sendmsg_sock+0x40/0x40
[ 3450.410422][ T6939]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3450.416360][ T6939]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3450.422275][ T6939]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3450.427495][ T6939]  do_syscall_64+0x39/0xb0
[ 3450.431954][ T6939]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3450.437873][ T6939] RIP: 0033:0x7f837868c169
[ 3450.442298][ T6939] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3450.461921][ T6939] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3450.470364][ T6939] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3450.478371][ T6939] RDX: ffffffff00000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3450.486368][ T6939] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3450.494356][ T6939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3450.502371][ T6939] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3450.510378][ T6939]  </TASK>
[ 3450.523789][ T1208] ieee802154 phy0 wpan0: encryption failed: -22
[ 3450.530129][ T1208] ieee802154 phy1 wpan1: encryption failed: -22
07:14:43 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x81000000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3450.569234][ T6927] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3450.592408][ T6927] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3450.606628][ T6927] CPU: 0 PID: 6927 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3450.617017][ T6927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3450.627110][ T6927] Call Trace:
[ 3450.630410][ T6927]  <TASK>
[ 3450.633365][ T6927]  dump_stack_lvl+0x136/0x150
[ 3450.638080][ T6927]  sysfs_warn_dup+0x80/0xa0
[ 3450.642614][ T6927]  sysfs_do_create_link_sd+0x11e/0x140
[ 3450.648095][ T6927]  sysfs_create_link+0x63/0xc0
[ 3450.652877][ T6927]  device_add+0x5e5/0x1c50
[ 3450.657323][ T6927]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3450.664203][ T6927]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3450.670128][ T6927]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3450.676148][ T6927]  wiphy_register+0x1f88/0x2ae0
[ 3450.681038][ T6927]  ? wiphy_unregister+0xb40/0xb40
[ 3450.686083][ T6927]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3450.691231][ T6927]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3450.697248][ T6927]  ieee80211_register_hw+0x23c1/0x40e0
[ 3450.702749][ T6927]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3450.708321][ T6927]  ? net_generic+0xd9/0x2a0
[ 3450.712847][ T6927]  ? debug_object_free+0x360/0x360
[ 3450.717983][ T6927]  ? lockdep_init_map_type+0x21e/0x810
[ 3450.723464][ T6927]  ? __hrtimer_init+0x145/0x280
[ 3450.728346][ T6927]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3450.734103][ T6927]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3450.740813][ T6927]  hwsim_new_radio_nl+0xad6/0x1210
[ 3450.745948][ T6927]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3450.751875][ T6927]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3450.759262][ T6927]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3450.766568][ T6927]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3450.772741][ T6927]  ? genl_start+0x660/0x660
[ 3450.777269][ T6927]  ? ns_capable+0xe0/0x110
[ 3450.781715][ T6927]  genl_rcv_msg+0x4ff/0x7e0
[ 3450.786238][ T6927]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3450.792588][ T6927]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3450.798508][ T6927]  ? lock_downgrade+0x690/0x690
[ 3450.803381][ T6927]  netlink_rcv_skb+0x165/0x440
[ 3450.808177][ T6927]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3450.814528][ T6927]  ? netlink_ack+0x1360/0x1360
[ 3450.819348][ T6927]  genl_rcv+0x28/0x40
[ 3450.823356][ T6927]  netlink_unicast+0x547/0x7f0
[ 3450.828155][ T6927]  ? netlink_attachskb+0x890/0x890
[ 3450.833297][ T6927]  ? __virt_addr_valid+0x61/0x2e0
[ 3450.838351][ T6927]  ? __phys_addr_symbol+0x30/0x70
[ 3450.843583][ T6927]  ? __check_object_size+0x323/0x730
[ 3450.848896][ T6927]  netlink_sendmsg+0x925/0xe30
[ 3450.853711][ T6927]  ? netlink_unicast+0x7f0/0x7f0
[ 3450.858683][ T6927]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3450.864007][ T6927]  ? netlink_unicast+0x7f0/0x7f0
[ 3450.868970][ T6927]  sock_sendmsg+0xde/0x190
[ 3450.873415][ T6927]  ____sys_sendmsg+0x71c/0x900
[ 3450.878218][ T6927]  ? copy_msghdr_from_user+0xfc/0x150
[ 3450.883606][ T6927]  ? kernel_sendmsg+0x50/0x50
[ 3450.888328][ T6927]  ___sys_sendmsg+0x110/0x1b0
[ 3450.893023][ T6927]  ? do_recvmmsg+0x6e0/0x6e0
[ 3450.897635][ T6927]  ? __fget_files+0x248/0x480
[ 3450.902326][ T6927]  ? lock_downgrade+0x690/0x690
[ 3450.907208][ T6927]  ? futex_wake_mark+0x1a0/0x1a0
[ 3450.912177][ T6927]  ? __fget_files+0x26a/0x480
[ 3450.916882][ T6927]  ? __fget_light+0xe5/0x270
[ 3450.921514][ T6927]  __sys_sendmsg+0xf7/0x1c0
[ 3450.926033][ T6927]  ? __sys_sendmsg_sock+0x40/0x40
[ 3450.931078][ T6927]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3450.937013][ T6927]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3450.942929][ T6927]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3450.948159][ T6927]  do_syscall_64+0x39/0xb0
[ 3450.952613][ T6927]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3450.958533][ T6927] RIP: 0033:0x7fb4bf08c169
[ 3450.962963][ T6927] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3450.982599][ T6927] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3450.991039][ T6927] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3450.999033][ T6927] RDX: 000000000005f0e8 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3451.007279][ T6927] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
07:14:44 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}}}}]}, 0x78}}, 0x131c)

07:14:44 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xffffffff8a400000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3451.015352][ T6927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3451.023334][ T6927] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3451.031339][ T6927]  </TASK>
07:14:44 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xffffffffff600000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:44 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0e9)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

07:14:44 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x400300}}}}]}, 0x78}}, 0x131c)

07:14:44 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x87360000, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

[ 3451.148122][ T6944] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.1'.
07:14:44 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0xfffffffffffff000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3451.199275][ T6944] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3451.227773][ T6944] CPU: 1 PID: 6944 Comm: syz-executor.1 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3451.238170][ T6944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
07:14:44 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0ea)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3451.248257][ T6944] Call Trace:
[ 3451.251563][ T6944]  <TASK>
[ 3451.254528][ T6944]  dump_stack_lvl+0x136/0x150
[ 3451.259253][ T6944]  sysfs_warn_dup+0x80/0xa0
[ 3451.263802][ T6944]  sysfs_do_create_link_sd+0x11e/0x140
[ 3451.269308][ T6944]  sysfs_create_link+0x63/0xc0
[ 3451.274116][ T6944]  device_add+0x5e5/0x1c50
[ 3451.278592][ T6944]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3451.285501][ T6944]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3451.291441][ T6944]  ? ieee80211_set_bitrate_flags+0x222/0x660
07:14:44 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000640)={0x11c, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x10b, 0x4a, 0x0, 0x1, [@typed={0xc, 0x3d, 0x0, 0x0, @u64=0x2f}, @generic="682d4b1c81e66e90747d2756d4b15697e2213a352972832c4361502667513e24453bd1097083983a1435aeb36a5faf7c6d1f329b294fff5dce2d7a56d7016517245ea387e6cb7d3b0da93f51f47dace244748a5788dba156878d84b817c0ef4313b59088c569f94375bcd32af9ece7d436e327c3302c958eb4f1f92613d306ab6b83c6b63558b9ba15d580fa8dad1e7b568e421fe1d864bced9636b2ea8e23343f01b80d69710d070039049dcc4b0380cd8fb11918d2a1c39bbb00c6ec25875c6f098d1ea334aebdc387f740d3ce73e7c872ae30b9e4e40bb454ec5bcfe6065a0a9cd359e74f80032fddc4", @typed={0x8, 0x66, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x32, 0x0, 0x0, @pid=0xffffffffffffffff}]}]}, 0x11c}], 0x1, 0x0, 0x0, 0x20040000}, 0x800)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="28000000000001000000000000000000080000002500000008000000ffffffff08000400", @ANYRES32=r1, @ANYBLOB="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"], 0x28}], 0x1}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x208e24b)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="6ca52000fdffffff9400000000000000"], &(0x7f00000002c0)='GPL\x00', 0x81, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x80)
ioctl$BTRFS_IOC_GET_DEV_STATS(r3, 0xc4089434, &(0x7f0000000780)={0x0, 0x8d6, 0x0, [0xffff, 0x7ff, 0x7fffffffffffffff, 0x1, 0x3ff], [0x1, 0x4, 0x5, 0x7fffffff, 0x731, 0xc8a, 0xffffffff, 0x7, 0x100, 0x3, 0x80000000, 0x5, 0xfe, 0x10000, 0x1, 0x6, 0x1ff, 0x80, 0x20, 0xffffffffffffff43, 0x7, 0x7, 0x8, 0xffffffffffff0607, 0x7ff, 0xfff, 0x1, 0x7, 0x6, 0xfffffffffffffffd, 0x9, 0x5, 0x0, 0x7, 0x7, 0x9, 0x58fa, 0x5, 0x401, 0x5, 0x9, 0x6, 0x8000000000000000, 0x8, 0x4, 0x8001, 0xfffffffffffffff7, 0x3, 0x5da, 0x3, 0x1, 0x4, 0x1, 0xb84, 0x1, 0x115, 0x4, 0x0, 0x7ff, 0x100000000, 0x8, 0x4, 0x3, 0xcd, 0x0, 0x401, 0x5, 0x79, 0x3f, 0x6, 0x3, 0x7fff, 0x81, 0x2, 0xffffffff, 0x3, 0x200, 0x8, 0x7, 0x3, 0x2, 0x6, 0xfffffffffffffff8, 0xd556, 0x9, 0xfffffffffffffff7, 0x5, 0x7, 0x1, 0xfd, 0xfd, 0x4, 0x9, 0x6, 0x9, 0x28be, 0x2, 0x10000, 0x7ff, 0xfffffffffaa8aed9, 0xee, 0x4, 0xffffffffffffffff, 0x6, 0x7ff, 0x1, 0x7, 0x100000001, 0xffffffff, 0x10001, 0x9, 0xeda3, 0x66a4, 0x10000, 0x3, 0x1, 0x9, 0xa, 0xcb, 0x7fffffff, 0x6]})
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r6 = socket(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="798e000000f0166ac5000ffa000008000300", @ANYRES32=r7], 0x24}}, 0x0)
pipe(&(0x7f0000000200)={<r8=>0xffffffffffffffff})
sendmsg$nl_route(r8, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0xa00020}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)=@ipv6_newnexthop={0x5c, 0x68, 0x414, 0x70bd2a, 0x25dfdbfd, {0xa, 0x0, 0x0, 0x0, 0x1}, [@NHA_GROUP_TYPE={0x6}, @NHA_ID={0x8, 0x1, 0x2}, @NHA_FDB={0x4}, @NHA_GROUP={0x1c, 0x2, [{0x2, 0x9}, {0x2, 0x20}, {0x0, 0x8}]}, @NHA_GATEWAY={0x14, 0x6, @in6_addr=@remote}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40004}, 0x40000)
sendmsg$NL80211_CMD_JOIN_IBSS(r4, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000002c0)={&(0x7f00000000c0)={0x44, r5, 0x400, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3, 0x40}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_FREQ_FIXED={0x4}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x44}, 0x1, 0x0, 0x0, 0x810}, 0x9801)

[ 3451.297497][ T6944]  wiphy_register+0x1f88/0x2ae0
[ 3451.302412][ T6944]  ? wiphy_unregister+0xb40/0xb40
[ 3451.307509][ T6944]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3451.312677][ T6944]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3451.318715][ T6944]  ieee80211_register_hw+0x23c1/0x40e0
[ 3451.324231][ T6944]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3451.329802][ T6944]  ? net_generic+0xd9/0x2a0
[ 3451.334308][ T6944]  ? debug_object_free+0x360/0x360
[ 3451.339421][ T6944]  ? lockdep_init_map_type+0x21e/0x810
[ 3451.344901][ T6944]  ? __hrtimer_init+0x145/0x280
[ 3451.349766][ T6944]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3451.355506][ T6944]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3451.362214][ T6944]  hwsim_new_radio_nl+0xad6/0x1210
[ 3451.367329][ T6944]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3451.373248][ T6944]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3451.380731][ T6944]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3451.388058][ T6944]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3451.394252][ T6944]  ? genl_start+0x660/0x660
[ 3451.398802][ T6944]  ? ns_capable+0xe0/0x110
[ 3451.403269][ T6944]  genl_rcv_msg+0x4ff/0x7e0
[ 3451.407809][ T6944]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3451.414177][ T6944]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3451.420118][ T6944]  ? lock_downgrade+0x690/0x690
[ 3451.425015][ T6944]  netlink_rcv_skb+0x165/0x440
[ 3451.429831][ T6944]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3451.436199][ T6944]  ? netlink_ack+0x1360/0x1360
[ 3451.441053][ T6944]  genl_rcv+0x28/0x40
[ 3451.445083][ T6944]  netlink_unicast+0x547/0x7f0
[ 3451.449904][ T6944]  ? netlink_attachskb+0x890/0x890
[ 3451.455060][ T6944]  ? __virt_addr_valid+0x61/0x2e0
[ 3451.460132][ T6944]  ? __phys_addr_symbol+0x30/0x70
[ 3451.465200][ T6944]  ? __check_object_size+0x323/0x730
[ 3451.470531][ T6944]  netlink_sendmsg+0x925/0xe30
[ 3451.475352][ T6944]  ? netlink_unicast+0x7f0/0x7f0
[ 3451.480343][ T6944]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3451.485671][ T6944]  ? netlink_unicast+0x7f0/0x7f0
[ 3451.490656][ T6944]  sock_sendmsg+0xde/0x190
[ 3451.495118][ T6944]  ____sys_sendmsg+0x71c/0x900
[ 3451.499933][ T6944]  ? copy_msghdr_from_user+0xfc/0x150
[ 3451.505342][ T6944]  ? kernel_sendmsg+0x50/0x50
[ 3451.510082][ T6944]  ___sys_sendmsg+0x110/0x1b0
[ 3451.514794][ T6944]  ? do_recvmmsg+0x6e0/0x6e0
[ 3451.519422][ T6944]  ? __fget_files+0x248/0x480
[ 3451.524137][ T6944]  ? lock_downgrade+0x690/0x690
[ 3451.529031][ T6944]  ? futex_wake_mark+0x1a0/0x1a0
[ 3451.534025][ T6944]  ? __fget_files+0x26a/0x480
[ 3451.538742][ T6944]  ? __fget_light+0xe5/0x270
[ 3451.543369][ T6944]  __sys_sendmsg+0xf7/0x1c0
[ 3451.547908][ T6944]  ? __sys_sendmsg_sock+0x40/0x40
[ 3451.552967][ T6944]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3451.558926][ T6944]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3451.564863][ T6944]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3451.570102][ T6944]  do_syscall_64+0x39/0xb0
[ 3451.574569][ T6944]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3451.580505][ T6944] RIP: 0033:0x7feedbe8c169
[ 3451.584941][ T6944] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3451.604586][ T6944] RSP: 002b:00007feedcbc4168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3451.613042][ T6944] RAX: ffffffffffffffda RBX: 00007feedbfabf80 RCX: 00007feedbe8c169
[ 3451.621057][ T6944] RDX: 9effffff00000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3451.629061][ T6944] RBP: 00007feedbee7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3451.637062][ T6944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3451.645065][ T6944] R13: 00007ffdb31ac92f R14: 00007feedcbc4300 R15: 0000000000022000
[ 3451.653085][ T6944]  </TASK>
07:14:44 executing program 1:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x9effffff00000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

[ 3451.714833][ T6945] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 3451.739097][ T6945] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3451.756872][ T6945] CPU: 0 PID: 6945 Comm: syz-executor.5 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3451.767268][ T6945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3451.777443][ T6945] Call Trace:
[ 3451.780748][ T6945]  <TASK>
[ 3451.783703][ T6945]  dump_stack_lvl+0x136/0x150
[ 3451.788423][ T6945]  sysfs_warn_dup+0x80/0xa0
[ 3451.792972][ T6945]  sysfs_do_create_link_sd+0x11e/0x140
[ 3451.798488][ T6945]  sysfs_create_link+0x63/0xc0
[ 3451.803289][ T6945]  device_add+0x5e5/0x1c50
[ 3451.807756][ T6945]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3451.814659][ T6945]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3451.820595][ T6945]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3451.826642][ T6945]  wiphy_register+0x1f88/0x2ae0
[ 3451.831561][ T6945]  ? wiphy_unregister+0xb40/0xb40
[ 3451.836634][ T6945]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3451.841823][ T6945]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3451.847861][ T6945]  ieee80211_register_hw+0x23c1/0x40e0
[ 3451.853385][ T6945]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3451.858979][ T6945]  ? debug_object_free+0x360/0x360
[ 3451.864136][ T6945]  ? lockdep_init_map_type+0x21e/0x810
[ 3451.869640][ T6945]  ? __hrtimer_init+0x145/0x280
[ 3451.874542][ T6945]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3451.880329][ T6945]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3451.887077][ T6945]  hwsim_new_radio_nl+0xad6/0x1210
[ 3451.892235][ T6945]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3451.898186][ T6945]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3451.905594][ T6945]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3451.912931][ T6945]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3451.919123][ T6945]  ? genl_start+0x660/0x660
[ 3451.923671][ T6945]  ? ns_capable+0xe0/0x110
[ 3451.928144][ T6945]  genl_rcv_msg+0x4ff/0x7e0
[ 3451.932684][ T6945]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3451.939049][ T6945]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3451.944989][ T6945]  ? lock_downgrade+0x690/0x690
[ 3451.949891][ T6945]  netlink_rcv_skb+0x165/0x440
[ 3451.954710][ T6945]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3451.961073][ T6945]  ? netlink_ack+0x1360/0x1360
[ 3451.965918][ T6945]  genl_rcv+0x28/0x40
[ 3451.969945][ T6945]  netlink_unicast+0x547/0x7f0
[ 3451.974760][ T6945]  ? netlink_attachskb+0x890/0x890
[ 3451.979912][ T6945]  ? __virt_addr_valid+0x61/0x2e0
[ 3451.984981][ T6945]  ? __phys_addr_symbol+0x30/0x70
[ 3451.990053][ T6945]  ? __check_object_size+0x323/0x730
[ 3451.995382][ T6945]  netlink_sendmsg+0x925/0xe30
[ 3452.000205][ T6945]  ? netlink_unicast+0x7f0/0x7f0
[ 3452.005290][ T6945]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3452.010626][ T6945]  ? netlink_unicast+0x7f0/0x7f0
[ 3452.015613][ T6945]  sock_sendmsg+0xde/0x190
[ 3452.020076][ T6945]  ____sys_sendmsg+0x71c/0x900
[ 3452.024886][ T6945]  ? copy_msghdr_from_user+0xfc/0x150
[ 3452.030303][ T6945]  ? kernel_sendmsg+0x50/0x50
[ 3452.035048][ T6945]  ___sys_sendmsg+0x110/0x1b0
[ 3452.039764][ T6945]  ? do_recvmmsg+0x6e0/0x6e0
[ 3452.044390][ T6945]  ? __fget_files+0x248/0x480
[ 3452.049107][ T6945]  ? lock_downgrade+0x690/0x690
[ 3452.053998][ T6945]  ? futex_wake_mark+0x1a0/0x1a0
[ 3452.058992][ T6945]  ? __fget_files+0x26a/0x480
[ 3452.063714][ T6945]  ? __fget_light+0xe5/0x270
[ 3452.068353][ T6945]  __sys_sendmsg+0xf7/0x1c0
[ 3452.072907][ T6945]  ? __sys_sendmsg_sock+0x40/0x40
[ 3452.077971][ T6945]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3452.083935][ T6945]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3452.089870][ T6945]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3452.095111][ T6945]  do_syscall_64+0x39/0xb0
[ 3452.099662][ T6945]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3452.105599][ T6945] RIP: 0033:0x7f359468c169
[ 3452.110043][ T6945] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3452.129687][ T6945] RSP: 002b:00007f35953a6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3452.138146][ T6945] RAX: ffffffffffffffda RBX: 00007f35947abf80 RCX: 00007f359468c169
[ 3452.146150][ T6945] RDX: 0000000000020000 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3452.154155][ T6945] RBP: 00007f35946e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3452.162154][ T6945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3452.170154][ T6945] R13: 00007fffddd375cf R14: 00007f35953a6300 R15: 0000000000022000
[ 3452.178177][ T6945]  </TASK>
07:14:45 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x88a8ffff, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:45 executing program 5:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x6000000000000000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x28, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x25}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r1}]}, 0x28}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0x10, 0x0, 0x0)

07:14:45 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffff}}}}]}, 0x78}}, 0x131c)

[ 3452.225441][ T6968] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3452.241718][ T6968] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[ 3452.254341][ T6968] CPU: 0 PID: 6968 Comm: syz-executor.4 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3452.264734][ T6968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3452.274817][ T6968] Call Trace:
[ 3452.278123][ T6968]  <TASK>
[ 3452.281079][ T6968]  dump_stack_lvl+0x136/0x150
[ 3452.285799][ T6968]  sysfs_warn_dup+0x80/0xa0
[ 3452.290346][ T6968]  sysfs_do_create_link_sd+0x11e/0x140
[ 3452.295842][ T6968]  sysfs_create_link+0x63/0xc0
[ 3452.300646][ T6968]  device_add+0x5e5/0x1c50
[ 3452.305112][ T6968]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 3452.311969][ T6968]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3452.317873][ T6968]  ? ieee80211_set_bitrate_flags+0x222/0x660
[ 3452.323899][ T6968]  wiphy_register+0x1f88/0x2ae0
[ 3452.328790][ T6968]  ? wiphy_unregister+0xb40/0xb40
[ 3452.333836][ T6968]  ? minstrel_ht_alloc+0x4a9/0x9b0
[ 3452.338980][ T6968]  ? ieee80211_init_rate_ctrl_alg+0x83/0x640
[ 3452.344997][ T6968]  ieee80211_register_hw+0x23c1/0x40e0
[ 3452.350501][ T6968]  ? ieee80211_ifa6_changed+0x3f0/0x3f0
[ 3452.356069][ T6968]  ? net_generic+0xd9/0x2a0
[ 3452.360599][ T6968]  ? debug_object_free+0x360/0x360
[ 3452.365735][ T6968]  ? lockdep_init_map_type+0x21e/0x810
[ 3452.371224][ T6968]  ? __hrtimer_init+0x145/0x280
[ 3452.376108][ T6968]  mac80211_hwsim_new_radio+0x26c1/0x4c10
[ 3452.381868][ T6968]  ? mac80211_hwsim_unassign_vif_chanctx+0x350/0x350
[ 3452.388578][ T6968]  hwsim_new_radio_nl+0xad6/0x1210
[ 3452.393717][ T6968]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3452.399645][ T6968]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3452.407040][ T6968]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3452.414346][ T6968]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3452.420518][ T6968]  ? genl_start+0x660/0x660
[ 3452.425046][ T6968]  ? ns_capable+0xe0/0x110
[ 3452.429493][ T6968]  genl_rcv_msg+0x4ff/0x7e0
[ 3452.434013][ T6968]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3452.440362][ T6968]  ? mac80211_hwsim_new_radio+0x4c10/0x4c10
[ 3452.446282][ T6968]  ? preempt_schedule_notrace_thunk+0x1a/0x20
[ 3452.452385][ T6968]  netlink_rcv_skb+0x165/0x440
[ 3452.457181][ T6968]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3452.463530][ T6968]  ? netlink_ack+0x1360/0x1360
[ 3452.468349][ T6968]  genl_rcv+0x28/0x40
[ 3452.472357][ T6968]  netlink_unicast+0x547/0x7f0
[ 3452.477150][ T6968]  ? netlink_attachskb+0x890/0x890
[ 3452.482287][ T6968]  ? __virt_addr_valid+0x61/0x2e0
[ 3452.487336][ T6968]  ? __phys_addr_symbol+0x30/0x70
[ 3452.492399][ T6968]  ? __check_object_size+0x323/0x730
[ 3452.497715][ T6968]  netlink_sendmsg+0x925/0xe30
[ 3452.502513][ T6968]  ? netlink_unicast+0x7f0/0x7f0
[ 3452.507488][ T6968]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3452.512797][ T6968]  ? netlink_unicast+0x7f0/0x7f0
[ 3452.517847][ T6968]  sock_sendmsg+0xde/0x190
[ 3452.522293][ T6968]  ____sys_sendmsg+0x71c/0x900
[ 3452.527082][ T6968]  ? copy_msghdr_from_user+0xfc/0x150
[ 3452.532473][ T6968]  ? kernel_sendmsg+0x50/0x50
[ 3452.537195][ T6968]  ___sys_sendmsg+0x110/0x1b0
[ 3452.541889][ T6968]  ? do_recvmmsg+0x6e0/0x6e0
[ 3452.546497][ T6968]  ? __fget_files+0x248/0x480
[ 3452.551189][ T6968]  ? lock_downgrade+0x690/0x690
[ 3452.556069][ T6968]  ? futex_wake_mark+0x1a0/0x1a0
[ 3452.561041][ T6968]  ? __fget_files+0x26a/0x480
[ 3452.565747][ T6968]  ? __fget_light+0xe5/0x270
[ 3452.570357][ T6968]  __sys_sendmsg+0xf7/0x1c0
[ 3452.574876][ T6968]  ? __sys_sendmsg_sock+0x40/0x40
[ 3452.579921][ T6968]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3452.585859][ T6968]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3452.591774][ T6968]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3452.596995][ T6968]  do_syscall_64+0x39/0xb0
[ 3452.601456][ T6968]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3452.607383][ T6968] RIP: 0033:0x7fb4bf08c169
[ 3452.611808][ T6968] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3452.631428][ T6968] RSP: 002b:00007fb4bfed7168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3452.639862][ T6968] RAX: ffffffffffffffda RBX: 00007fb4bf1abf80 RCX: 00007fb4bf08c169
[ 3452.647844][ T6968] RDX: 000000000005f0ea RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3452.655822][ T6968] RBP: 00007fb4bf0e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3452.663802][ T6968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
07:14:45 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xfffffff1, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x0, 0x9effffff, 0x0, 0x0, 0x0, 0x0, 0x48}}}]}, 0x78}}, 0x131c)

07:14:45 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0eb)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3452.671786][ T6968] R13: 00007ffdcfc162af R14: 00007fb4bfed7300 R15: 0000000000022000
[ 3452.679806][ T6968]  </TASK>
[ 3452.693997][ T6971] netlink: 252 bytes leftover after parsing attributes in process `syz-executor.3'.
07:14:45 executing program 4:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0xf1650014, &(0x7f0000000000)=[{&(0x7f0000000180)={0x114, 0x29, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x2f}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be1fd750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bb2fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5300"]}]}, 0x114}], 0x1}, 0x5f0ec)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x83, &(0x7f0000000400)=""/131, 0x40f00, 0x15, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x4, 0x0, 0x4, 0x1ff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getpid()
sendmsg$netlink(r1, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140))
getuid()
getpid()
accept4$x25(0xffffffffffffffff, &(0x7f0000001a40)={0x9, @remote}, &(0x7f0000001a80)=0x12, 0x800)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000026c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)={0x20, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4, 0x0, 0x0, @pid=r2}]}, 0x20}], 0x1}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="260002"], 0xd)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[ 3452.716851][ T6971] general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN
[ 3452.728618][ T6971] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[ 3452.737047][ T6971] CPU: 1 PID: 6971 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-01689-g99676a576641 #0
[ 3452.747397][ T6971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
[ 3452.757469][ T6971] RIP: 0010:jhash+0x339/0x610
[ 3452.762191][ T6971] Code: 83 fd 01 0f 84 5f ff ff ff eb de 83 fd 05 74 3a e8 dc e4 72 fd 48 8d 7b 05 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 96 02 00 00
[ 3452.781834][ T6971] RSP: 0018:ffffc900045ff298 EFLAGS: 00010202
[ 3452.787920][ T6971] RAX: dffffc0000000000 RBX: 0000000000000004 RCX: ffffc9000b462000
[ 3452.795888][ T6971] RDX: 0000000000000001 RSI: ffffffff840ff8e4 RDI: 0000000000000009
[ 3452.803865][ T6971] RBP: 0000000000000006 R08: 0000000000000005 R09: 000000000000000c
[ 3452.811854][ T6971] R10: 0000000000000006 R11: 0000000000000000 R12: 00000000f526852d
[ 3452.819838][ T6971] R13: 00000000d3d44422 R14: 00000000d3d44422 R15: 00000000d3d44422
[ 3452.827810][ T6971] FS:  00007f83793f0700(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 3452.836744][ T6971] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3452.843329][ T6971] CR2: 0000001b32521000 CR3: 0000000029b3c000 CR4: 00000000003506e0
[ 3452.851328][ T6971] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 3452.859308][ T6971] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 3452.867278][ T6971] Call Trace:
[ 3452.870559][ T6971]  <TASK>
[ 3452.873491][ T6971]  get_hwsim_data_ref_from_addr+0xb9/0x600
[ 3452.879327][ T6971]  hwsim_pmsr_report_nl+0xe7/0xd50
[ 3452.884438][ T6971]  ? syslog_print_all+0x3a0/0x3a0
[ 3452.889504][ T6971]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3452.894701][ T6971]  ? get_hwsim_data_ref_from_addr+0x600/0x600
[ 3452.900761][ T6971]  ? rcu_is_watching+0x12/0xb0
[ 3452.905541][ T6971]  ? do_trace_netlink_extack+0x155/0x190
[ 3452.911215][ T6971]  ? __nla_validate_parse+0x2e4/0x25e0
[ 3452.916705][ T6971]  ? nla_get_range_signed+0x520/0x520
[ 3452.922075][ T6971]  ? __kmem_cache_alloc_node+0x1b0/0x320
[ 3452.927708][ T6971]  ? __nla_parse+0x41/0x50
[ 3452.932144][ T6971]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290
[ 3452.939511][ T6971]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290
[ 3452.946803][ T6971]  genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 3452.952995][ T6971]  ? genl_start+0x660/0x660
[ 3452.957488][ T6971]  ? __radix_tree_lookup+0x215/0x2a0
[ 3452.962766][ T6971]  genl_rcv_msg+0x4ff/0x7e0
[ 3452.967277][ T6971]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3452.973748][ T6971]  ? get_hwsim_data_ref_from_addr+0x600/0x600
[ 3452.979842][ T6971]  netlink_rcv_skb+0x165/0x440
[ 3452.984617][ T6971]  ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 3452.990965][ T6971]  ? netlink_ack+0x1360/0x1360
[ 3452.995771][ T6971]  genl_rcv+0x28/0x40
[ 3452.999749][ T6971]  netlink_unicast+0x547/0x7f0
[ 3453.004524][ T6971]  ? netlink_attachskb+0x890/0x890
[ 3453.009666][ T6971]  ? __virt_addr_valid+0x61/0x2e0
[ 3453.014703][ T6971]  ? __phys_addr_symbol+0x30/0x70
[ 3453.019760][ T6971]  ? __check_object_size+0x323/0x730
[ 3453.025085][ T6971]  netlink_sendmsg+0x925/0xe30
[ 3453.029893][ T6971]  ? netlink_unicast+0x7f0/0x7f0
[ 3453.034866][ T6971]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3453.040165][ T6971]  ? netlink_unicast+0x7f0/0x7f0
[ 3453.045120][ T6971]  sock_sendmsg+0xde/0x190
[ 3453.049578][ T6971]  ____sys_sendmsg+0x71c/0x900
[ 3453.054360][ T6971]  ? copy_msghdr_from_user+0xfc/0x150
[ 3453.059760][ T6971]  ? kernel_sendmsg+0x50/0x50
[ 3453.064454][ T6971]  ___sys_sendmsg+0x110/0x1b0
[ 3453.069153][ T6971]  ? do_recvmmsg+0x6e0/0x6e0
[ 3453.073752][ T6971]  ? __fget_files+0x248/0x480
[ 3453.078446][ T6971]  ? lock_downgrade+0x690/0x690
[ 3453.083299][ T6971]  ? futex_wake_mark+0x1a0/0x1a0
[ 3453.088267][ T6971]  ? __fget_files+0x26a/0x480
[ 3453.092938][ T6971]  ? __fget_light+0xe5/0x270
[ 3453.097522][ T6971]  __sys_sendmsg+0xf7/0x1c0
[ 3453.102015][ T6971]  ? __sys_sendmsg_sock+0x40/0x40
[ 3453.107051][ T6971]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3453.112998][ T6971]  ? syscall_enter_from_user_mode+0x26/0x80
[ 3453.118907][ T6971]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3453.124147][ T6971]  do_syscall_64+0x39/0xb0
[ 3453.128592][ T6971]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3453.134495][ T6971] RIP: 0033:0x7f837868c169
[ 3453.139006][ T6971] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3453.158612][ T6971] RSP: 002b:00007f83793f0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3453.167031][ T6971] RAX: ffffffffffffffda RBX: 00007f83787abf80 RCX: 00007f837868c169
[ 3453.175022][ T6971] RDX: 0000000000000800 RSI: 0000000020001ac0 RDI: 0000000000000004
[ 3453.182984][ T6971] RBP: 00007f83786e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 3453.190950][ T6971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3453.198919][ T6971] R13: 00007ffe55b4f6af R14: 00007f83793f0300 R15: 0000000000022000
[ 3453.206904][ T6971]  </TASK>
[ 3453.209928][ T6971] Modules linked in:
[ 3453.215443][ T6971] ---[ end trace 0000000000000000 ]---
[ 3453.223731][ T6971] RIP: 0010:jhash+0x339/0x610
[ 3453.228611][ T6971] Code: 83 fd 01 0f 84 5f ff ff ff eb de 83 fd 05 74 3a e8 dc e4 72 fd 48 8d 7b 05 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 96 02 00 00
[ 3453.249307][ T6971] RSP: 0018:ffffc900045ff298 EFLAGS: 00010202
[ 3453.255634][ T6971] RAX: dffffc0000000000 RBX: 0000000000000004 RCX: ffffc9000b462000
[ 3453.263832][ T6971] RDX: 0000000000000001 RSI: ffffffff840ff8e4 RDI: 0000000000000009
[ 3453.271940][ T6971] RBP: 0000000000000006 R08: 0000000000000005 R09: 000000000000000c
[ 3453.280095][ T6971] R10: 0000000000000006 R11: 0000000000000000 R12: 00000000f526852d
[ 3453.288243][ T6971] R13: 00000000d3d44422 R14: 00000000d3d44422 R15: 00000000d3d44422
[ 3453.296434][ T6971] FS:  00007f83793f0700(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 3453.305612][ T6971] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3453.312319][ T6971] CR2: 0000001b32829000 CR3: 0000000029b3c000 CR4: 00000000003506f0
[ 3453.321484][ T6971] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 3453.331984][ T6971] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 3453.340218][ T6971] Kernel panic - not syncing: Fatal exception
[ 3453.346454][ T6971] Kernel Offset: disabled
[ 3453.350775][ T6971] Rebooting in 86400 seconds..