last executing test programs:

4.996129771s ago: executing program 3 (id=4178):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sendmsg$inet(r0, 0x0, 0x0)
socket$kcm(0x2, 0x3, 0x106)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = getpid()
perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x88, 0xf9, 0x0, 0x5, 0x0, 0x8, 0x200, 0x6, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x1, @perf_config_ext={0x1, 0x7}, 0x102022, 0x2, 0x8, 0x0, 0x3, 0x9, 0xd0, 0x0, 0x80, 0x0, 0x8001}, r2, 0x5, r1, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x468}, 0x20000000)
socket$kcm(0x2f, 0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000580)=ANY=[@ANYBLOB="364000001a00913a09b51bcb"], 0xfe33)
r4 = socket$kcm(0xa, 0x5, 0x0)
r5 = socket$kcm(0xa, 0x5, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x8916, &(0x7f0000000000)={r5})

4.505965078s ago: executing program 3 (id=4182):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
close(0xffffffffffffffff)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r0=>0x0, <r1=>0x0})
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0xfffff801, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000000)={<r2=>0x0, <r3=>0x0})
close(r2)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f0000000180), 0x127)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r4=>0x0, <r5=>0x0})
close(r4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r5, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
close(r3)

4.316510381s ago: executing program 0 (id=4183):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000010c0)={0x11, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x40f00, 0x22, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000d40)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000d80)={0x2, 0x4, 0xfff, 0xbe72}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000001040)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000001080)=[{0x4, 0x3, 0xa, 0xc}, {0x0, 0x1, 0x3, 0xb}, {0x2, 0x1, 0x2, 0x6}], 0x10, 0x8001, @void, @value}, 0x94)
bpf$MAP_CREATE(0xb00000000000000, &(0x7f0000004080)=@base={0x8, 0x4, 0x4, 0xbf22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x3)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(r1)
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0xff, 0x60, 0x3, 0x9, 0x0, 0x3fc, 0x1864c, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0xf01, 0x1, @perf_config_ext={0xc96, 0x5}, 0x105020, 0x100080004, 0x4, 0x3, 0x80, 0x2, 0xa0, 0x0, 0x7ffffffc, 0x0, 0x8}, 0xffffffffffffffff, 0xd, r1, 0x9)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x102)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@cgroup=r3, 0x13, 0x0, 0x8, 0x0, 0x90, 0x0, 0x0, 0x0, 0x0}, 0x40)

4.315867271s ago: executing program 3 (id=4184):
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
syz_clone(0x4d100000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x18000000000002a0, 0x12, 0x0, &(0x7f0000001240)="b9ff03076804268c989e14f088a8657986dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
perf_event_open(0x0, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfe33)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_lsm={0x10, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="7910480000000000790030000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1, @perf_bp={&(0x7f0000000240), 0x4}, 0x1400, 0xfffffffffffffffc, 0x2, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xaffffff7fffffffb, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x3, 0x84)

4.226726142s ago: executing program 1 (id=4186):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="020000000400000006000000050000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r1=>0x0, <r2=>0x0})
close(r1)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r3=>0x0, 0x0})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000001080)={0x6, 0x80, 0x80, 0x0, 0x0, 0x0, 0x7602, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000001080)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7602, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x430, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

3.551519251s ago: executing program 0 (id=4187):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0xe, &(0x7f0000001580)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9ffc, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000a00)={0x0, 0x0, 0x0}, 0x400c004)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'sit0\x00'})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8946, &(0x7f0000000080))
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfc474, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_bp={0x0, 0x8}, 0x1004, 0x4, 0x1, 0x7, 0x94da, 0x0, 0xffff}, 0x0, 0xfffffff7ffffffff, 0xffffffffffffffff, 0x2)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
openat$cgroup_ro(r2, &(0x7f0000000100)='cpuset.memory_pressure_enabled\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events.local\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000400)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$ENABLE_STATS(0x20, &(0x7f0000000000), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000c00)=ANY=[@ANYBLOB="61128c000000000061134c0000000000bf20000000000000070000000f0000003d030100000000009500ffb1000000006926000000000000bf670000000000001500fdff0fff52e84407000009300000240600000ee60000bf050000000000001c63000000000000650700000200000007070000fbffffff1f75000000000000bf54000000000000070400000410f900bd430100000000009500000000000000050000000000000095000000000000001c15a3ce747c693a74b62fd0758b15f09429c09074bc4b2bd2dc480dd7a064b8673e2060162cc43bcba1060999eef9d60bb39d0af449deaa27ea949e8f9000d885deea2783835e29eba8546fc020c1966f8b5f32b095f566edf66b7751828da9dbd5b996b9e8d897e461c01c697671d100000000400036c17fb01dde179c1f2686ee970d6482a2e71a55d6ebe700b3be005e47ef55e0dd81244b18590e000000000000356d82e43407a6d7fa94b21002f06cd247b126b6349ab62d7b07ba0a71a72145edade9941f49f300a8c8913e0e4ea9e4c77740ab3312edee62a4dc2fc85755d387bfa1bc9b49da28724ba9cd79fbee8f97af876d0e30c19555ffdd7d73815b459f4763c6222175c974be2f76fb5f330b015a68587a75c013000000000000000000000003000000000000d6ddc46e58eff8f4fbadfc6a3af8123b7f42407107000cdc9d7820c4eb67cc0f8b5fe9258eeacb5776aebbab3d5c55020000006082778366dadfc36029633e0514cbcee1f3928970bde148c940434f33acd377cbad17673b2d30b6339255c98eba97efb4e9ac1f11be815dd6045592edcbee7f253ec74c7c1313505bd7ff8fd58b3a6569c91dbdef1df585aeaea7346a2a65caee5c85f9eddeeeee3c8a2e523c864ac430eb47cb4d0c8767b9d4125661b5a1a170c04b64da3a99ddb93bf14fae3ca2d1e882375b8dbac83978e136c34f90b33cc0eeb57debcfe26589efc08124d5d62a7e593c9738a50171adf051ea4f07e7e7e770c2016eeacbe8511afffffbea75759a1ea5404f5453c0b5c46c9700808c096cf8cf5223f341cb003841b5cd224c1b381d56afebe9f99a00e3cd94dc0bb7af9e8709db487cc4d9b3b96723d69d512ddd57b0dee9b9f6ae80a502cce352098603e75414c91fce6c86287945bd8d258442760000ff010000000000000000000000300807f2f3906c1d45d05ba9df828d35376fed399fa311ff63a34f0c0b82b4f2825e729eb9b7f4c9ab3be5bc011ff29904bbc424880247fabe7325a6e8d139e99d2b2fbf7e84fca3b21c78840b858ce900a4eb9c2b8b9b7fb664d2aeac991ca09b1afc0ef7aed4541a2f7275130a9fa3853481c81e919c000000000000000000000000b1e0e4b55e0d5d8c657b4853fc18ec43be33e5f971cceda04d95c87489910ce692ee55c536d1671bffd4c9b98efb741b13f0ab26ac191c74"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

3.404204224s ago: executing program 1 (id=4189):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r1, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0)
r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x5, r2, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000580)=ANY=[@ANYBLOB="364000001a00913a09b51bcb3cc5a05f0a"], 0xfe33)
r4 = socket$kcm(0xa, 0x5, 0x0)
r5 = socket$kcm(0xa, 0x5, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x8936, &(0x7f0000000000)={r5})
sendmsg$kcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000500)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140643000000000e000a001000000086419820dd", 0x2d}], 0x1}, 0x0)

3.365390474s ago: executing program 2 (id=4190):
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
syz_clone(0x4d100000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x18000000000002a0, 0x12, 0x0, &(0x7f0000001240)="b9ff03076804268c989e14f088a8657986dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
perf_event_open(0x0, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfe33)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_lsm={0x10, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="7910480000000000790030000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1, @perf_bp={&(0x7f0000000240), 0x4}, 0x1400, 0xfffffffffffffffc, 0x2, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xaffffff7fffffffb, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x84)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x890b, &(0x7f0000000100))

3.124097157s ago: executing program 1 (id=4191):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r4, 0x5, 0x0, 0x0, @void, @value}, 0x10)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r3}, &(0x7f00000006c0), &(0x7f0000000700)=r2}, 0x20)
sendmsg$inet(r1, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f00000004000000040000001200", @ANYRES32=0x0], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='&\x00'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)

2.992837359s ago: executing program 3 (id=4192):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = socket$kcm(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000004680)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f92624fc60", 0x14}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x39, &(0x7f0000000100)=r1, 0x120)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r3, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x4, [{0x0, 0x3}]}, @ptr, @restrict={0x0, 0x0, 0x0, 0x10, 0x2}]}}, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)

2.784088572s ago: executing program 2 (id=4193):
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
syz_clone(0x4d100000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x18000000000002a0, 0x12, 0x0, &(0x7f0000001240)="b9ff03076804268c989e14f088a8657986dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1180015000600142603600e1209000a0044000000a80016000a0001", 0x37}], 0x1}, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfe33)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_lsm={0x10, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="7910480000000000790030000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1, @perf_bp={&(0x7f0000000240), 0x4}, 0x1400, 0xfffffffffffffffc, 0x2, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xaffffff7fffffffb, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="000000000000000002"], 0x48)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x890b, &(0x7f0000000100))

2.590787495s ago: executing program 3 (id=4194):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sendmsg$inet(r0, 0x0, 0x0)
socket$kcm(0x2, 0x3, 0x106)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = getpid()
perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x88, 0xf9, 0x0, 0x5, 0x0, 0x8, 0x200, 0x6, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x1, @perf_config_ext={0x1, 0x7}, 0x102022, 0x2, 0x8, 0x0, 0x3, 0x9, 0xd0, 0x0, 0x80, 0x0, 0x8001}, r2, 0x5, r1, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x468}, 0x20000000)
socket$kcm(0x2f, 0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000580)=ANY=[@ANYBLOB="364000001a00913a09b51bcb"], 0xfe33)
r4 = socket$kcm(0xa, 0x5, 0x0)
r5 = socket$kcm(0xa, 0x5, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x8916, &(0x7f0000000000)={r5})

2.383001158s ago: executing program 0 (id=4195):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x2, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="050000000400000004000000"], 0x48)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r1}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0x100})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x2a, &(0x7f0000000100)=r3, 0x4)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f0, &(0x7f0000000080))

2.279571309s ago: executing program 0 (id=4197):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000010c0)={0x11, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x40f00, 0x22, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000d40)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000d80)={0x2, 0x4, 0xfff, 0xbe72}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000001040)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000001080)=[{0x4, 0x3, 0xa, 0xc}, {0x0, 0x1, 0x3, 0xb}, {0x2, 0x1, 0x2, 0x6}], 0x10, 0x8001, @void, @value}, 0x94)
bpf$MAP_CREATE(0xb00000000000000, &(0x7f0000004080)=@base={0x8, 0x4, 0x4, 0xbf22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x3)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(r1)
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0xff, 0x60, 0x3, 0x9, 0x0, 0x3fc, 0x1864c, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0xf01, 0x1, @perf_config_ext={0xc96, 0x5}, 0x105020, 0x100080004, 0x4, 0x3, 0x80, 0x2, 0xa0, 0x0, 0x7ffffffc, 0x0, 0x8}, 0xffffffffffffffff, 0xd, r1, 0x9)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x102)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@cgroup=r3, 0x13, 0x0, 0x8, 0x0, 0x90, 0x0, 0x0, 0x0, 0x0}, 0x40)

2.18704264s ago: executing program 2 (id=4198):
socket$kcm(0x10, 0x2, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000980)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xd, 0x4, 0x4, 0x1, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r1}, &(0x7f0000000840), &(0x7f0000000880)=r0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000e80)={r1, &(0x7f0000000d40), 0x0}, 0x20)
perf_event_open(0x0, 0x0, 0x10, 0xffffffffffffffff, 0x2)
r2 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r2, 0x29, 0x23, 0x0, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80002, 0x0, 0x0, 0x0, 0x0, 0x9}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
socket$kcm(0x25, 0x2, 0x0)
close(0xffffffffffffffff)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000029000b05d25a806f8c6394f90424fc60", 0x14}], 0x1}, 0x0)

2.18681735s ago: executing program 3 (id=4199):
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
syz_clone(0x4d100000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x18000000000002a0, 0x12, 0x0, &(0x7f0000001240)="b9ff03076804268c989e14f088a8657986dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(0x0, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1180015000600142603600e1209000a0044000000a80016000a0001", 0x37}], 0x1}, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfe33)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_lsm={0x10, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="7910480000000000790030000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1, @perf_bp={&(0x7f0000000240), 0x4}, 0x1400, 0xfffffffffffffffc, 0x2, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xaffffff7fffffffb, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="000000000000000002"], 0x48)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x890b, &(0x7f0000000100))

2.074726482s ago: executing program 4 (id=4200):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x806, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x1e, 0x1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r1 = socket$kcm(0x1e, 0x1, 0x0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x8e}}, &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x3, &(0x7f0000000000)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
sendmsg$kcm(r1, &(0x7f0000000100)={&(0x7f0000001540)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x0, 0x0, 0x1}}, 0x80, 0x0}, 0x4000000)

2.067896752s ago: executing program 1 (id=4202):
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001240)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socket$kcm(0xa, 0x3, 0x3a)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x806, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0f0000000400000004000000120006e9"], 0x50)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/uts\x00')
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfe33)
socket$kcm(0x2, 0x3, 0x2)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001300)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000002000000000000000000001304000000000000000100000500110000000000000300000000000000000000000000000901"], 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000080000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="5400020029000b05d25a806f8c6394f90424fc602f0011002f2f0100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

1.765857616s ago: executing program 0 (id=4203):
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
syz_clone(0x4d100000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x18000000000002a0, 0x12, 0x0, &(0x7f0000001240)="b9ff03076804268c989e14f088a8657986dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
perf_event_open(0x0, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfe33)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_lsm={0x10, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="7910480000000000790030000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1, @perf_bp={&(0x7f0000000240), 0x4}, 0x1400, 0xfffffffffffffffc, 0x2, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xaffffff7fffffffb, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x3, 0x84)

1.765081376s ago: executing program 4 (id=4204):
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
syz_clone(0x4d100000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x18000000000002a0, 0x12, 0x0, &(0x7f0000001240)="b9ff03076804268c989e14f088a8657986dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
perf_event_open(0x0, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1180015000600142603600e1209000a0044000000a80016000a0001", 0x37}], 0x1}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfe33)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_lsm={0x10, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="7910480000000000790030000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1, @perf_bp={&(0x7f0000000240), 0x4}, 0x1400, 0xfffffffffffffffc, 0x2, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xaffffff7fffffffb, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x2, 0x3, 0x84)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x890b, &(0x7f0000000100))

1.48434059s ago: executing program 2 (id=4205):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = socket$kcm(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000004680)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f92624fc60", 0x14}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x39, &(0x7f0000000100)=r1, 0x120)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r3, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x4, [{0x0, 0x3}]}, @ptr, @restrict={0x0, 0x0, 0x0, 0x10, 0x2}]}}, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)

974.923117ms ago: executing program 1 (id=4206):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x400000000000}, 0x0, 0x0, 0x0, 0x0, 0xf60}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x4001, @loopback}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x2000488c)
setsockopt$sock_attach_bpf(r0, 0x6, 0xa, &(0x7f0000000500), 0x4)
socket$kcm(0x29, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000840)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x38, 0x38, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x4}, @func_proto, @func_proto={0x2, 0x0, 0x0, 0xc, 0x2}, @var={0x2, 0x0, 0x0, 0xe, 0x3}]}, {0x0, [0x0, 0x61]}}, 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
socket$kcm(0xa, 0x2, 0x73)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(r1)
r2 = openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)={@cgroup=r3, 0xffffffffffffffff, 0x14, 0x0, 0x4000, @void, @value}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001a80)}], 0x1}, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6)

943.967377ms ago: executing program 4 (id=4207):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x806, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x1e, 0x1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r1 = socket$kcm(0x1e, 0x1, 0x0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x0, 0x0, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x8e}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x6b, 0x11, 0x32}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
sendmsg$kcm(r1, &(0x7f0000000100)={&(0x7f0000001540)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x0, 0x0, 0x1}}, 0x80, 0x0}, 0x4000000)

850.738579ms ago: executing program 2 (id=4208):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x2, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="05000000040000000400000004"], 0x48)
perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r1}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0x100})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x2a, &(0x7f0000000100)=r3, 0x4)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f0, &(0x7f0000000080))

772.54252ms ago: executing program 1 (id=4209):
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
syz_clone(0x4d100000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x18000000000002a0, 0x12, 0x0, &(0x7f0000001240)="b9ff03076804268c989e14f088a8657986dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
perf_event_open(0x0, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1180015000600142603600e1209000a0044000000a80016000a0001", 0x37}], 0x1}, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_lsm={0x10, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="7910480000000000790030000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1, @perf_bp={&(0x7f0000000240), 0x4}, 0x1400, 0xfffffffffffffffc, 0x2, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xaffffff7fffffffb, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x2, 0x3, 0x84)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x890b, &(0x7f0000000100))

718.502121ms ago: executing program 0 (id=4210):
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
syz_clone(0x4d100000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x18000000000002a0, 0x12, 0x0, &(0x7f0000001240)="b9ff03076804268c989e14f088a8657986dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1180015000600142603600e1209000a0044000000a80016000a0001", 0x37}], 0x1}, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfe33)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_lsm={0x10, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="7910480000000000790030000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1, @perf_bp={&(0x7f0000000240), 0x4}, 0x1400, 0xfffffffffffffffc, 0x2, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xaffffff7fffffffb, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="000000000000000002"], 0x48)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x890b, &(0x7f0000000100))

589.407772ms ago: executing program 4 (id=4211):
r0 = socket$kcm(0x10, 0x2, 0x4)
close(r0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="5c000000130025cc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514000cc00800250007000200060019c00164bc24eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x806, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x1e, 0x1, 0x0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r2 = socket$kcm(0x1e, 0x1, 0x0)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
perf_event_open(0x0, 0x0, 0x3, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r3 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
sendmsg$kcm(r2, 0x0, 0x4000000)

522.882993ms ago: executing program 2 (id=4212):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r4, 0x5, 0x0, 0x0, @void, @value}, 0x10)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r3}, &(0x7f00000006c0), &(0x7f0000000700)=r2}, 0x20)
sendmsg$inet(r1, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f00000004000000040000001200", @ANYRES32=0x0], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='&\x00'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)

381.520025ms ago: executing program 4 (id=4213):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000010c0)={0x11, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x40f00, 0x22, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000d40)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000d80)={0x2, 0x4, 0xfff, 0xbe72}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000001040)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000001080)=[{0x4, 0x3, 0xa, 0xc}, {0x0, 0x1, 0x3, 0xb}, {0x2, 0x1, 0x2, 0x6}], 0x10, 0x8001, @void, @value}, 0x94)
bpf$MAP_CREATE(0xb00000000000000, &(0x7f0000004080)=@base={0x8, 0x4, 0x4, 0xbf22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x3)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(r1)
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0xff, 0x60, 0x3, 0x9, 0x0, 0x3fc, 0x1864c, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0xf01, 0x1, @perf_config_ext={0xc96, 0x5}, 0x105020, 0x100080004, 0x4, 0x3, 0x80, 0x2, 0xa0, 0x0, 0x7ffffffc, 0x0, 0x8}, 0xffffffffffffffff, 0xd, r1, 0x9)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x102)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@cgroup=r3, 0x13, 0x0, 0x8, 0x0, 0x90, 0x0, 0x0, 0x0, 0x0}, 0x40)

0s ago: executing program 4 (id=4214):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$kcm(0x11, 0x200000000000002, 0x300)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x62, 0x1, 0x0, 0x0, 0x0, 0xce, 0x8002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0, 0xa}}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x4, 0xfff, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020006007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x1, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1806000000000300000000000000c29c18120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000280), &(0x7f00000002c0)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xe, 0x0, &(0x7f0000000000)="43227504000000b32415f73227b2", 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

kernel console output (not intermixed with test programs):

 RAX: ffffffffffffffda RBX: 00007fcbf75b5fa0 RCX: 00007fcbf738e969
[  750.207544][T14739] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  750.215576][T14739] RBP: 00007fcbf7410ab1 R08: 0000000000000000 R09: 0000000000000000
[  750.223587][T14739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  750.231598][T14739] R13: 0000000000000000 R14: 00007fcbf75b5fa0 R15: 00007ffdc4c8d508
[  750.239714][T14739]  </TASK>
[  750.530812][T14749] delete_channel: no stack
[  750.559150][T14745] device syzkaller0 entered promiscuous mode
[  750.800433][T14760] netlink: 'syz.1.3886': attribute type 10 has an invalid length.
[  750.852200][T14760] netlink: 152 bytes leftover after parsing attributes in process `syz.1.3886'.
[  751.068996][T14769] netlink: 'syz.3.3890': attribute type 10 has an invalid length.
[  751.091224][T14769] netlink: 152 bytes leftover after parsing attributes in process `syz.3.3890'.
[  751.494252][T14779] delete_channel: no stack
[  751.652202][T14783] netlink: 122896 bytes leftover after parsing attributes in process `syz.2.3895'.
[  751.764898][T14783] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  751.793774][T14783] CPU: 1 PID: 14783 Comm: syz.2.3895 Not tainted 6.1.139-syzkaller #0
[  751.802008][T14783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  751.812122][T14783] Call Trace:
[  751.815439][T14783]  <TASK>
[  751.818408][T14783]  dump_stack_lvl+0x168/0x22e
[  751.823137][T14783]  ? show_regs_print_info+0x12/0x12
[  751.828368][T14783]  ? load_image+0x3b0/0x3b0
[  751.832902][T14783]  sysfs_warn_dup+0x8a/0xa0
[  751.837440][T14783]  sysfs_do_create_link_sd+0xc0/0x110
[  751.842836][T14783]  device_add+0x7ed/0xfb0
[  751.847195][T14783]  wiphy_register+0x1e68/0x2bd0
[  751.852097][T14783]  ? cfg80211_event_work+0x40/0x40
[  751.857232][T14783]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  751.863323][T14783]  ieee80211_register_hw+0x2c29/0x38c0
[  751.868804][T14783]  ? ieee80211_register_hw+0xf31/0x38c0
[  751.874363][T14783]  ? ieee80211_register_hw+0xe31/0x38c0
[  751.879930][T14783]  ? ieee80211_tasklet_handler+0x20/0x20
[  751.885582][T14783]  ? rcu_is_watching+0x11/0xa0
[  751.890360][T14783]  ? memset+0x1e/0x40
[  751.894352][T14783]  ? hrtimer_init+0x10c/0x220
[  751.899036][T14783]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  751.904788][T14783]  hwsim_new_radio_nl+0xafa/0xce0
[  751.909834][T14783]  genl_family_rcv_msg_doit+0x22e/0x320
[  751.915388][T14783]  ? end_current_label_crit_section+0x170/0x170
[  751.921650][T14783]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  751.927566][T14783]  ? bpf_lsm_capable+0x5/0x10
[  751.932261][T14783]  ? security_capable+0x85/0xb0
[  751.937131][T14783]  genl_rcv_msg+0x5f2/0x780
[  751.941804][T14783]  ? genl_bind+0x350/0x350
[  751.946226][T14783]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  751.952574][T14783]  netlink_rcv_skb+0x1de/0x420
[  751.957356][T14783]  ? genl_bind+0x350/0x350
[  751.961780][T14783]  ? netlink_ack+0x1100/0x1100
[  751.966570][T14783]  ? down_read+0x1a8/0x2d0
[  751.971036][T14783]  genl_rcv+0x24/0x40
[  751.975026][T14783]  netlink_unicast+0x74c/0x8c0
[  751.979827][T14783]  netlink_sendmsg+0x89e/0xbc0
[  751.984625][T14783]  ? netlink_getsockopt+0x540/0x540
[  751.989843][T14783]  ? aa_sock_msg_perm+0x94/0x150
[  751.994795][T14783]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  752.000088][T14783]  ? security_socket_sendmsg+0x7c/0xa0
[  752.005557][T14783]  ? netlink_getsockopt+0x540/0x540
[  752.010774][T14783]  ____sys_sendmsg+0x59b/0x970
[  752.015564][T14783]  ? __sys_sendmsg_sock+0x30/0x30
[  752.020601][T14783]  ? __import_iovec+0x315/0x500
[  752.025469][T14783]  ? import_iovec+0x6f/0xa0
[  752.029988][T14783]  ___sys_sendmsg+0x21c/0x290
[  752.034687][T14783]  ? __sys_sendmsg+0x270/0x270
[  752.039503][T14783]  ? __fdget+0x17c/0x200
[  752.043768][T14783]  __se_sys_sendmsg+0x19e/0x270
[  752.048638][T14783]  ? __x64_sys_sendmsg+0x80/0x80
[  752.053609][T14783]  ? syscall_enter_from_user_mode+0x2a/0x80
[  752.059519][T14783]  do_syscall_64+0x4c/0xa0
[  752.063950][T14783]  ? clear_bhb_loop+0x60/0xb0
[  752.068650][T14783]  ? clear_bhb_loop+0x60/0xb0
[  752.073337][T14783]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  752.079339][T14783] RIP: 0033:0x7f8c7c98e969
[  752.083766][T14783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  752.103482][T14783] RSP: 002b:00007f8c7d855038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  752.111957][T14783] RAX: ffffffffffffffda RBX: 00007f8c7cbb5fa0 RCX: 00007f8c7c98e969
[  752.119953][T14783] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  752.127939][T14783] RBP: 00007f8c7ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  752.135923][T14783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  752.143903][T14783] R13: 0000000000000000 R14: 00007f8c7cbb5fa0 R15: 00007fff89c3e968
[  752.151898][T14783]  </TASK>
[  752.229666][T14789] delete_channel: no stack
[  752.332074][T14792] netlink: 122896 bytes leftover after parsing attributes in process `syz.3.3898'.
[  752.361392][T14792] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  752.399515][T14792] CPU: 1 PID: 14792 Comm: syz.3.3898 Not tainted 6.1.139-syzkaller #0
[  752.407756][T14792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  752.417850][T14792] Call Trace:
[  752.421157][T14792]  <TASK>
[  752.424123][T14792]  dump_stack_lvl+0x168/0x22e
[  752.428864][T14792]  ? show_regs_print_info+0x12/0x12
[  752.434133][T14792]  ? load_image+0x3b0/0x3b0
[  752.438703][T14792]  sysfs_warn_dup+0x8a/0xa0
[  752.443265][T14792]  sysfs_do_create_link_sd+0xc0/0x110
[  752.448691][T14792]  device_add+0x7ed/0xfb0
[  752.453075][T14792]  wiphy_register+0x1e68/0x2bd0
[  752.457998][T14792]  ? cfg80211_event_work+0x40/0x40
[  752.463174][T14792]  ? minstrel_ht_alloc+0x894/0xa20
[  752.468344][T14792]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  752.474449][T14792]  ieee80211_register_hw+0x2c29/0x38c0
[  752.479947][T14792]  ? ieee80211_register_hw+0xf31/0x38c0
[  752.485521][T14792]  ? ieee80211_register_hw+0xe31/0x38c0
[  752.491094][T14792]  ? ieee80211_tasklet_handler+0x20/0x20
[  752.496747][T14792]  ? rcu_is_watching+0x11/0xa0
[  752.501534][T14792]  ? memset+0x1e/0x40
[  752.505531][T14792]  ? hrtimer_init+0x10c/0x220
[  752.510311][T14792]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  752.516068][T14792]  hwsim_new_radio_nl+0xafa/0xce0
[  752.521115][T14792]  genl_family_rcv_msg_doit+0x22e/0x320
[  752.526813][T14792]  ? end_current_label_crit_section+0x170/0x170
[  752.533080][T14792]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  752.538995][T14792]  ? bpf_lsm_capable+0x5/0x10
[  752.543690][T14792]  ? security_capable+0x85/0xb0
[  752.548558][T14792]  genl_rcv_msg+0x5f2/0x780
[  752.553085][T14792]  ? genl_bind+0x350/0x350
[  752.557514][T14792]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  752.563866][T14792]  netlink_rcv_skb+0x1de/0x420
[  752.568659][T14792]  ? genl_bind+0x350/0x350
[  752.573086][T14792]  ? netlink_ack+0x1100/0x1100
[  752.577879][T14792]  ? down_read+0x1a8/0x2d0
[  752.582312][T14792]  genl_rcv+0x24/0x40
[  752.586302][T14792]  netlink_unicast+0x74c/0x8c0
[  752.591090][T14792]  netlink_sendmsg+0x89e/0xbc0
[  752.595882][T14792]  ? netlink_getsockopt+0x540/0x540
[  752.601100][T14792]  ? aa_sock_msg_perm+0x94/0x150
[  752.606049][T14792]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  752.611381][T14792]  ? security_socket_sendmsg+0x7c/0xa0
[  752.616847][T14792]  ? netlink_getsockopt+0x540/0x540
[  752.622088][T14792]  ____sys_sendmsg+0x59b/0x970
[  752.626910][T14792]  ? __sys_sendmsg_sock+0x30/0x30
[  752.631976][T14792]  ? __import_iovec+0x315/0x500
[  752.636865][T14792]  ? import_iovec+0x6f/0xa0
[  752.641385][T14792]  ___sys_sendmsg+0x21c/0x290
[  752.646087][T14792]  ? __sys_sendmsg+0x270/0x270
[  752.650904][T14792]  ? __fdget+0x17c/0x200
[  752.655177][T14792]  __se_sys_sendmsg+0x19e/0x270
[  752.660052][T14792]  ? perf_trace_preemptirq_template+0x287/0x330
[  752.666330][T14792]  ? __x64_sys_sendmsg+0x80/0x80
[  752.671325][T14792]  ? lockdep_hardirqs_on+0x94/0x140
[  752.676656][T14792]  do_syscall_64+0x4c/0xa0
[  752.681129][T14792]  ? clear_bhb_loop+0x60/0xb0
[  752.685836][T14792]  ? clear_bhb_loop+0x60/0xb0
[  752.690540][T14792]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  752.696468][T14792] RIP: 0033:0x7fa4d5f8e969
[  752.700891][T14792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  752.720524][T14792] RSP: 002b:00007fa4d6e45038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  752.728959][T14792] RAX: ffffffffffffffda RBX: 00007fa4d61b5fa0 RCX: 00007fa4d5f8e969
[  752.736950][T14792] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  752.744935][T14792] RBP: 00007fa4d6010ab1 R08: 0000000000000000 R09: 0000000000000000
[  752.752916][T14792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  752.760905][T14792] R13: 0000000000000000 R14: 00007fa4d61b5fa0 R15: 00007ffcc7b71bd8
[  752.768911][T14792]  </TASK>
[  753.017797][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  753.024479][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  753.256773][T14812] delete_channel: no stack
[  753.370236][T14815] netlink: 'syz.3.3906': attribute type 10 has an invalid length.
[  753.429611][T14815] netlink: 152 bytes leftover after parsing attributes in process `syz.3.3906'.
[  753.659206][T14825] netlink: 122896 bytes leftover after parsing attributes in process `syz.2.3912'.
[  753.746952][T14825] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  753.763595][T14825] CPU: 0 PID: 14825 Comm: syz.2.3912 Not tainted 6.1.139-syzkaller #0
[  753.771820][T14825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  753.781916][T14825] Call Trace:
[  753.785480][T14825]  <TASK>
[  753.788418][T14825]  dump_stack_lvl+0x168/0x22e
[  753.793121][T14825]  ? show_regs_print_info+0x12/0x12
[  753.798338][T14825]  ? load_image+0x3b0/0x3b0
[  753.802875][T14825]  sysfs_warn_dup+0x8a/0xa0
[  753.807415][T14825]  sysfs_do_create_link_sd+0xc0/0x110
[  753.812801][T14825]  device_add+0x7ed/0xfb0
[  753.817158][T14825]  wiphy_register+0x1e68/0x2bd0
[  753.822035][T14825]  ? cfg80211_event_work+0x40/0x40
[  753.827164][T14825]  ? minstrel_ht_alloc+0x894/0xa20
[  753.832314][T14825]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  753.838506][T14825]  ieee80211_register_hw+0x2c29/0x38c0
[  753.843994][T14825]  ? ieee80211_register_hw+0xf31/0x38c0
[  753.849554][T14825]  ? ieee80211_register_hw+0xe31/0x38c0
[  753.855122][T14825]  ? ieee80211_tasklet_handler+0x20/0x20
[  753.860770][T14825]  ? rcu_is_watching+0x11/0xa0
[  753.865562][T14825]  ? memset+0x1e/0x40
[  753.869554][T14825]  ? hrtimer_init+0x10c/0x220
[  753.874244][T14825]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  753.879990][T14825]  hwsim_new_radio_nl+0xafa/0xce0
[  753.885036][T14825]  genl_family_rcv_msg_doit+0x22e/0x320
[  753.890587][T14825]  ? end_current_label_crit_section+0x170/0x170
[  753.896842][T14825]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  753.902757][T14825]  ? bpf_lsm_capable+0x5/0x10
[  753.907446][T14825]  ? security_capable+0x85/0xb0
[  753.912313][T14825]  genl_rcv_msg+0x5f2/0x780
[  753.916823][T14825]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  753.922994][T14825]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  753.929166][T14825]  ? genl_bind+0x350/0x350
[  753.933588][T14825]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  753.940043][T14825]  netlink_rcv_skb+0x1de/0x420
[  753.944832][T14825]  ? genl_bind+0x350/0x350
[  753.949259][T14825]  ? netlink_ack+0x1100/0x1100
[  753.954044][T14825]  ? down_read+0x1a8/0x2d0
[  753.958478][T14825]  genl_rcv+0x24/0x40
[  753.962653][T14825]  netlink_unicast+0x74c/0x8c0
[  753.967440][T14825]  netlink_sendmsg+0x89e/0xbc0
[  753.972227][T14825]  ? netlink_getsockopt+0x540/0x540
[  753.977452][T14825]  ? netlink_getsockopt+0x540/0x540
[  753.982667][T14825]  ____sys_sendmsg+0x59b/0x970
[  753.987456][T14825]  ? __sys_sendmsg_sock+0x30/0x30
[  753.992495][T14825]  ? __import_iovec+0x315/0x500
[  753.997360][T14825]  ? import_iovec+0x6f/0xa0
[  754.001874][T14825]  ___sys_sendmsg+0x21c/0x290
[  754.006580][T14825]  ? __sys_sendmsg+0x270/0x270
[  754.011401][T14825]  ? __fdget+0x17c/0x200
[  754.015666][T14825]  __se_sys_sendmsg+0x19e/0x270
[  754.020533][T14825]  ? __x64_sys_sendmsg+0x80/0x80
[  754.025505][T14825]  ? syscall_enter_from_user_mode+0x2a/0x80
[  754.031411][T14825]  do_syscall_64+0x4c/0xa0
[  754.035840][T14825]  ? clear_bhb_loop+0x60/0xb0
[  754.040523][T14825]  ? clear_bhb_loop+0x60/0xb0
[  754.045209][T14825]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  754.051122][T14825] RIP: 0033:0x7f8c7c98e969
[  754.055549][T14825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  754.075184][T14825] RSP: 002b:00007f8c7d855038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  754.083645][T14825] RAX: ffffffffffffffda RBX: 00007f8c7cbb5fa0 RCX: 00007f8c7c98e969
[  754.091633][T14825] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  754.099613][T14825] RBP: 00007f8c7ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  754.107680][T14825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  754.115659][T14825] R13: 0000000000000000 R14: 00007f8c7cbb5fa0 R15: 00007fff89c3e968
[  754.123656][T14825]  </TASK>
[  754.160560][T14827] delete_channel: no stack
[  754.548413][T14836] netlink: 'syz.1.3914': attribute type 10 has an invalid length.
[  754.612175][T14836] netlink: 152 bytes leftover after parsing attributes in process `syz.1.3914'.
[  754.706268][T14838] netlink: 'syz.2.3917': attribute type 25 has an invalid length.
[  754.746696][T14840] netlink: 122896 bytes leftover after parsing attributes in process `syz.0.3918'.
[  754.976497][T14840] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  755.010973][T14840] CPU: 1 PID: 14840 Comm: syz.0.3918 Not tainted 6.1.139-syzkaller #0
[  755.019208][T14840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  755.029297][T14840] Call Trace:
[  755.032603][T14840]  <TASK>
[  755.035562][T14840]  dump_stack_lvl+0x168/0x22e
[  755.040380][T14840]  ? show_regs_print_info+0x12/0x12
[  755.045632][T14840]  ? load_image+0x3b0/0x3b0
[  755.050193][T14840]  sysfs_warn_dup+0x8a/0xa0
[  755.054754][T14840]  sysfs_do_create_link_sd+0xc0/0x110
[  755.060183][T14840]  device_add+0x7ed/0xfb0
[  755.064581][T14840]  wiphy_register+0x1e68/0x2bd0
[  755.069503][T14840]  ? cfg80211_event_work+0x40/0x40
[  755.074664][T14840]  ? minstrel_ht_alloc+0x894/0xa20
[  755.079836][T14840]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  755.085955][T14840]  ieee80211_register_hw+0x2c29/0x38c0
[  755.091484][T14840]  ? ieee80211_register_hw+0xf31/0x38c0
[  755.097074][T14840]  ? ieee80211_register_hw+0xe31/0x38c0
[  755.102669][T14840]  ? ieee80211_tasklet_handler+0x20/0x20
[  755.108344][T14840]  ? rcu_is_watching+0x11/0xa0
[  755.113145][T14840]  ? memset+0x1e/0x40
[  755.117151][T14840]  ? hrtimer_init+0x10c/0x220
[  755.121843][T14840]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  755.127593][T14840]  hwsim_new_radio_nl+0xafa/0xce0
[  755.132641][T14840]  genl_family_rcv_msg_doit+0x22e/0x320
[  755.138214][T14840]  ? end_current_label_crit_section+0x170/0x170
[  755.144470][T14840]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  755.150376][T14840]  ? bpf_lsm_capable+0x5/0x10
[  755.155067][T14840]  ? security_capable+0x85/0xb0
[  755.159935][T14840]  genl_rcv_msg+0x5f2/0x780
[  755.164458][T14840]  ? genl_bind+0x350/0x350
[  755.168877][T14840]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  755.175226][T14840]  netlink_rcv_skb+0x1de/0x420
[  755.180009][T14840]  ? genl_bind+0x350/0x350
[  755.184437][T14840]  ? netlink_ack+0x1100/0x1100
[  755.189227][T14840]  ? down_read+0x1a8/0x2d0
[  755.193747][T14840]  genl_rcv+0x24/0x40
[  755.197740][T14840]  netlink_unicast+0x74c/0x8c0
[  755.202630][T14840]  netlink_sendmsg+0x89e/0xbc0
[  755.207421][T14840]  ? netlink_getsockopt+0x540/0x540
[  755.212641][T14840]  ? aa_sock_msg_perm+0x94/0x150
[  755.217597][T14840]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  755.222982][T14840]  ? security_socket_sendmsg+0x7c/0xa0
[  755.228451][T14840]  ? netlink_getsockopt+0x540/0x540
[  755.233681][T14840]  ____sys_sendmsg+0x59b/0x970
[  755.238493][T14840]  ? __sys_sendmsg_sock+0x30/0x30
[  755.243555][T14840]  ? __import_iovec+0x315/0x500
[  755.248422][T14840]  ? import_iovec+0x6f/0xa0
[  755.252939][T14840]  ___sys_sendmsg+0x21c/0x290
[  755.257636][T14840]  ? __sys_sendmsg+0x270/0x270
[  755.262454][T14840]  ? __fdget+0x17c/0x200
[  755.266738][T14840]  __se_sys_sendmsg+0x19e/0x270
[  755.271613][T14840]  ? perf_trace_preemptirq_template+0x287/0x330
[  755.277871][T14840]  ? __x64_sys_sendmsg+0x80/0x80
[  755.282846][T14840]  ? lockdep_hardirqs_on+0x94/0x140
[  755.288068][T14840]  do_syscall_64+0x4c/0xa0
[  755.292496][T14840]  ? clear_bhb_loop+0x60/0xb0
[  755.297183][T14840]  ? clear_bhb_loop+0x60/0xb0
[  755.301897][T14840]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  755.307843][T14840] RIP: 0033:0x7f38b3f8e969
[  755.312280][T14840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  755.331905][T14840] RSP: 002b:00007f38b4e43038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  755.340339][T14840] RAX: ffffffffffffffda RBX: 00007f38b41b5fa0 RCX: 00007f38b3f8e969
[  755.348320][T14840] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  755.356296][T14840] RBP: 00007f38b4010ab1 R08: 0000000000000000 R09: 0000000000000000
[  755.364373][T14840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  755.372371][T14840] R13: 0000000000000000 R14: 00007f38b41b5fa0 R15: 00007fff60fb2b88
[  755.380668][T14840]  </TASK>
[  755.435506][T14853] delete_channel: no stack
[  755.578185][T14854] netlink: 'syz.3.3922': attribute type 10 has an invalid length.
[  755.604440][T14854] netlink: 152 bytes leftover after parsing attributes in process `syz.3.3922'.
[  755.919680][T14867] delete_channel: no stack
[  756.100999][T14876] netlink: 'syz.4.3930': attribute type 25 has an invalid length.
[  756.210548][T14874] netlink: 122896 bytes leftover after parsing attributes in process `syz.3.3929'.
[  756.308531][T14874] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  756.317454][T14874] CPU: 0 PID: 14874 Comm: syz.3.3929 Not tainted 6.1.139-syzkaller #0
[  756.325680][T14874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  756.335780][T14874] Call Trace:
[  756.339100][T14874]  <TASK>
[  756.342061][T14874]  dump_stack_lvl+0x168/0x22e
[  756.346804][T14874]  ? show_regs_print_info+0x12/0x12
[  756.352073][T14874]  ? load_image+0x3b0/0x3b0
[  756.356649][T14874]  sysfs_warn_dup+0x8a/0xa0
[  756.361216][T14874]  sysfs_do_create_link_sd+0xc0/0x110
[  756.366655][T14874]  device_add+0x7ed/0xfb0
[  756.371059][T14874]  wiphy_register+0x1e68/0x2bd0
[  756.376245][T14874]  ? cfg80211_event_work+0x40/0x40
[  756.381391][T14874]  ? minstrel_ht_alloc+0x894/0xa20
[  756.386548][T14874]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  756.392657][T14874]  ieee80211_register_hw+0x2c29/0x38c0
[  756.398251][T14874]  ? ieee80211_register_hw+0xf31/0x38c0
[  756.403820][T14874]  ? ieee80211_register_hw+0xe31/0x38c0
[  756.409428][T14874]  ? ieee80211_tasklet_handler+0x20/0x20
[  756.415115][T14874]  ? rcu_is_watching+0x11/0xa0
[  756.419917][T14874]  ? memset+0x1e/0x40
[  756.423916][T14874]  ? hrtimer_init+0x10c/0x220
[  756.428646][T14874]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  756.434402][T14874]  hwsim_new_radio_nl+0xafa/0xce0
[  756.439451][T14874]  genl_family_rcv_msg_doit+0x22e/0x320
[  756.445012][T14874]  ? end_current_label_crit_section+0x170/0x170
[  756.451279][T14874]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  756.457191][T14874]  ? bpf_lsm_capable+0x5/0x10
[  756.461883][T14874]  ? security_capable+0x85/0xb0
[  756.466774][T14874]  genl_rcv_msg+0x5f2/0x780
[  756.471329][T14874]  ? genl_bind+0x350/0x350
[  756.475895][T14874]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  756.482264][T14874]  netlink_rcv_skb+0x1de/0x420
[  756.487051][T14874]  ? genl_bind+0x350/0x350
[  756.491482][T14874]  ? netlink_ack+0x1100/0x1100
[  756.496272][T14874]  ? down_read+0x1a8/0x2d0
[  756.500708][T14874]  genl_rcv+0x24/0x40
[  756.504717][T14874]  netlink_unicast+0x74c/0x8c0
[  756.509503][T14874]  netlink_sendmsg+0x89e/0xbc0
[  756.514303][T14874]  ? netlink_getsockopt+0x540/0x540
[  756.519518][T14874]  ? aa_sock_msg_perm+0x94/0x150
[  756.524468][T14874]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  756.529761][T14874]  ? security_socket_sendmsg+0x7c/0xa0
[  756.535229][T14874]  ? netlink_getsockopt+0x540/0x540
[  756.540456][T14874]  ____sys_sendmsg+0x59b/0x970
[  756.545245][T14874]  ? __sys_sendmsg_sock+0x30/0x30
[  756.550287][T14874]  ? __import_iovec+0x315/0x500
[  756.555157][T14874]  ? import_iovec+0x6f/0xa0
[  756.559670][T14874]  ___sys_sendmsg+0x21c/0x290
[  756.564372][T14874]  ? __sys_sendmsg+0x270/0x270
[  756.569187][T14874]  ? __fdget+0x17c/0x200
[  756.573539][T14874]  __se_sys_sendmsg+0x19e/0x270
[  756.578434][T14874]  ? __x64_sys_sendmsg+0x80/0x80
[  756.583402][T14874]  ? syscall_enter_from_user_mode+0x2a/0x80
[  756.589304][T14874]  do_syscall_64+0x4c/0xa0
[  756.593735][T14874]  ? clear_bhb_loop+0x60/0xb0
[  756.598416][T14874]  ? clear_bhb_loop+0x60/0xb0
[  756.603099][T14874]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  756.609008][T14874] RIP: 0033:0x7fa4d5f8e969
[  756.613429][T14874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  756.633047][T14874] RSP: 002b:00007fa4d6e45038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  756.641475][T14874] RAX: ffffffffffffffda RBX: 00007fa4d61b5fa0 RCX: 00007fa4d5f8e969
[  756.649457][T14874] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  756.657433][T14874] RBP: 00007fa4d6010ab1 R08: 0000000000000000 R09: 0000000000000000
[  756.665425][T14874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  756.673424][T14874] R13: 0000000000000000 R14: 00007fa4d61b5fa0 R15: 00007ffcc7b71bd8
[  756.681501][T14874]  </TASK>
[  757.078525][T14884] delete_channel: no stack
[  757.165078][T14892] netlink: 'syz.0.3934': attribute type 10 has an invalid length.
[  757.187847][T14892] netlink: 152 bytes leftover after parsing attributes in process `syz.0.3934'.
[  757.460682][T14901] delete_channel: no stack
[  757.537067][T14905] netlink: 'syz.4.3937': attribute type 10 has an invalid length.
[  757.548519][T14905] netlink: 152 bytes leftover after parsing attributes in process `syz.4.3937'.
[  757.667798][T14908] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.3941'.
[  757.688276][T14908] netlink: zone id is out of range
[  757.713172][T14910] netlink: 'syz.2.3943': attribute type 25 has an invalid length.
[  757.735980][T14908] netlink: zone id is out of range
[  757.741395][T14908] netlink: zone id is out of range
[  758.030651][T14917] netlink: 'syz.0.3944': attribute type 10 has an invalid length.
[  758.053063][T14917] netlink: 152 bytes leftover after parsing attributes in process `syz.0.3944'.
[  758.390996][T14932] netlink: 'syz.1.3948': attribute type 10 has an invalid length.
[  758.405280][T14932] netlink: 152 bytes leftover after parsing attributes in process `syz.1.3948'.
[  758.433882][T14930] netlink: 122896 bytes leftover after parsing attributes in process `syz.2.3949'.
[  758.561427][T14930] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  758.609475][T14930] CPU: 0 PID: 14930 Comm: syz.2.3949 Not tainted 6.1.139-syzkaller #0
[  758.617718][T14930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  758.627838][T14930] Call Trace:
[  758.631151][T14930]  <TASK>
[  758.634113][T14930]  dump_stack_lvl+0x168/0x22e
[  758.638863][T14930]  ? show_regs_print_info+0x12/0x12
[  758.644087][T14930]  ? load_image+0x3b0/0x3b0
[  758.648636][T14930]  sysfs_warn_dup+0x8a/0xa0
[  758.653198][T14930]  sysfs_do_create_link_sd+0xc0/0x110
[  758.658618][T14930]  device_add+0x7ed/0xfb0
[  758.662979][T14930]  wiphy_register+0x1e68/0x2bd0
[  758.667848][T14930]  ? lock_chain_count+0x20/0x20
[  758.672727][T14930]  ? cfg80211_event_work+0x40/0x40
[  758.677856][T14930]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  758.683935][T14930]  ieee80211_register_hw+0x2c29/0x38c0
[  758.689421][T14930]  ? ieee80211_register_hw+0xf31/0x38c0
[  758.694986][T14930]  ? ieee80211_register_hw+0xe31/0x38c0
[  758.700553][T14930]  ? ieee80211_tasklet_handler+0x20/0x20
[  758.706218][T14930]  ? rcu_is_watching+0x11/0xa0
[  758.711009][T14930]  ? memset+0x1e/0x40
[  758.715000][T14930]  ? hrtimer_init+0x10c/0x220
[  758.719691][T14930]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  758.725455][T14930]  hwsim_new_radio_nl+0xafa/0xce0
[  758.730501][T14930]  genl_family_rcv_msg_doit+0x22e/0x320
[  758.736058][T14930]  ? end_current_label_crit_section+0x170/0x170
[  758.742314][T14930]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  758.748219][T14930]  ? bpf_lsm_capable+0x5/0x10
[  758.752907][T14930]  ? security_capable+0x85/0xb0
[  758.757778][T14930]  genl_rcv_msg+0x5f2/0x780
[  758.762317][T14930]  ? genl_bind+0x350/0x350
[  758.766743][T14930]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  758.773090][T14930]  ? lock_acquire+0x20f/0x490
[  758.777799][T14930]  netlink_rcv_skb+0x1de/0x420
[  758.782578][T14930]  ? genl_bind+0x350/0x350
[  758.787016][T14930]  ? netlink_ack+0x1100/0x1100
[  758.791806][T14930]  ? down_read+0x1a8/0x2d0
[  758.796242][T14930]  genl_rcv+0x24/0x40
[  758.800229][T14930]  netlink_unicast+0x74c/0x8c0
[  758.805020][T14930]  netlink_sendmsg+0x89e/0xbc0
[  758.809808][T14930]  ? netlink_getsockopt+0x540/0x540
[  758.815027][T14930]  ? aa_sock_msg_perm+0x94/0x150
[  758.820064][T14930]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  758.825364][T14930]  ? security_socket_sendmsg+0x7c/0xa0
[  758.830830][T14930]  ? netlink_getsockopt+0x540/0x540
[  758.836049][T14930]  ____sys_sendmsg+0x59b/0x970
[  758.840841][T14930]  ? __sys_sendmsg_sock+0x30/0x30
[  758.845877][T14930]  ? __import_iovec+0x315/0x500
[  758.850744][T14930]  ? import_iovec+0x6f/0xa0
[  758.855258][T14930]  ___sys_sendmsg+0x21c/0x290
[  758.859953][T14930]  ? __sys_sendmsg+0x270/0x270
[  758.864749][T14930]  ? seqcount_lockdep_reader_access+0x15c/0x1c0
[  758.871016][T14930]  ? __fdget+0x17c/0x200
[  758.875276][T14930]  __se_sys_sendmsg+0x19e/0x270
[  758.880141][T14930]  ? perf_trace_preemptirq_template+0x287/0x330
[  758.886397][T14930]  ? __x64_sys_sendmsg+0x80/0x80
[  758.891368][T14930]  ? lockdep_hardirqs_on+0x94/0x140
[  758.896589][T14930]  do_syscall_64+0x4c/0xa0
[  758.901108][T14930]  ? clear_bhb_loop+0x60/0xb0
[  758.905790][T14930]  ? clear_bhb_loop+0x60/0xb0
[  758.910476][T14930]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  758.916385][T14930] RIP: 0033:0x7f8c7c98e969
[  758.920808][T14930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  758.940525][T14930] RSP: 002b:00007f8c7d855038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  758.948946][T14930] RAX: ffffffffffffffda RBX: 00007f8c7cbb5fa0 RCX: 00007f8c7c98e969
[  758.956938][T14930] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  758.964914][T14930] RBP: 00007f8c7ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  758.972925][T14930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  758.980987][T14930] R13: 0000000000000000 R14: 00007f8c7cbb5fa0 R15: 00007fff89c3e968
[  758.988976][T14930]  </TASK>
[  759.307271][T14943] delete_channel: no stack
[  759.331025][T14947] netlink: 'syz.3.3955': attribute type 25 has an invalid length.
[  759.588290][T14954] netlink: 'syz.2.3956': attribute type 10 has an invalid length.
[  759.629786][T14954] netlink: 152 bytes leftover after parsing attributes in process `syz.2.3956'.
[  759.654947][T14957] netlink: 'syz.0.3957': attribute type 10 has an invalid length.
[  759.678423][T14957] netlink: 152 bytes leftover after parsing attributes in process `syz.0.3957'.
[  760.432710][T14972] netlink: 122896 bytes leftover after parsing attributes in process `syz.2.3962'.
[  760.599496][T14972] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  760.688137][T14972] CPU: 1 PID: 14972 Comm: syz.2.3962 Not tainted 6.1.139-syzkaller #0
[  760.696386][T14972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  760.706481][T14972] Call Trace:
[  760.709792][T14972]  <TASK>
[  760.712755][T14972]  dump_stack_lvl+0x168/0x22e
[  760.717482][T14972]  ? show_regs_print_info+0x12/0x12
[  760.722707][T14972]  ? load_image+0x3b0/0x3b0
[  760.727234][T14972]  sysfs_warn_dup+0x8a/0xa0
[  760.731755][T14972]  sysfs_do_create_link_sd+0xc0/0x110
[  760.737142][T14972]  device_add+0x7ed/0xfb0
[  760.741498][T14972]  wiphy_register+0x1e68/0x2bd0
[  760.746389][T14972]  ? cfg80211_event_work+0x40/0x40
[  760.751517][T14972]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  760.757697][T14972]  ieee80211_register_hw+0x2c29/0x38c0
[  760.763184][T14972]  ? ieee80211_register_hw+0xf31/0x38c0
[  760.768862][T14972]  ? ieee80211_register_hw+0xe31/0x38c0
[  760.774436][T14972]  ? ieee80211_tasklet_handler+0x20/0x20
[  760.780090][T14972]  ? rcu_is_watching+0x11/0xa0
[  760.784885][T14972]  ? memset+0x1e/0x40
[  760.788877][T14972]  ? hrtimer_init+0x10c/0x220
[  760.793565][T14972]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  760.799315][T14972]  hwsim_new_radio_nl+0xafa/0xce0
[  760.804376][T14972]  genl_family_rcv_msg_doit+0x22e/0x320
[  760.809937][T14972]  ? end_current_label_crit_section+0x170/0x170
[  760.816197][T14972]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  760.822123][T14972]  ? bpf_lsm_capable+0x5/0x10
[  760.826814][T14972]  ? security_capable+0x85/0xb0
[  760.831678][T14972]  genl_rcv_msg+0x5f2/0x780
[  760.836197][T14972]  ? genl_bind+0x350/0x350
[  760.840620][T14972]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  760.847025][T14972]  netlink_rcv_skb+0x1de/0x420
[  760.851810][T14972]  ? genl_bind+0x350/0x350
[  760.856235][T14972]  ? netlink_ack+0x1100/0x1100
[  760.861026][T14972]  ? down_read+0x1a8/0x2d0
[  760.865463][T14972]  genl_rcv+0x24/0x40
[  760.869462][T14972]  netlink_unicast+0x74c/0x8c0
[  760.874261][T14972]  netlink_sendmsg+0x89e/0xbc0
[  760.879041][T14972]  ? lockdep_hardirqs_on+0x94/0x140
[  760.884277][T14972]  ? netlink_getsockopt+0x540/0x540
[  760.889601][T14972]  ? security_socket_sendmsg+0x41/0xa0
[  760.895094][T14972]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  760.900399][T14972]  ? security_socket_sendmsg+0x7c/0xa0
[  760.905864][T14972]  ? netlink_getsockopt+0x540/0x540
[  760.911079][T14972]  ____sys_sendmsg+0x59b/0x970
[  760.915872][T14972]  ? __sys_sendmsg_sock+0x30/0x30
[  760.920909][T14972]  ? __import_iovec+0x315/0x500
[  760.925787][T14972]  ? import_iovec+0x6f/0xa0
[  760.930304][T14972]  ___sys_sendmsg+0x21c/0x290
[  760.935005][T14972]  ? __sys_sendmsg+0x270/0x270
[  760.939793][T14972]  ? irqentry_enter+0x33/0x50
[  760.944511][T14972]  __se_sys_sendmsg+0x19e/0x270
[  760.949383][T14972]  ? __x64_sys_sendmsg+0x80/0x80
[  760.954357][T14972]  ? syscall_enter_from_user_mode+0x2a/0x80
[  760.960262][T14972]  do_syscall_64+0x4c/0xa0
[  760.964695][T14972]  ? clear_bhb_loop+0x60/0xb0
[  760.969379][T14972]  ? clear_bhb_loop+0x60/0xb0
[  760.974070][T14972]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  760.979982][T14972] RIP: 0033:0x7f8c7c98e969
[  760.984409][T14972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  761.004028][T14972] RSP: 002b:00007f8c7d855038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  761.012454][T14972] RAX: ffffffffffffffda RBX: 00007f8c7cbb5fa0 RCX: 00007f8c7c98e969
[  761.020434][T14972] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  761.028517][T14972] RBP: 00007f8c7ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  761.036494][T14972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  761.044476][T14972] R13: 0000000000000000 R14: 00007f8c7cbb5fa0 R15: 00007fff89c3e968
[  761.052467][T14972]  </TASK>
[  761.402091][T14985] netlink: 122896 bytes leftover after parsing attributes in process `syz.0.3968'.
[  761.536900][T14985] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  761.584744][T14985] CPU: 0 PID: 14985 Comm: syz.0.3968 Not tainted 6.1.139-syzkaller #0
[  761.592982][T14985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  761.603075][T14985] Call Trace:
[  761.606392][T14985]  <TASK>
[  761.609354][T14985]  dump_stack_lvl+0x168/0x22e
[  761.614093][T14985]  ? show_regs_print_info+0x12/0x12
[  761.619359][T14985]  ? load_image+0x3b0/0x3b0
[  761.623937][T14985]  sysfs_warn_dup+0x8a/0xa0
[  761.628491][T14985]  sysfs_do_create_link_sd+0xc0/0x110
[  761.633917][T14985]  device_add+0x7ed/0xfb0
[  761.638304][T14985]  wiphy_register+0x1e68/0x2bd0
[  761.643229][T14985]  ? cfg80211_event_work+0x40/0x40
[  761.648393][T14985]  ? minstrel_ht_alloc+0x894/0xa20
[  761.653562][T14985]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  761.659660][T14985]  ieee80211_register_hw+0x2c29/0x38c0
[  761.665146][T14985]  ? ieee80211_register_hw+0xf31/0x38c0
[  761.670706][T14985]  ? ieee80211_register_hw+0xe31/0x38c0
[  761.676290][T14985]  ? ieee80211_tasklet_handler+0x20/0x20
[  761.681988][T14985]  ? rcu_is_watching+0x11/0xa0
[  761.686801][T14985]  ? memset+0x1e/0x40
[  761.690797][T14985]  ? hrtimer_init+0x10c/0x220
[  761.695502][T14985]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  761.701268][T14985]  hwsim_new_radio_nl+0xafa/0xce0
[  761.706322][T14985]  genl_family_rcv_msg_doit+0x22e/0x320
[  761.711887][T14985]  ? end_current_label_crit_section+0x170/0x170
[  761.718164][T14985]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  761.724070][T14985]  ? bpf_lsm_capable+0x5/0x10
[  761.728755][T14985]  ? security_capable+0x85/0xb0
[  761.733634][T14985]  genl_rcv_msg+0x5f2/0x780
[  761.738192][T14985]  ? genl_bind+0x350/0x350
[  761.742655][T14985]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  761.749044][T14985]  netlink_rcv_skb+0x1de/0x420
[  761.753865][T14985]  ? genl_bind+0x350/0x350
[  761.758322][T14985]  ? netlink_ack+0x1100/0x1100
[  761.763241][T14985]  ? down_read+0x1a8/0x2d0
[  761.764623][T14995] delete_channel: no stack
[  761.767688][T14985]  genl_rcv+0x24/0x40
[  761.767717][T14985]  netlink_unicast+0x74c/0x8c0
[  761.780949][T14985]  netlink_sendmsg+0x89e/0xbc0
[  761.785779][T14985]  ? netlink_getsockopt+0x540/0x540
[  761.791039][T14985]  ? aa_sock_msg_perm+0x94/0x150
[  761.796020][T14985]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  761.801350][T14985]  ? security_socket_sendmsg+0x7c/0xa0
[  761.806856][T14985]  ? netlink_getsockopt+0x540/0x540
[  761.812109][T14985]  ____sys_sendmsg+0x59b/0x970
[  761.816938][T14985]  ? __sys_sendmsg_sock+0x30/0x30
[  761.822000][T14985]  ? __import_iovec+0x315/0x500
[  761.826885][T14985]  ? import_iovec+0x6f/0xa0
[  761.831441][T14985]  ___sys_sendmsg+0x21c/0x290
[  761.836171][T14985]  ? __sys_sendmsg+0x270/0x270
[  761.841005][T14985]  ? lockdep_hardirqs_on+0x94/0x140
[  761.846264][T14985]  ? __fdget+0x17c/0x200
[  761.850558][T14985]  __se_sys_sendmsg+0x19e/0x270
[  761.855442][T14985]  ? perf_trace_preemptirq_template+0x287/0x330
[  761.861693][T14985]  ? __x64_sys_sendmsg+0x80/0x80
[  761.866656][T14985]  ? lockdep_hardirqs_on+0x94/0x140
[  761.871874][T14985]  do_syscall_64+0x4c/0xa0
[  761.876328][T14985]  ? clear_bhb_loop+0x60/0xb0
[  761.881020][T14985]  ? clear_bhb_loop+0x60/0xb0
[  761.885718][T14985]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  761.891630][T14985] RIP: 0033:0x7f38b3f8e969
[  761.896063][T14985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  761.915789][T14985] RSP: 002b:00007f38b4e43038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  761.924227][T14985] RAX: ffffffffffffffda RBX: 00007f38b41b5fa0 RCX: 00007f38b3f8e969
[  761.932233][T14985] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  761.940220][T14985] RBP: 00007f38b4010ab1 R08: 0000000000000000 R09: 0000000000000000
[  761.948215][T14985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  761.956211][T14985] R13: 0000000000000000 R14: 00007f38b41b5fa0 R15: 00007fff60fb2b88
[  761.964204][T14985]  </TASK>
[  762.040326][T15002] netlink: 'syz.3.3974': attribute type 10 has an invalid length.
[  762.051532][T15002] netlink: 152 bytes leftover after parsing attributes in process `syz.3.3974'.
[  762.062306][T15005] netlink: 'syz.2.3972': attribute type 10 has an invalid length.
[  762.075667][T15005] netlink: 152 bytes leftover after parsing attributes in process `syz.2.3972'.
[  762.523537][T15015] netlink: 'syz.0.3977': attribute type 10 has an invalid length.
[  762.533415][T15015] netlink: 152 bytes leftover after parsing attributes in process `syz.0.3977'.
[  763.180621][T15037] netlink: 122896 bytes leftover after parsing attributes in process `syz.2.3985'.
[  763.216920][T15038] delete_channel: no stack
[  763.280066][T15037] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  763.291290][T15037] CPU: 1 PID: 15037 Comm: syz.2.3985 Not tainted 6.1.139-syzkaller #0
[  763.299501][T15037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  763.309599][T15037] Call Trace:
[  763.312908][T15037]  <TASK>
[  763.315868][T15037]  dump_stack_lvl+0x168/0x22e
[  763.320595][T15037]  ? show_regs_print_info+0x12/0x12
[  763.325842][T15037]  ? load_image+0x3b0/0x3b0
[  763.330401][T15037]  sysfs_warn_dup+0x8a/0xa0
[  763.334953][T15037]  sysfs_do_create_link_sd+0xc0/0x110
[  763.340382][T15037]  device_add+0x7ed/0xfb0
[  763.344771][T15037]  wiphy_register+0x1e68/0x2bd0
[  763.349696][T15037]  ? cfg80211_event_work+0x40/0x40
[  763.354861][T15037]  ? minstrel_ht_alloc+0x894/0xa20
[  763.360028][T15037]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  763.366148][T15037]  ieee80211_register_hw+0x2c29/0x38c0
[  763.371667][T15037]  ? ieee80211_register_hw+0xf31/0x38c0
[  763.377263][T15037]  ? ieee80211_register_hw+0xe31/0x38c0
[  763.382846][T15037]  ? ieee80211_tasklet_handler+0x20/0x20
[  763.388508][T15037]  ? lockdep_hardirqs_on+0x94/0x140
[  763.393746][T15037]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  763.400014][T15037]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  763.405764][T15037]  hwsim_new_radio_nl+0xafa/0xce0
[  763.410809][T15037]  genl_family_rcv_msg_doit+0x22e/0x320
[  763.416366][T15037]  ? end_current_label_crit_section+0x170/0x170
[  763.422623][T15037]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  763.428542][T15037]  ? bpf_lsm_capable+0x5/0x10
[  763.433245][T15037]  ? security_capable+0x85/0xb0
[  763.438164][T15037]  genl_rcv_msg+0x5f2/0x780
[  763.442690][T15037]  ? genl_bind+0x350/0x350
[  763.447111][T15037]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  763.453480][T15037]  netlink_rcv_skb+0x1de/0x420
[  763.458260][T15037]  ? genl_bind+0x350/0x350
[  763.462696][T15037]  ? netlink_ack+0x1100/0x1100
[  763.467496][T15037]  ? down_read+0x1a8/0x2d0
[  763.471926][T15037]  genl_rcv+0x24/0x40
[  763.475916][T15037]  netlink_unicast+0x74c/0x8c0
[  763.480707][T15037]  netlink_sendmsg+0x89e/0xbc0
[  763.485493][T15037]  ? netlink_getsockopt+0x540/0x540
[  763.490734][T15037]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  763.496900][T15037]  ? aa_sock_msg_perm+0x94/0x150
[  763.501936][T15037]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  763.507230][T15037]  ? security_socket_sendmsg+0x7c/0xa0
[  763.512732][T15037]  ? netlink_getsockopt+0x540/0x540
[  763.517954][T15037]  ____sys_sendmsg+0x59b/0x970
[  763.522743][T15037]  ? __sys_sendmsg_sock+0x30/0x30
[  763.527782][T15037]  ? __import_iovec+0x315/0x500
[  763.532657][T15037]  ? import_iovec+0x6f/0xa0
[  763.537173][T15037]  ___sys_sendmsg+0x21c/0x290
[  763.542244][T15037]  ? __sys_sendmsg+0x270/0x270
[  763.547061][T15037]  ? __fdget+0x17c/0x200
[  763.551321][T15037]  __se_sys_sendmsg+0x19e/0x270
[  763.556195][T15037]  ? __x64_sys_sendmsg+0x80/0x80
[  763.561164][T15037]  ? syscall_enter_from_user_mode+0x2a/0x80
[  763.567090][T15037]  do_syscall_64+0x4c/0xa0
[  763.571529][T15037]  ? clear_bhb_loop+0x60/0xb0
[  763.576209][T15037]  ? clear_bhb_loop+0x60/0xb0
[  763.580910][T15037]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  763.586823][T15037] RIP: 0033:0x7f8c7c98e969
[  763.591249][T15037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  763.611214][T15037] RSP: 002b:00007f8c7d855038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  763.619643][T15037] RAX: ffffffffffffffda RBX: 00007f8c7cbb5fa0 RCX: 00007f8c7c98e969
[  763.627623][T15037] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  763.635599][T15037] RBP: 00007f8c7ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  763.643577][T15037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  763.651552][T15037] R13: 0000000000000000 R14: 00007f8c7cbb5fa0 R15: 00007fff89c3e968
[  763.659548][T15037]  </TASK>
[  763.740914][T15043] netlink: 122896 bytes leftover after parsing attributes in process `syz.1.3987'.
[  763.799261][T15043] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  763.855652][T15043] CPU: 0 PID: 15043 Comm: syz.1.3987 Not tainted 6.1.139-syzkaller #0
[  763.863907][T15043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  763.874079][T15043] Call Trace:
[  763.877405][T15043]  <TASK>
[  763.880371][T15043]  dump_stack_lvl+0x168/0x22e
[  763.885116][T15043]  ? show_regs_print_info+0x12/0x12
[  763.890377][T15043]  ? load_image+0x3b0/0x3b0
[  763.894933][T15043]  ? sysfs_warn_dup+0x61/0xa0
[  763.899674][T15043]  sysfs_warn_dup+0x8a/0xa0
[  763.904237][T15043]  sysfs_do_create_link_sd+0xc0/0x110
[  763.909675][T15043]  device_add+0x7ed/0xfb0
[  763.914066][T15043]  wiphy_register+0x1e68/0x2bd0
[  763.918997][T15043]  ? cfg80211_event_work+0x40/0x40
[  763.924155][T15043]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  763.930368][T15043]  ieee80211_register_hw+0x2c29/0x38c0
[  763.935893][T15043]  ? ieee80211_register_hw+0xf31/0x38c0
[  763.941486][T15043]  ? ieee80211_register_hw+0xe31/0x38c0
[  763.947092][T15043]  ? ieee80211_tasklet_handler+0x20/0x20
[  763.952954][T15043]  ? rcu_is_watching+0x11/0xa0
[  763.957770][T15043]  ? memset+0x1e/0x40
[  763.961795][T15043]  ? hrtimer_init+0x10c/0x220
[  763.966521][T15043]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  763.972310][T15043]  hwsim_new_radio_nl+0xafa/0xce0
[  763.977400][T15043]  genl_family_rcv_msg_doit+0x22e/0x320
[  763.982990][T15043]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  763.989194][T15043]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  763.995146][T15043]  ? bpf_lsm_capable+0x5/0x10
[  763.999878][T15043]  ? security_capable+0x85/0xb0
[  764.004792][T15043]  genl_rcv_msg+0x5f2/0x780
[  764.009364][T15043]  ? genl_bind+0x350/0x350
[  764.013828][T15043]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  764.020226][T15043]  netlink_rcv_skb+0x1de/0x420
[  764.025051][T15043]  ? genl_bind+0x350/0x350
[  764.029522][T15043]  ? netlink_ack+0x1100/0x1100
[  764.034349][T15043]  ? down_read+0x1a8/0x2d0
[  764.038801][T15043]  genl_rcv+0x24/0x40
[  764.042800][T15043]  netlink_unicast+0x74c/0x8c0
[  764.047601][T15043]  netlink_sendmsg+0x89e/0xbc0
[  764.052389][T15043]  ? lockdep_hardirqs_on+0x94/0x140
[  764.057604][T15043]  ? netlink_getsockopt+0x540/0x540
[  764.062815][T15043]  ? netlink_getsockopt+0x540/0x540
[  764.068052][T15043]  ? netlink_getsockopt+0x540/0x540
[  764.073279][T15043]  ____sys_sendmsg+0x59b/0x970
[  764.078067][T15043]  ? __sys_sendmsg_sock+0x30/0x30
[  764.083109][T15043]  ? __import_iovec+0x315/0x500
[  764.087979][T15043]  ? import_iovec+0x6f/0xa0
[  764.092494][T15043]  ___sys_sendmsg+0x21c/0x290
[  764.097200][T15043]  ? __sys_sendmsg+0x270/0x270
[  764.102017][T15043]  ? __fdget+0x17c/0x200
[  764.106284][T15043]  __se_sys_sendmsg+0x19e/0x270
[  764.111154][T15043]  ? __x64_sys_sendmsg+0x80/0x80
[  764.116124][T15043]  ? syscall_enter_from_user_mode+0x2a/0x80
[  764.122030][T15043]  do_syscall_64+0x4c/0xa0
[  764.126497][T15043]  ? clear_bhb_loop+0x60/0xb0
[  764.131182][T15043]  ? clear_bhb_loop+0x60/0xb0
[  764.135867][T15043]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  764.141779][T15043] RIP: 0033:0x7fcbf738e969
[  764.146209][T15043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  764.165828][T15043] RSP: 002b:00007fcbf811f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  764.174257][T15043] RAX: ffffffffffffffda RBX: 00007fcbf75b5fa0 RCX: 00007fcbf738e969
[  764.182240][T15043] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  764.190220][T15043] RBP: 00007fcbf7410ab1 R08: 0000000000000000 R09: 0000000000000000
[  764.198233][T15043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  764.206239][T15043] R13: 0000000000000000 R14: 00007fcbf75b5fa0 R15: 00007ffdc4c8d508
[  764.214244][T15043]  </TASK>
[  764.341293][T15055] netlink: 'syz.4.3990': attribute type 10 has an invalid length.
[  764.381520][T15055] netlink: 152 bytes leftover after parsing attributes in process `syz.4.3990'.
[  764.531226][T15060] netlink: 'syz.0.3993': attribute type 10 has an invalid length.
[  764.575833][T15060] netlink: 152 bytes leftover after parsing attributes in process `syz.0.3993'.
[  764.723014][T15070] netlink: 'syz.2.3994': attribute type 10 has an invalid length.
[  764.789845][T15070] netlink: 152 bytes leftover after parsing attributes in process `syz.2.3994'.
[  765.086237][T15085] netlink: 'syz.4.3998': attribute type 25 has an invalid length.
[  765.217439][T15089] netlink: 'syz.1.4008': attribute type 10 has an invalid length.
[  765.240792][T15089] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4008'.
[  765.331290][T15093] netlink: 'syz.0.4010': attribute type 10 has an invalid length.
[  765.471556][T15102] netlink: 'syz.2.4003': attribute type 25 has an invalid length.
[  765.807954][T15106] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  765.833018][T15106] CPU: 0 PID: 15106 Comm: syz.3.4005 Not tainted 6.1.139-syzkaller #0
[  765.841245][T15106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  765.851339][T15106] Call Trace:
[  765.854646][T15106]  <TASK>
[  765.857630][T15106]  dump_stack_lvl+0x168/0x22e
[  765.862378][T15106]  ? show_regs_print_info+0x12/0x12
[  765.867630][T15106]  ? load_image+0x3b0/0x3b0
[  765.872183][T15106]  sysfs_warn_dup+0x8a/0xa0
[  765.876739][T15106]  sysfs_do_create_link_sd+0xc0/0x110
[  765.882190][T15106]  device_add+0x7ed/0xfb0
[  765.886580][T15106]  wiphy_register+0x1e68/0x2bd0
[  765.894970][T15106]  ? cfg80211_event_work+0x40/0x40
[  765.900146][T15106]  ? _dev_printk+0x1/0x157
[  765.904620][T15106]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  765.910744][T15106]  ieee80211_register_hw+0x2c29/0x38c0
[  765.916273][T15106]  ? ieee80211_register_hw+0xf31/0x38c0
[  765.921872][T15106]  ? ieee80211_register_hw+0xe31/0x38c0
[  765.927492][T15106]  ? ieee80211_tasklet_handler+0x20/0x20
[  765.933210][T15106]  ? rcu_is_watching+0x11/0xa0
[  765.938025][T15106]  ? memset+0x1e/0x40
[  765.942041][T15106]  ? hrtimer_init+0x10c/0x220
[  765.946771][T15106]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  765.952575][T15106]  hwsim_new_radio_nl+0xafa/0xce0
[  765.957673][T15106]  genl_family_rcv_msg_doit+0x22e/0x320
[  765.963280][T15106]  ? end_current_label_crit_section+0x170/0x170
[  765.969576][T15106]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  765.975524][T15106]  ? bpf_lsm_capable+0x5/0x10
[  765.980255][T15106]  ? security_capable+0x85/0xb0
[  765.985157][T15106]  genl_rcv_msg+0x5f2/0x780
[  765.989718][T15106]  ? genl_bind+0x350/0x350
[  765.994265][T15106]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  766.000667][T15106]  netlink_rcv_skb+0x1de/0x420
[  766.005485][T15106]  ? genl_bind+0x350/0x350
[  766.009940][T15106]  ? netlink_ack+0x1100/0x1100
[  766.014763][T15106]  ? down_read+0x1a8/0x2d0
[  766.019227][T15106]  genl_rcv+0x24/0x40
[  766.023245][T15106]  netlink_unicast+0x74c/0x8c0
[  766.028064][T15106]  netlink_sendmsg+0x89e/0xbc0
[  766.032887][T15106]  ? netlink_getsockopt+0x540/0x540
[  766.038139][T15106]  ? aa_sock_msg_perm+0x94/0x150
[  766.043124][T15106]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  766.048453][T15106]  ? security_socket_sendmsg+0x7c/0xa0
[  766.053954][T15106]  ? netlink_getsockopt+0x540/0x540
[  766.059202][T15106]  ____sys_sendmsg+0x59b/0x970
[  766.064028][T15106]  ? __sys_sendmsg_sock+0x30/0x30
[  766.069098][T15106]  ? __import_iovec+0x315/0x500
[  766.073994][T15106]  ? import_iovec+0x6f/0xa0
[  766.078545][T15106]  ___sys_sendmsg+0x21c/0x290
[  766.083302][T15106]  ? __sys_sendmsg+0x270/0x270
[  766.088140][T15106]  ? perf_trace_run_bpf_submit+0xf3/0x1c0
[  766.093920][T15106]  ? __fdget+0x17c/0x200
[  766.098213][T15106]  __se_sys_sendmsg+0x19e/0x270
[  766.103115][T15106]  ? __x64_sys_sendmsg+0x80/0x80
[  766.108120][T15106]  ? syscall_enter_from_user_mode+0x2a/0x80
[  766.114062][T15106]  do_syscall_64+0x4c/0xa0
[  766.118526][T15106]  ? clear_bhb_loop+0x60/0xb0
[  766.123246][T15106]  ? clear_bhb_loop+0x60/0xb0
[  766.127969][T15106]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  766.133921][T15106] RIP: 0033:0x7fa4d5f8e969
[  766.138374][T15106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  766.158027][T15106] RSP: 002b:00007fa4d6e45038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  766.166508][T15106] RAX: ffffffffffffffda RBX: 00007fa4d61b5fa0 RCX: 00007fa4d5f8e969
[  766.174517][T15106] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  766.182520][T15106] RBP: 00007fa4d6010ab1 R08: 0000000000000000 R09: 0000000000000000
[  766.190524][T15106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  766.198533][T15106] R13: 0000000000000000 R14: 00007fa4d61b5fa0 R15: 00007ffcc7b71bd8
[  766.206560][T15106]  </TASK>
[  766.404575][T15113] netlink: 'syz.2.4007': attribute type 10 has an invalid length.
[  766.429880][T15112] __nla_validate_parse: 2 callbacks suppressed
[  766.429959][T15112] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.4006'.
[  766.484623][T15113] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4007'.
[  766.621352][T15112] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  766.641109][T15112] CPU: 0 PID: 15112 Comm: syz.4.4006 Not tainted 6.1.139-syzkaller #0
[  766.649374][T15112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  766.659472][T15112] Call Trace:
[  766.662797][T15112]  <TASK>
[  766.665755][T15112]  dump_stack_lvl+0x168/0x22e
[  766.670481][T15112]  ? show_regs_print_info+0x12/0x12
[  766.675728][T15112]  ? load_image+0x3b0/0x3b0
[  766.680277][T15112]  sysfs_warn_dup+0x8a/0xa0
[  766.684829][T15112]  sysfs_do_create_link_sd+0xc0/0x110
[  766.690256][T15112]  device_add+0x7ed/0xfb0
[  766.694621][T15112]  wiphy_register+0x1e68/0x2bd0
[  766.699520][T15112]  ? cfg80211_event_work+0x40/0x40
[  766.704656][T15112]  ? minstrel_ht_alloc+0x894/0xa20
[  766.709794][T15112]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  766.715878][T15112]  ieee80211_register_hw+0x2c29/0x38c0
[  766.721388][T15112]  ? ieee80211_register_hw+0xf31/0x38c0
[  766.726951][T15112]  ? ieee80211_register_hw+0xe31/0x38c0
[  766.732605][T15112]  ? ieee80211_tasklet_handler+0x20/0x20
[  766.738260][T15112]  ? rcu_is_watching+0x11/0xa0
[  766.743043][T15112]  ? memset+0x1e/0x40
[  766.747049][T15112]  ? hrtimer_init+0x10c/0x220
[  766.751733][T15112]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  766.757479][T15112]  hwsim_new_radio_nl+0xafa/0xce0
[  766.762527][T15112]  genl_family_rcv_msg_doit+0x22e/0x320
[  766.768086][T15112]  ? end_current_label_crit_section+0x170/0x170
[  766.774340][T15112]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  766.780252][T15112]  ? bpf_lsm_capable+0x5/0x10
[  766.784954][T15112]  ? security_capable+0x85/0xb0
[  766.789855][T15112]  genl_rcv_msg+0x5f2/0x780
[  766.794554][T15112]  ? genl_bind+0x350/0x350
[  766.798976][T15112]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  766.805322][T15112]  ? lock_acquire+0x20f/0x490
[  766.810025][T15112]  netlink_rcv_skb+0x1de/0x420
[  766.814855][T15112]  ? genl_bind+0x350/0x350
[  766.819282][T15112]  ? netlink_ack+0x1100/0x1100
[  766.824255][T15112]  ? down_read+0x1a8/0x2d0
[  766.828688][T15112]  genl_rcv+0x24/0x40
[  766.832681][T15112]  netlink_unicast+0x74c/0x8c0
[  766.837498][T15112]  netlink_sendmsg+0x89e/0xbc0
[  766.842294][T15112]  ? netlink_getsockopt+0x540/0x540
[  766.847515][T15112]  ? aa_sock_msg_perm+0x94/0x150
[  766.852469][T15112]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  766.857770][T15112]  ? security_socket_sendmsg+0x7c/0xa0
[  766.863239][T15112]  ? netlink_getsockopt+0x540/0x540
[  766.868456][T15112]  ____sys_sendmsg+0x59b/0x970
[  766.873248][T15112]  ? __sys_sendmsg_sock+0x30/0x30
[  766.878297][T15112]  ? import_iovec+0x6f/0xa0
[  766.882821][T15112]  ___sys_sendmsg+0x21c/0x290
[  766.887531][T15112]  ? __sys_sendmsg+0x270/0x270
[  766.892337][T15112]  ? lockdep_hardirqs_on+0x94/0x140
[  766.897770][T15112]  ? __fdget+0x17c/0x200
[  766.902042][T15112]  __se_sys_sendmsg+0x19e/0x270
[  766.906913][T15112]  ? __x64_sys_sendmsg+0x80/0x80
[  766.911887][T15112]  ? syscall_enter_from_user_mode+0x2a/0x80
[  766.917793][T15112]  do_syscall_64+0x4c/0xa0
[  766.922221][T15112]  ? clear_bhb_loop+0x60/0xb0
[  766.926905][T15112]  ? clear_bhb_loop+0x60/0xb0
[  766.931591][T15112]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  766.937505][T15112] RIP: 0033:0x7fb9c278e969
[  766.941944][T15112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  766.961650][T15112] RSP: 002b:00007fb9c25ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  766.970082][T15112] RAX: ffffffffffffffda RBX: 00007fb9c29b5fa0 RCX: 00007fb9c278e969
[  766.978062][T15112] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  766.986043][T15112] RBP: 00007fb9c2810ab1 R08: 0000000000000000 R09: 0000000000000000
[  766.994024][T15112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  767.002001][T15112] R13: 0000000000000000 R14: 00007fb9c29b5fa0 R15: 00007ffe14376df8
[  767.009995][T15112]  </TASK>
[  767.282607][T15128] netlink: 'syz.0.4011': attribute type 10 has an invalid length.
[  767.330669][T15128] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4011'.
[  767.369081][T15134] netlink: 'syz.3.4014': attribute type 25 has an invalid length.
[  767.875125][T15155] netlink: 'syz.0.4020': attribute type 10 has an invalid length.
[  767.885723][T15155] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4020'.
[  768.286669][T15167] netlink: 122896 bytes leftover after parsing attributes in process `syz.3.4023'.
[  768.448454][T15167] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  768.466669][T15167] CPU: 1 PID: 15167 Comm: syz.3.4023 Not tainted 6.1.139-syzkaller #0
[  768.474924][T15167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  768.485021][T15167] Call Trace:
[  768.488339][T15167]  <TASK>
[  768.491297][T15167]  dump_stack_lvl+0x168/0x22e
[  768.496027][T15167]  ? show_regs_print_info+0x12/0x12
[  768.501288][T15167]  ? load_image+0x3b0/0x3b0
[  768.505854][T15167]  sysfs_warn_dup+0x8a/0xa0
[  768.510419][T15167]  sysfs_do_create_link_sd+0xc0/0x110
[  768.515852][T15167]  device_add+0x7ed/0xfb0
[  768.521470][T15167]  wiphy_register+0x1e68/0x2bd0
[  768.527103][T15167]  ? cfg80211_event_work+0x40/0x40
[  768.532532][T15167]  ? minstrel_ht_alloc+0x894/0xa20
[  768.537695][T15167]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  768.543881][T15167]  ieee80211_register_hw+0x2c29/0x38c0
[  768.549778][T15167]  ? ieee80211_register_hw+0xf31/0x38c0
[  768.555363][T15167]  ? ieee80211_register_hw+0xe31/0x38c0
[  768.561028][T15167]  ? ieee80211_tasklet_handler+0x20/0x20
[  768.566712][T15167]  ? rcu_is_watching+0x11/0xa0
[  768.571960][T15167]  ? memset+0x1e/0x40
[  768.576065][T15167]  ? hrtimer_init+0x10c/0x220
[  768.580766][T15167]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  768.586534][T15167]  hwsim_new_radio_nl+0xafa/0xce0
[  768.591605][T15167]  genl_family_rcv_msg_doit+0x22e/0x320
[  768.597179][T15167]  ? end_current_label_crit_section+0x170/0x170
[  768.603449][T15167]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  768.609467][T15167]  ? bpf_lsm_capable+0x5/0x10
[  768.614204][T15167]  ? security_capable+0x85/0xb0
[  768.619180][T15167]  genl_rcv_msg+0x5f2/0x780
[  768.623918][T15167]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  768.630102][T15167]  ? genl_bind+0x350/0x350
[  768.634542][T15167]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  768.640895][T15167]  ? netlink_rcv_skb+0x1bd/0x420
[  768.645865][T15167]  netlink_rcv_skb+0x1de/0x420
[  768.650685][T15167]  ? genl_bind+0x350/0x350
[  768.655127][T15167]  ? netlink_ack+0x1100/0x1100
[  768.659940][T15167]  ? down_read+0x1a8/0x2d0
[  768.664390][T15167]  genl_rcv+0x24/0x40
[  768.668389][T15167]  netlink_unicast+0x74c/0x8c0
[  768.673197][T15167]  netlink_sendmsg+0x89e/0xbc0
[  768.678001][T15167]  ? netlink_getsockopt+0x540/0x540
[  768.683242][T15167]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  768.688560][T15167]  ? security_socket_sendmsg+0x7c/0xa0
[  768.694047][T15167]  ? netlink_getsockopt+0x540/0x540
[  768.699440][T15167]  ____sys_sendmsg+0x59b/0x970
[  768.704997][T15167]  ? __sys_sendmsg_sock+0x30/0x30
[  768.710153][T15167]  ? __import_iovec+0x315/0x500
[  768.715042][T15167]  ? import_iovec+0x6f/0xa0
[  768.719592][T15167]  ___sys_sendmsg+0x21c/0x290
[  768.724332][T15167]  ? __sys_sendmsg+0x270/0x270
[  768.729176][T15167]  ? seqcount_lockdep_reader_access+0x15c/0x1c0
[  768.735473][T15167]  ? __fdget+0x17c/0x200
[  768.739780][T15167]  __se_sys_sendmsg+0x19e/0x270
[  768.744670][T15167]  ? __x64_sys_sendmsg+0x80/0x80
[  768.749654][T15167]  ? lockdep_hardirqs_on+0x94/0x140
[  768.754887][T15167]  do_syscall_64+0x4c/0xa0
[  768.759330][T15167]  ? clear_bhb_loop+0x60/0xb0
[  768.764034][T15167]  ? clear_bhb_loop+0x60/0xb0
[  768.768735][T15167]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  768.774665][T15167] RIP: 0033:0x7fa4d5f8e969
[  768.779094][T15167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  768.798727][T15167] RSP: 002b:00007fa4d6e45038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  768.807259][T15167] RAX: ffffffffffffffda RBX: 00007fa4d61b5fa0 RCX: 00007fa4d5f8e969
[  768.815354][T15167] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  768.823361][T15167] RBP: 00007fa4d6010ab1 R08: 0000000000000000 R09: 0000000000000000
[  768.831354][T15167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  768.839346][T15167] R13: 0000000000000000 R14: 00007fa4d61b5fa0 R15: 00007ffcc7b71bd8
[  768.847391][T15167]  </TASK>
[  769.129988][T15178] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.4027'.
[  769.168679][T15180] netlink: 'syz.2.4028': attribute type 25 has an invalid length.
[  769.245436][T15178] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  769.296514][T15178] CPU: 1 PID: 15178 Comm: syz.4.4027 Not tainted 6.1.139-syzkaller #0
[  769.304766][T15178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  769.314864][T15178] Call Trace:
[  769.318176][T15178]  <TASK>
[  769.321145][T15178]  dump_stack_lvl+0x168/0x22e
[  769.325885][T15178]  ? show_regs_print_info+0x12/0x12
[  769.331231][T15178]  ? load_image+0x3b0/0x3b0
[  769.335810][T15178]  sysfs_warn_dup+0x8a/0xa0
[  769.340365][T15178]  sysfs_do_create_link_sd+0xc0/0x110
[  769.345792][T15178]  device_add+0x7ed/0xfb0
[  769.350187][T15178]  wiphy_register+0x1e68/0x2bd0
[  769.355123][T15178]  ? cfg80211_event_work+0x40/0x40
[  769.360302][T15178]  ? minstrel_ht_alloc+0x894/0xa20
[  769.365479][T15178]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  769.371603][T15178]  ieee80211_register_hw+0x2c29/0x38c0
[  769.377156][T15178]  ? ieee80211_register_hw+0xf31/0x38c0
[  769.382761][T15178]  ? ieee80211_register_hw+0xe31/0x38c0
[  769.388370][T15178]  ? ieee80211_tasklet_handler+0x20/0x20
[  769.394071][T15178]  ? rcu_is_watching+0x11/0xa0
[  769.398898][T15178]  ? memset+0x1e/0x40
[  769.402935][T15178]  ? hrtimer_init+0x10c/0x220
[  769.407655][T15178]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  769.413442][T15178]  hwsim_new_radio_nl+0xafa/0xce0
[  769.418541][T15178]  genl_family_rcv_msg_doit+0x22e/0x320
[  769.424153][T15178]  ? end_current_label_crit_section+0x170/0x170
[  769.430457][T15178]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  769.436407][T15178]  ? bpf_lsm_capable+0x5/0x10
[  769.441140][T15178]  ? security_capable+0x85/0xb0
[  769.446045][T15178]  genl_rcv_msg+0x5f2/0x780
[  769.450586][T15178]  ? perf_trace_preemptirq_template+0x287/0x330
[  769.456887][T15178]  ? genl_bind+0x350/0x350
[  769.461344][T15178]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  769.467381][T15178]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  769.473766][T15178]  ? lock_chain_count+0x20/0x20
[  769.478678][T15178]  netlink_rcv_skb+0x1de/0x420
[  769.483504][T15178]  ? genl_bind+0x350/0x350
[  769.487966][T15178]  ? netlink_ack+0x1100/0x1100
[  769.492794][T15178]  ? preempt_count_add+0xa2/0x190
[  769.497873][T15178]  ? down_read+0x1a8/0x2d0
[  769.502347][T15178]  genl_rcv+0x24/0x40
[  769.506378][T15178]  netlink_unicast+0x74c/0x8c0
[  769.511215][T15178]  netlink_sendmsg+0x89e/0xbc0
[  769.516055][T15178]  ? netlink_getsockopt+0x540/0x540
[  769.521320][T15178]  ? aa_sock_msg_perm+0x94/0x150
[  769.526325][T15178]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  769.531662][T15178]  ? security_socket_sendmsg+0x7c/0xa0
[  769.537174][T15178]  ? netlink_getsockopt+0x540/0x540
[  769.542438][T15178]  ____sys_sendmsg+0x59b/0x970
[  769.547280][T15178]  ? __sys_sendmsg_sock+0x30/0x30
[  769.552380][T15178]  ? import_iovec+0x6f/0xa0
[  769.556940][T15178]  ___sys_sendmsg+0x21c/0x290
[  769.561684][T15178]  ? __sys_sendmsg+0x270/0x270
[  769.566533][T15178]  ? seqcount_lockdep_reader_access+0x15c/0x1c0
[  769.572866][T15178]  ? __fdget+0x17c/0x200
[  769.577173][T15178]  __se_sys_sendmsg+0x19e/0x270
[  769.582082][T15178]  ? perf_trace_preemptirq_template+0x287/0x330
[  769.588371][T15178]  ? __x64_sys_sendmsg+0x80/0x80
[  769.593356][T15178]  ? lockdep_hardirqs_on+0x94/0x140
[  769.598591][T15178]  do_syscall_64+0x4c/0xa0
[  769.603028][T15178]  ? clear_bhb_loop+0x60/0xb0
[  769.607716][T15178]  ? clear_bhb_loop+0x60/0xb0
[  769.612416][T15178]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  769.618336][T15178] RIP: 0033:0x7fb9c278e969
[  769.622768][T15178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  769.642399][T15178] RSP: 002b:00007fb9c25ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  769.650836][T15178] RAX: ffffffffffffffda RBX: 00007fb9c29b5fa0 RCX: 00007fb9c278e969
[  769.658817][T15178] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  769.666791][T15178] RBP: 00007fb9c2810ab1 R08: 0000000000000000 R09: 0000000000000000
[  769.674773][T15178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  769.682760][T15178] R13: 0000000000000000 R14: 00007fb9c29b5fa0 R15: 00007ffe14376df8
[  769.690755][T15178]  </TASK>
[  770.044189][T15200] netlink: 'syz.0.4033': attribute type 25 has an invalid length.
[  770.062472][T15196] netlink: 'syz.3.4032': attribute type 10 has an invalid length.
[  770.075343][T15196] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4032'.
[  770.358137][T15210] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.4037'.
[  770.436510][T15210] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  770.489224][T15210] CPU: 0 PID: 15210 Comm: syz.4.4037 Not tainted 6.1.139-syzkaller #0
[  770.497479][T15210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  770.507577][T15210] Call Trace:
[  770.510891][T15210]  <TASK>
[  770.513852][T15210]  dump_stack_lvl+0x168/0x22e
[  770.518593][T15210]  ? show_regs_print_info+0x12/0x12
[  770.523843][T15210]  ? load_image+0x3b0/0x3b0
[  770.528406][T15210]  ? sysfs_warn_dup+0x61/0xa0
[  770.533149][T15210]  sysfs_warn_dup+0x8a/0xa0
[  770.537720][T15210]  sysfs_do_create_link_sd+0xc0/0x110
[  770.543153][T15210]  device_add+0x7ed/0xfb0
[  770.547547][T15210]  wiphy_register+0x1e68/0x2bd0
[  770.552471][T15210]  ? cfg80211_event_work+0x40/0x40
[  770.557634][T15210]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  770.563842][T15210]  ? ieee80211_register_hw+0x2b7b/0x38c0
[  770.569542][T15210]  ieee80211_register_hw+0x2c29/0x38c0
[  770.575074][T15210]  ? ieee80211_register_hw+0xf31/0x38c0
[  770.580767][T15210]  ? ieee80211_register_hw+0xe31/0x38c0
[  770.586468][T15210]  ? ieee80211_tasklet_handler+0x20/0x20
[  770.592173][T15210]  ? rcu_is_watching+0x11/0xa0
[  770.597088][T15210]  ? memset+0x1e/0x40
[  770.601122][T15210]  ? hrtimer_init+0x10c/0x220
[  770.605852][T15210]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  770.611646][T15210]  hwsim_new_radio_nl+0xafa/0xce0
[  770.616734][T15210]  genl_family_rcv_msg_doit+0x22e/0x320
[  770.622321][T15210]  ? end_current_label_crit_section+0x170/0x170
[  770.628607][T15210]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  770.634540][T15210]  ? bpf_lsm_capable+0x5/0x10
[  770.639243][T15210]  ? security_capable+0x85/0xb0
[  770.644135][T15210]  genl_rcv_msg+0x5f2/0x780
[  770.648672][T15210]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  770.654853][T15210]  ? genl_bind+0x350/0x350
[  770.659291][T15210]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  770.665651][T15210]  ? netlink_rcv_skb+0x1bd/0x420
[  770.670638][T15210]  netlink_rcv_skb+0x1de/0x420
[  770.675438][T15210]  ? genl_bind+0x350/0x350
[  770.679987][T15210]  ? netlink_ack+0x1100/0x1100
[  770.684795][T15210]  ? down_read+0x1a8/0x2d0
[  770.689248][T15210]  genl_rcv+0x24/0x40
[  770.693269][T15210]  netlink_unicast+0x74c/0x8c0
[  770.698099][T15210]  netlink_sendmsg+0x89e/0xbc0
[  770.702922][T15210]  ? netlink_getsockopt+0x540/0x540
[  770.708169][T15210]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  770.714356][T15210]  ? aa_sock_msg_perm+0x94/0x150
[  770.719343][T15210]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  770.724666][T15210]  ? security_socket_sendmsg+0x7c/0xa0
[  770.730158][T15210]  ? netlink_getsockopt+0x540/0x540
[  770.735395][T15210]  ____sys_sendmsg+0x59b/0x970
[  770.740198][T15210]  ? __sys_sendmsg_sock+0x30/0x30
[  770.745263][T15210]  ? __import_iovec+0x315/0x500
[  770.750151][T15210]  ? import_iovec+0x6f/0xa0
[  770.754702][T15210]  ___sys_sendmsg+0x21c/0x290
[  770.759435][T15210]  ? __sys_sendmsg+0x270/0x270
[  770.764255][T15210]  ? lockdep_hardirqs_on+0x94/0x140
[  770.769508][T15210]  ? __fdget+0x17c/0x200
[  770.773784][T15210]  __se_sys_sendmsg+0x19e/0x270
[  770.778674][T15210]  ? __x64_sys_sendmsg+0x80/0x80
[  770.783657][T15210]  ? lockdep_hardirqs_on+0x94/0x140
[  770.788888][T15210]  do_syscall_64+0x4c/0xa0
[  770.793425][T15210]  ? clear_bhb_loop+0x60/0xb0
[  770.798128][T15210]  ? clear_bhb_loop+0x60/0xb0
[  770.802836][T15210]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  770.808849][T15210] RIP: 0033:0x7fb9c278e969
[  770.813281][T15210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  770.833269][T15210] RSP: 002b:00007fb9c25ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  770.841916][T15210] RAX: ffffffffffffffda RBX: 00007fb9c29b5fa0 RCX: 00007fb9c278e969
[  770.849915][T15210] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  770.858124][T15210] RBP: 00007fb9c2810ab1 R08: 0000000000000000 R09: 0000000000000000
[  770.866824][T15210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  770.875003][T15210] R13: 0000000000000000 R14: 00007fb9c29b5fa0 R15: 00007ffe14376df8
[  770.883024][T15210]  </TASK>
[  770.931573][T15214] netlink: 'syz.2.4038': attribute type 10 has an invalid length.
[  770.945669][T15214] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4038'.
[  771.110101][T15218] netlink: 'syz.3.4041': attribute type 25 has an invalid length.
[  771.390854][T15228] netlink: 122896 bytes leftover after parsing attributes in process `syz.1.4042'.
[  771.501897][T15228] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  771.563204][T15228] CPU: 1 PID: 15228 Comm: syz.1.4042 Not tainted 6.1.139-syzkaller #0
[  771.571451][T15228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  771.581541][T15228] Call Trace:
[  771.585113][T15228]  <TASK>
[  771.588146][T15228]  dump_stack_lvl+0x168/0x22e
[  771.592854][T15228]  ? show_regs_print_info+0x12/0x12
[  771.598085][T15228]  ? load_image+0x3b0/0x3b0
[  771.602619][T15228]  sysfs_warn_dup+0x8a/0xa0
[  771.607150][T15228]  sysfs_do_create_link_sd+0xc0/0x110
[  771.612553][T15228]  device_add+0x7ed/0xfb0
[  771.616917][T15228]  wiphy_register+0x1e68/0x2bd0
[  771.621797][T15228]  ? lock_chain_count+0x20/0x20
[  771.626684][T15228]  ? cfg80211_event_work+0x40/0x40
[  771.631823][T15228]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  771.637905][T15228]  ieee80211_register_hw+0x2c29/0x38c0
[  771.643390][T15228]  ? ieee80211_register_hw+0xf31/0x38c0
[  771.648953][T15228]  ? ieee80211_register_hw+0xe31/0x38c0
[  771.654519][T15228]  ? ieee80211_tasklet_handler+0x20/0x20
[  771.660174][T15228]  ? rcu_is_watching+0x11/0xa0
[  771.664960][T15228]  ? memset+0x1e/0x40
[  771.668957][T15228]  ? hrtimer_init+0x10c/0x220
[  771.673647][T15228]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  771.679398][T15228]  hwsim_new_radio_nl+0xafa/0xce0
[  771.684445][T15228]  genl_family_rcv_msg_doit+0x22e/0x320
[  771.690002][T15228]  ? end_current_label_crit_section+0x170/0x170
[  771.696263][T15228]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  771.702188][T15228]  ? bpf_lsm_capable+0x5/0x10
[  771.706968][T15228]  ? security_capable+0x85/0xb0
[  771.711835][T15228]  genl_rcv_msg+0x5f2/0x780
[  771.716359][T15228]  ? genl_bind+0x350/0x350
[  771.720868][T15228]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  771.727210][T15228]  ? lock_chain_count+0x20/0x20
[  771.732086][T15228]  netlink_rcv_skb+0x1de/0x420
[  771.736871][T15228]  ? genl_bind+0x350/0x350
[  771.741301][T15228]  ? netlink_ack+0x1100/0x1100
[  771.746089][T15228]  ? tokenize_frame_descr+0xb0/0xb0
[  771.751310][T15228]  ? down_read+0x1a8/0x2d0
[  771.755740][T15228]  genl_rcv+0x24/0x40
[  771.759730][T15228]  netlink_unicast+0x74c/0x8c0
[  771.764518][T15228]  netlink_sendmsg+0x89e/0xbc0
[  771.769312][T15228]  ? netlink_getsockopt+0x540/0x540
[  771.774528][T15228]  ? lockdep_hardirqs_on+0x94/0x140
[  771.779749][T15228]  ? aa_sock_msg_perm+0x94/0x150
[  771.784697][T15228]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  771.789991][T15228]  ? security_socket_sendmsg+0x7c/0xa0
[  771.795462][T15228]  ? netlink_getsockopt+0x540/0x540
[  771.800687][T15228]  ____sys_sendmsg+0x59b/0x970
[  771.805569][T15228]  ? __sys_sendmsg_sock+0x30/0x30
[  771.810612][T15228]  ? __import_iovec+0x315/0x500
[  771.815488][T15228]  ? import_iovec+0x6f/0xa0
[  771.820009][T15228]  ___sys_sendmsg+0x21c/0x290
[  771.824710][T15228]  ? __sys_sendmsg+0x270/0x270
[  771.829530][T15228]  ? __fdget+0x17c/0x200
[  771.833804][T15228]  __se_sys_sendmsg+0x19e/0x270
[  771.838686][T15228]  ? __x64_sys_sendmsg+0x80/0x80
[  771.843656][T15228]  ? syscall_enter_from_user_mode+0x2a/0x80
[  771.849571][T15228]  do_syscall_64+0x4c/0xa0
[  771.854005][T15228]  ? clear_bhb_loop+0x60/0xb0
[  771.858691][T15228]  ? clear_bhb_loop+0x60/0xb0
[  771.863382][T15228]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  771.869297][T15228] RIP: 0033:0x7fcbf738e969
[  771.873726][T15228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  771.893344][T15228] RSP: 002b:00007fcbf811f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  771.901798][T15228] RAX: ffffffffffffffda RBX: 00007fcbf75b5fa0 RCX: 00007fcbf738e969
[  771.909782][T15228] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  771.917772][T15228] RBP: 00007fcbf7410ab1 R08: 0000000000000000 R09: 0000000000000000
[  771.925841][T15228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  771.933822][T15228] R13: 0000000000000000 R14: 00007fcbf75b5fa0 R15: 00007ffdc4c8d508
[  771.941830][T15228]  </TASK>
[  772.042738][T15231] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.4046'.
[  772.112127][T15231] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  772.133121][T15231] CPU: 1 PID: 15231 Comm: syz.4.4046 Not tainted 6.1.139-syzkaller #0
[  772.141388][T15231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  772.151478][T15231] Call Trace:
[  772.154782][T15231]  <TASK>
[  772.157733][T15231]  dump_stack_lvl+0x168/0x22e
[  772.162455][T15231]  ? show_regs_print_info+0x12/0x12
[  772.167786][T15231]  ? load_image+0x3b0/0x3b0
[  772.172356][T15231]  sysfs_warn_dup+0x8a/0xa0
[  772.176915][T15231]  sysfs_do_create_link_sd+0xc0/0x110
[  772.182342][T15231]  device_add+0x7ed/0xfb0
[  772.186725][T15231]  wiphy_register+0x1e68/0x2bd0
[  772.191658][T15231]  ? cfg80211_event_work+0x40/0x40
[  772.196820][T15231]  ? minstrel_ht_alloc+0x894/0xa20
[  772.201984][T15231]  ? ieee80211_init_rate_ctrl_alg+0x23c/0x5e0
[  772.208103][T15231]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  772.214209][T15231]  ieee80211_register_hw+0x2c29/0x38c0
[  772.219706][T15231]  ? ieee80211_register_hw+0xf31/0x38c0
[  772.225274][T15231]  ? ieee80211_register_hw+0xe31/0x38c0
[  772.230933][T15231]  ? ieee80211_tasklet_handler+0x20/0x20
[  772.236593][T15231]  ? rcu_is_watching+0x11/0xa0
[  772.241384][T15231]  ? memset+0x1e/0x40
[  772.245387][T15231]  ? hrtimer_init+0x10c/0x220
[  772.250081][T15231]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  772.255829][T15231]  hwsim_new_radio_nl+0xafa/0xce0
[  772.260874][T15231]  genl_family_rcv_msg_doit+0x22e/0x320
[  772.266430][T15231]  ? end_current_label_crit_section+0x170/0x170
[  772.272866][T15231]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  772.278769][T15231]  ? __sanitizer_cov_trace_pc+0x45/0x60
[  772.284332][T15231]  ? bpf_lsm_capable+0x5/0x10
[  772.289027][T15231]  ? security_capable+0x85/0xb0
[  772.293916][T15231]  genl_rcv_msg+0x5f2/0x780
[  772.298447][T15231]  ? genl_bind+0x350/0x350
[  772.302873][T15231]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  772.309228][T15231]  netlink_rcv_skb+0x1de/0x420
[  772.314014][T15231]  ? genl_bind+0x350/0x350
[  772.318472][T15231]  ? netlink_ack+0x1100/0x1100
[  772.323271][T15231]  ? lockdep_hardirqs_on+0x94/0x140
[  772.328537][T15231]  ? down_read+0x1a8/0x2d0
[  772.332992][T15231]  genl_rcv+0x24/0x40
[  772.336990][T15231]  netlink_unicast+0x74c/0x8c0
[  772.341783][T15231]  netlink_sendmsg+0x89e/0xbc0
[  772.346563][T15231]  ? lockdep_hardirqs_on+0x94/0x140
[  772.351788][T15231]  ? netlink_getsockopt+0x540/0x540
[  772.357012][T15231]  ? bpf_lsm_socket_accept+0x10/0x10
[  772.362331][T15231]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  772.367628][T15231]  ? security_socket_sendmsg+0x7c/0xa0
[  772.373097][T15231]  ? netlink_getsockopt+0x540/0x540
[  772.378311][T15231]  ____sys_sendmsg+0x59b/0x970
[  772.383110][T15231]  ? __sys_sendmsg_sock+0x30/0x30
[  772.388178][T15231]  ? __import_iovec+0x315/0x500
[  772.393073][T15231]  ? import_iovec+0x6f/0xa0
[  772.397601][T15231]  ___sys_sendmsg+0x21c/0x290
[  772.402304][T15231]  ? __sys_sendmsg+0x270/0x270
[  772.407108][T15231]  ? seqcount_lockdep_reader_access+0x15c/0x1c0
[  772.413378][T15231]  ? __fdget+0x17c/0x200
[  772.417645][T15231]  __se_sys_sendmsg+0x19e/0x270
[  772.422517][T15231]  ? __x64_sys_sendmsg+0x80/0x80
[  772.427487][T15231]  ? lockdep_hardirqs_on+0x94/0x140
[  772.432796][T15231]  do_syscall_64+0x4c/0xa0
[  772.437241][T15231]  ? clear_bhb_loop+0x60/0xb0
[  772.441953][T15231]  ? clear_bhb_loop+0x60/0xb0
[  772.446664][T15231]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  772.452590][T15231] RIP: 0033:0x7fb9c278e969
[  772.457021][T15231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  772.476647][T15231] RSP: 002b:00007fb9c25ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  772.485100][T15231] RAX: ffffffffffffffda RBX: 00007fb9c29b5fa0 RCX: 00007fb9c278e969
[  772.493106][T15231] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  772.501116][T15231] RBP: 00007fb9c2810ab1 R08: 0000000000000000 R09: 0000000000000000
[  772.509125][T15231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  772.517103][T15231] R13: 0000000000000000 R14: 00007fb9c29b5fa0 R15: 00007ffe14376df8
[  772.525103][T15231]  </TASK>
[  772.710852][T15245] netlink: 'syz.3.4048': attribute type 25 has an invalid length.
[  773.037691][T15258] netlink: 'syz.3.4054': attribute type 25 has an invalid length.
[  773.092563][T15259] delete_channel: no stack
[  773.121987][T15260] netlink: 'syz.0.4051': attribute type 10 has an invalid length.
[  773.145356][T15260] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4051'.
[  773.341678][T15266] netlink: 'syz.4.4056': attribute type 10 has an invalid length.
[  773.352074][T15266] netlink: 152 bytes leftover after parsing attributes in process `syz.4.4056'.
[  773.685541][T15276] netlink: 122896 bytes leftover after parsing attributes in process `syz.3.4059'.
[  773.740571][T15276] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  773.775455][T15276] CPU: 0 PID: 15276 Comm: syz.3.4059 Not tainted 6.1.139-syzkaller #0
[  773.783693][T15276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  773.793779][T15276] Call Trace:
[  773.797087][T15276]  <TASK>
[  773.800051][T15276]  dump_stack_lvl+0x168/0x22e
[  773.804801][T15276]  ? show_regs_print_info+0x12/0x12
[  773.810052][T15276]  ? load_image+0x3b0/0x3b0
[  773.814696][T15276]  sysfs_warn_dup+0x8a/0xa0
[  773.819250][T15276]  sysfs_do_create_link_sd+0xc0/0x110
[  773.824673][T15276]  device_add+0x7ed/0xfb0
[  773.829052][T15276]  wiphy_register+0x1e68/0x2bd0
[  773.833965][T15276]  ? cfg80211_event_work+0x40/0x40
[  773.839121][T15276]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  773.845433][T15276]  ieee80211_register_hw+0x2c29/0x38c0
[  773.851049][T15276]  ? ieee80211_register_hw+0xf31/0x38c0
[  773.856649][T15276]  ? ieee80211_register_hw+0xe31/0x38c0
[  773.862254][T15276]  ? ieee80211_tasklet_handler+0x20/0x20
[  773.867972][T15276]  ? rcu_is_watching+0x11/0xa0
[  773.872789][T15276]  ? memset+0x1e/0x40
[  773.876808][T15276]  ? hrtimer_init+0x10c/0x220
[  773.881509][T15276]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  773.887364][T15276]  hwsim_new_radio_nl+0xafa/0xce0
[  773.892626][T15276]  genl_family_rcv_msg_doit+0x22e/0x320
[  773.898201][T15276]  ? end_current_label_crit_section+0x170/0x170
[  773.904487][T15276]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  773.910425][T15276]  ? bpf_lsm_capable+0x5/0x10
[  773.915128][T15276]  ? security_capable+0x85/0xb0
[  773.920029][T15276]  genl_rcv_msg+0x5f2/0x780
[  773.924567][T15276]  ? genl_bind+0x350/0x350
[  773.929001][T15276]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  773.935370][T15276]  netlink_rcv_skb+0x1de/0x420
[  773.940159][T15276]  ? genl_bind+0x350/0x350
[  773.944586][T15276]  ? netlink_ack+0x1100/0x1100
[  773.949386][T15276]  ? down_read+0x1a8/0x2d0
[  773.953823][T15276]  genl_rcv+0x24/0x40
[  773.957827][T15276]  netlink_unicast+0x74c/0x8c0
[  773.962615][T15276]  netlink_sendmsg+0x89e/0xbc0
[  773.967527][T15276]  ? netlink_getsockopt+0x540/0x540
[  773.972759][T15276]  ? aa_sock_msg_perm+0x94/0x150
[  773.977717][T15276]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  773.983019][T15276]  ? security_socket_sendmsg+0x7c/0xa0
[  773.988488][T15276]  ? netlink_getsockopt+0x540/0x540
[  773.993702][T15276]  ____sys_sendmsg+0x59b/0x970
[  773.998503][T15276]  ? __sys_sendmsg_sock+0x30/0x30
[  774.003541][T15276]  ? __import_iovec+0x315/0x500
[  774.008505][T15276]  ? import_iovec+0x6f/0xa0
[  774.013018][T15276]  ___sys_sendmsg+0x21c/0x290
[  774.017713][T15276]  ? __sys_sendmsg+0x270/0x270
[  774.022519][T15276]  ? seqcount_lockdep_reader_access+0x15c/0x1c0
[  774.028878][T15276]  ? __fdget+0x17c/0x200
[  774.033149][T15276]  __se_sys_sendmsg+0x19e/0x270
[  774.038020][T15276]  ? perf_trace_preemptirq_template+0x287/0x330
[  774.044277][T15276]  ? __x64_sys_sendmsg+0x80/0x80
[  774.049251][T15276]  ? lockdep_hardirqs_on+0x94/0x140
[  774.054473][T15276]  do_syscall_64+0x4c/0xa0
[  774.058907][T15276]  ? clear_bhb_loop+0x60/0xb0
[  774.063591][T15276]  ? clear_bhb_loop+0x60/0xb0
[  774.068365][T15276]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  774.074281][T15276] RIP: 0033:0x7fa4d5f8e969
[  774.078707][T15276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  774.098345][T15276] RSP: 002b:00007fa4d6e45038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  774.106777][T15276] RAX: ffffffffffffffda RBX: 00007fa4d61b5fa0 RCX: 00007fa4d5f8e969
[  774.114774][T15276] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  774.122761][T15276] RBP: 00007fa4d6010ab1 R08: 0000000000000000 R09: 0000000000000000
[  774.130743][T15276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  774.138763][T15276] R13: 0000000000000000 R14: 00007fa4d61b5fa0 R15: 00007ffcc7b71bd8
[  774.146770][T15276]  </TASK>
[  774.424394][T15293] netlink: 'syz.4.4064': attribute type 25 has an invalid length.
[  774.688213][T15298] netlink: 122896 bytes leftover after parsing attributes in process `syz.2.4066'.
[  774.744614][T15298] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  774.798698][T15298] CPU: 1 PID: 15298 Comm: syz.2.4066 Not tainted 6.1.139-syzkaller #0
[  774.806940][T15298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  774.817047][T15298] Call Trace:
[  774.820370][T15298]  <TASK>
[  774.823333][T15298]  dump_stack_lvl+0x168/0x22e
[  774.828063][T15298]  ? show_regs_print_info+0x12/0x12
[  774.833311][T15298]  ? load_image+0x3b0/0x3b0
[  774.837873][T15298]  sysfs_warn_dup+0x8a/0xa0
[  774.842489][T15298]  sysfs_do_create_link_sd+0xc0/0x110
[  774.847922][T15298]  device_add+0x7ed/0xfb0
[  774.852324][T15298]  wiphy_register+0x1e68/0x2bd0
[  774.857248][T15298]  ? cfg80211_event_work+0x40/0x40
[  774.862415][T15298]  ? minstrel_ht_alloc+0x894/0xa20
[  774.865997][T15301] delete_channel: no stack
[  774.867592][T15298]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  774.878108][T15298]  ieee80211_register_hw+0x2c29/0x38c0
[  774.883642][T15298]  ? ieee80211_register_hw+0xf31/0x38c0
[  774.889243][T15298]  ? ieee80211_register_hw+0xe31/0x38c0
[  774.894856][T15298]  ? ieee80211_tasklet_handler+0x20/0x20
[  774.900560][T15298]  ? rcu_is_watching+0x11/0xa0
[  774.905383][T15298]  ? memset+0x1e/0x40
[  774.909439][T15298]  ? hrtimer_init+0x10c/0x220
[  774.914144][T15298]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  774.919928][T15298]  hwsim_new_radio_nl+0xafa/0xce0
[  774.924993][T15298]  genl_family_rcv_msg_doit+0x22e/0x320
[  774.930569][T15298]  ? end_current_label_crit_section+0x170/0x170
[  774.936837][T15298]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  774.942771][T15298]  ? bpf_lsm_capable+0x5/0x10
[  774.947479][T15298]  ? security_capable+0x85/0xb0
[  774.952373][T15298]  genl_rcv_msg+0x5f2/0x780
[  774.956911][T15298]  ? genl_bind+0x350/0x350
[  774.961356][T15298]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  774.967746][T15298]  netlink_rcv_skb+0x1de/0x420
[  774.972553][T15298]  ? genl_bind+0x350/0x350
[  774.976991][T15298]  ? netlink_ack+0x1100/0x1100
[  774.981794][T15298]  ? down_read+0x1a8/0x2d0
[  774.986234][T15298]  genl_rcv+0x24/0x40
[  774.990366][T15298]  netlink_unicast+0x74c/0x8c0
[  774.995174][T15298]  netlink_sendmsg+0x89e/0xbc0
[  774.999986][T15298]  ? netlink_getsockopt+0x540/0x540
[  775.005226][T15298]  ? aa_sock_msg_perm+0x94/0x150
[  775.010192][T15298]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  775.015499][T15298]  ? security_socket_sendmsg+0x7c/0xa0
[  775.020990][T15298]  ? netlink_getsockopt+0x540/0x540
[  775.026224][T15298]  ____sys_sendmsg+0x59b/0x970
[  775.031028][T15298]  ? __sys_sendmsg_sock+0x30/0x30
[  775.036088][T15298]  ? __import_iovec+0x315/0x500
[  775.040959][T15298]  ? import_iovec+0x6f/0xa0
[  775.045495][T15298]  ___sys_sendmsg+0x21c/0x290
[  775.050210][T15298]  ? __sys_sendmsg+0x270/0x270
[  775.055038][T15298]  ? __fdget+0x17c/0x200
[  775.059316][T15298]  __se_sys_sendmsg+0x19e/0x270
[  775.064301][T15298]  ? __x64_sys_sendmsg+0x80/0x80
[  775.069308][T15298]  ? lockdep_hardirqs_on+0x94/0x140
[  775.074558][T15298]  do_syscall_64+0x4c/0xa0
[  775.079007][T15298]  ? clear_bhb_loop+0x60/0xb0
[  775.083709][T15298]  ? clear_bhb_loop+0x60/0xb0
[  775.088503][T15298]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  775.094437][T15298] RIP: 0033:0x7f8c7c98e969
[  775.098880][T15298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  775.118592][T15298] RSP: 002b:00007f8c7d834038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  775.127051][T15298] RAX: ffffffffffffffda RBX: 00007f8c7cbb6080 RCX: 00007f8c7c98e969
[  775.135049][T15298] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  775.143058][T15298] RBP: 00007f8c7ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  775.151041][T15298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  775.159031][T15298] R13: 0000000000000000 R14: 00007f8c7cbb6080 R15: 00007fff89c3e968
[  775.167119][T15298]  </TASK>
[  775.559364][T15307] netlink: 'syz.0.4070': attribute type 10 has an invalid length.
[  775.571214][T15307] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4070'.
[  775.608446][T15314] netlink: 188 bytes leftover after parsing attributes in process `syz.3.4067'.
[  776.236530][T15333] netlink: 'syz.2.4075': attribute type 10 has an invalid length.
[  776.263382][T15331] netlink: 122896 bytes leftover after parsing attributes in process `syz.1.4077'.
[  776.274663][T15333] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4075'.
[  776.425717][T15331] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  776.437090][T15331] CPU: 1 PID: 15331 Comm: syz.1.4077 Not tainted 6.1.139-syzkaller #0
[  776.445404][T15331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  776.455501][T15331] Call Trace:
[  776.458816][T15331]  <TASK>
[  776.461781][T15331]  dump_stack_lvl+0x168/0x22e
[  776.466528][T15331]  ? show_regs_print_info+0x12/0x12
[  776.471881][T15331]  ? load_image+0x3b0/0x3b0
[  776.476458][T15331]  sysfs_warn_dup+0x8a/0xa0
[  776.481022][T15331]  sysfs_do_create_link_sd+0xc0/0x110
[  776.486536][T15331]  device_add+0x7ed/0xfb0
[  776.490931][T15331]  wiphy_register+0x1e68/0x2bd0
[  776.495949][T15331]  ? cfg80211_event_work+0x40/0x40
[  776.501111][T15331]  ? minstrel_ht_alloc+0x894/0xa20
[  776.506278][T15331]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  776.512395][T15331]  ieee80211_register_hw+0x2c29/0x38c0
[  776.517928][T15331]  ? ieee80211_register_hw+0xf31/0x38c0
[  776.523552][T15331]  ? ieee80211_register_hw+0xe31/0x38c0
[  776.529164][T15331]  ? ieee80211_tasklet_handler+0x20/0x20
[  776.534869][T15331]  ? rcu_is_watching+0x11/0xa0
[  776.539702][T15331]  ? memset+0x1e/0x40
[  776.543741][T15331]  ? hrtimer_init+0x10c/0x220
[  776.548493][T15331]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  776.554266][T15331]  hwsim_new_radio_nl+0xafa/0xce0
[  776.559326][T15331]  genl_family_rcv_msg_doit+0x22e/0x320
[  776.564891][T15331]  ? end_current_label_crit_section+0x170/0x170
[  776.571150][T15331]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  776.577075][T15331]  ? bpf_lsm_capable+0x5/0x10
[  776.581772][T15331]  ? security_capable+0x85/0xb0
[  776.586692][T15331]  genl_rcv_msg+0x5f2/0x780
[  776.591235][T15331]  ? genl_bind+0x350/0x350
[  776.595685][T15331]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  776.602041][T15331]  netlink_rcv_skb+0x1de/0x420
[  776.606824][T15331]  ? genl_bind+0x350/0x350
[  776.611250][T15331]  ? netlink_ack+0x1100/0x1100
[  776.616042][T15331]  ? down_read+0x1a8/0x2d0
[  776.620476][T15331]  genl_rcv+0x24/0x40
[  776.624474][T15331]  netlink_unicast+0x74c/0x8c0
[  776.629265][T15331]  netlink_sendmsg+0x89e/0xbc0
[  776.634057][T15331]  ? netlink_getsockopt+0x540/0x540
[  776.639278][T15331]  ? aa_sock_msg_perm+0x94/0x150
[  776.644228][T15331]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  776.649525][T15331]  ? security_socket_sendmsg+0x7c/0xa0
[  776.654997][T15331]  ? netlink_getsockopt+0x540/0x540
[  776.660212][T15331]  ____sys_sendmsg+0x59b/0x970
[  776.665006][T15331]  ? __sys_sendmsg_sock+0x30/0x30
[  776.670043][T15331]  ? __import_iovec+0x315/0x500
[  776.674913][T15331]  ? import_iovec+0x6f/0xa0
[  776.679430][T15331]  ___sys_sendmsg+0x21c/0x290
[  776.684130][T15331]  ? __sys_sendmsg+0x270/0x270
[  776.688950][T15331]  ? __fdget+0x17c/0x200
[  776.693219][T15331]  __se_sys_sendmsg+0x19e/0x270
[  776.698098][T15331]  ? __x64_sys_sendmsg+0x80/0x80
[  776.703072][T15331]  ? lockdep_hardirqs_on+0x94/0x140
[  776.708310][T15331]  ? __x64_sys_sendmsg+0x19/0x80
[  776.713271][T15331]  ? __sanitizer_cov_trace_pc+0x50/0x60
[  776.718830][T15331]  do_syscall_64+0x4c/0xa0
[  776.723267][T15331]  ? clear_bhb_loop+0x60/0xb0
[  776.728041][T15331]  ? clear_bhb_loop+0x60/0xb0
[  776.732727][T15331]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  776.738645][T15331] RIP: 0033:0x7fcbf738e969
[  776.743082][T15331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  776.762706][T15331] RSP: 002b:00007fcbf811f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  776.771135][T15331] RAX: ffffffffffffffda RBX: 00007fcbf75b5fa0 RCX: 00007fcbf738e969
[  776.779117][T15331] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  776.787099][T15331] RBP: 00007fcbf7410ab1 R08: 0000000000000000 R09: 0000000000000000
[  776.795077][T15331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  776.803056][T15331] R13: 0000000000000000 R14: 00007fcbf75b5fa0 R15: 00007ffdc4c8d508
[  776.811051][T15331]  </TASK>
[  777.238035][T15353] netlink: 122896 bytes leftover after parsing attributes in process `syz.0.4084'.
[  777.320332][T15353] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  777.353130][T15353] CPU: 0 PID: 15353 Comm: syz.0.4084 Not tainted 6.1.139-syzkaller #0
[  777.361376][T15353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  777.371485][T15353] Call Trace:
[  777.374804][T15353]  <TASK>
[  777.377778][T15353]  dump_stack_lvl+0x168/0x22e
[  777.382527][T15353]  ? show_regs_print_info+0x12/0x12
[  777.387790][T15353]  ? load_image+0x3b0/0x3b0
[  777.392358][T15353]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  777.398495][T15353]  sysfs_warn_dup+0x8a/0xa0
[  777.403075][T15353]  sysfs_do_create_link_sd+0xc0/0x110
[  777.408605][T15353]  device_add+0x7ed/0xfb0
[  777.413006][T15353]  wiphy_register+0x1e68/0x2bd0
[  777.417951][T15353]  ? cfg80211_event_work+0x40/0x40
[  777.423123][T15353]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  777.429338][T15353]  ? ieee80211_register_hw+0x2854/0x38c0
[  777.435138][T15353]  ieee80211_register_hw+0x2c29/0x38c0
[  777.440732][T15353]  ? ieee80211_register_hw+0xf31/0x38c0
[  777.446343][T15353]  ? ieee80211_register_hw+0xe31/0x38c0
[  777.451961][T15353]  ? ieee80211_tasklet_handler+0x20/0x20
[  777.457673][T15353]  ? rcu_is_watching+0x11/0xa0
[  777.462501][T15353]  ? memset+0x1e/0x40
[  777.466546][T15353]  ? hrtimer_init+0x10c/0x220
[  777.471286][T15353]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  777.477087][T15353]  hwsim_new_radio_nl+0xafa/0xce0
[  777.482186][T15353]  genl_family_rcv_msg_doit+0x22e/0x320
[  777.487793][T15353]  ? end_current_label_crit_section+0x170/0x170
[  777.494100][T15353]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  777.500059][T15353]  ? bpf_lsm_capable+0x5/0x10
[  777.504803][T15353]  ? security_capable+0x85/0xb0
[  777.509725][T15353]  genl_rcv_msg+0x5f2/0x780
[  777.514406][T15353]  ? genl_bind+0x350/0x350
[  777.518870][T15353]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  777.525361][T15353]  netlink_rcv_skb+0x1de/0x420
[  777.530191][T15353]  ? genl_bind+0x350/0x350
[  777.534666][T15353]  ? netlink_ack+0x1100/0x1100
[  777.539513][T15353]  ? down_read+0x1a8/0x2d0
[  777.543998][T15353]  genl_rcv+0x24/0x40
[  777.548122][T15353]  netlink_unicast+0x74c/0x8c0
[  777.552969][T15353]  netlink_sendmsg+0x89e/0xbc0
[  777.557801][T15353]  ? lockdep_hardirqs_on+0x94/0x140
[  777.563076][T15353]  ? netlink_getsockopt+0x540/0x540
[  777.568353][T15353]  ? security_socket_sendmsg+0x41/0xa0
[  777.573959][T15353]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  777.579309][T15353]  ? security_socket_sendmsg+0x7c/0xa0
[  777.584829][T15353]  ? netlink_getsockopt+0x540/0x540
[  777.590088][T15353]  ____sys_sendmsg+0x59b/0x970
[  777.595000][T15353]  ? __sys_sendmsg_sock+0x30/0x30
[  777.600059][T15353]  ? __import_iovec+0x315/0x500
[  777.604934][T15353]  ? import_iovec+0x6f/0xa0
[  777.609450][T15353]  ___sys_sendmsg+0x21c/0x290
[  777.614194][T15353]  ? __sys_sendmsg+0x270/0x270
[  777.619034][T15353]  ? perf_trace_run_bpf_submit+0xf3/0x1c0
[  777.624822][T15353]  ? __fdget+0x17c/0x200
[  777.629121][T15353]  __se_sys_sendmsg+0x19e/0x270
[  777.634035][T15353]  ? __x64_sys_sendmsg+0x80/0x80
[  777.639077][T15353]  ? syscall_enter_from_user_mode+0x2a/0x80
[  777.645042][T15353]  do_syscall_64+0x4c/0xa0
[  777.649519][T15353]  ? clear_bhb_loop+0x60/0xb0
[  777.654254][T15353]  ? clear_bhb_loop+0x60/0xb0
[  777.658983][T15353]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  777.664935][T15353] RIP: 0033:0x7f38b3f8e969
[  777.669388][T15353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  777.689052][T15353] RSP: 002b:00007f38b4e43038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  777.697512][T15353] RAX: ffffffffffffffda RBX: 00007f38b41b5fa0 RCX: 00007f38b3f8e969
[  777.705501][T15353] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  777.713501][T15353] RBP: 00007f38b4010ab1 R08: 0000000000000000 R09: 0000000000000000
[  777.721517][T15353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  777.729587][T15353] R13: 0000000000000000 R14: 00007f38b41b5fa0 R15: 00007fff60fb2b88
[  777.737581][T15353]  </TASK>
[  777.806765][T15362] netlink: 'syz.4.4087': attribute type 10 has an invalid length.
[  777.838568][T15362] netlink: 152 bytes leftover after parsing attributes in process `syz.4.4087'.
[  778.126910][T15372] netlink: 'syz.0.4090': attribute type 25 has an invalid length.
[  778.384342][T15376] delete_channel: no stack
[  778.551676][T15383] netlink: 122896 bytes leftover after parsing attributes in process `syz.3.4094'.
[  778.634701][T15383] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  778.671191][T15383] CPU: 1 PID: 15383 Comm: syz.3.4094 Not tainted 6.1.139-syzkaller #0
[  778.679441][T15383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  778.689542][T15383] Call Trace:
[  778.692845][T15383]  <TASK>
[  778.695794][T15383]  dump_stack_lvl+0x168/0x22e
[  778.700503][T15383]  ? show_regs_print_info+0x12/0x12
[  778.705724][T15383]  ? load_image+0x3b0/0x3b0
[  778.710254][T15383]  sysfs_warn_dup+0x8a/0xa0
[  778.714781][T15383]  sysfs_do_create_link_sd+0xc0/0x110
[  778.720172][T15383]  device_add+0x7ed/0xfb0
[  778.724525][T15383]  wiphy_register+0x1e68/0x2bd0
[  778.729406][T15383]  ? cfg80211_event_work+0x40/0x40
[  778.734538][T15383]  ? minstrel_ht_alloc+0x894/0xa20
[  778.739671][T15383]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  778.745757][T15383]  ieee80211_register_hw+0x2c29/0x38c0
[  778.751246][T15383]  ? ieee80211_register_hw+0xf31/0x38c0
[  778.756814][T15383]  ? ieee80211_register_hw+0xe31/0x38c0
[  778.762411][T15383]  ? ieee80211_tasklet_handler+0x20/0x20
[  778.768077][T15383]  ? rcu_is_watching+0x11/0xa0
[  778.772865][T15383]  ? memset+0x1e/0x40
[  778.776864][T15383]  ? hrtimer_init+0x10c/0x220
[  778.781554][T15383]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  778.787307][T15383]  hwsim_new_radio_nl+0xafa/0xce0
[  778.792373][T15383]  genl_family_rcv_msg_doit+0x22e/0x320
[  778.797928][T15383]  ? end_current_label_crit_section+0x170/0x170
[  778.804240][T15383]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  778.810157][T15383]  ? bpf_lsm_capable+0x5/0x10
[  778.814852][T15383]  ? security_capable+0x85/0xb0
[  778.819720][T15383]  genl_rcv_msg+0x5f2/0x780
[  778.824240][T15383]  ? genl_bind+0x350/0x350
[  778.828752][T15383]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  778.835105][T15383]  netlink_rcv_skb+0x1de/0x420
[  778.839889][T15383]  ? genl_bind+0x350/0x350
[  778.844315][T15383]  ? netlink_ack+0x1100/0x1100
[  778.849105][T15383]  ? down_read+0x1a8/0x2d0
[  778.853538][T15383]  genl_rcv+0x24/0x40
[  778.857532][T15383]  netlink_unicast+0x74c/0x8c0
[  778.862321][T15383]  netlink_sendmsg+0x89e/0xbc0
[  778.867108][T15383]  ? netlink_getsockopt+0x540/0x540
[  778.872340][T15383]  ? aa_sock_msg_perm+0x94/0x150
[  778.877300][T15383]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  778.882597][T15383]  ? security_socket_sendmsg+0x7c/0xa0
[  778.888062][T15383]  ? netlink_getsockopt+0x540/0x540
[  778.893362][T15383]  ____sys_sendmsg+0x59b/0x970
[  778.898160][T15383]  ? __sys_sendmsg_sock+0x30/0x30
[  778.903200][T15383]  ? __import_iovec+0x315/0x500
[  778.908071][T15383]  ? import_iovec+0x6f/0xa0
[  778.912584][T15383]  ___sys_sendmsg+0x21c/0x290
[  778.917289][T15383]  ? __sys_sendmsg+0x270/0x270
[  778.922109][T15383]  ? __fdget+0x17c/0x200
[  778.926375][T15383]  __se_sys_sendmsg+0x19e/0x270
[  778.931243][T15383]  ? __x64_sys_sendmsg+0x80/0x80
[  778.936220][T15383]  ? lockdep_hardirqs_on+0x94/0x140
[  778.941450][T15383]  do_syscall_64+0x4c/0xa0
[  778.945879][T15383]  ? clear_bhb_loop+0x60/0xb0
[  778.950564][T15383]  ? clear_bhb_loop+0x60/0xb0
[  778.955250][T15383]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  778.961170][T15383] RIP: 0033:0x7fa4d5f8e969
[  778.965604][T15383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  778.985224][T15383] RSP: 002b:00007fa4d6e45038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  778.993657][T15383] RAX: ffffffffffffffda RBX: 00007fa4d61b5fa0 RCX: 00007fa4d5f8e969
[  779.001636][T15383] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  779.009613][T15383] RBP: 00007fa4d6010ab1 R08: 0000000000000000 R09: 0000000000000000
[  779.017590][T15383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  779.025915][T15383] R13: 0000000000000000 R14: 00007fa4d61b5fa0 R15: 00007ffcc7b71bd8
[  779.033913][T15383]  </TASK>
[  779.633164][T15411] netlink: 'syz.4.4105': attribute type 25 has an invalid length.
[  779.944785][T15418] delete_channel: no stack
[  780.204352][T15423] netlink: 'syz.3.4108': attribute type 10 has an invalid length.
[  780.246820][T15423] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4108'.
[  780.547954][T15436] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.4114'.
[  781.072547][T15436] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  781.082889][T15436] CPU: 1 PID: 15436 Comm: syz.4.4114 Not tainted 6.1.139-syzkaller #0
[  781.091126][T15436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  781.101625][T15436] Call Trace:
[  781.104943][T15436]  <TASK>
[  781.107931][T15436]  dump_stack_lvl+0x168/0x22e
[  781.112680][T15436]  ? show_regs_print_info+0x12/0x12
[  781.117935][T15436]  ? load_image+0x3b0/0x3b0
[  781.122511][T15436]  sysfs_warn_dup+0x8a/0xa0
[  781.127169][T15436]  sysfs_do_create_link_sd+0xc0/0x110
[  781.132608][T15436]  device_add+0x7ed/0xfb0
[  781.137016][T15436]  wiphy_register+0x1e68/0x2bd0
[  781.142395][T15436]  ? cfg80211_event_work+0x40/0x40
[  781.147565][T15436]  ? minstrel_ht_alloc+0x894/0xa20
[  781.152735][T15436]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  781.158863][T15436]  ieee80211_register_hw+0x2c29/0x38c0
[  781.164368][T15436]  ? ieee80211_register_hw+0xf31/0x38c0
[  781.169957][T15436]  ? ieee80211_register_hw+0xe31/0x38c0
[  781.175535][T15436]  ? ieee80211_tasklet_handler+0x20/0x20
[  781.181192][T15436]  ? rcu_is_watching+0x11/0xa0
[  781.186013][T15436]  ? memset+0x1e/0x40
[  781.190030][T15436]  ? hrtimer_init+0x10c/0x220
[  781.194734][T15436]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  781.200616][T15436]  hwsim_new_radio_nl+0xafa/0xce0
[  781.205673][T15436]  genl_family_rcv_msg_doit+0x22e/0x320
[  781.211259][T15436]  ? end_current_label_crit_section+0x170/0x170
[  781.217554][T15436]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  781.223494][T15436]  ? bpf_lsm_capable+0x5/0x10
[  781.228217][T15436]  ? security_capable+0x85/0xb0
[  781.233102][T15436]  genl_rcv_msg+0x5f2/0x780
[  781.237628][T15436]  ? genl_bind+0x350/0x350
[  781.242050][T15436]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  781.248418][T15436]  netlink_rcv_skb+0x1de/0x420
[  781.253207][T15436]  ? genl_bind+0x350/0x350
[  781.257673][T15436]  ? netlink_ack+0x1100/0x1100
[  781.262499][T15436]  ? down_read+0x1a8/0x2d0
[  781.266948][T15436]  genl_rcv+0x24/0x40
[  781.270950][T15436]  netlink_unicast+0x74c/0x8c0
[  781.275749][T15436]  netlink_sendmsg+0x89e/0xbc0
[  781.280581][T15436]  ? netlink_getsockopt+0x540/0x540
[  781.285862][T15436]  ? aa_sock_msg_perm+0x94/0x150
[  781.290872][T15436]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  781.296201][T15436]  ? security_socket_sendmsg+0x7c/0xa0
[  781.301675][T15436]  ? netlink_getsockopt+0x540/0x540
[  781.306898][T15436]  ____sys_sendmsg+0x59b/0x970
[  781.311719][T15436]  ? __sys_sendmsg_sock+0x30/0x30
[  781.316761][T15436]  ? __import_iovec+0x315/0x500
[  781.321640][T15436]  ? import_iovec+0x6f/0xa0
[  781.326163][T15436]  ___sys_sendmsg+0x21c/0x290
[  781.330872][T15436]  ? __sys_sendmsg+0x270/0x270
[  781.335697][T15436]  ? __fdget+0x17c/0x200
[  781.339965][T15436]  __se_sys_sendmsg+0x19e/0x270
[  781.344868][T15436]  ? __x64_sys_sendmsg+0x80/0x80
[  781.349891][T15436]  ? lockdep_hardirqs_on+0x94/0x140
[  781.355133][T15436]  do_syscall_64+0x4c/0xa0
[  781.359575][T15436]  ? clear_bhb_loop+0x60/0xb0
[  781.364294][T15436]  ? clear_bhb_loop+0x60/0xb0
[  781.369003][T15436]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  781.374927][T15436] RIP: 0033:0x7fb9c278e969
[  781.379359][T15436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  781.398986][T15436] RSP: 002b:00007fb9c25ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  781.407504][T15436] RAX: ffffffffffffffda RBX: 00007fb9c29b5fa0 RCX: 00007fb9c278e969
[  781.415512][T15436] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  781.423517][T15436] RBP: 00007fb9c2810ab1 R08: 0000000000000000 R09: 0000000000000000
[  781.431507][T15436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  781.439488][T15436] R13: 0000000000000000 R14: 00007fb9c29b5fa0 R15: 00007ffe14376df8
[  781.447669][T15436]  </TASK>
[  781.494537][T15443] netlink: 188 bytes leftover after parsing attributes in process `syz.1.4117'.
[  781.505205][T15447] netlink: 'syz.3.4118': attribute type 25 has an invalid length.
[  781.736143][T15452] delete_channel: no stack
[  781.795441][T15456] netlink: 'syz.4.4120': attribute type 10 has an invalid length.
[  781.815060][T15456] netlink: 152 bytes leftover after parsing attributes in process `syz.4.4120'.
[  782.784941][T15480] netlink: 122896 bytes leftover after parsing attributes in process `syz.0.4130'.
[  782.822536][T15480] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  782.831403][T15480] CPU: 0 PID: 15480 Comm: syz.0.4130 Not tainted 6.1.139-syzkaller #0
[  782.839617][T15480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  782.849774][T15480] Call Trace:
[  782.853063][T15480]  <TASK>
[  782.855999][T15480]  dump_stack_lvl+0x168/0x22e
[  782.860700][T15480]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  782.866970][T15480]  ? show_regs_print_info+0x12/0x12
[  782.872280][T15480]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  782.878452][T15480]  ? dump_stack+0x5/0x12
[  782.882863][T15480]  sysfs_warn_dup+0x8a/0xa0
[  782.887445][T15480]  sysfs_do_create_link_sd+0xc0/0x110
[  782.892858][T15480]  device_add+0x7ed/0xfb0
[  782.897222][T15480]  wiphy_register+0x1e68/0x2bd0
[  782.902105][T15480]  ? cfg80211_event_work+0x40/0x40
[  782.907233][T15480]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  782.913490][T15480]  ? ieee80211_register_hw+0x2a6a/0x38c0
[  782.919145][T15480]  ieee80211_register_hw+0x2c29/0x38c0
[  782.924659][T15480]  ? ieee80211_register_hw+0xf31/0x38c0
[  782.930240][T15480]  ? ieee80211_register_hw+0xe31/0x38c0
[  782.935903][T15480]  ? ieee80211_tasklet_handler+0x20/0x20
[  782.941564][T15480]  ? rcu_is_watching+0x11/0xa0
[  782.946355][T15480]  ? memset+0x1e/0x40
[  782.950349][T15480]  ? hrtimer_init+0x10c/0x220
[  782.955037][T15480]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  782.960786][T15480]  hwsim_new_radio_nl+0xafa/0xce0
[  782.965837][T15480]  genl_family_rcv_msg_doit+0x22e/0x320
[  782.971398][T15480]  ? end_current_label_crit_section+0x170/0x170
[  782.977655][T15480]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  782.983577][T15480]  ? bpf_lsm_capable+0x5/0x10
[  782.988269][T15480]  ? security_capable+0x85/0xb0
[  782.993142][T15480]  genl_rcv_msg+0x5f2/0x780
[  782.997658][T15480]  ? genl_bind+0x350/0x350
[  783.002078][T15480]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  783.008422][T15480]  ? netlink_rcv_skb+0xf5/0x420
[  783.013292][T15480]  ? memset+0x2b/0x40
[  783.017284][T15480]  netlink_rcv_skb+0x1de/0x420
[  783.022067][T15480]  ? genl_bind+0x350/0x350
[  783.026491][T15480]  ? netlink_ack+0x1100/0x1100
[  783.031281][T15480]  ? down_read+0x1a8/0x2d0
[  783.035710][T15480]  genl_rcv+0x24/0x40
[  783.039699][T15480]  netlink_unicast+0x74c/0x8c0
[  783.044491][T15480]  netlink_sendmsg+0x89e/0xbc0
[  783.049268][T15480]  ? lockdep_hardirqs_on+0x94/0x140
[  783.054493][T15480]  ? netlink_getsockopt+0x540/0x540
[  783.059775][T15480]  ? security_socket_sendmsg+0x41/0xa0
[  783.065247][T15480]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  783.070821][T15480]  ? security_socket_sendmsg+0x7c/0xa0
[  783.076293][T15480]  ? netlink_getsockopt+0x540/0x540
[  783.081512][T15480]  ____sys_sendmsg+0x59b/0x970
[  783.086304][T15480]  ? __sys_sendmsg_sock+0x30/0x30
[  783.091344][T15480]  ? __import_iovec+0x315/0x500
[  783.096562][T15480]  ? import_iovec+0x6f/0xa0
[  783.101074][T15480]  ___sys_sendmsg+0x21c/0x290
[  783.105780][T15480]  ? __sys_sendmsg+0x270/0x270
[  783.110594][T15480]  ? __fdget+0x17c/0x200
[  783.114857][T15480]  __se_sys_sendmsg+0x19e/0x270
[  783.119745][T15480]  ? __x64_sys_sendmsg+0x80/0x80
[  783.124715][T15480]  ? lockdep_hardirqs_on+0x94/0x140
[  783.129932][T15480]  do_syscall_64+0x4c/0xa0
[  783.134365][T15480]  ? clear_bhb_loop+0x60/0xb0
[  783.139073][T15480]  ? clear_bhb_loop+0x60/0xb0
[  783.143781][T15480]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  783.149713][T15480] RIP: 0033:0x7f38b3f8e969
[  783.154148][T15480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  783.173767][T15480] RSP: 002b:00007f38b4e43038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  783.182194][T15480] RAX: ffffffffffffffda RBX: 00007f38b41b5fa0 RCX: 00007f38b3f8e969
[  783.190179][T15480] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  783.198159][T15480] RBP: 00007f38b4010ab1 R08: 0000000000000000 R09: 0000000000000000
[  783.206163][T15480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  783.214150][T15480] R13: 0000000000000000 R14: 00007f38b41b5fa0 R15: 00007fff60fb2b88
[  783.222237][T15480]  </TASK>
[  783.340651][T15485] netlink: 'syz.2.4132': attribute type 25 has an invalid length.
[  783.341083][T15481] delete_channel: no stack
[  783.769816][T15502] netlink: 'syz.2.4137': attribute type 10 has an invalid length.
[  783.778602][T15502] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4137'.
[  784.051189][T15509] netlink: 'syz.3.4141': attribute type 10 has an invalid length.
[  784.065829][T15509] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4141'.
[  784.861397][T15529] delete_channel: no stack
[  785.260199][T15526] netlink: 122896 bytes leftover after parsing attributes in process `syz.0.4148'.
[  785.290514][T15526] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  785.299231][T15526] CPU: 0 PID: 15526 Comm: syz.0.4148 Not tainted 6.1.139-syzkaller #0
[  785.307448][T15526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  785.317552][T15526] Call Trace:
[  785.320878][T15526]  <TASK>
[  785.323835][T15526]  dump_stack_lvl+0x168/0x22e
[  785.328570][T15526]  ? show_regs_print_info+0x12/0x12
[  785.333832][T15526]  ? load_image+0x3b0/0x3b0
[  785.338400][T15526]  sysfs_warn_dup+0x8a/0xa0
[  785.342970][T15526]  sysfs_do_create_link_sd+0xc0/0x110
[  785.348406][T15526]  device_add+0x7ed/0xfb0
[  785.352887][T15526]  wiphy_register+0x1e68/0x2bd0
[  785.357812][T15526]  ? cfg80211_event_work+0x40/0x40
[  785.362982][T15526]  ? minstrel_ht_alloc+0x894/0xa20
[  785.368140][T15526]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  785.374240][T15526]  ieee80211_register_hw+0x2c29/0x38c0
[  785.379774][T15526]  ? ieee80211_register_hw+0xf31/0x38c0
[  785.385384][T15526]  ? ieee80211_register_hw+0xe31/0x38c0
[  785.390991][T15526]  ? ieee80211_tasklet_handler+0x20/0x20
[  785.396693][T15526]  ? rcu_is_watching+0x11/0xa0
[  785.401514][T15526]  ? memset+0x1e/0x40
[  785.405544][T15526]  ? hrtimer_init+0x10c/0x220
[  785.410274][T15526]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  785.416065][T15526]  hwsim_new_radio_nl+0xafa/0xce0
[  785.421151][T15526]  genl_family_rcv_msg_doit+0x22e/0x320
[  785.426742][T15526]  ? end_current_label_crit_section+0x170/0x170
[  785.433038][T15526]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  785.438991][T15526]  ? bpf_lsm_capable+0x5/0x10
[  785.443737][T15526]  ? security_capable+0x85/0xb0
[  785.448650][T15526]  genl_rcv_msg+0x5f2/0x780
[  785.453218][T15526]  ? genl_bind+0x350/0x350
[  785.457662][T15526]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  785.464046][T15526]  netlink_rcv_skb+0x1de/0x420
[  785.468848][T15526]  ? genl_bind+0x350/0x350
[  785.473813][T15526]  ? netlink_ack+0x1100/0x1100
[  785.478623][T15526]  ? down_read+0x1a8/0x2d0
[  785.483095][T15526]  genl_rcv+0x24/0x40
[  785.487122][T15526]  netlink_unicast+0x74c/0x8c0
[  785.491947][T15526]  netlink_sendmsg+0x89e/0xbc0
[  785.496765][T15526]  ? lockdep_hardirqs_on+0x94/0x140
[  785.502006][T15526]  ? netlink_getsockopt+0x540/0x540
[  785.507345][T15526]  ? netlink_getsockopt+0x540/0x540
[  785.512607][T15526]  ____sys_sendmsg+0x59b/0x970
[  785.517462][T15526]  ? __sys_sendmsg_sock+0x30/0x30
[  785.522527][T15526]  ? __import_iovec+0x315/0x500
[  785.527421][T15526]  ? import_iovec+0x6f/0xa0
[  785.531960][T15526]  ___sys_sendmsg+0x21c/0x290
[  785.536684][T15526]  ? __sys_sendmsg+0x270/0x270
[  785.541604][T15526]  ? lockdep_hardirqs_on+0x94/0x140
[  785.546905][T15526]  ? __fdget+0x17c/0x200
[  785.551209][T15526]  __se_sys_sendmsg+0x19e/0x270
[  785.556119][T15526]  ? ct_nmi_exit+0x145/0x1c0
[  785.560786][T15526]  ? __x64_sys_sendmsg+0x80/0x80
[  785.565798][T15526]  ? lockdep_hardirqs_on+0x94/0x140
[  785.571051][T15526]  do_syscall_64+0x4c/0xa0
[  785.575512][T15526]  ? clear_bhb_loop+0x60/0xb0
[  785.580227][T15526]  ? clear_bhb_loop+0x60/0xb0
[  785.584931][T15526]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  785.591037][T15526] RIP: 0033:0x7f38b3f8e969
[  785.595480][T15526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  785.615376][T15526] RSP: 002b:00007f38b4e43038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  785.623828][T15526] RAX: ffffffffffffffda RBX: 00007f38b41b5fa0 RCX: 00007f38b3f8e969
[  785.631835][T15526] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  785.639875][T15526] RBP: 00007f38b4010ab1 R08: 0000000000000000 R09: 0000000000000000
[  785.647888][T15526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  785.655890][T15526] R13: 0000000000000000 R14: 00007f38b41b5fa0 R15: 00007fff60fb2b88
[  785.663915][T15526]  </TASK>
[  786.249135][T15554] netlink: 'syz.3.4157': attribute type 10 has an invalid length.
[  786.287884][T15554] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4157'.
[  786.373737][T15559] netlink: 'syz.2.4161': attribute type 25 has an invalid length.
[  787.121431][T15587] netlink: 122896 bytes leftover after parsing attributes in process `syz.2.4171'.
[  787.290121][T15586] netlink: 'syz.0.4170': attribute type 10 has an invalid length.
[  787.298586][T15586] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4170'.
[  787.325919][T15587] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  787.334612][T15587] CPU: 0 PID: 15587 Comm: syz.2.4171 Not tainted 6.1.139-syzkaller #0
[  787.342821][T15587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  787.352917][T15587] Call Trace:
[  787.356215][T15587]  <TASK>
[  787.359164][T15587]  dump_stack_lvl+0x168/0x22e
[  787.363893][T15587]  ? show_regs_print_info+0x12/0x12
[  787.369118][T15587]  ? load_image+0x3b0/0x3b0
[  787.373840][T15587]  sysfs_warn_dup+0x8a/0xa0
[  787.378396][T15587]  sysfs_do_create_link_sd+0xc0/0x110
[  787.383805][T15587]  device_add+0x7ed/0xfb0
[  787.388178][T15587]  wiphy_register+0x1e68/0x2bd0
[  787.393080][T15587]  ? cfg80211_event_work+0x40/0x40
[  787.398235][T15587]  ? minstrel_ht_alloc+0x894/0xa20
[  787.403382][T15587]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  787.409500][T15587]  ieee80211_register_hw+0x2c29/0x38c0
[  787.415009][T15587]  ? ieee80211_register_hw+0xf31/0x38c0
[  787.420598][T15587]  ? ieee80211_register_hw+0xe31/0x38c0
[  787.426207][T15587]  ? ieee80211_tasklet_handler+0x20/0x20
[  787.431876][T15587]  ? rcu_is_watching+0x11/0xa0
[  787.436671][T15587]  ? memset+0x1e/0x40
[  787.440673][T15587]  ? hrtimer_init+0x10c/0x220
[  787.445378][T15587]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  787.451148][T15587]  hwsim_new_radio_nl+0xafa/0xce0
[  787.456226][T15587]  genl_family_rcv_msg_doit+0x22e/0x320
[  787.461788][T15587]  ? end_current_label_crit_section+0x170/0x170
[  787.468067][T15587]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  787.474004][T15587]  ? bpf_lsm_capable+0x5/0x10
[  787.478698][T15587]  ? security_capable+0x85/0xb0
[  787.483597][T15587]  genl_rcv_msg+0x5f2/0x780
[  787.488148][T15587]  ? genl_bind+0x350/0x350
[  787.492583][T15587]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  787.498953][T15587]  netlink_rcv_skb+0x1de/0x420
[  787.503740][T15587]  ? genl_bind+0x350/0x350
[  787.508165][T15587]  ? netlink_ack+0x1100/0x1100
[  787.512944][T15587]  ? lockdep_hardirqs_on+0x94/0x140
[  787.518169][T15587]  ? down_read+0x1a8/0x2d0
[  787.522598][T15587]  genl_rcv+0x24/0x40
[  787.526587][T15587]  netlink_unicast+0x74c/0x8c0
[  787.531380][T15587]  netlink_sendmsg+0x89e/0xbc0
[  787.536173][T15587]  ? netlink_getsockopt+0x540/0x540
[  787.541392][T15587]  ? aa_sock_msg_perm+0x94/0x150
[  787.546343][T15587]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  787.551727][T15587]  ? security_socket_sendmsg+0x7c/0xa0
[  787.557219][T15587]  ? netlink_getsockopt+0x540/0x540
[  787.562448][T15587]  ____sys_sendmsg+0x59b/0x970
[  787.567245][T15587]  ? __sys_sendmsg_sock+0x30/0x30
[  787.572289][T15587]  ? __import_iovec+0x315/0x500
[  787.577249][T15587]  ? import_iovec+0x6f/0xa0
[  787.581795][T15587]  ___sys_sendmsg+0x21c/0x290
[  787.586495][T15587]  ? __sys_sendmsg+0x270/0x270
[  787.591315][T15587]  ? __fdget+0x17c/0x200
[  787.595685][T15587]  __se_sys_sendmsg+0x19e/0x270
[  787.600559][T15587]  ? ct_nmi_exit+0x145/0x1c0
[  787.605173][T15587]  ? __x64_sys_sendmsg+0x80/0x80
[  787.610142][T15587]  ? lockdep_hardirqs_on+0x94/0x140
[  787.615372][T15587]  do_syscall_64+0x4c/0xa0
[  787.619807][T15587]  ? clear_bhb_loop+0x60/0xb0
[  787.624494][T15587]  ? clear_bhb_loop+0x60/0xb0
[  787.629271][T15587]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  787.635188][T15587] RIP: 0033:0x7f8c7c98e969
[  787.639626][T15587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  787.659276][T15587] RSP: 002b:00007f8c7d855038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  787.667707][T15587] RAX: ffffffffffffffda RBX: 00007f8c7cbb5fa0 RCX: 00007f8c7c98e969
[  787.675868][T15587] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  787.683850][T15587] RBP: 00007f8c7ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  787.691837][T15587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  787.699822][T15587] R13: 0000000000000000 R14: 00007f8c7cbb5fa0 R15: 00007fff89c3e968
[  787.707821][T15587]  </TASK>
[  788.051329][T15597] delete_channel: no stack
[  788.893998][T15608] netlink: 'syz.2.4179': attribute type 10 has an invalid length.
[  788.923062][T15608] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4179'.
[  789.274714][T15623] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.4185'.
[  789.326237][T15623] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  789.348466][T15623] CPU: 0 PID: 15623 Comm: syz.4.4185 Not tainted 6.1.139-syzkaller #0
[  789.356713][T15623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  789.366822][T15623] Call Trace:
[  789.370128][T15623]  <TASK>
[  789.373086][T15623]  dump_stack_lvl+0x168/0x22e
[  789.377810][T15623]  ? show_regs_print_info+0x12/0x12
[  789.383117][T15623]  ? load_image+0x3b0/0x3b0
[  789.387639][T15623]  sysfs_warn_dup+0x8a/0xa0
[  789.392158][T15623]  sysfs_do_create_link_sd+0xc0/0x110
[  789.397549][T15623]  device_add+0x7ed/0xfb0
[  789.401903][T15623]  wiphy_register+0x1e68/0x2bd0
[  789.406785][T15623]  ? cfg80211_event_work+0x40/0x40
[  789.411908][T15623]  ? minstrel_ht_alloc+0x894/0xa20
[  789.417041][T15623]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  789.423121][T15623]  ieee80211_register_hw+0x2c29/0x38c0
[  789.428599][T15623]  ? ieee80211_register_hw+0xf31/0x38c0
[  789.434153][T15623]  ? ieee80211_register_hw+0xe31/0x38c0
[  789.439717][T15623]  ? ieee80211_tasklet_handler+0x20/0x20
[  789.445370][T15623]  ? rcu_is_watching+0x11/0xa0
[  789.450149][T15623]  ? memset+0x1e/0x40
[  789.454142][T15623]  ? hrtimer_init+0x10c/0x220
[  789.458825][T15623]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  789.464571][T15623]  hwsim_new_radio_nl+0xafa/0xce0
[  789.469615][T15623]  genl_family_rcv_msg_doit+0x22e/0x320
[  789.475168][T15623]  ? end_current_label_crit_section+0x170/0x170
[  789.481422][T15623]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  789.487335][T15623]  ? bpf_lsm_capable+0x5/0x10
[  789.492022][T15623]  ? security_capable+0x85/0xb0
[  789.497068][T15623]  genl_rcv_msg+0x5f2/0x780
[  789.501589][T15623]  ? genl_bind+0x350/0x350
[  789.506012][T15623]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  789.512362][T15623]  netlink_rcv_skb+0x1de/0x420
[  789.517176][T15623]  ? genl_bind+0x350/0x350
[  789.521600][T15623]  ? netlink_ack+0x1100/0x1100
[  789.526386][T15623]  ? down_read+0x1a8/0x2d0
[  789.530812][T15623]  genl_rcv+0x24/0x40
[  789.534796][T15623]  netlink_unicast+0x74c/0x8c0
[  789.539587][T15623]  netlink_sendmsg+0x89e/0xbc0
[  789.544380][T15623]  ? netlink_getsockopt+0x540/0x540
[  789.549597][T15623]  ? aa_sock_msg_perm+0x94/0x150
[  789.554544][T15623]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  789.559922][T15623]  ? security_socket_sendmsg+0x7c/0xa0
[  789.565389][T15623]  ? netlink_getsockopt+0x540/0x540
[  789.570601][T15623]  ____sys_sendmsg+0x59b/0x970
[  789.575390][T15623]  ? __sys_sendmsg_sock+0x30/0x30
[  789.580431][T15623]  ? __import_iovec+0x315/0x500
[  789.585299][T15623]  ? import_iovec+0x6f/0xa0
[  789.589814][T15623]  ___sys_sendmsg+0x21c/0x290
[  789.594597][T15623]  ? __sys_sendmsg+0x270/0x270
[  789.599393][T15623]  ? lockdep_hardirqs_on+0x94/0x140
[  789.604628][T15623]  ? __fdget+0x17c/0x200
[  789.608890][T15623]  __se_sys_sendmsg+0x19e/0x270
[  789.613762][T15623]  ? __x64_sys_sendmsg+0x80/0x80
[  789.618723][T15623]  ? lockdep_hardirqs_on+0x94/0x140
[  789.623973][T15623]  do_syscall_64+0x4c/0xa0
[  789.628400][T15623]  ? clear_bhb_loop+0x60/0xb0
[  789.633081][T15623]  ? clear_bhb_loop+0x60/0xb0
[  789.637766][T15623]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  789.643688][T15623] RIP: 0033:0x7fb9c278e969
[  789.648111][T15623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  789.667730][T15623] RSP: 002b:00007fb9c25ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  789.676156][T15623] RAX: ffffffffffffffda RBX: 00007fb9c29b5fa0 RCX: 00007fb9c278e969
[  789.684140][T15623] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  789.692115][T15623] RBP: 00007fb9c2810ab1 R08: 0000000000000000 R09: 0000000000000000
[  789.700093][T15623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  789.708070][T15623] R13: 0000000000000000 R14: 00007fb9c29b5fa0 R15: 00007ffe14376df8
[  789.716072][T15623]  </TASK>
[  790.723466][T15652] netlink: 'syz.2.4193': attribute type 10 has an invalid length.
[  790.731797][T15652] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4193'.
[  791.105525][T15661] netlink: 'syz.4.4196': attribute type 25 has an invalid length.
[  791.475939][T15668] netlink: 'syz.3.4199': attribute type 10 has an invalid length.
[  791.523743][T15668] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4199'.
[  791.738381][T15674] netlink: 122896 bytes leftover after parsing attributes in process `syz.1.4202'.
[  791.848402][T15674] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  791.858001][T15674] CPU: 1 PID: 15674 Comm: syz.1.4202 Not tainted 6.1.139-syzkaller #0
[  791.866219][T15674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  791.876924][T15674] Call Trace:
[  791.880235][T15674]  <TASK>
[  791.883192][T15674]  dump_stack_lvl+0x168/0x22e
[  791.887931][T15674]  ? show_regs_print_info+0x12/0x12
[  791.893205][T15674]  ? load_image+0x3b0/0x3b0
[  791.897785][T15674]  sysfs_warn_dup+0x8a/0xa0
[  791.902352][T15674]  sysfs_do_create_link_sd+0xc0/0x110
[  791.907789][T15674]  device_add+0x7ed/0xfb0
[  791.912171][T15674]  wiphy_register+0x1e68/0x2bd0
[  791.917091][T15674]  ? cfg80211_event_work+0x40/0x40
[  791.922264][T15674]  ? minstrel_ht_alloc+0x894/0xa20
[  791.927436][T15674]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  791.933552][T15674]  ieee80211_register_hw+0x2c29/0x38c0
[  791.939066][T15674]  ? ieee80211_register_hw+0xf31/0x38c0
[  791.944672][T15674]  ? ieee80211_register_hw+0xe31/0x38c0
[  791.950286][T15674]  ? ieee80211_tasklet_handler+0x20/0x20
[  791.955977][T15674]  ? rcu_is_watching+0x11/0xa0
[  791.960828][T15674]  ? memset+0x1e/0x40
[  791.964843][T15674]  ? hrtimer_init+0x10c/0x220
[  791.969554][T15674]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  791.975328][T15674]  hwsim_new_radio_nl+0xafa/0xce0
[  791.980395][T15674]  genl_family_rcv_msg_doit+0x22e/0x320
[  791.985978][T15674]  ? end_current_label_crit_section+0x170/0x170
[  791.992460][T15674]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  791.998432][T15674]  ? bpf_lsm_capable+0x5/0x10
[  792.003157][T15674]  ? security_capable+0x85/0xb0
[  792.008061][T15674]  genl_rcv_msg+0x5f2/0x780
[  792.012607][T15674]  ? genl_bind+0x350/0x350
[  792.017072][T15674]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  792.023474][T15674]  netlink_rcv_skb+0x1de/0x420
[  792.028288][T15674]  ? genl_bind+0x350/0x350
[  792.032731][T15674]  ? netlink_ack+0x1100/0x1100
[  792.037544][T15674]  ? down_read+0x1a8/0x2d0
[  792.042169][T15674]  genl_rcv+0x24/0x40
[  792.046186][T15674]  netlink_unicast+0x74c/0x8c0
[  792.051001][T15674]  netlink_sendmsg+0x89e/0xbc0
[  792.055816][T15674]  ? netlink_getsockopt+0x540/0x540
[  792.061053][T15674]  ? aa_sock_msg_perm+0x94/0x150
[  792.066143][T15674]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  792.071770][T15674]  ? security_socket_sendmsg+0x7c/0xa0
[  792.077281][T15674]  ? netlink_getsockopt+0x540/0x540
[  792.082523][T15674]  ____sys_sendmsg+0x59b/0x970
[  792.087335][T15674]  ? __sys_sendmsg_sock+0x30/0x30
[  792.092399][T15674]  ? __import_iovec+0x315/0x500
[  792.097465][T15674]  ? import_iovec+0x6f/0xa0
[  792.102008][T15674]  ___sys_sendmsg+0x21c/0x290
[  792.106729][T15674]  ? __sys_sendmsg+0x270/0x270
[  792.111640][T15674]  ? seqcount_lockdep_reader_access+0x15c/0x1c0
[  792.118020][T15674]  ? __fdget+0x17c/0x200
[  792.122305][T15674]  __se_sys_sendmsg+0x19e/0x270
[  792.127198][T15674]  ? __x64_sys_sendmsg+0x80/0x80
[  792.132192][T15674]  ? syscall_enter_from_user_mode+0x2a/0x80
[  792.138115][T15674]  do_syscall_64+0x4c/0xa0
[  792.142559][T15674]  ? clear_bhb_loop+0x60/0xb0
[  792.147256][T15674]  ? clear_bhb_loop+0x60/0xb0
[  792.151965][T15674]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  792.157896][T15674] RIP: 0033:0x7fcbf738e969
[  792.162360][T15674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  792.182110][T15674] RSP: 002b:00007fcbf811f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  792.190558][T15674] RAX: ffffffffffffffda RBX: 00007fcbf75b5fa0 RCX: 00007fcbf738e969
[  792.198642][T15674] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  792.206635][T15674] RBP: 00007fcbf7410ab1 R08: 0000000000000000 R09: 0000000000000000
[  792.214631][T15674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  792.222627][T15674] R13: 0000000000000000 R14: 00007fcbf75b5fa0 R15: 00007ffdc4c8d508
[  792.230649][T15674]  </TASK>
[  792.809198][T15698] netlink: 'syz.4.4211': attribute type 25 has an invalid length.
[  792.903320][T15696] netlink: 'syz.0.4210': attribute type 10 has an invalid length.
[  792.920740][T15696] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4210'.
[  793.581690][T15709] BUG: kernel NULL pointer dereference, address: 0000000000000000
[  793.589562][T15709] #PF: supervisor instruction fetch in kernel mode
[  793.596080][T15709] #PF: error_code(0x0010) - not-present page
[  793.602082][T15709] PGD 74bbd067 P4D 74bbd067 PUD 0 
[  793.607342][T15709] Oops: 0010 [#1] PREEMPT SMP KASAN
[  793.612586][T15709] CPU: 0 PID: 15709 Comm: syz.4.4214 Not tainted 6.1.139-syzkaller #0
[  793.620766][T15709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  793.630848][T15709] RIP: 0010:0x0
[  793.634333][T15709] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  793.641728][T15709] RSP: 0018:ffffc90003427218 EFLAGS: 00010246
[  793.647824][T15709] RAX: 1ffffffff1617517 RBX: 000000000000000f RCX: 0000000000000000
[  793.655826][T15709] RDX: ffffc900034272c0 RSI: 0000000000000001 RDI: ffff888074a1c000
[  793.663912][T15709] RBP: ffffc90003427330 R08: dffffc0000000000 R09: ffffed100e943808
[  793.671911][T15709] R10: ffffed100e943808 R11: 1ffff1100e943807 R12: ffffe8ffffc42f78
[  793.679907][T15709] R13: ffffffff8b0ba8b8 R14: 0000000000000000 R15: ffff888074a1c000
[  793.687903][T15709] FS:  00007fb9c25ff6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  793.696862][T15709] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  793.703466][T15709] CR2: ffffffffffffffd6 CR3: 0000000058d34000 CR4: 00000000003506f0
[  793.711465][T15709] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  793.719460][T15709] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  793.727538][T15709] Call Trace:
[  793.730833][T15709]  <TASK>
[  793.733777][T15709]  bond_xdp_xmit+0x309/0x520
[  793.738411][T15709]  ? bond_xdp_xmit+0x93/0x520
[  793.743130][T15709]  ? bond_xdp+0x840/0x840
[  793.747494][T15709]  ? bq_xmit_all+0x9e/0x10d0
[  793.752129][T15709]  bq_xmit_all+0xc99/0x10d0
[  793.756675][T15709]  ? page_ext_put+0x98/0xb0
[  793.761328][T15709]  ? __lock_acquire+0x7c50/0x7c50
[  793.766473][T15709]  ? page_ext_get+0x1de/0x2a0
[  793.771191][T15709]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  793.777209][T15709]  ? __dev_flush+0x1b0/0x1b0
[  793.781837][T15709]  ? lock_chain_count+0x20/0x20
[  793.786722][T15709]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  793.792915][T15709]  ? lockdep_hardirqs_on+0x94/0x140
[  793.798186][T15709]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  793.804390][T15709]  ? rcu_lockdep_current_cpu_online+0x33/0x120
[  793.810718][T15709]  ? rcu_read_lock_bh_held+0x76/0xe0
[  793.816055][T15709]  ? rcu_read_lock_held+0x40/0x40
[  793.821196][T15709]  bq_enqueue+0x337/0x3d0
[  793.825566][T15709]  dev_map_enqueue_multi+0xff9/0x1160
[  793.830997][T15709]  ? dev_map_enqueue+0x340/0x340
[  793.835975][T15709]  ? rcu_is_watching+0x11/0xa0
[  793.840781][T15709]  ? rcu_is_watching+0x11/0xa0
[  793.845583][T15709]  ? __cant_sleep+0x210/0x210
[  793.850304][T15709]  xdp_do_redirect_frame+0x477/0x650
[  793.855623][T15709]  bpf_test_run_xdp_live+0x9dd/0x1970
[  793.861127][T15709]  ? bpf_test_run_xdp_live+0x45c/0x1970
[  793.866702][T15709]  ? xdp_convert_md_to_buff+0x330/0x330
[  793.872293][T15709]  ? trace_raw_output_bpf_test_finish+0xd0/0xd0
[  793.878569][T15709]  ? bpf_prog_change_xdp+0xe/0x30
[  793.883648][T15709]  bpf_prog_test_run_xdp+0x6f1/0xe50
[  793.888971][T15709]  ? __fget_files+0x25e/0x4d0
[  793.893685][T15709]  ? dev_put+0x80/0x80
[  793.897795][T15709]  ? dev_put+0x80/0x80
[  793.901893][T15709]  bpf_prog_test_run+0x31e/0x390
[  793.906864][T15709]  __sys_bpf+0x593/0x6d0
[  793.911143][T15709]  ? bpf_link_show_fdinfo+0x310/0x310
[  793.916555][T15709]  ? lock_chain_count+0x20/0x20
[  793.921440][T15709]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  793.927460][T15709]  __x64_sys_bpf+0x78/0x90
[  793.931905][T15709]  do_syscall_64+0x4c/0xa0
[  793.936352][T15709]  ? clear_bhb_loop+0x60/0xb0
[  793.941072][T15709]  ? clear_bhb_loop+0x60/0xb0
[  793.945780][T15709]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  793.951709][T15709] RIP: 0033:0x7fb9c278e969
[  793.956155][T15709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  793.975796][T15709] RSP: 002b:00007fb9c25ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  793.984247][T15709] RAX: ffffffffffffffda RBX: 00007fb9c29b5fa0 RCX: 00007fb9c278e969
[  793.992250][T15709] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 000000000000000a
[  794.000247][T15709] RBP: 00007fb9c2810ab1 R08: 0000000000000000 R09: 0000000000000000
[  794.008259][T15709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  794.016346][T15709] R13: 0000000000000000 R14: 00007fb9c29b5fa0 R15: 00007ffe14376df8
[  794.024352][T15709]  </TASK>
[  794.027390][T15709] Modules linked in:
[  794.031312][T15709] CR2: 0000000000000000
[  794.035493][T15709] ---[ end trace 0000000000000000 ]---
[  794.040960][T15709] RIP: 0010:0x0
[  794.044443][T15709] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  794.051821][T15709] RSP: 0018:ffffc90003427218 EFLAGS: 00010246
[  794.057911][T15709] RAX: 1ffffffff1617517 RBX: 000000000000000f RCX: 0000000000000000
[  794.065902][T15709] RDX: ffffc900034272c0 RSI: 0000000000000001 RDI: ffff888074a1c000
[  794.073893][T15709] RBP: ffffc90003427330 R08: dffffc0000000000 R09: ffffed100e943808
[  794.081982][T15709] R10: ffffed100e943808 R11: 1ffff1100e943807 R12: ffffe8ffffc42f78
[  794.089975][T15709] R13: ffffffff8b0ba8b8 R14: 0000000000000000 R15: ffff888074a1c000
[  794.098144][T15709] FS:  00007fb9c25ff6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  794.107183][T15709] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  794.113786][T15709] CR2: ffffffffffffffd6 CR3: 0000000058d34000 CR4: 00000000003506f0
[  794.121880][T15709] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  794.129872][T15709] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  794.137868][T15709] Kernel panic - not syncing: Fatal exception in interrupt
[  794.145329][T15709] Kernel Offset: disabled
[  794.149659][T15709] Rebooting in 86400 seconds..