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", 0x1000}, {&(0x7f0000002380)="fbf27f769460756860bf65e46140981e801eecd743e2010f43d9f8eec635e1ca8bd5e87ef5802aad1f8f341551bd56ee3e9afd37938a98875ba4817378d00e390bf7c3c88e06a0dc314fc357a1f232cc5b9caf89bb7eb4067939a1c80bbe4d643a2effea45af4cd36ffdae568ee878effbfcebbbfe595e6a9b76e539da", 0x7d}, {&(0x7f0000002400)="c559d0fe9078adb63ab063f306712fdfaf72a540ab4724294699cea7152d904a26f601ee2f902df4ad41f2cfed91c54f65ddc7d2f2c4d02b873a4ca02445ce2e04119a0ca179d9acda5ffefcf64a1c1c4e3e9cf300b3fdf4547136642e0d73b654c103472843f403f6310de6b4355109194a83fae01e86ed5030dec05f6da51d5e63e9efcddd97bcd4cef3a0", 0x8c}, {&(0x7f00000024c0)="02042fc2408bd405583dd54fda8cf71cccaefdd82189b625aa26ff7e539ddf022cc4455daefa53a5974d48a7871e5619b82d2c08b85f25e2e682917e0930e6160bbd1e4cd4c99b0d0a5fe505f931f114f00a02d065403d293961617f6f67303715aa94a75fa188cabd37c7599e7a70eb57a83d1579c76fab6662c7bb78a89bcf93a453a4adeed78efc4cab45555bb8b15e4b65d42af1441a79aa10d6dd2ae780bbcdf2c187167c3de20d705456a4367116e65fed2df8ccd3d491911b748352", 0xbf}], 0x5, &(0x7f0000002600)=[@hopopts={{0x30, 0x29, 0x36, {0x53, 0x2, '\x00', [@hao={0xc9, 0x10, @remote}, @pad1]}}}], 0x30}}, {{&(0x7f0000002640)={0xa, 0x4e20, 0x2, @private2, 0x20}, 0x1c, &(0x7f00000039c0)=[{&(0x7f0000002680)="b09290ae2fa310865057075eaec796dcc03d6b44eae6fece00f00bfefed63ee980ab51df040a4810d62e8b8e138e598dd85f64de44e5afa05e441a2bc4c096da3d3c2cbb51c2f8b99045360aa9a9bb6311fe3d95e0353e046dc9c4c96639c90f940ff6da1347414c6c135a5046a448fbc2eb92139cdfcb35ea4d6bdcaa5cd15f29f2a575a8045ff6060ae43a3449b7d4da8a681c33b38fb4c04c0f03e7488d840cfafaef8fa9a64b94b34cd8e29b774cbbeacddc07", 0xb5}, {&(0x7f0000002740)="ace0bbc6e23e1d256c13d21aec8756366e4b77cbf5d5fedebcab3f76cfc8dbde17ed9b41195d6d9c0b71906d594cdb05537ed5b8ecf4beebd5f01ecd098dcb762b8d7139c3e2c1ec7398e7975c03d6d8", 0x50}, {&(0x7f00000027c0)="f9491bd8feb9c12d9d50a87cbd60b0560454f9e3b32affda5e459ee4f3237126702d0b4af43e42af980847ff4b06073b714349e063a623e35fbe626b9df08e23db8b3165b438a1251b882e59b58d5e39d7b8ee68bd6840c07d21b53b974143189f565e5595be92e71863ca6dec736c92aeed26a774bf0849400df085628332f4f2fb00768a8d56fa5dd5cee746799888ed6b1a5fc392f9d63ce6cec09913a5510934d95c7d8f0eca", 0xa8}, {&(0x7f0000002880)="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", 0x1000}, {&(0x7f0000003880)="ae66822e7142ba5e3f91c5a94de3261f0952e32ee8f19f716b28807e0f119a25", 0x20}, {&(0x7f00000038c0)="3cc1c3f69f892cb1c04d19f013dd1c8228fc6ca80a1f598520ac8e01d721d4888f310fa9a3cb4a74f7f252c549617560ff2254a21e3ebed50c22df2a5c64d7fed94ea05781071d2ef2ab92ffb9a772952f810eb6124d3091eac2cb4158855c2194b04e680eb01459c2c686f05a4a3a2ef4a30c5fa30820617eda18cea2", 0x7d}, {&(0x7f0000003940)="2b8384aa8b789ffed9f19eabd4cb9aea6c116ecfe3cddf70c4dceb0fb88fe01baa4799abd64aba7e4a7374b7db597fcac230b93e2076de80f0c6af0d685d65fec002ca57f3295465da4ec1b1b82c4941365907210d8a86882d7ef82245a1c28afbeba9b82ef7479c9a474f0ab34915489a661ec2b9d2edff9c5d66c6c8", 0x7d}], 0x7, &(0x7f0000003d40)=[@dstopts_2292={{0x18, 0x29, 0x4, {0x33}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x0, 0x4, 0x0, 0x9, 0x0, [@local, @rand_addr=' \x01\x00']}}}, @rthdrdstopts={{0x38, 0x29, 0x37, {0x0, 0x4, '\x00', [@calipso={0x7, 0x18, {0x2, 0x4, 0x1, 0x101, [0x8, 0x5]}}, @jumbo={0xc2, 0x4, 0x2}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x1000}}, @pktinfo={{0x24, 0x29, 0x32, {@empty, r2}}}], 0xc8}}], 0x7, 0x100c0) (async) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) (async) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000000)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000040)=0x18) (async) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000100)={r3, 0x3c, &(0x7f00000000c0)=[@in6={0xa, 0x4e24, 0x1c0, @empty, 0x59cd}, @in={0x2, 0x4e23, @multicast1}, @in={0x2, 0x4e20, @empty}]}, &(0x7f0000000140)=0x10) (async) [ 857.652235][ T25] audit: type=1804 audit(1643832926.627:1019): pid=29986 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir370621876/syzkaller.yLzCpf/438/cgroup.controllers" dev="sda1" ino=1176 res=1 errno=0 20:15:26 executing program 4: pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) (async) r2 = socket$nl_route(0x10, 0x3, 0x0) (async) r3 = socket(0x10, 0x803, 0x0) (async) r4 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213) (async) sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0xffffffffffffffcd, &(0x7f0000000080)={&(0x7f0000000580)=@ipv6_getroute={0x24, 0x1a, 0x1, 0x0, 0x0, {0x1c}, [@RTA_MARK={0x3, 0x1c}]}, 0x24}}, 0x0) r5 = openat$cgroup_subtree(r0, &(0x7f0000000100), 0x2, 0x0) splice(r5, &(0x7f0000000300)=0xfffffffffffffff8, r4, &(0x7f0000000340)=0x9, 0x3, 0x2) (async) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x3d2}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="44000000100001048000"/20, @ANYRES32, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800500190000000000050017"], 0x44}}, 0x0) [ 857.702527][ T25] audit: type=1804 audit(1643832926.677:1020): pid=29986 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir370621876/syzkaller.yLzCpf/438/cgroup.controllers" dev="sda1" ino=1176 res=1 errno=0 20:15:26 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994060424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:26 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async, rerun: 64) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0) (async, rerun: 64) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (async, rerun: 32) r2 = socket(0x10, 0x2, 0x0) (rerun: 32) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000000)={0x80000004}, 0x10) (async) write(r2, &(0x7f0000000100)="240000001a005f0214f9f4070009044081000060ff000000000000000800040005000000", 0x24) (async) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100), r3) sendmsg$IPVS_CMD_FLUSH(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="2e000000bddaa346936bedd9a9196fde49735ff6336e8c7ea7dcb96d2f7606d8727a70039919c72e913d97d24d5c5841fb49a84080afefbdf5a5da904e813be933fd3c690ccfa41f450869cf5122ca863e1837a832b084ad361c82d1d589de09eed8d3c8a2122607b2feb9680ff4ec340941d3c2d48637315c2c601190635774f56ac1dce430016f9222f3f7d55f5bb9911e2ec03065aa13822b5c38188631c994c143dc798406b9ad41f419984a8bd07774211bad668c3f4bae9757792e41bcccc4ebb3233d319c0ac0f88b53c04eccc726e4e465ed6d587081", @ANYRES16=r4, @ANYBLOB="000127bd7000fddbdf251100000014000280080009000000000006000f00090000000800050080000000"], 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x40000) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r5, &(0x7f0000000280)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) (async) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000700)={'wlan0\x00', 0x0}) (async, rerun: 32) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) (rerun: 32) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x1c, r8, 0x701, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0) (async) sendfile(r6, r1, 0x0, 0x40100000006) 20:15:26 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='cpu.stat\x00', 0x0, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) mmap(&(0x7f0000314000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) sendfile(r3, r4, 0x0, 0xf03b0000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x13, r2, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611) r5 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r7 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8}]}]}, @TCA_TAPRIO_ATTR_FLAGS={0x8}]}}]}, 0xa4}}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r6, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) r8 = socket$xdp(0x2c, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10) ioctl$BTRFS_IOC_FS_INFO(0xffffffffffffffff, 0x8400941f, &(0x7f0000000800)) setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/18, 0x30c000, 0x800}, 0x200d6f) [ 857.830761][T29966] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 857.877807][T29966] CPU: 1 PID: 29966 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 857.888375][T29966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 857.898456][T29966] Call Trace: [ 857.901754][T29966] [ 857.904705][T29966] dump_stack_lvl+0xcd/0x134 [ 857.909332][T29966] sysfs_warn_dup.cold+0x1c/0x29 [ 857.914302][T29966] sysfs_do_create_link_sd+0x11e/0x140 [ 857.919798][T29966] sysfs_create_link+0x5f/0xc0 [ 857.924602][T29966] device_add+0x789/0x1ee0 [ 857.929060][T29966] ? wait_for_completion_io+0x270/0x270 [ 857.934638][T29966] ? lock_downgrade+0x6e0/0x6e0 [ 857.939525][T29966] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 857.945802][T29966] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 857.952089][T29966] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 857.958367][T29966] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 857.964397][T29966] wiphy_register+0x1e86/0x29a0 [ 857.969297][T29966] ? wiphy_unregister+0xbf0/0xbf0 [ 857.974349][T29966] ? minstrel_ht_alloc+0x52c/0xa10 [ 857.979504][T29966] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 857.985705][T29966] ieee80211_register_hw+0x1f16/0x3ed0 [ 857.991211][T29966] ? ieee80211_restart_hw+0x290/0x290 [ 857.996616][T29966] ? debug_object_destroy+0x210/0x210 [ 858.002031][T29966] ? memset+0x20/0x40 [ 858.006045][T29966] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 858.012317][T29966] ? __hrtimer_init+0x136/0x280 [ 858.017208][T29966] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 858.022987][T29966] ? hwsim_virtio_rx_work+0x350/0x350 [ 858.028386][T29966] ? hwsim_new_radio_nl+0x992/0x1080 [ 858.033703][T29966] ? memcpy+0x39/0x60 [ 858.037717][T29966] hwsim_new_radio_nl+0x9bc/0x1080 [ 858.042869][T29966] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 858.048801][T29966] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 858.055084][T29966] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 858.062488][T29966] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 858.069815][T29966] genl_family_rcv_msg_doit+0x228/0x320 [ 858.075403][T29966] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 858.082815][T29966] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 858.089115][T29966] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 858.095398][T29966] ? ns_capable+0xd9/0x100 [ 858.099862][T29966] genl_rcv_msg+0x328/0x580 [ 858.104405][T29966] ? genl_get_cmd+0x480/0x480 [ 858.109113][T29966] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 858.115047][T29966] ? lock_release+0x720/0x720 [ 858.119767][T29966] netlink_rcv_skb+0x153/0x420 [ 858.124563][T29966] ? genl_get_cmd+0x480/0x480 [ 858.129277][T29966] ? netlink_ack+0xa60/0xa60 [ 858.133913][T29966] ? netlink_deliver_tap+0x1b1/0xc30 [ 858.139232][T29966] genl_rcv+0x24/0x40 [ 858.143243][T29966] netlink_unicast+0x539/0x7e0 [ 858.148046][T29966] ? netlink_attachskb+0x880/0x880 [ 858.153188][T29966] ? __virt_addr_valid+0x5d/0x2d0 [ 858.158249][T29966] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 858.164520][T29966] ? __phys_addr_symbol+0x2c/0x70 [ 858.169575][T29966] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 858.175323][T29966] ? __check_object_size+0x16e/0x310 [ 858.180648][T29966] netlink_sendmsg+0x904/0xe00 [ 858.185452][T29966] ? netlink_unicast+0x7e0/0x7e0 [ 858.190428][T29966] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 858.196711][T29966] ? netlink_unicast+0x7e0/0x7e0 [ 858.201684][T29966] sock_sendmsg+0xcf/0x120 [ 858.206132][T29966] ____sys_sendmsg+0x6e8/0x810 [ 858.210932][T29966] ? kernel_sendmsg+0x50/0x50 [ 858.215644][T29966] ? do_recvmmsg+0x6d0/0x6d0 [ 858.220265][T29966] ? lock_chain_count+0x20/0x20 [ 858.225147][T29966] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 858.231161][T29966] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 858.237435][T29966] ? futex_wait+0x533/0x670 [ 858.241974][T29966] ___sys_sendmsg+0xf3/0x170 [ 858.246599][T29966] ? sendmsg_copy_msghdr+0x160/0x160 [ 858.251923][T29966] ? lock_downgrade+0x6e0/0x6e0 [ 858.256882][T29966] ? __fget_files+0x28c/0x470 [ 858.261605][T29966] ? __fget_light+0xea/0x280 [ 858.266231][T29966] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 858.272519][T29966] __sys_sendmsg+0xe5/0x1b0 [ 858.277065][T29966] ? __sys_sendmsg_sock+0x30/0x30 [ 858.282140][T29966] ? syscall_enter_from_user_mode+0x21/0x70 [ 858.288078][T29966] do_syscall_64+0x35/0xb0 [ 858.292529][T29966] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 858.298462][T29966] RIP: 0033:0x7f8a7fbd7059 [ 858.302903][T29966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 858.322544][T29966] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 858.330993][T29966] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 858.338998][T29966] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 858.347020][T29966] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 858.355021][T29966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 858.363017][T29966] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 858.371041][T29966] 20:15:27 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (async) r2 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000000)={0x80000004}, 0x10) (async) write(r2, &(0x7f0000000100)="240000001a005f0214f9f4070009044081000060ff000000000000000800040005000000", 0x24) (async) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x208e24b) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100), r3) sendmsg$IPVS_CMD_FLUSH(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="2e000000bddaa346936bedd9a9196fde49735ff6336e8c7ea7dcb96d2f7606d8727a70039919c72e913d97d24d5c5841fb49a84080afefbdf5a5da904e813be933fd3c690ccfa41f450869cf5122ca863e1837a832b084ad361c82d1d589de09eed8d3c8a2122607b2feb9680ff4ec340941d3c2d48637315c2c601190635774f56ac1dce430016f9222f3f7d55f5bb9911e2ec03065aa13822b5c38188631c994c143dc798406b9ad41f419984a8bd07774211bad668c3f4bae9757792e41bcccc4ebb3233d319c0ac0f88b53c04eccc726e4e465ed6d587081", @ANYRES16=r4, @ANYBLOB="000127bd7000fddbdf251100000014000280080009000000000006000f00090000000800050080000000"], 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x40000) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r5, &(0x7f0000000280)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) (async) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000700)={'wlan0\x00', 0x0}) (async) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x1c, r8, 0x701, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0) (async) sendfile(r6, r1, 0x0, 0x40100000006) [ 858.551605][ T25] audit: type=1804 audit(1643832927.527:1021): pid=30026 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir370621876/syzkaller.yLzCpf/440/cgroup.controllers" dev="sda1" ino=1169 res=1 errno=0 [ 858.609430][ T25] audit: type=1804 audit(1643832927.557:1022): pid=30028 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir370621876/syzkaller.yLzCpf/440/cgroup.controllers" dev="sda1" ino=1169 res=1 errno=0 20:15:27 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100611402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:27 executing program 4: unshare(0x40000000) r0 = socket(0x5, 0x0, 0xfffffffc) r1 = socket(0x11, 0x800000003, 0x6) bind(r0, 0x0, 0x3f) bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r3 = socket(0x10, 0x3, 0x0) socket(0xa, 0x0, 0x3bd) sendmsg$nl_route_sched(r3, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="3800000024000b0f00"/20, @ANYRES32=r2, @ANYBLOB="0000250400000797a3dcb7bdda71c2000000000094c2a6000000"], 0x38}}, 0x0) r4 = socket$inet6(0xa, 0x803, 0x6) connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r4, &(0x7f0000008440)=[{{0x0, 0x536, 0x0, 0x0, 0x0, 0x0, 0x601}}], 0x400000000000107, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c) sendmmsg(0xffffffffffffffff, &(0x7f00000092c0), 0x3fffffffffffc23, 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f0000000140)="d057326a63292f9919486f33691e1ec6696459139f8d8712648743d89b3f91aed1d426962f6c2351592b5428ae66f67782f102933dec6f6a143fa7192334ab8a95f50c703ffd1d3e792730ed15ef84a9e1f5b3f1bd8216bf0be79f30885a911b333eb33c51bf99fd24eae39d7a26cbeebdcedeef866942a82b", 0x79, 0x20000001, &(0x7f00000001c0)={0xa, 0x4e23, 0xd341, @mcast1, 0x2}, 0x1c) r5 = socket(0x200000000000011, 0x4000000000080002, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) bind$packet(r5, &(0x7f00000000c0)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="5ec39e2fb8ee"}, 0x14) sendmmsg(r5, &(0x7f0000000d00), 0x1bdd307, 0x0) [ 858.659637][T29988] netlink: 'syz-executor.1': attribute type 11 has an invalid length. 20:15:27 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @link_local={0x3}}]}, 0x40}}, 0x0) r1 = socket(0x1a, 0x2, 0x800) sendmsg$nl_route(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=@ipv4_getnexthop={0x34, 0x6a, 0x10, 0x70bd2d, 0x25dfdbfb, {}, [@NHA_OIF={0x8}, @NHA_MASTER={0x8}, @NHA_GROUPS={0x4}, @NHA_ID={0x8, 0x1, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x40840}, 0x8044) [ 858.712021][T29988] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 858.744840][T29988] CPU: 1 PID: 29988 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 858.755398][T29988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 858.765491][T29988] Call Trace: [ 858.768798][T29988] [ 858.771744][T29988] dump_stack_lvl+0xcd/0x134 [ 858.776371][T29988] sysfs_warn_dup.cold+0x1c/0x29 [ 858.781331][T29988] sysfs_do_create_link_sd+0x11e/0x140 [ 858.786808][T29988] sysfs_create_link+0x5f/0xc0 [ 858.791610][T29988] device_add+0x789/0x1ee0 [ 858.796072][T29988] ? wait_for_completion_io+0x270/0x270 [ 858.801653][T29988] ? minstrel_ht_alloc+0x4b/0xa10 20:15:27 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) (async) r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='cpu.stat\x00', 0x0, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) (async) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) (async) mmap(&(0x7f0000314000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async) sendfile(r3, r4, 0x0, 0xf03b0000) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x13, r2, 0x0) (async) ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611) r5 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) (async) r7 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8}]}]}, @TCA_TAPRIO_ATTR_FLAGS={0x8}]}}]}, 0xa4}}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r6, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async) r8 = socket$xdp(0x2c, 0x3, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10) (async) ioctl$BTRFS_IOC_FS_INFO(0xffffffffffffffff, 0x8400941f, &(0x7f0000000800)) setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/18, 0x30c000, 0x800}, 0x200d6f) [ 858.806714][T29988] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 858.812991][T29988] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 858.819276][T29988] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 858.825557][T29988] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 858.831597][T29988] wiphy_register+0x1e86/0x29a0 [ 858.836500][T29988] ? wiphy_unregister+0xbf0/0xbf0 [ 858.841552][T29988] ? minstrel_ht_alloc+0x52c/0xa10 [ 858.846708][T29988] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 858.852817][T29988] ieee80211_register_hw+0x1f16/0x3ed0 [ 858.858323][T29988] ? ieee80211_restart_hw+0x290/0x290 [ 858.863740][T29988] ? debug_object_destroy+0x210/0x210 [ 858.869153][T29988] ? memset+0x20/0x40 [ 858.873172][T29988] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 858.879445][T29988] ? __hrtimer_init+0x136/0x280 [ 858.884345][T29988] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 858.890140][T29988] ? hwsim_virtio_rx_work+0x350/0x350 [ 858.895555][T29988] ? hwsim_new_radio_nl+0x992/0x1080 [ 858.900878][T29988] ? memcpy+0x39/0x60 [ 858.904902][T29988] hwsim_new_radio_nl+0x9bc/0x1080 [ 858.910056][T29988] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 858.915998][T29988] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 858.922276][T29988] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 858.929684][T29988] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 858.937020][T29988] genl_family_rcv_msg_doit+0x228/0x320 [ 858.942603][T29988] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 858.950004][T29988] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 858.956296][T29988] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 858.962574][T29988] ? ns_capable+0xd9/0x100 [ 858.967032][T29988] genl_rcv_msg+0x328/0x580 [ 858.971570][T29988] ? genl_get_cmd+0x480/0x480 [ 858.976285][T29988] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 858.982221][T29988] ? lock_release+0x720/0x720 [ 858.986940][T29988] netlink_rcv_skb+0x153/0x420 [ 858.991734][T29988] ? genl_get_cmd+0x480/0x480 [ 858.996447][T29988] ? netlink_ack+0xa60/0xa60 [ 859.001074][T29988] ? netlink_deliver_tap+0x1b1/0xc30 [ 859.006400][T29988] genl_rcv+0x24/0x40 [ 859.010419][T29988] netlink_unicast+0x539/0x7e0 [ 859.015225][T29988] ? netlink_attachskb+0x880/0x880 [ 859.020363][T29988] ? __virt_addr_valid+0x5d/0x2d0 [ 859.025427][T29988] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 859.031706][T29988] ? __phys_addr_symbol+0x2c/0x70 [ 859.036760][T29988] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 859.042512][T29988] ? __check_object_size+0x16e/0x310 [ 859.047834][T29988] netlink_sendmsg+0x904/0xe00 [ 859.052633][T29988] ? netlink_unicast+0x7e0/0x7e0 [ 859.057606][T29988] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 859.063895][T29988] ? netlink_unicast+0x7e0/0x7e0 [ 859.068885][T29988] sock_sendmsg+0xcf/0x120 [ 859.073335][T29988] ____sys_sendmsg+0x6e8/0x810 [ 859.078134][T29988] ? kernel_sendmsg+0x50/0x50 [ 859.082850][T29988] ? do_recvmmsg+0x6d0/0x6d0 [ 859.087472][T29988] ? lock_chain_count+0x20/0x20 [ 859.092359][T29988] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 859.098373][T29988] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 859.104646][T29988] ? futex_wait+0x533/0x670 [ 859.109188][T29988] ___sys_sendmsg+0xf3/0x170 [ 859.113823][T29988] ? sendmsg_copy_msghdr+0x160/0x160 [ 859.119234][T29988] ? lock_downgrade+0x6e0/0x6e0 [ 859.124138][T29988] ? __fget_files+0x28c/0x470 [ 859.128863][T29988] ? __fget_light+0xea/0x280 [ 859.133488][T29988] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 859.139771][T29988] __sys_sendmsg+0xe5/0x1b0 [ 859.144315][T29988] ? __sys_sendmsg_sock+0x30/0x30 [ 859.149392][T29988] ? syscall_enter_from_user_mode+0x21/0x70 [ 859.155328][T29988] do_syscall_64+0x35/0xb0 [ 859.159773][T29988] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 859.165702][T29988] RIP: 0033:0x7f4b423c2059 [ 859.170138][T29988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 859.189870][T29988] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 859.198318][T29988] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 859.206321][T29988] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 859.214323][T29988] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 859.222325][T29988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 859.230323][T29988] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 859.238343][T29988] [ 859.401109][T30015] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 859.434137][T30015] CPU: 0 PID: 30015 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 859.444748][T30015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 859.454837][T30015] Call Trace: [ 859.458135][T30015] [ 859.461082][T30015] dump_stack_lvl+0xcd/0x134 [ 859.465693][T30015] sysfs_warn_dup.cold+0x1c/0x29 [ 859.470648][T30015] sysfs_do_create_link_sd+0x11e/0x140 [ 859.476123][T30015] sysfs_create_link+0x5f/0xc0 [ 859.480908][T30015] device_add+0x789/0x1ee0 [ 859.485345][T30015] ? wait_for_completion_io+0x270/0x270 [ 859.490912][T30015] ? lock_downgrade+0x6e0/0x6e0 [ 859.495801][T30015] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 859.502066][T30015] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 859.508336][T30015] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 859.514594][T30015] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 859.520596][T30015] wiphy_register+0x1e86/0x29a0 [ 859.525469][T30015] ? wiphy_unregister+0xbf0/0xbf0 [ 859.530509][T30015] ? minstrel_ht_alloc+0x52c/0xa10 [ 859.535645][T30015] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 859.541736][T30015] ieee80211_register_hw+0x1f16/0x3ed0 [ 859.547230][T30015] ? ieee80211_restart_hw+0x290/0x290 [ 859.552622][T30015] ? debug_object_destroy+0x210/0x210 [ 859.558015][T30015] ? memset+0x20/0x40 [ 859.562013][T30015] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 859.568272][T30015] ? __hrtimer_init+0x136/0x280 [ 859.573148][T30015] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 859.578906][T30015] ? hwsim_virtio_rx_work+0x350/0x350 [ 859.584291][T30015] ? hwsim_new_radio_nl+0x992/0x1080 [ 859.589601][T30015] ? memcpy+0x39/0x60 [ 859.593598][T30015] hwsim_new_radio_nl+0x9bc/0x1080 [ 859.598728][T30015] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 859.604657][T30015] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 859.610915][T30015] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 859.618300][T30015] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 859.625604][T30015] genl_family_rcv_msg_doit+0x228/0x320 [ 859.631172][T30015] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 859.638558][T30015] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 859.644829][T30015] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 859.651096][T30015] ? ns_capable+0xd9/0x100 [ 859.655533][T30015] genl_rcv_msg+0x328/0x580 [ 859.660073][T30015] ? genl_get_cmd+0x480/0x480 [ 859.664766][T30015] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 859.670680][T30015] ? lock_release+0x720/0x720 [ 859.675378][T30015] netlink_rcv_skb+0x153/0x420 [ 859.680153][T30015] ? genl_get_cmd+0x480/0x480 [ 859.684848][T30015] ? netlink_ack+0xa60/0xa60 [ 859.689455][T30015] ? netlink_deliver_tap+0x1b1/0xc30 [ 859.694761][T30015] genl_rcv+0x24/0x40 [ 859.698752][T30015] netlink_unicast+0x539/0x7e0 [ 859.703542][T30015] ? netlink_attachskb+0x880/0x880 [ 859.708665][T30015] ? __virt_addr_valid+0x5d/0x2d0 [ 859.713718][T30015] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 859.719983][T30015] ? __phys_addr_symbol+0x2c/0x70 [ 859.725029][T30015] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 859.730772][T30015] ? __check_object_size+0x16e/0x310 [ 859.736087][T30015] netlink_sendmsg+0x904/0xe00 [ 859.740882][T30015] ? netlink_unicast+0x7e0/0x7e0 [ 859.745844][T30015] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 859.752109][T30015] ? netlink_unicast+0x7e0/0x7e0 [ 859.757062][T30015] sock_sendmsg+0xcf/0x120 [ 859.761495][T30015] ____sys_sendmsg+0x6e8/0x810 [ 859.766277][T30015] ? kernel_sendmsg+0x50/0x50 [ 859.770970][T30015] ? do_recvmmsg+0x6d0/0x6d0 [ 859.775575][T30015] ? lock_chain_count+0x20/0x20 [ 859.780443][T30015] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 859.786447][T30015] ___sys_sendmsg+0xf3/0x170 [ 859.791059][T30015] ? sendmsg_copy_msghdr+0x160/0x160 [ 859.796364][T30015] ? lock_downgrade+0x6e0/0x6e0 [ 859.801243][T30015] ? __fget_files+0x28c/0x470 [ 859.805940][T30015] ? __fget_light+0xea/0x280 [ 859.810549][T30015] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 859.816814][T30015] __sys_sendmsg+0xe5/0x1b0 [ 859.821334][T30015] ? __sys_sendmsg_sock+0x30/0x30 [ 859.826388][T30015] ? syscall_enter_from_user_mode+0x21/0x70 [ 859.832306][T30015] do_syscall_64+0x35/0xb0 [ 859.836738][T30015] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 859.842683][T30015] RIP: 0033:0x7f0982948059 [ 859.847111][T30015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 859.866734][T30015] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 859.875160][T30015] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 859.883142][T30015] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 859.891154][T30015] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 20:15:28 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @link_local={0x3}}]}, 0x40}}, 0x0) r1 = socket(0x1a, 0x2, 0x800) sendmsg$nl_route(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=@ipv4_getnexthop={0x34, 0x6a, 0x10, 0x70bd2d, 0x25dfdbfb, {}, [@NHA_OIF={0x8}, @NHA_MASTER={0x8}, @NHA_GROUPS={0x4}, @NHA_ID={0x8, 0x1, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x40840}, 0x8044) [ 859.899139][T30015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 859.907127][T30015] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 859.915139][T30015] [ 860.067816][T30030] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 860.085468][T30030] CPU: 1 PID: 30030 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 860.096028][T30030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 860.106121][T30030] Call Trace: [ 860.109424][T30030] [ 860.112376][T30030] dump_stack_lvl+0xcd/0x134 [ 860.117009][T30030] sysfs_warn_dup.cold+0x1c/0x29 [ 860.121988][T30030] sysfs_do_create_link_sd+0x11e/0x140 [ 860.127487][T30030] sysfs_create_link+0x5f/0xc0 [ 860.132296][T30030] device_add+0x789/0x1ee0 [ 860.136760][T30030] ? wait_for_completion_io+0x270/0x270 [ 860.142346][T30030] ? asm_exc_int3+0x31/0x40 [ 860.146909][T30030] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 860.153188][T30030] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 860.159463][T30030] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 860.165742][T30030] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 860.171770][T30030] wiphy_register+0x1e86/0x29a0 [ 860.176760][T30030] ? wiphy_unregister+0xbf0/0xbf0 [ 860.181820][T30030] ? minstrel_ht_alloc+0x52c/0xa10 [ 860.186988][T30030] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 860.193099][T30030] ieee80211_register_hw+0x1f16/0x3ed0 [ 860.198609][T30030] ? ieee80211_restart_hw+0x290/0x290 [ 860.204022][T30030] ? debug_object_destroy+0x210/0x210 [ 860.209451][T30030] ? memset+0x20/0x40 20:15:29 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200063382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:29 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='cpu.stat\x00', 0x0, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) mmap(&(0x7f0000314000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) sendfile(r3, r4, 0x0, 0xf03b0000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x13, r2, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611) r5 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r7 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8}]}]}, @TCA_TAPRIO_ATTR_FLAGS={0x8}]}}]}, 0xa4}}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r6, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) r8 = socket$xdp(0x2c, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10) ioctl$BTRFS_IOC_FS_INFO(0xffffffffffffffff, 0x8400941f, &(0x7f0000000800)) setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/18, 0x30c000, 0x800}, 0x200d6f) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) (async) write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) (async) openat$cgroup_ro(r0, &(0x7f0000000100)='cpu.stat\x00', 0x0, 0x0) (async) openat$cgroup_ro(r1, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) (async) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) (async) mmap(&(0x7f0000314000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async) sendfile(r3, r4, 0x0, 0xf03b0000) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x13, r2, 0x0) (async) ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611) (async) socket(0x11, 0x800000003, 0x0) (async) ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)) (async) socket$netlink(0x10, 0x3, 0x0) (async) sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8}]}]}, @TCA_TAPRIO_ATTR_FLAGS={0x8}]}}]}, 0xa4}}, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r6, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async) socket$xdp(0x2c, 0x3, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10) (async) ioctl$BTRFS_IOC_FS_INFO(0xffffffffffffffff, 0x8400941f, &(0x7f0000000800)) (async) setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/18, 0x30c000, 0x800}, 0x200d6f) (async) 20:15:29 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @link_local={0x3}}]}, 0x40}}, 0x0) r1 = socket(0x1a, 0x2, 0x800) sendmsg$nl_route(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=@ipv4_getnexthop={0x34, 0x6a, 0x10, 0x70bd2d, 0x25dfdbfb, {}, [@NHA_OIF={0x8}, @NHA_MASTER={0x8}, @NHA_GROUPS={0x4}, @NHA_ID={0x8, 0x1, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x40840}, 0x8044) 20:15:29 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994070424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 860.213467][T30030] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 860.219746][T30030] ? __hrtimer_init+0x136/0x280 [ 860.224633][T30030] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 860.230406][T30030] ? hwsim_virtio_rx_work+0x350/0x350 [ 860.235807][T30030] ? hwsim_new_radio_nl+0x992/0x1080 [ 860.241129][T30030] ? memcpy+0x39/0x60 [ 860.245153][T30030] hwsim_new_radio_nl+0x9bc/0x1080 [ 860.250322][T30030] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 860.256442][T30030] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 860.262724][T30030] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 860.270136][T30030] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 860.277471][T30030] genl_family_rcv_msg_doit+0x228/0x320 [ 860.283054][T30030] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 860.290463][T30030] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 860.296756][T30030] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 860.303035][T30030] ? ns_capable+0xd9/0x100 [ 860.307496][T30030] genl_rcv_msg+0x328/0x580 [ 860.312045][T30030] ? genl_get_cmd+0x480/0x480 [ 860.316760][T30030] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 860.322697][T30030] ? lock_release+0x720/0x720 [ 860.327417][T30030] netlink_rcv_skb+0x153/0x420 [ 860.332222][T30030] ? genl_get_cmd+0x480/0x480 [ 860.336942][T30030] ? netlink_ack+0xa60/0xa60 [ 860.341579][T30030] ? netlink_deliver_tap+0x1b1/0xc30 [ 860.347515][T30030] genl_rcv+0x24/0x40 [ 860.351527][T30030] netlink_unicast+0x539/0x7e0 [ 860.356327][T30030] ? netlink_attachskb+0x880/0x880 [ 860.361469][T30030] ? __virt_addr_valid+0x5d/0x2d0 [ 860.366529][T30030] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 860.372811][T30030] ? __phys_addr_symbol+0x2c/0x70 [ 860.377870][T30030] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 860.383624][T30030] ? __check_object_size+0x16e/0x310 [ 860.388948][T30030] netlink_sendmsg+0x904/0xe00 [ 860.393756][T30030] ? netlink_unicast+0x7e0/0x7e0 [ 860.398743][T30030] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 860.405027][T30030] ? netlink_unicast+0x7e0/0x7e0 [ 860.410008][T30030] sock_sendmsg+0xcf/0x120 [ 860.414463][T30030] ____sys_sendmsg+0x6e8/0x810 [ 860.419264][T30030] ? kernel_sendmsg+0x50/0x50 [ 860.423970][T30030] ? do_recvmmsg+0x6d0/0x6d0 [ 860.428594][T30030] ? lock_chain_count+0x20/0x20 [ 860.433479][T30030] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 860.439511][T30030] ___sys_sendmsg+0xf3/0x170 [ 860.444138][T30030] ? sendmsg_copy_msghdr+0x160/0x160 [ 860.449478][T30030] ? lock_downgrade+0x6e0/0x6e0 [ 860.454389][T30030] ? __fget_files+0x28c/0x470 [ 860.459113][T30030] ? __fget_light+0xea/0x280 [ 860.463738][T30030] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 860.470020][T30030] __sys_sendmsg+0xe5/0x1b0 [ 860.474557][T30030] ? __sys_sendmsg_sock+0x30/0x30 [ 860.479805][T30030] ? syscall_enter_from_user_mode+0x21/0x70 [ 860.485740][T30030] do_syscall_64+0x35/0xb0 [ 860.490185][T30030] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 860.496125][T30030] RIP: 0033:0x7f8a7fbd7059 [ 860.500566][T30030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 860.520194][T30030] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 860.528629][T30030] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 860.536608][T30030] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 860.544584][T30030] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 860.552564][T30030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 860.560539][T30030] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 860.568538][T30030] 20:15:29 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000010c0)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="187f0000000000000000000000000000000000000040367c0400000068393c8522c1dbc8a8c278fc00000000"], &(0x7f0000000000)='syzkaller\x00', 0xfffffffe, 0x1000, &(0x7f00000000c0)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001140)={&(0x7f0000000040)='ext4_es_shrink_scan_exit\x00', r0}, 0x10) 20:15:29 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xe, 0xb, &(0x7f0000000180)=@raw=[@alu={0x7, 0x1, 0x2, 0x0, 0xb, 0x80, 0xfffffffffffffff0}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x7c}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x1}, @map_idx={0x18, 0x6, 0x5, 0x0, 0x3}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x9}, @alu={0x7, 0x0, 0xc, 0x5, 0x9, 0xc, 0x4}], &(0x7f0000000080)='GPL\x00', 0x4, 0x1000, &(0x7f0000000300)=""/4096, 0x40f00, 0x1a, '\x00', 0x0, 0x18, r1, 0x8, &(0x7f0000000100)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000240)={0x1, 0xa, 0x0, 0x8}, 0x10, 0x0, r0, 0x0, &(0x7f0000000280)=[r0]}, 0x80) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000001380)={r2, r0, 0x1c}, 0x10) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) socket$nl_audit(0x10, 0x3, 0x9) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed}, 0xe) listen(r4, 0x0) ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f0000000040)={0x1}) 20:15:29 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100711402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 860.616578][T30056] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 860.651947][T30056] __nla_validate_parse: 9 callbacks suppressed [ 860.652129][T30056] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. 20:15:29 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000010c0)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="187f0000000000000000000000000000000000000040367c0400000068393c8522c1dbc8a8c278fc00000000"], &(0x7f0000000000)='syzkaller\x00', 0xfffffffe, 0x1000, &(0x7f00000000c0)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r0, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001140)={&(0x7f0000000040)='ext4_es_shrink_scan_exit\x00', r0}, 0x10) 20:15:29 executing program 4: unshare(0x40000000) r0 = socket(0x5, 0x0, 0xfffffffc) r1 = socket(0x11, 0x800000003, 0x6) bind(r0, 0x0, 0x3f) bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r3 = socket(0x10, 0x3, 0x0) socket(0xa, 0x0, 0x3bd) sendmsg$nl_route_sched(r3, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="3800000024000b0f00"/20, @ANYRES32=r2, @ANYBLOB="0000250400000797a3dcb7bdda71c2000000000094c2a6000000"], 0x38}}, 0x0) r4 = socket$inet6(0xa, 0x803, 0x6) connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r4, &(0x7f0000008440)=[{{0x0, 0x536, 0x0, 0x0, 0x0, 0x0, 0x601}}], 0x400000000000107, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c) sendmmsg(0xffffffffffffffff, &(0x7f00000092c0), 0x3fffffffffffc23, 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f0000000140)="d057326a63292f9919486f33691e1ec6696459139f8d8712648743d89b3f91aed1d426962f6c2351592b5428ae66f67782f102933dec6f6a143fa7192334ab8a95f50c703ffd1d3e792730ed15ef84a9e1f5b3f1bd8216bf0be79f30885a911b333eb33c51bf99fd24eae39d7a26cbeebdcedeef866942a82b", 0x79, 0x20000001, &(0x7f00000001c0)={0xa, 0x4e23, 0xd341, @mcast1, 0x2}, 0x1c) r5 = socket(0x200000000000011, 0x4000000000080002, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) bind$packet(r5, &(0x7f00000000c0)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="5ec39e2fb8ee"}, 0x14) sendmmsg(r5, &(0x7f0000000d00), 0x1bdd307, 0x0) unshare(0x40000000) (async) socket(0x5, 0x0, 0xfffffffc) (async) socket(0x11, 0x800000003, 0x6) (async) bind(r0, 0x0, 0x3f) (async) bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) (async) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) (async) socket(0x10, 0x3, 0x0) (async) socket(0xa, 0x0, 0x3bd) (async) sendmsg$nl_route_sched(r3, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="3800000024000b0f00"/20, @ANYRES32=r2, @ANYBLOB="0000250400000797a3dcb7bdda71c2000000000094c2a6000000"], 0x38}}, 0x0) (async) socket$inet6(0xa, 0x803, 0x6) (async) connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) (async) sendmmsg(r4, &(0x7f0000008440)=[{{0x0, 0x536, 0x0, 0x0, 0x0, 0x0, 0x601}}], 0x400000000000107, 0x0) (async) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c) (async) sendmmsg(0xffffffffffffffff, &(0x7f00000092c0), 0x3fffffffffffc23, 0x0) (async) sendto$inet6(0xffffffffffffffff, &(0x7f0000000140)="d057326a63292f9919486f33691e1ec6696459139f8d8712648743d89b3f91aed1d426962f6c2351592b5428ae66f67782f102933dec6f6a143fa7192334ab8a95f50c703ffd1d3e792730ed15ef84a9e1f5b3f1bd8216bf0be79f30885a911b333eb33c51bf99fd24eae39d7a26cbeebdcedeef866942a82b", 0x79, 0x20000001, &(0x7f00000001c0)={0xa, 0x4e23, 0xd341, @mcast1, 0x2}, 0x1c) (async) socket(0x200000000000011, 0x4000000000080002, 0x0) (async) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) (async) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00'}) (async) bind$packet(r5, &(0x7f00000000c0)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="5ec39e2fb8ee"}, 0x14) (async) sendmmsg(r5, &(0x7f0000000d00), 0x1bdd307, 0x0) (async) [ 860.800533][T30056] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 860.827741][T30056] CPU: 1 PID: 30056 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 860.838306][T30056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 860.848399][T30056] Call Trace: [ 860.851705][T30056] [ 860.854661][T30056] dump_stack_lvl+0xcd/0x134 [ 860.859296][T30056] sysfs_warn_dup.cold+0x1c/0x29 [ 860.864283][T30056] sysfs_do_create_link_sd+0x11e/0x140 [ 860.869799][T30056] sysfs_create_link+0x5f/0xc0 [ 860.874601][T30056] device_add+0x789/0x1ee0 [ 860.879042][T30056] ? wait_for_completion_io+0x270/0x270 [ 860.884608][T30056] ? lock_downgrade+0x6e0/0x6e0 [ 860.889491][T30056] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 860.895754][T30056] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 860.902039][T30056] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 860.908318][T30056] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 860.914349][T30056] wiphy_register+0x1e86/0x29a0 [ 860.919240][T30056] ? wiphy_unregister+0xbf0/0xbf0 [ 860.924271][T30056] ? minstrel_ht_alloc+0x52c/0xa10 [ 860.929425][T30056] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 860.935515][T30056] ieee80211_register_hw+0x1f16/0x3ed0 [ 860.941041][T30056] ? ieee80211_restart_hw+0x290/0x290 [ 860.946448][T30056] ? debug_object_destroy+0x210/0x210 [ 860.951853][T30056] ? memset+0x20/0x40 [ 860.955846][T30056] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 860.962130][T30056] ? __hrtimer_init+0x136/0x280 [ 860.967015][T30056] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 860.972786][T30056] ? hwsim_virtio_rx_work+0x350/0x350 [ 860.978164][T30056] ? hwsim_new_radio_nl+0x992/0x1080 [ 860.983473][T30056] ? memcpy+0x39/0x60 [ 860.987466][T30056] hwsim_new_radio_nl+0x9bc/0x1080 [ 860.992594][T30056] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 860.998523][T30056] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 861.004771][T30056] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 861.012190][T30056] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 861.019488][T30056] genl_family_rcv_msg_doit+0x228/0x320 [ 861.025075][T30056] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 861.032493][T30056] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 861.038762][T30056] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 861.045035][T30056] ? ns_capable+0xd9/0x100 [ 861.049459][T30056] genl_rcv_msg+0x328/0x580 [ 861.053973][T30056] ? genl_get_cmd+0x480/0x480 [ 861.058681][T30056] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 861.064595][T30056] ? lock_release+0x720/0x720 [ 861.069323][T30056] netlink_rcv_skb+0x153/0x420 [ 861.074131][T30056] ? genl_get_cmd+0x480/0x480 [ 861.078844][T30056] ? netlink_ack+0xa60/0xa60 [ 861.083476][T30056] ? netlink_deliver_tap+0x1b1/0xc30 [ 861.088801][T30056] genl_rcv+0x24/0x40 [ 861.092816][T30056] netlink_unicast+0x539/0x7e0 [ 861.097627][T30056] ? netlink_attachskb+0x880/0x880 [ 861.102779][T30056] ? __virt_addr_valid+0x5d/0x2d0 [ 861.107845][T30056] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 861.114137][T30056] ? __phys_addr_symbol+0x2c/0x70 [ 861.119202][T30056] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 861.124959][T30056] ? __check_object_size+0x16e/0x310 [ 861.130271][T30056] netlink_sendmsg+0x904/0xe00 [ 861.135070][T30056] ? netlink_unicast+0x7e0/0x7e0 [ 861.140024][T30056] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 861.146278][T30056] ? netlink_unicast+0x7e0/0x7e0 [ 861.151247][T30056] sock_sendmsg+0xcf/0x120 [ 861.155707][T30056] ____sys_sendmsg+0x6e8/0x810 [ 861.160516][T30056] ? kernel_sendmsg+0x50/0x50 [ 861.165218][T30056] ? do_recvmmsg+0x6d0/0x6d0 [ 861.169899][T30056] ? lock_chain_count+0x20/0x20 [ 861.174795][T30056] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 861.180834][T30056] ___sys_sendmsg+0xf3/0x170 [ 861.185473][T30056] ? sendmsg_copy_msghdr+0x160/0x160 [ 861.190778][T30056] ? lock_downgrade+0x6e0/0x6e0 [ 861.195669][T30056] ? __fget_files+0x28c/0x470 [ 861.200358][T30056] ? __fget_light+0xea/0x280 [ 861.204955][T30056] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 861.211232][T30056] __sys_sendmsg+0xe5/0x1b0 [ 861.215744][T30056] ? __sys_sendmsg_sock+0x30/0x30 [ 861.220800][T30056] ? syscall_enter_from_user_mode+0x21/0x70 [ 861.226712][T30056] do_syscall_64+0x35/0xb0 [ 861.231165][T30056] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 861.237098][T30056] RIP: 0033:0x7f4b423c2059 [ 861.241544][T30056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 861.261156][T30056] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 861.269577][T30056] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 861.277561][T30056] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 861.285536][T30056] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 861.293514][T30056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 20:15:30 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xe, 0xb, &(0x7f0000000180)=@raw=[@alu={0x7, 0x1, 0x2, 0x0, 0xb, 0x80, 0xfffffffffffffff0}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x7c}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x1}, @map_idx={0x18, 0x6, 0x5, 0x0, 0x3}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x9}, @alu={0x7, 0x0, 0xc, 0x5, 0x9, 0xc, 0x4}], &(0x7f0000000080)='GPL\x00', 0x4, 0x1000, &(0x7f0000000300)=""/4096, 0x40f00, 0x1a, '\x00', 0x0, 0x18, r1, 0x8, &(0x7f0000000100)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000240)={0x1, 0xa, 0x0, 0x8}, 0x10, 0x0, r0, 0x0, &(0x7f0000000280)=[r0]}, 0x80) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000001380)={r2, r0, 0x1c}, 0x10) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) socket$nl_audit(0x10, 0x3, 0x9) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed}, 0xe) listen(r4, 0x0) ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f0000000040)={0x1}) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700) (async) bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xe, 0xb, &(0x7f0000000180)=@raw=[@alu={0x7, 0x1, 0x2, 0x0, 0xb, 0x80, 0xfffffffffffffff0}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x7c}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x1}, @map_idx={0x18, 0x6, 0x5, 0x0, 0x3}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x9}, @alu={0x7, 0x0, 0xc, 0x5, 0x9, 0xc, 0x4}], &(0x7f0000000080)='GPL\x00', 0x4, 0x1000, &(0x7f0000000300)=""/4096, 0x40f00, 0x1a, '\x00', 0x0, 0x18, r1, 0x8, &(0x7f0000000100)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000240)={0x1, 0xa, 0x0, 0x8}, 0x10, 0x0, r0, 0x0, &(0x7f0000000280)=[r0]}, 0x80) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000001380)={r2, r0, 0x1c}, 0x10) (async) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) (async) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) (async) socket$nl_audit(0x10, 0x3, 0x9) (async) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) (async) bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed}, 0xe) (async) listen(r4, 0x0) (async) ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f0000000040)={0x1}) (async) [ 861.301492][T30056] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 861.309492][T30056] 20:15:30 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200183382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:30 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000010c0)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="187f0000000000000000000000000000000000000040367c0400000068393c8522c1dbc8a8c278fc00000000"], &(0x7f0000000000)='syzkaller\x00', 0xfffffffe, 0x1000, &(0x7f00000000c0)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r0, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001140)={&(0x7f0000000040)='ext4_es_shrink_scan_exit\x00', r0}, 0x10) [ 861.369674][T30071] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 861.383683][T30084] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. [ 861.443531][T30071] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 861.471438][T30071] CPU: 0 PID: 30071 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 861.482019][T30071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 861.492108][T30071] Call Trace: [ 861.495422][T30071] [ 861.498376][T30071] dump_stack_lvl+0xcd/0x134 [ 861.503003][T30071] sysfs_warn_dup.cold+0x1c/0x29 [ 861.507983][T30071] sysfs_do_create_link_sd+0x11e/0x140 [ 861.513498][T30071] sysfs_create_link+0x5f/0xc0 [ 861.518310][T30071] device_add+0x789/0x1ee0 [ 861.523636][T30071] ? wait_for_completion_io+0x270/0x270 [ 861.529219][T30071] ? lock_downgrade+0x6e0/0x6e0 [ 861.534113][T30071] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 861.540388][T30071] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 861.546660][T30071] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 861.552936][T30071] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 861.558955][T30071] wiphy_register+0x1e86/0x29a0 [ 861.563838][T30071] ? wiphy_unregister+0xbf0/0xbf0 [ 861.568880][T30071] ? minstrel_ht_alloc+0x52c/0xa10 [ 861.574019][T30071] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 861.580123][T30071] ieee80211_register_hw+0x1f16/0x3ed0 [ 861.585622][T30071] ? ieee80211_restart_hw+0x290/0x290 [ 861.591033][T30071] ? debug_object_destroy+0x210/0x210 [ 861.596431][T30071] ? memset+0x20/0x40 [ 861.600428][T30071] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 861.606697][T30071] ? __hrtimer_init+0x136/0x280 [ 861.611584][T30071] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 861.617344][T30071] ? hwsim_virtio_rx_work+0x350/0x350 [ 861.622738][T30071] ? hwsim_new_radio_nl+0x992/0x1080 [ 861.628043][T30071] ? memcpy+0x39/0x60 [ 861.632046][T30071] hwsim_new_radio_nl+0x9bc/0x1080 [ 861.637188][T30071] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 861.643123][T30071] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 861.649402][T30071] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 861.657241][T30071] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 861.664567][T30071] genl_family_rcv_msg_doit+0x228/0x320 [ 861.670143][T30071] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 861.677540][T30071] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 861.683806][T30071] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 861.690059][T30071] ? ns_capable+0xd9/0x100 [ 861.694488][T30071] genl_rcv_msg+0x328/0x580 [ 861.699009][T30071] ? genl_get_cmd+0x480/0x480 [ 861.703697][T30071] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 861.709720][T30071] ? lock_release+0x720/0x720 [ 861.714406][T30071] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 861.720230][T30071] netlink_rcv_skb+0x153/0x420 [ 861.725006][T30071] ? genl_get_cmd+0x480/0x480 [ 861.729696][T30071] ? netlink_ack+0xa60/0xa60 [ 861.734298][T30071] ? netlink_deliver_tap+0x1b1/0xc30 [ 861.739598][T30071] genl_rcv+0x24/0x40 [ 861.743594][T30071] netlink_unicast+0x539/0x7e0 [ 861.748375][T30071] ? netlink_attachskb+0x880/0x880 [ 861.753488][T30071] ? __virt_addr_valid+0x5d/0x2d0 [ 861.758536][T30071] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 861.764924][T30071] ? __phys_addr_symbol+0x2c/0x70 [ 861.769978][T30071] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 861.775726][T30071] ? __check_object_size+0x16e/0x310 [ 861.781034][T30071] netlink_sendmsg+0x904/0xe00 [ 861.785818][T30071] ? netlink_unicast+0x7e0/0x7e0 [ 861.790772][T30071] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 861.797030][T30071] ? netlink_unicast+0x7e0/0x7e0 [ 861.801978][T30071] sock_sendmsg+0xcf/0x120 [ 861.806425][T30071] ____sys_sendmsg+0x6e8/0x810 [ 861.811202][T30071] ? kernel_sendmsg+0x50/0x50 [ 861.815896][T30071] ? do_recvmmsg+0x6d0/0x6d0 [ 861.820522][T30071] ? lock_chain_count+0x20/0x20 [ 861.825385][T30071] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 861.831376][T30071] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 861.837630][T30071] ? futex_wait+0x533/0x670 [ 861.842157][T30071] ___sys_sendmsg+0xf3/0x170 [ 861.846784][T30071] ? sendmsg_copy_msghdr+0x160/0x160 [ 861.852152][T30071] ? lock_downgrade+0x6e0/0x6e0 [ 861.857030][T30071] ? __fget_files+0x28c/0x470 [ 861.861731][T30071] ? __fget_light+0xea/0x280 [ 861.866330][T30071] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 861.872593][T30071] __sys_sendmsg+0xe5/0x1b0 [ 861.877111][T30071] ? __sys_sendmsg_sock+0x30/0x30 [ 861.882163][T30071] ? syscall_enter_from_user_mode+0x21/0x70 [ 861.888091][T30071] do_syscall_64+0x35/0xb0 [ 861.892546][T30071] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 861.898477][T30071] RIP: 0033:0x7f0982948059 [ 861.902906][T30071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 861.922532][T30071] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 861.930966][T30071] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 20:15:30 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xe, 0xb, &(0x7f0000000180)=@raw=[@alu={0x7, 0x1, 0x2, 0x0, 0xb, 0x80, 0xfffffffffffffff0}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x7c}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x1}, @map_idx={0x18, 0x6, 0x5, 0x0, 0x3}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x9}, @alu={0x7, 0x0, 0xc, 0x5, 0x9, 0xc, 0x4}], &(0x7f0000000080)='GPL\x00', 0x4, 0x1000, &(0x7f0000000300)=""/4096, 0x40f00, 0x1a, '\x00', 0x0, 0x18, r1, 0x8, &(0x7f0000000100)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000240)={0x1, 0xa, 0x0, 0x8}, 0x10, 0x0, r0, 0x0, &(0x7f0000000280)=[r0]}, 0x80) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000001380)={r2, r0, 0x1c}, 0x10) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) socket$nl_audit(0x10, 0x3, 0x9) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed}, 0xe) listen(r4, 0x0) ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f0000000040)={0x1}) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700) (async) bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xe, 0xb, &(0x7f0000000180)=@raw=[@alu={0x7, 0x1, 0x2, 0x0, 0xb, 0x80, 0xfffffffffffffff0}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x7c}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x1}, @map_idx={0x18, 0x6, 0x5, 0x0, 0x3}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x9}, @alu={0x7, 0x0, 0xc, 0x5, 0x9, 0xc, 0x4}], &(0x7f0000000080)='GPL\x00', 0x4, 0x1000, &(0x7f0000000300)=""/4096, 0x40f00, 0x1a, '\x00', 0x0, 0x18, r1, 0x8, &(0x7f0000000100)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000240)={0x1, 0xa, 0x0, 0x8}, 0x10, 0x0, r0, 0x0, &(0x7f0000000280)=[r0]}, 0x80) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000001380)={r2, r0, 0x1c}, 0x10) (async) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) (async) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) (async) socket$nl_audit(0x10, 0x3, 0x9) (async) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) (async) bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed}, 0xe) (async) listen(r4, 0x0) (async) ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f0000000040)={0x1}) (async) [ 861.938946][T30071] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 861.946922][T30071] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 861.954898][T30071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 861.962872][T30071] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 861.970869][T30071] 20:15:31 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000007c0)={0x14, r1, 0x701, 0x0, 0x0, {{0x5}, {@void, @void}}}, 0x14}}, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0x48}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000040)='syzkaller\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x3c) 20:15:31 executing program 0: r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000100)=ANY=[@ANYBLOB='+\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0d00000000000000000003000000140001800e0001006574683a766c616e30000000"], 0x28}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff) recvmmsg(r1, &(0x7f0000004d80), 0x493, 0xa, 0x0) sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000200)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2, @ANYBLOB="030704000000000000000100000004000180"], 0x18}}, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={0x1, 0x58, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000200)={'tunl0\x00', &(0x7f0000000180)={'syztnl2\x00', 0x0, 0x10, 0x7, 0xffffff7f, 0xed28, {{0xa, 0x4, 0x3, 0x5, 0x28, 0x68, 0x0, 0xf4, 0x0, 0x0, @local, @multicast1, {[@cipso={0x86, 0x11, 0x0, [{0x2, 0xb, "273538118f47dee5f6"}]}]}}}}}) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000002c0)={0x1, 0x58, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000003c0)={'gre0\x00', &(0x7f0000000300)={'tunl0\x00', 0x0, 0x7, 0x20, 0x81, 0xfffffffd, {{0x26, 0x4, 0x2, 0x38, 0x98, 0x66, 0x0, 0x4, 0x4, 0x0, @multicast2, @empty, {[@generic={0x7, 0xb, "2218add295a7933a97"}, @timestamp_addr={0x44, 0x2c, 0xca, 0x1, 0x3, [{@empty, 0xc1c5}, {@broadcast, 0x2}, {@local, 0x8001}, {@remote, 0xc457}, {@multicast2, 0x5}]}, @lsrr={0x83, 0xf, 0xab, [@remote, @remote, @rand_addr=0x64010100]}, @timestamp_prespec={0x44, 0xc, 0x5e, 0x3, 0x4, [{@loopback, 0x6}]}, @lsrr={0x83, 0x2b, 0x18, [@private=0xa010102, @dev={0xac, 0x14, 0x14, 0x32}, @loopback, @rand_addr=0x64010102, @dev={0xac, 0x14, 0x14, 0x28}, @local, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x3e}, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @noop, @noop, @ra={0x94, 0x4}]}}}}}) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000500)={&(0x7f0000000400)={0xdc, r2, 0x800, 0x70bd2c, 0x25dfdbfb, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0x4004000}, 0x20000000) [ 862.088990][T30077] netlink: 145596 bytes leftover after parsing attributes in process `syz-executor.3'. 20:15:31 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994080424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 862.132772][T30077] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 862.163489][T30077] CPU: 0 PID: 30077 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 862.174051][T30077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 862.184138][T30077] Call Trace: [ 862.187450][T30077] [ 862.190401][T30077] dump_stack_lvl+0xcd/0x134 [ 862.195026][T30077] sysfs_warn_dup.cold+0x1c/0x29 [ 862.199992][T30077] sysfs_do_create_link_sd+0x11e/0x140 [ 862.205490][T30077] sysfs_create_link+0x5f/0xc0 [ 862.210287][T30077] device_add+0x789/0x1ee0 [ 862.214740][T30077] ? check_kcov_mode+0x2c/0x40 [ 862.219549][T30077] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 862.225829][T30077] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 862.232110][T30077] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 862.238380][T30077] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 862.244408][T30077] wiphy_register+0x1e86/0x29a0 [ 862.249305][T30077] ? wiphy_unregister+0xbf0/0xbf0 [ 862.254365][T30077] ? minstrel_ht_alloc+0x52c/0xa10 [ 862.259515][T30077] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 862.265622][T30077] ieee80211_register_hw+0x1f16/0x3ed0 [ 862.271130][T30077] ? ieee80211_restart_hw+0x290/0x290 [ 862.276535][T30077] ? debug_object_destroy+0x210/0x210 [ 862.281942][T30077] ? memset+0x20/0x40 [ 862.285950][T30077] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 862.292224][T30077] ? __hrtimer_init+0x136/0x280 [ 862.297109][T30077] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 862.302914][T30077] ? hwsim_virtio_rx_work+0x350/0x350 [ 862.308313][T30077] ? hwsim_new_radio_nl+0x992/0x1080 [ 862.313644][T30077] ? memcpy+0x39/0x60 [ 862.317646][T30077] hwsim_new_radio_nl+0x9bc/0x1080 [ 862.322793][T30077] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 862.328729][T30077] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 862.334997][T30077] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 862.342376][T30077] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 862.349700][T30077] genl_family_rcv_msg_doit+0x228/0x320 [ 862.355283][T30077] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 862.362778][T30077] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 862.369076][T30077] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 862.375354][T30077] ? ns_capable+0xd9/0x100 [ 862.379803][T30077] genl_rcv_msg+0x328/0x580 [ 862.384422][T30077] ? genl_get_cmd+0x480/0x480 [ 862.389129][T30077] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 862.395048][T30077] ? lock_release+0x720/0x720 [ 862.399746][T30077] netlink_rcv_skb+0x153/0x420 [ 862.404543][T30077] ? genl_get_cmd+0x480/0x480 [ 862.409252][T30077] ? netlink_ack+0xa60/0xa60 [ 862.413886][T30077] ? netlink_deliver_tap+0x1b1/0xc30 [ 862.419201][T30077] genl_rcv+0x24/0x40 [ 862.423208][T30077] netlink_unicast+0x539/0x7e0 [ 862.428003][T30077] ? netlink_attachskb+0x880/0x880 [ 862.433140][T30077] ? __virt_addr_valid+0x5d/0x2d0 [ 862.438172][T30077] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 862.444438][T30077] ? __phys_addr_symbol+0x2c/0x70 [ 862.449466][T30077] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 862.455223][T30077] ? __check_object_size+0x16e/0x310 [ 862.460545][T30077] netlink_sendmsg+0x904/0xe00 [ 862.465344][T30077] ? netlink_unicast+0x7e0/0x7e0 [ 862.470319][T30077] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 862.476596][T30077] ? netlink_unicast+0x7e0/0x7e0 [ 862.481560][T30077] sock_sendmsg+0xcf/0x120 [ 862.486023][T30077] ____sys_sendmsg+0x6e8/0x810 [ 862.490822][T30077] ? kernel_sendmsg+0x50/0x50 [ 862.495523][T30077] ? do_recvmmsg+0x6d0/0x6d0 [ 862.500146][T30077] ? lock_chain_count+0x20/0x20 [ 862.505024][T30077] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 862.511051][T30077] ___sys_sendmsg+0xf3/0x170 [ 862.515681][T30077] ? sendmsg_copy_msghdr+0x160/0x160 [ 862.521007][T30077] ? lock_downgrade+0x6e0/0x6e0 [ 862.525908][T30077] ? __fget_files+0x28c/0x470 [ 862.530622][T30077] ? __fget_light+0xea/0x280 [ 862.535235][T30077] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 862.541486][T30077] __sys_sendmsg+0xe5/0x1b0 [ 862.546021][T30077] ? __sys_sendmsg_sock+0x30/0x30 [ 862.551107][T30077] ? syscall_enter_from_user_mode+0x21/0x70 [ 862.557043][T30077] do_syscall_64+0x35/0xb0 [ 862.561496][T30077] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 862.567423][T30077] RIP: 0033:0x7f8a7fbd7059 [ 862.571856][T30077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 862.591489][T30077] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 862.599932][T30077] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 862.607930][T30077] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 862.615920][T30077] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 862.623906][T30077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 862.631897][T30077] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 862.639911][T30077] 20:15:31 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100811402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:31 executing program 4: unshare(0x40000000) r0 = socket(0x5, 0x0, 0xfffffffc) r1 = socket(0x11, 0x800000003, 0x6) (async) bind(r0, 0x0, 0x3f) bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) (async) r3 = socket(0x10, 0x3, 0x0) socket(0xa, 0x0, 0x3bd) (async) sendmsg$nl_route_sched(r3, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="3800000024000b0f00"/20, @ANYRES32=r2, @ANYBLOB="0000250400000797a3dcb7bdda71c2000000000094c2a6000000"], 0x38}}, 0x0) (async) r4 = socket$inet6(0xa, 0x803, 0x6) connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r4, &(0x7f0000008440)=[{{0x0, 0x536, 0x0, 0x0, 0x0, 0x0, 0x601}}], 0x400000000000107, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c) (async) sendmmsg(0xffffffffffffffff, &(0x7f00000092c0), 0x3fffffffffffc23, 0x0) (async) sendto$inet6(0xffffffffffffffff, &(0x7f0000000140)="d057326a63292f9919486f33691e1ec6696459139f8d8712648743d89b3f91aed1d426962f6c2351592b5428ae66f67782f102933dec6f6a143fa7192334ab8a95f50c703ffd1d3e792730ed15ef84a9e1f5b3f1bd8216bf0be79f30885a911b333eb33c51bf99fd24eae39d7a26cbeebdcedeef866942a82b", 0x79, 0x20000001, &(0x7f00000001c0)={0xa, 0x4e23, 0xd341, @mcast1, 0x2}, 0x1c) (async) r5 = socket(0x200000000000011, 0x4000000000080002, 0x0) (async) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) bind$packet(r5, &(0x7f00000000c0)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="5ec39e2fb8ee"}, 0x14) (async) sendmmsg(r5, &(0x7f0000000d00), 0x1bdd307, 0x0) [ 862.687703][T30109] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 862.706272][T30109] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 862.727001][T30109] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 862.757632][T30109] CPU: 1 PID: 30109 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 862.768199][T30109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 862.778302][T30109] Call Trace: [ 862.781609][T30109] [ 862.784567][T30109] dump_stack_lvl+0xcd/0x134 [ 862.789196][T30109] sysfs_warn_dup.cold+0x1c/0x29 [ 862.794162][T30109] sysfs_do_create_link_sd+0x11e/0x140 [ 862.799635][T30109] sysfs_create_link+0x5f/0xc0 [ 862.804439][T30109] device_add+0x789/0x1ee0 [ 862.808893][T30109] ? wait_for_completion_io+0x270/0x270 [ 862.814468][T30109] ? lock_downgrade+0x6e0/0x6e0 [ 862.819329][T30109] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 862.825601][T30109] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 862.831873][T30109] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 862.838241][T30109] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 862.844272][T30109] wiphy_register+0x1e86/0x29a0 [ 862.849177][T30109] ? wiphy_unregister+0xbf0/0xbf0 [ 862.854232][T30109] ? minstrel_ht_alloc+0x52c/0xa10 [ 862.859391][T30109] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 862.865505][T30109] ieee80211_register_hw+0x1f16/0x3ed0 [ 862.871015][T30109] ? ieee80211_restart_hw+0x290/0x290 [ 862.876420][T30109] ? debug_object_destroy+0x210/0x210 [ 862.881813][T30109] ? memset+0x20/0x40 [ 862.885793][T30109] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 862.892035][T30109] ? __hrtimer_init+0x136/0x280 [ 862.896909][T30109] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 862.902680][T30109] ? hwsim_virtio_rx_work+0x350/0x350 [ 862.908059][T30109] ? hwsim_new_radio_nl+0x992/0x1080 [ 862.913377][T30109] ? memcpy+0x39/0x60 [ 862.917381][T30109] hwsim_new_radio_nl+0x9bc/0x1080 [ 862.922510][T30109] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 862.928451][T30109] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 862.934705][T30109] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 862.942089][T30109] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 862.949397][T30109] genl_family_rcv_msg_doit+0x228/0x320 [ 862.954947][T30109] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 862.962333][T30109] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 862.968591][T30109] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 862.974841][T30109] ? ns_capable+0xd9/0x100 [ 862.979298][T30109] genl_rcv_msg+0x328/0x580 [ 862.983819][T30109] ? genl_get_cmd+0x480/0x480 [ 862.988500][T30109] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 862.994398][T30109] ? lock_release+0x720/0x720 [ 862.999080][T30109] netlink_rcv_skb+0x153/0x420 [ 863.003852][T30109] ? genl_get_cmd+0x480/0x480 [ 863.008526][T30109] ? netlink_ack+0xa60/0xa60 [ 863.013144][T30109] ? netlink_deliver_tap+0x1b1/0xc30 [ 863.018463][T30109] genl_rcv+0x24/0x40 [ 863.022465][T30109] netlink_unicast+0x539/0x7e0 [ 863.027232][T30109] ? netlink_attachskb+0x880/0x880 [ 863.032344][T30109] ? __virt_addr_valid+0x5d/0x2d0 [ 863.037413][T30109] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 863.043661][T30109] ? __phys_addr_symbol+0x2c/0x70 [ 863.048701][T30109] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 863.054435][T30109] ? __check_object_size+0x16e/0x310 [ 863.059730][T30109] netlink_sendmsg+0x904/0xe00 [ 863.064508][T30109] ? netlink_unicast+0x7e0/0x7e0 [ 863.069471][T30109] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 863.075743][T30109] ? netlink_unicast+0x7e0/0x7e0 [ 863.080701][T30109] sock_sendmsg+0xcf/0x120 [ 863.085121][T30109] ____sys_sendmsg+0x6e8/0x810 [ 863.089888][T30109] ? kernel_sendmsg+0x50/0x50 [ 863.094561][T30109] ? do_recvmmsg+0x6d0/0x6d0 [ 863.099156][T30109] ? lock_chain_count+0x20/0x20 [ 863.104020][T30109] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 863.110030][T30109] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 863.116295][T30109] ? futex_wait+0x533/0x670 [ 863.120814][T30109] ___sys_sendmsg+0xf3/0x170 [ 863.125416][T30109] ? sendmsg_copy_msghdr+0x160/0x160 [ 863.130728][T30109] ? lock_downgrade+0x6e0/0x6e0 [ 863.135590][T30109] ? __fget_files+0x28c/0x470 [ 863.140279][T30109] ? __fget_light+0xea/0x280 [ 863.144889][T30109] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 863.151132][T30109] __sys_sendmsg+0xe5/0x1b0 [ 863.155657][T30109] ? __sys_sendmsg_sock+0x30/0x30 [ 863.160705][T30109] ? syscall_enter_from_user_mode+0x21/0x70 [ 863.166607][T30109] do_syscall_64+0x35/0xb0 [ 863.171029][T30109] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 863.176925][T30109] RIP: 0033:0x7f4b423c2059 [ 863.181340][T30109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 863.200974][T30109] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 863.209414][T30109] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 863.217386][T30109] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 863.225364][T30109] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 863.233354][T30109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 863.241348][T30109] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 863.249367][T30109] 20:15:32 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200253382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 863.282837][T30142] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. [ 863.295795][T30126] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 863.334113][T30126] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 863.344671][T30126] CPU: 1 PID: 30126 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 863.355220][T30126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 863.365302][T30126] Call Trace: [ 863.368596][T30126] [ 863.371540][T30126] dump_stack_lvl+0xcd/0x134 [ 863.376135][T30126] sysfs_warn_dup.cold+0x1c/0x29 [ 863.381080][T30126] sysfs_do_create_link_sd+0x11e/0x140 [ 863.386547][T30126] sysfs_create_link+0x5f/0xc0 [ 863.391332][T30126] device_add+0x789/0x1ee0 [ 863.395762][T30126] ? wait_for_completion_io+0x270/0x270 [ 863.401350][T30126] ? minstrel_ht_alloc+0x4b/0xa10 [ 863.406385][T30126] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 863.412661][T30126] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 863.418927][T30126] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 863.425192][T30126] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 863.431206][T30126] wiphy_register+0x1e86/0x29a0 [ 863.436072][T30126] ? wiphy_unregister+0xbf0/0xbf0 [ 863.441098][T30126] ? minstrel_ht_alloc+0x52c/0xa10 [ 863.446264][T30126] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 863.452346][T30126] ieee80211_register_hw+0x1f16/0x3ed0 [ 863.457847][T30126] ? ieee80211_restart_hw+0x290/0x290 [ 863.463239][T30126] ? debug_object_destroy+0x210/0x210 [ 863.468619][T30126] ? memset+0x20/0x40 [ 863.472616][T30126] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 863.478891][T30126] ? __hrtimer_init+0x136/0x280 [ 863.483759][T30126] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 863.489526][T30126] ? hwsim_virtio_rx_work+0x350/0x350 [ 863.494895][T30126] ? hwsim_new_radio_nl+0x992/0x1080 [ 863.500246][T30126] ? memcpy+0x39/0x60 [ 863.504251][T30126] hwsim_new_radio_nl+0x9bc/0x1080 [ 863.509376][T30126] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 863.515308][T30126] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 863.521582][T30126] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 863.528955][T30126] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 863.536244][T30126] genl_family_rcv_msg_doit+0x228/0x320 [ 863.541788][T30126] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 863.549183][T30126] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 863.555466][T30126] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 863.561749][T30126] ? ns_capable+0xd9/0x100 [ 863.566165][T30126] genl_rcv_msg+0x328/0x580 [ 863.570673][T30126] ? genl_get_cmd+0x480/0x480 [ 863.575349][T30126] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 863.581270][T30126] ? lock_release+0x720/0x720 [ 863.585952][T30126] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 863.591776][T30126] netlink_rcv_skb+0x153/0x420 [ 863.596567][T30126] ? genl_get_cmd+0x480/0x480 [ 863.601266][T30126] ? netlink_ack+0xa60/0xa60 [ 863.605856][T30126] ? netlink_deliver_tap+0x1b1/0xc30 [ 863.611150][T30126] genl_rcv+0x24/0x40 [ 863.615148][T30126] netlink_unicast+0x539/0x7e0 [ 863.619928][T30126] ? netlink_attachskb+0x880/0x880 [ 863.626821][T30126] ? __virt_addr_valid+0x5d/0x2d0 [ 863.631860][T30126] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 863.638109][T30126] ? __phys_addr_symbol+0x2c/0x70 [ 863.643220][T30126] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 863.648942][T30126] ? __check_object_size+0x16e/0x310 [ 863.654239][T30126] netlink_sendmsg+0x904/0xe00 [ 863.659015][T30126] ? netlink_unicast+0x7e0/0x7e0 [ 863.663953][T30126] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 863.670201][T30126] ? netlink_unicast+0x7e0/0x7e0 [ 863.675161][T30126] sock_sendmsg+0xcf/0x120 [ 863.679580][T30126] ____sys_sendmsg+0x6e8/0x810 [ 863.684374][T30126] ? kernel_sendmsg+0x50/0x50 [ 863.689042][T30126] ? do_recvmmsg+0x6d0/0x6d0 [ 863.693632][T30126] ? lock_chain_count+0x20/0x20 [ 863.698486][T30126] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 863.704486][T30126] ___sys_sendmsg+0xf3/0x170 [ 863.709079][T30126] ? sendmsg_copy_msghdr+0x160/0x160 [ 863.714372][T30126] ? lock_downgrade+0x6e0/0x6e0 [ 863.719257][T30126] ? __fget_files+0x28c/0x470 [ 863.723937][T30126] ? __fget_light+0xea/0x280 [ 863.728527][T30126] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 863.734786][T30126] __sys_sendmsg+0xe5/0x1b0 [ 863.739291][T30126] ? __sys_sendmsg_sock+0x30/0x30 [ 863.744331][T30126] ? syscall_enter_from_user_mode+0x21/0x70 [ 863.750240][T30126] do_syscall_64+0x35/0xb0 [ 863.754672][T30126] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 863.760591][T30126] RIP: 0033:0x7f0982948059 [ 863.765006][T30126] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 863.784621][T30126] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 863.793066][T30126] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 863.801042][T30126] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 863.809021][T30126] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 863.817015][T30126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 863.824988][T30126] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 863.832986][T30126] 20:15:32 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000007c0)={0x14, r1, 0x701, 0x0, 0x0, {{0x5}, {@void, @void}}}, 0x14}}, 0x0) (async) syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0x48}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000040)='syzkaller\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x3c) 20:15:32 executing program 0: r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000100)=ANY=[@ANYBLOB='+\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0d00000000000000000003000000140001800e0001006574683a766c616e30000000"], 0x28}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff) recvmmsg(r1, &(0x7f0000004d80), 0x493, 0xa, 0x0) sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000200)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2, @ANYBLOB="030704000000000000000100000004000180"], 0x18}}, 0x0) (async, rerun: 32) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={0x1, 0x58, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) (async, rerun: 32) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000200)={'tunl0\x00', &(0x7f0000000180)={'syztnl2\x00', 0x0, 0x10, 0x7, 0xffffff7f, 0xed28, {{0xa, 0x4, 0x3, 0x5, 0x28, 0x68, 0x0, 0xf4, 0x0, 0x0, @local, @multicast1, {[@cipso={0x86, 0x11, 0x0, [{0x2, 0xb, "273538118f47dee5f6"}]}]}}}}}) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000002c0)={0x1, 0x58, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) (async) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000003c0)={'gre0\x00', &(0x7f0000000300)={'tunl0\x00', 0x0, 0x7, 0x20, 0x81, 0xfffffffd, {{0x26, 0x4, 0x2, 0x38, 0x98, 0x66, 0x0, 0x4, 0x4, 0x0, @multicast2, @empty, {[@generic={0x7, 0xb, "2218add295a7933a97"}, @timestamp_addr={0x44, 0x2c, 0xca, 0x1, 0x3, [{@empty, 0xc1c5}, {@broadcast, 0x2}, {@local, 0x8001}, {@remote, 0xc457}, {@multicast2, 0x5}]}, @lsrr={0x83, 0xf, 0xab, [@remote, @remote, @rand_addr=0x64010100]}, @timestamp_prespec={0x44, 0xc, 0x5e, 0x3, 0x4, [{@loopback, 0x6}]}, @lsrr={0x83, 0x2b, 0x18, [@private=0xa010102, @dev={0xac, 0x14, 0x14, 0x32}, @loopback, @rand_addr=0x64010102, @dev={0xac, 0x14, 0x14, 0x28}, @local, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x3e}, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @noop, @noop, @ra={0x94, 0x4}]}}}}}) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000500)={&(0x7f0000000400)={0xdc, r2, 0x800, 0x70bd2c, 0x25dfdbfb, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0x4004000}, 0x20000000) [ 863.868069][T30134] netlink: 145340 bytes leftover after parsing attributes in process `syz-executor.3'. 20:15:32 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994090424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 863.918912][T30134] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 863.958276][T30134] CPU: 0 PID: 30134 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 863.968849][T30134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 863.978919][T30134] Call Trace: [ 863.982200][T30134] [ 863.985137][T30134] dump_stack_lvl+0xcd/0x134 [ 863.989747][T30134] sysfs_warn_dup.cold+0x1c/0x29 [ 863.994701][T30134] sysfs_do_create_link_sd+0x11e/0x140 [ 864.000175][T30134] sysfs_create_link+0x5f/0xc0 [ 864.004950][T30134] device_add+0x789/0x1ee0 [ 864.009387][T30134] ? wait_for_completion_io+0x270/0x270 [ 864.014954][T30134] ? lock_downgrade+0x6e0/0x6e0 [ 864.019905][T30134] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 864.026160][T30134] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 864.032414][T30134] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.038698][T30134] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 864.044708][T30134] wiphy_register+0x1e86/0x29a0 [ 864.049581][T30134] ? wiphy_unregister+0xbf0/0xbf0 [ 864.054618][T30134] ? minstrel_ht_alloc+0x52c/0xa10 [ 864.059754][T30134] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 864.065854][T30134] ieee80211_register_hw+0x1f16/0x3ed0 [ 864.071353][T30134] ? ieee80211_restart_hw+0x290/0x290 [ 864.076743][T30134] ? debug_object_destroy+0x210/0x210 [ 864.082134][T30134] ? memset+0x20/0x40 [ 864.086125][T30134] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.092388][T30134] ? __hrtimer_init+0x136/0x280 [ 864.097255][T30134] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 864.103005][T30134] ? hwsim_virtio_rx_work+0x350/0x350 [ 864.108388][T30134] ? hwsim_new_radio_nl+0x992/0x1080 [ 864.113690][T30134] ? memcpy+0x39/0x60 [ 864.117691][T30134] hwsim_new_radio_nl+0x9bc/0x1080 [ 864.122816][T30134] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 864.128742][T30134] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.134999][T30134] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 864.142383][T30134] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 864.149684][T30134] genl_family_rcv_msg_doit+0x228/0x320 [ 864.155245][T30134] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 864.162629][T30134] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.168893][T30134] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.175146][T30134] ? ns_capable+0xd9/0x100 [ 864.179584][T30134] genl_rcv_msg+0x328/0x580 [ 864.184105][T30134] ? genl_get_cmd+0x480/0x480 [ 864.188792][T30134] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 864.194707][T30134] ? lock_release+0x720/0x720 [ 864.199403][T30134] netlink_rcv_skb+0x153/0x420 [ 864.204180][T30134] ? genl_get_cmd+0x480/0x480 [ 864.208869][T30134] ? netlink_ack+0xa60/0xa60 [ 864.213475][T30134] ? netlink_deliver_tap+0x1b1/0xc30 [ 864.218778][T30134] genl_rcv+0x24/0x40 [ 864.222770][T30134] netlink_unicast+0x539/0x7e0 [ 864.227551][T30134] ? netlink_attachskb+0x880/0x880 [ 864.232672][T30134] ? __virt_addr_valid+0x5d/0x2d0 [ 864.237709][T30134] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 864.243963][T30134] ? __phys_addr_symbol+0x2c/0x70 [ 864.249002][T30134] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 864.254735][T30134] ? __check_object_size+0x16e/0x310 [ 864.260035][T30134] netlink_sendmsg+0x904/0xe00 [ 864.264816][T30134] ? netlink_unicast+0x7e0/0x7e0 [ 864.269773][T30134] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.276028][T30134] ? netlink_unicast+0x7e0/0x7e0 [ 864.280976][T30134] sock_sendmsg+0xcf/0x120 [ 864.285406][T30134] ____sys_sendmsg+0x6e8/0x810 [ 864.290181][T30134] ? kernel_sendmsg+0x50/0x50 [ 864.294865][T30134] ? do_recvmmsg+0x6d0/0x6d0 [ 864.299463][T30134] ? lock_chain_count+0x20/0x20 [ 864.304326][T30134] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 864.310337][T30134] ___sys_sendmsg+0xf3/0x170 [ 864.314944][T30134] ? sendmsg_copy_msghdr+0x160/0x160 [ 864.320247][T30134] ? lock_downgrade+0x6e0/0x6e0 [ 864.325124][T30134] ? __fget_files+0x28c/0x470 [ 864.329824][T30134] ? __fget_light+0xea/0x280 [ 864.334426][T30134] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 864.340688][T30134] __sys_sendmsg+0xe5/0x1b0 [ 864.345205][T30134] ? __sys_sendmsg_sock+0x30/0x30 [ 864.350255][T30134] ? syscall_enter_from_user_mode+0x21/0x70 [ 864.356168][T30134] do_syscall_64+0x35/0xb0 [ 864.360595][T30134] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 864.366503][T30134] RIP: 0033:0x7f8a7fbd7059 [ 864.370923][T30134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 864.390544][T30134] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 864.398964][T30134] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 864.406940][T30134] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 864.414912][T30134] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 864.422889][T30134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 864.430878][T30134] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 864.438876][T30134] 20:15:33 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100911402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 864.483864][T30145] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 864.498741][T30145] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 864.529310][T30145] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 864.539961][T30145] CPU: 0 PID: 30145 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 864.550506][T30145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 864.560767][T30145] Call Trace: [ 864.564060][T30145] [ 864.567001][T30145] dump_stack_lvl+0xcd/0x134 [ 864.571607][T30145] sysfs_warn_dup.cold+0x1c/0x29 [ 864.576553][T30145] sysfs_do_create_link_sd+0x11e/0x140 [ 864.582030][T30145] sysfs_create_link+0x5f/0xc0 [ 864.586814][T30145] device_add+0x789/0x1ee0 [ 864.591247][T30145] ? wait_for_completion_io+0x270/0x270 [ 864.596805][T30145] ? lock_downgrade+0x6e0/0x6e0 [ 864.601665][T30145] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 864.607926][T30145] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 864.614183][T30145] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.620440][T30145] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 864.626444][T30145] wiphy_register+0x1e86/0x29a0 [ 864.631312][T30145] ? wiphy_unregister+0xbf0/0xbf0 [ 864.636347][T30145] ? minstrel_ht_alloc+0x52c/0xa10 [ 864.641500][T30145] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 864.647585][T30145] ieee80211_register_hw+0x1f16/0x3ed0 [ 864.653075][T30145] ? ieee80211_restart_hw+0x290/0x290 [ 864.658458][T30145] ? debug_object_destroy+0x210/0x210 [ 864.663850][T30145] ? memset+0x20/0x40 [ 864.667847][T30145] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.674102][T30145] ? __hrtimer_init+0x136/0x280 [ 864.678967][T30145] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 864.684719][T30145] ? hwsim_virtio_rx_work+0x350/0x350 [ 864.690100][T30145] ? hwsim_new_radio_nl+0x992/0x1080 [ 864.695397][T30145] ? memcpy+0x39/0x60 [ 864.699656][T30145] hwsim_new_radio_nl+0x9bc/0x1080 [ 864.704792][T30145] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 864.710721][T30145] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.716980][T30145] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 864.724380][T30145] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 864.731699][T30145] genl_family_rcv_msg_doit+0x228/0x320 [ 864.737265][T30145] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 864.744686][T30145] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.750985][T30145] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.757239][T30145] ? ns_capable+0xd9/0x100 [ 864.761676][T30145] genl_rcv_msg+0x328/0x580 [ 864.766194][T30145] ? genl_get_cmd+0x480/0x480 [ 864.770883][T30145] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 864.776791][T30145] ? lock_release+0x720/0x720 [ 864.781482][T30145] netlink_rcv_skb+0x153/0x420 [ 864.786259][T30145] ? genl_get_cmd+0x480/0x480 [ 864.790945][T30145] ? netlink_ack+0xa60/0xa60 [ 864.795549][T30145] ? netlink_deliver_tap+0x1b1/0xc30 [ 864.800847][T30145] genl_rcv+0x24/0x40 [ 864.804834][T30145] netlink_unicast+0x539/0x7e0 [ 864.809613][T30145] ? netlink_attachskb+0x880/0x880 [ 864.814730][T30145] ? __virt_addr_valid+0x5d/0x2d0 [ 864.819765][T30145] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 864.826018][T30145] ? __phys_addr_symbol+0x2c/0x70 [ 864.831055][T30145] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 864.836784][T30145] ? __check_object_size+0x16e/0x310 [ 864.842083][T30145] netlink_sendmsg+0x904/0xe00 [ 864.846859][T30145] ? netlink_unicast+0x7e0/0x7e0 [ 864.851812][T30145] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 864.858071][T30145] ? netlink_unicast+0x7e0/0x7e0 [ 864.863023][T30145] sock_sendmsg+0xcf/0x120 [ 864.867453][T30145] ____sys_sendmsg+0x6e8/0x810 [ 864.872230][T30145] ? kernel_sendmsg+0x50/0x50 [ 864.876913][T30145] ? do_recvmmsg+0x6d0/0x6d0 [ 864.881518][T30145] ? lock_chain_count+0x20/0x20 [ 864.886381][T30145] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 864.892392][T30145] ___sys_sendmsg+0xf3/0x170 [ 864.897170][T30145] ? sendmsg_copy_msghdr+0x160/0x160 [ 864.902555][T30145] ? lock_downgrade+0x6e0/0x6e0 [ 864.907433][T30145] ? __fget_files+0x28c/0x470 [ 864.912131][T30145] ? __fget_light+0xea/0x280 [ 864.916729][T30145] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 864.923005][T30145] __sys_sendmsg+0xe5/0x1b0 [ 864.927519][T30145] ? __sys_sendmsg_sock+0x30/0x30 [ 864.932572][T30145] ? syscall_enter_from_user_mode+0x21/0x70 [ 864.938486][T30145] do_syscall_64+0x35/0xb0 [ 864.942917][T30145] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 864.948825][T30145] RIP: 0033:0x7f4b423c2059 [ 864.953246][T30145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 864.972871][T30145] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 864.981299][T30145] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 864.989282][T30145] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 864.997259][T30145] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 865.005239][T30145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 865.013213][T30145] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 865.021208][T30145] 20:15:34 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200353382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 865.049801][T30151] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 865.082026][T30151] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 865.094077][T30151] CPU: 0 PID: 30151 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 865.104631][T30151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 865.114714][T30151] Call Trace: [ 865.118016][T30151] [ 865.120962][T30151] dump_stack_lvl+0xcd/0x134 [ 865.125584][T30151] sysfs_warn_dup.cold+0x1c/0x29 [ 865.130548][T30151] sysfs_do_create_link_sd+0x11e/0x140 [ 865.136038][T30151] sysfs_create_link+0x5f/0xc0 [ 865.140837][T30151] device_add+0x789/0x1ee0 [ 865.145290][T30151] ? wait_for_completion_io+0x270/0x270 [ 865.150862][T30151] ? lock_downgrade+0x6e0/0x6e0 [ 865.155734][T30151] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 865.161999][T30151] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 865.168258][T30151] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 865.174516][T30151] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 865.180523][T30151] wiphy_register+0x1e86/0x29a0 [ 865.185402][T30151] ? wiphy_unregister+0xbf0/0xbf0 [ 865.190435][T30151] ? minstrel_ht_alloc+0x52c/0xa10 [ 865.195570][T30151] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 865.201654][T30151] ieee80211_register_hw+0x1f16/0x3ed0 [ 865.207142][T30151] ? ieee80211_restart_hw+0x290/0x290 [ 865.212530][T30151] ? debug_object_destroy+0x210/0x210 [ 865.217920][T30151] ? memset+0x20/0x40 [ 865.221916][T30151] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 865.228176][T30151] ? __hrtimer_init+0x136/0x280 [ 865.233041][T30151] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 865.238797][T30151] ? hwsim_virtio_rx_work+0x350/0x350 [ 865.244181][T30151] ? hwsim_new_radio_nl+0x992/0x1080 [ 865.249476][T30151] ? memcpy+0x39/0x60 [ 865.253472][T30151] hwsim_new_radio_nl+0x9bc/0x1080 [ 865.258608][T30151] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 865.264526][T30151] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 865.270781][T30151] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 865.278166][T30151] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 865.285470][T30151] genl_family_rcv_msg_doit+0x228/0x320 [ 865.291030][T30151] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 865.298416][T30151] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 865.304689][T30151] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 865.310941][T30151] ? ns_capable+0xd9/0x100 [ 865.315375][T30151] genl_rcv_msg+0x328/0x580 [ 865.319925][T30151] ? genl_get_cmd+0x480/0x480 [ 865.324631][T30151] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 865.330546][T30151] ? lock_release+0x720/0x720 [ 865.335233][T30151] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 865.341058][T30151] netlink_rcv_skb+0x153/0x420 [ 865.345834][T30151] ? genl_get_cmd+0x480/0x480 [ 865.350523][T30151] ? netlink_ack+0xa60/0xa60 [ 865.355133][T30151] ? netlink_deliver_tap+0x1b1/0xc30 [ 865.360435][T30151] genl_rcv+0x24/0x40 [ 865.364425][T30151] netlink_unicast+0x539/0x7e0 [ 865.369201][T30151] ? netlink_attachskb+0x880/0x880 [ 865.374316][T30151] ? __virt_addr_valid+0x5d/0x2d0 [ 865.379359][T30151] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 865.385616][T30151] ? __phys_addr_symbol+0x2c/0x70 [ 865.390653][T30151] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 865.396389][T30151] ? __check_object_size+0x16e/0x310 [ 865.401688][T30151] netlink_sendmsg+0x904/0xe00 [ 865.406464][T30151] ? netlink_unicast+0x7e0/0x7e0 [ 865.411418][T30151] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 865.417681][T30151] ? netlink_unicast+0x7e0/0x7e0 [ 865.422645][T30151] sock_sendmsg+0xcf/0x120 [ 865.427079][T30151] ____sys_sendmsg+0x6e8/0x810 [ 865.431858][T30151] ? kernel_sendmsg+0x50/0x50 [ 865.436547][T30151] ? do_recvmmsg+0x6d0/0x6d0 [ 865.441156][T30151] ? lock_chain_count+0x20/0x20 [ 865.446024][T30151] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 865.452112][T30151] ___sys_sendmsg+0xf3/0x170 [ 865.456720][T30151] ? sendmsg_copy_msghdr+0x160/0x160 [ 865.462027][T30151] ? lock_downgrade+0x6e0/0x6e0 [ 865.466907][T30151] ? __fget_files+0x28c/0x470 [ 865.471616][T30151] ? __fget_light+0xea/0x280 [ 865.476216][T30151] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 865.482475][T30151] __sys_sendmsg+0xe5/0x1b0 [ 865.486989][T30151] ? __sys_sendmsg_sock+0x30/0x30 [ 865.492039][T30151] ? syscall_enter_from_user_mode+0x21/0x70 [ 865.497951][T30151] do_syscall_64+0x35/0xb0 [ 865.502379][T30151] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 865.508295][T30151] RIP: 0033:0x7f0982948059 [ 865.512723][T30151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 865.532560][T30151] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 865.540988][T30151] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 865.549060][T30151] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 865.557049][T30151] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 865.565034][T30151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 865.573012][T30151] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 865.581007][T30151] 20:15:34 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000007c0)={0x14, r1, 0x701, 0x0, 0x0, {{0x5}, {@void, @void}}}, 0x14}}, 0x0) (async, rerun: 32) syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r0) (async, rerun: 32) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0x48}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000040)='syzkaller\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x3c) 20:15:34 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69940a0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:34 executing program 0: r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000100)=ANY=[@ANYBLOB='+\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0d00000000000000000003000000140001800e0001006574683a766c616e30000000"], 0x28}}, 0x0) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff) recvmmsg(r1, &(0x7f0000004d80), 0x493, 0xa, 0x0) (async) sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000200)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2, @ANYBLOB="030704000000000000000100000004000180"], 0x18}}, 0x0) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={0x1, 0x58, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000200)={'tunl0\x00', &(0x7f0000000180)={'syztnl2\x00', 0x0, 0x10, 0x7, 0xffffff7f, 0xed28, {{0xa, 0x4, 0x3, 0x5, 0x28, 0x68, 0x0, 0xf4, 0x0, 0x0, @local, @multicast1, {[@cipso={0x86, 0x11, 0x0, [{0x2, 0xb, "273538118f47dee5f6"}]}]}}}}}) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000002c0)={0x1, 0x58, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000003c0)={'gre0\x00', &(0x7f0000000300)={'tunl0\x00', 0x0, 0x7, 0x20, 0x81, 0xfffffffd, {{0x26, 0x4, 0x2, 0x38, 0x98, 0x66, 0x0, 0x4, 0x4, 0x0, @multicast2, @empty, {[@generic={0x7, 0xb, "2218add295a7933a97"}, @timestamp_addr={0x44, 0x2c, 0xca, 0x1, 0x3, [{@empty, 0xc1c5}, {@broadcast, 0x2}, {@local, 0x8001}, {@remote, 0xc457}, {@multicast2, 0x5}]}, @lsrr={0x83, 0xf, 0xab, [@remote, @remote, @rand_addr=0x64010100]}, @timestamp_prespec={0x44, 0xc, 0x5e, 0x3, 0x4, [{@loopback, 0x6}]}, @lsrr={0x83, 0x2b, 0x18, [@private=0xa010102, @dev={0xac, 0x14, 0x14, 0x32}, @loopback, @rand_addr=0x64010102, @dev={0xac, 0x14, 0x14, 0x28}, @local, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x3e}, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @noop, @noop, @ra={0x94, 0x4}]}}}}}) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000500)={&(0x7f0000000400)={0xdc, r2, 0x800, 0x70bd2c, 0x25dfdbfb, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0x4004000}, 0x20000000) [ 865.688085][T30157] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 865.729484][T30157] CPU: 1 PID: 30157 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 865.740046][T30157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 865.750127][T30157] Call Trace: [ 865.753433][T30157] [ 865.756399][T30157] dump_stack_lvl+0xcd/0x134 [ 865.761031][T30157] sysfs_warn_dup.cold+0x1c/0x29 [ 865.765982][T30157] sysfs_do_create_link_sd+0x11e/0x140 [ 865.771454][T30157] sysfs_create_link+0x5f/0xc0 [ 865.776247][T30157] device_add+0x789/0x1ee0 [ 865.780667][T30157] ? wait_for_completion_io+0x270/0x270 [ 865.786304][T30157] ? minstrel_ht_alloc+0x4b/0xa10 [ 865.791380][T30157] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 865.797633][T30157] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 865.803908][T30157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 865.810178][T30157] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 865.816169][T30157] wiphy_register+0x1e86/0x29a0 [ 865.821032][T30157] ? wiphy_unregister+0xbf0/0xbf0 [ 865.826053][T30157] ? minstrel_ht_alloc+0x52c/0xa10 [ 865.831188][T30157] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 865.837276][T30157] ieee80211_register_hw+0x1f16/0x3ed0 [ 865.842768][T30157] ? ieee80211_restart_hw+0x290/0x290 [ 865.848158][T30157] ? debug_object_destroy+0x210/0x210 [ 865.853544][T30157] ? memset+0x20/0x40 [ 865.857557][T30157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 865.863824][T30157] ? __hrtimer_init+0x136/0x280 [ 865.868675][T30157] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 865.874425][T30157] ? hwsim_virtio_rx_work+0x350/0x350 [ 865.879818][T30157] ? hwsim_new_radio_nl+0x992/0x1080 [ 865.885101][T30157] ? memcpy+0x39/0x60 [ 865.889080][T30157] hwsim_new_radio_nl+0x9bc/0x1080 [ 865.894214][T30157] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 865.900132][T30157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 865.906375][T30157] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 865.913740][T30157] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 865.921028][T30157] genl_family_rcv_msg_doit+0x228/0x320 [ 865.926583][T30157] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 865.933991][T30157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 865.940265][T30157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 865.946511][T30157] ? ns_capable+0xd9/0x100 [ 865.950938][T30157] genl_rcv_msg+0x328/0x580 [ 865.955461][T30157] ? genl_get_cmd+0x480/0x480 [ 865.960135][T30157] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 865.966040][T30157] ? lock_release+0x720/0x720 [ 865.970752][T30157] netlink_rcv_skb+0x153/0x420 [ 865.975517][T30157] ? genl_get_cmd+0x480/0x480 [ 865.980191][T30157] ? netlink_ack+0xa60/0xa60 [ 865.984796][T30157] ? netlink_deliver_tap+0x1b1/0xc30 [ 865.990107][T30157] genl_rcv+0x24/0x40 [ 865.994100][T30157] netlink_unicast+0x539/0x7e0 [ 865.998896][T30157] ? netlink_attachskb+0x880/0x880 [ 866.004013][T30157] ? __virt_addr_valid+0x5d/0x2d0 [ 866.009067][T30157] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 866.015316][T30157] ? __phys_addr_symbol+0x2c/0x70 [ 866.020363][T30157] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 866.026084][T30157] ? __check_object_size+0x16e/0x310 [ 866.031385][T30157] netlink_sendmsg+0x904/0xe00 [ 866.036162][T30157] ? netlink_unicast+0x7e0/0x7e0 [ 866.041118][T30157] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 866.047363][T30157] ? netlink_unicast+0x7e0/0x7e0 [ 866.052301][T30157] sock_sendmsg+0xcf/0x120 [ 866.056719][T30157] ____sys_sendmsg+0x6e8/0x810 [ 866.061483][T30157] ? kernel_sendmsg+0x50/0x50 [ 866.066158][T30157] ? do_recvmmsg+0x6d0/0x6d0 [ 866.070745][T30157] ? lock_chain_count+0x20/0x20 [ 866.075604][T30157] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 866.081613][T30157] ___sys_sendmsg+0xf3/0x170 [ 866.086202][T30157] ? sendmsg_copy_msghdr+0x160/0x160 [ 866.091490][T30157] ? lock_downgrade+0x6e0/0x6e0 [ 866.096346][T30157] ? __fget_files+0x28c/0x470 [ 866.101751][T30157] ? __fget_light+0xea/0x280 [ 866.106343][T30157] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 866.112600][T30157] __sys_sendmsg+0xe5/0x1b0 [ 866.117103][T30157] ? __sys_sendmsg_sock+0x30/0x30 [ 866.122134][T30157] ? syscall_enter_from_user_mode+0x21/0x70 [ 866.128028][T30157] do_syscall_64+0x35/0xb0 [ 866.132449][T30157] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 866.138346][T30157] RIP: 0033:0x7f8a7fbd7059 [ 866.142754][T30157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 866.162359][T30157] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 866.170796][T30157] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 20:15:35 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69940b0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 866.178771][T30157] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 866.186741][T30157] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 866.194706][T30157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 866.202671][T30157] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 866.210663][T30157] [ 866.259854][T30163] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 866.276304][T30163] __nla_validate_parse: 1 callbacks suppressed [ 866.276327][T30163] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 866.309695][T30163] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 866.318103][T30163] CPU: 1 PID: 30163 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 866.328638][T30163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 866.338712][T30163] Call Trace: [ 866.342005][T30163] [ 866.344953][T30163] dump_stack_lvl+0xcd/0x134 [ 866.349578][T30163] sysfs_warn_dup.cold+0x1c/0x29 [ 866.354538][T30163] sysfs_do_create_link_sd+0x11e/0x140 [ 866.360007][T30163] sysfs_create_link+0x5f/0xc0 [ 866.364807][T30163] device_add+0x789/0x1ee0 [ 866.369263][T30163] ? wait_for_completion_io+0x270/0x270 [ 866.374843][T30163] ? minstrel_ht_alloc+0x4b/0xa10 [ 866.379907][T30163] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 866.386180][T30163] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 866.392448][T30163] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 866.398687][T30163] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 866.404675][T30163] wiphy_register+0x1e86/0x29a0 [ 866.409541][T30163] ? wiphy_unregister+0xbf0/0xbf0 [ 866.414568][T30163] ? minstrel_ht_alloc+0x52c/0xa10 [ 866.419724][T30163] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 866.425800][T30163] ieee80211_register_hw+0x1f16/0x3ed0 [ 866.431298][T30163] ? ieee80211_restart_hw+0x290/0x290 [ 866.436691][T30163] ? debug_object_destroy+0x210/0x210 [ 866.442075][T30163] ? memset+0x20/0x40 [ 866.446083][T30163] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 866.452347][T30163] ? __hrtimer_init+0x136/0x280 [ 866.457220][T30163] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 866.462982][T30163] ? hwsim_virtio_rx_work+0x350/0x350 [ 866.468357][T30163] ? hwsim_new_radio_nl+0x992/0x1080 [ 866.473665][T30163] ? memcpy+0x39/0x60 [ 866.477644][T30163] hwsim_new_radio_nl+0x9bc/0x1080 [ 866.482773][T30163] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 866.488674][T30163] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 866.494911][T30163] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 866.502284][T30163] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 20:15:35 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100e11402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 866.509589][T30163] genl_family_rcv_msg_doit+0x228/0x320 [ 866.515311][T30163] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 866.522706][T30163] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 866.528975][T30163] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 866.535214][T30163] ? ns_capable+0xd9/0x100 [ 866.539654][T30163] genl_rcv_msg+0x328/0x580 [ 866.544159][T30163] ? genl_get_cmd+0x480/0x480 [ 866.548943][T30163] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 866.554860][T30163] ? lock_release+0x720/0x720 [ 866.559548][T30163] netlink_rcv_skb+0x153/0x420 [ 866.564317][T30163] ? genl_get_cmd+0x480/0x480 [ 866.569013][T30163] ? netlink_ack+0xa60/0xa60 [ 866.573601][T30163] ? netlink_deliver_tap+0x1b1/0xc30 [ 866.578902][T30163] genl_rcv+0x24/0x40 [ 866.582878][T30163] netlink_unicast+0x539/0x7e0 [ 866.587651][T30163] ? netlink_attachskb+0x880/0x880 [ 866.592753][T30163] ? __virt_addr_valid+0x5d/0x2d0 [ 866.597803][T30163] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 866.604041][T30163] ? __phys_addr_symbol+0x2c/0x70 [ 866.609079][T30163] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 866.614795][T30163] ? __check_object_size+0x16e/0x310 [ 866.620091][T30163] netlink_sendmsg+0x904/0xe00 [ 866.624897][T30163] ? netlink_unicast+0x7e0/0x7e0 [ 866.629846][T30163] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 866.636132][T30163] ? netlink_unicast+0x7e0/0x7e0 [ 866.641068][T30163] sock_sendmsg+0xcf/0x120 [ 866.645503][T30163] ____sys_sendmsg+0x6e8/0x810 [ 866.650280][T30163] ? kernel_sendmsg+0x50/0x50 [ 866.654954][T30163] ? do_recvmmsg+0x6d0/0x6d0 [ 866.659549][T30163] ? lock_chain_count+0x20/0x20 [ 866.664404][T30163] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 866.670415][T30163] ___sys_sendmsg+0xf3/0x170 [ 866.675022][T30163] ? sendmsg_copy_msghdr+0x160/0x160 [ 866.680309][T30163] ? lock_downgrade+0x6e0/0x6e0 [ 866.685165][T30163] ? __fget_files+0x28c/0x470 [ 866.689842][T30163] ? __fget_light+0xea/0x280 [ 866.694440][T30163] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 866.700700][T30163] __sys_sendmsg+0xe5/0x1b0 [ 866.705242][T30163] ? __sys_sendmsg_sock+0x30/0x30 [ 866.710327][T30163] ? syscall_enter_from_user_mode+0x21/0x70 [ 866.716234][T30163] do_syscall_64+0x35/0xb0 [ 866.720662][T30163] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 866.726575][T30163] RIP: 0033:0x7f4b423c2059 [ 866.731008][T30163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 866.750633][T30163] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 866.759045][T30163] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 866.767014][T30163] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 866.774985][T30163] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 866.782958][T30163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 866.790931][T30163] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 866.798911][T30163] [ 866.835686][T30179] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 866.857027][T30179] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 866.864696][T30179] CPU: 1 PID: 30179 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 866.875388][T30179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 866.885723][T30179] Call Trace: [ 866.889023][T30179] [ 866.891971][T30179] dump_stack_lvl+0xcd/0x134 [ 866.896600][T30179] sysfs_warn_dup.cold+0x1c/0x29 [ 866.901568][T30179] sysfs_do_create_link_sd+0x11e/0x140 [ 866.907064][T30179] sysfs_create_link+0x5f/0xc0 [ 866.911862][T30179] device_add+0x789/0x1ee0 [ 866.916315][T30179] ? wait_for_completion_io+0x270/0x270 [ 866.921893][T30179] ? lock_downgrade+0x6e0/0x6e0 [ 866.926782][T30179] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 866.933063][T30179] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 866.939350][T30179] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 866.945638][T30179] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 866.951673][T30179] wiphy_register+0x1e86/0x29a0 [ 866.956597][T30179] ? wiphy_unregister+0xbf0/0xbf0 [ 866.961621][T30179] ? minstrel_ht_alloc+0x52c/0xa10 [ 866.966797][T30179] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 866.972883][T30179] ieee80211_register_hw+0x1f16/0x3ed0 [ 866.978350][T30179] ? ieee80211_restart_hw+0x290/0x290 [ 866.983720][T30179] ? debug_object_destroy+0x210/0x210 [ 866.989109][T30179] ? memset+0x20/0x40 [ 866.993113][T30179] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 866.999358][T30179] ? __hrtimer_init+0x136/0x280 [ 867.004214][T30179] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 867.009950][T30179] ? hwsim_virtio_rx_work+0x350/0x350 [ 867.015324][T30179] ? hwsim_new_radio_nl+0x992/0x1080 [ 867.020632][T30179] ? memcpy+0x39/0x60 [ 867.024623][T30179] hwsim_new_radio_nl+0x9bc/0x1080 [ 867.029750][T30179] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 867.035748][T30179] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 867.041994][T30179] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 867.049371][T30179] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 867.056702][T30179] genl_family_rcv_msg_doit+0x228/0x320 [ 867.062342][T30179] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 867.069722][T30179] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 867.075998][T30179] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 867.082240][T30179] ? ns_capable+0xd9/0x100 [ 867.086668][T30179] genl_rcv_msg+0x328/0x580 [ 867.091171][T30179] ? genl_get_cmd+0x480/0x480 [ 867.095848][T30179] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 867.101749][T30179] ? lock_release+0x720/0x720 [ 867.106429][T30179] netlink_rcv_skb+0x153/0x420 [ 867.111208][T30179] ? genl_get_cmd+0x480/0x480 [ 867.115889][T30179] ? netlink_ack+0xa60/0xa60 [ 867.120518][T30179] ? netlink_deliver_tap+0x1b1/0xc30 [ 867.125813][T30179] genl_rcv+0x24/0x40 [ 867.129789][T30179] netlink_unicast+0x539/0x7e0 [ 867.134568][T30179] ? netlink_attachskb+0x880/0x880 [ 867.139692][T30179] ? __virt_addr_valid+0x5d/0x2d0 [ 867.144753][T30179] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 867.151042][T30179] ? __phys_addr_symbol+0x2c/0x70 [ 867.156067][T30179] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 867.161816][T30179] ? __check_object_size+0x16e/0x310 [ 867.167108][T30179] netlink_sendmsg+0x904/0xe00 [ 867.171897][T30179] ? netlink_unicast+0x7e0/0x7e0 [ 867.176846][T30179] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 867.183121][T30179] ? netlink_unicast+0x7e0/0x7e0 [ 867.188095][T30179] sock_sendmsg+0xcf/0x120 [ 867.192558][T30179] ____sys_sendmsg+0x6e8/0x810 [ 867.197366][T30179] ? kernel_sendmsg+0x50/0x50 [ 867.202069][T30179] ? do_recvmmsg+0x6d0/0x6d0 [ 867.206663][T30179] ? lock_chain_count+0x20/0x20 [ 867.211523][T30179] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 867.217516][T30179] ___sys_sendmsg+0xf3/0x170 [ 867.222115][T30179] ? sendmsg_copy_msghdr+0x160/0x160 [ 867.227411][T30179] ? lock_downgrade+0x6e0/0x6e0 [ 867.232290][T30179] ? __fget_files+0x28c/0x470 [ 867.236981][T30179] ? __fget_light+0xea/0x280 [ 867.241591][T30179] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 867.247842][T30179] __sys_sendmsg+0xe5/0x1b0 [ 867.252351][T30179] ? __sys_sendmsg_sock+0x30/0x30 [ 867.257396][T30179] ? syscall_enter_from_user_mode+0x21/0x70 [ 867.263304][T30179] do_syscall_64+0x35/0xb0 [ 867.267731][T30179] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 867.273632][T30179] RIP: 0033:0x7f0982948059 [ 867.278049][T30179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 867.297690][T30179] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 867.306117][T30179] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 867.314090][T30179] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 867.322059][T30179] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 867.330029][T30179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 867.338000][T30179] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 867.345987][T30179] [ 867.370446][T30181] netlink: 143804 bytes leftover after parsing attributes in process `syz-executor.3'. [ 867.409357][T30181] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 867.418475][T30181] CPU: 1 PID: 30181 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 867.429019][T30181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 867.439094][T30181] Call Trace: [ 867.442384][T30181] [ 867.445328][T30181] dump_stack_lvl+0xcd/0x134 [ 867.449947][T30181] sysfs_warn_dup.cold+0x1c/0x29 [ 867.454921][T30181] sysfs_do_create_link_sd+0x11e/0x140 [ 867.460411][T30181] sysfs_create_link+0x5f/0xc0 [ 867.465211][T30181] device_add+0x789/0x1ee0 [ 867.469632][T30181] ? wait_for_completion_io+0x270/0x270 [ 867.475352][T30181] ? lock_downgrade+0x6e0/0x6e0 [ 867.480201][T30181] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 867.486451][T30181] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 867.492711][T30181] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 867.498951][T30181] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 867.504934][T30181] wiphy_register+0x1e86/0x29a0 [ 867.509800][T30181] ? wiphy_unregister+0xbf0/0xbf0 [ 867.514820][T30181] ? minstrel_ht_alloc+0x52c/0xa10 [ 867.519954][T30181] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 867.526029][T30181] ieee80211_register_hw+0x1f16/0x3ed0 [ 867.531583][T30181] ? ieee80211_restart_hw+0x290/0x290 [ 867.536954][T30181] ? debug_object_destroy+0x210/0x210 [ 867.542326][T30181] ? memset+0x20/0x40 [ 867.546306][T30181] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 867.552545][T30181] ? __hrtimer_init+0x136/0x280 [ 867.557416][T30181] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 867.563152][T30181] ? hwsim_virtio_rx_work+0x350/0x350 [ 867.568530][T30181] ? hwsim_new_radio_nl+0x992/0x1080 [ 867.573852][T30181] ? memcpy+0x39/0x60 [ 867.577838][T30181] hwsim_new_radio_nl+0x9bc/0x1080 [ 867.582954][T30181] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 867.588851][T30181] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 867.595087][T30181] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 867.602469][T30181] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 867.609865][T30181] genl_family_rcv_msg_doit+0x228/0x320 [ 867.615408][T30181] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 867.622780][T30181] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 867.629026][T30181] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 867.635286][T30181] ? ns_capable+0xd9/0x100 [ 867.639717][T30181] genl_rcv_msg+0x328/0x580 [ 867.644218][T30181] ? genl_get_cmd+0x480/0x480 [ 867.648890][T30181] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 867.654792][T30181] ? lock_release+0x720/0x720 [ 867.659479][T30181] netlink_rcv_skb+0x153/0x420 [ 867.664249][T30181] ? genl_get_cmd+0x480/0x480 [ 867.668926][T30181] ? netlink_ack+0xa60/0xa60 [ 867.673542][T30181] ? netlink_deliver_tap+0x1b1/0xc30 [ 867.678833][T30181] genl_rcv+0x24/0x40 [ 867.682814][T30181] netlink_unicast+0x539/0x7e0 [ 867.687598][T30181] ? netlink_attachskb+0x880/0x880 [ 867.692709][T30181] ? __virt_addr_valid+0x5d/0x2d0 [ 867.697751][T30181] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 867.703990][T30181] ? __phys_addr_symbol+0x2c/0x70 [ 867.709014][T30181] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 867.714739][T30181] ? __check_object_size+0x16e/0x310 [ 867.720035][T30181] netlink_sendmsg+0x904/0xe00 [ 867.724825][T30181] ? netlink_unicast+0x7e0/0x7e0 [ 867.729769][T30181] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 867.736014][T30181] ? netlink_unicast+0x7e0/0x7e0 [ 867.740949][T30181] sock_sendmsg+0xcf/0x120 [ 867.745366][T30181] ____sys_sendmsg+0x6e8/0x810 [ 867.750124][T30181] ? kernel_sendmsg+0x50/0x50 [ 867.754810][T30181] ? do_recvmmsg+0x6d0/0x6d0 [ 867.759400][T30181] ? lock_chain_count+0x20/0x20 [ 867.764250][T30181] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 867.770232][T30181] ___sys_sendmsg+0xf3/0x170 [ 867.774828][T30181] ? sendmsg_copy_msghdr+0x160/0x160 [ 867.780119][T30181] ? lock_downgrade+0x6e0/0x6e0 [ 867.784985][T30181] ? __fget_files+0x28c/0x470 [ 867.789671][T30181] ? __fget_light+0xea/0x280 [ 867.794259][T30181] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 867.800502][T30181] __sys_sendmsg+0xe5/0x1b0 [ 867.805002][T30181] ? __sys_sendmsg_sock+0x30/0x30 [ 867.810031][T30181] ? syscall_enter_from_user_mode+0x21/0x70 [ 867.815942][T30181] do_syscall_64+0x35/0xb0 [ 867.820375][T30181] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 867.826290][T30181] RIP: 0033:0x7f8a7fbd7059 [ 867.830697][T30181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 867.850415][T30181] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 867.858866][T30181] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 867.867014][T30181] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 867.874996][T30181] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 867.882988][T30181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 867.891044][T30181] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 867.899020][T30181] 20:15:37 executing program 4: bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_serviced\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) r1 = socket$rds(0x15, 0x5, 0x0) sendfile(r0, r1, 0x0, 0x1) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000ac0)={'batadv_slave_1\x00'}) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0) r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, 0x0) unshare(0x40000000) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0x4) 20:15:37 executing program 2: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994090424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:37 executing program 0: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000000c0)={r0, 0x9, 0x5, 0xfffffffffffffffd}) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000100), &(0x7f0000000140)=0x4) setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000004dac85894211f8010000000000041e57a4e2f9834e0bbac19426f2e8801c74db90"], 0x18) sendmsg$inet6(r0, &(0x7f0000000040)={&(0x7f0000000180)={0xa, 0x0, 0x0, @private2}, 0x1c, &(0x7f0000000080)=[{&(0x7f0000000840)="bd", 0x34000}], 0x1}, 0x8044) 20:15:37 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200813382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:37 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69940c0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:37 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60103511402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 868.079728][T30189] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 868.106548][T30189] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. 20:15:37 executing program 0: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000000c0)={r0, 0x9, 0x5, 0xfffffffffffffffd}) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000100), &(0x7f0000000140)=0x4) setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000004dac85894211f8010000000000041e57a4e2f9834e0bbac19426f2e8801c74db90"], 0x18) sendmsg$inet6(r0, &(0x7f0000000040)={&(0x7f0000000180)={0xa, 0x0, 0x0, @private2}, 0x1c, &(0x7f0000000080)=[{&(0x7f0000000840)="bd", 0x34000}], 0x1}, 0x8044) [ 868.142285][T30189] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 868.163039][T30189] CPU: 1 PID: 30189 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 868.173600][T30189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 868.183682][T30189] Call Trace: [ 868.186988][T30189] [ 868.189942][T30189] dump_stack_lvl+0xcd/0x134 [ 868.194567][T30189] sysfs_warn_dup.cold+0x1c/0x29 [ 868.199544][T30189] sysfs_do_create_link_sd+0x11e/0x140 [ 868.205041][T30189] sysfs_create_link+0x5f/0xc0 [ 868.209840][T30189] device_add+0x789/0x1ee0 [ 868.214300][T30189] ? wait_for_completion_io+0x270/0x270 [ 868.219892][T30189] ? minstrel_ht_alloc+0x4b/0xa10 [ 868.224952][T30189] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 868.231236][T30189] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 20:15:37 executing program 0: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000000c0)={r0, 0x9, 0x5, 0xfffffffffffffffd}) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000100), &(0x7f0000000140)=0x4) (async) setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000004dac85894211f8010000000000041e57a4e2f9834e0bbac19426f2e8801c74db90"], 0x18) (async) sendmsg$inet6(r0, &(0x7f0000000040)={&(0x7f0000000180)={0xa, 0x0, 0x0, @private2}, 0x1c, &(0x7f0000000080)=[{&(0x7f0000000840)="bd", 0x34000}], 0x1}, 0x8044) [ 868.237513][T30189] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 868.243800][T30189] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 868.249828][T30189] wiphy_register+0x1e86/0x29a0 [ 868.254727][T30189] ? wiphy_unregister+0xbf0/0xbf0 [ 868.259779][T30189] ? minstrel_ht_alloc+0x52c/0xa10 [ 868.264940][T30189] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 868.271043][T30189] ieee80211_register_hw+0x1f16/0x3ed0 [ 868.276549][T30189] ? ieee80211_restart_hw+0x290/0x290 [ 868.281955][T30189] ? debug_object_destroy+0x210/0x210 [ 868.287373][T30189] ? memset+0x20/0x40 [ 868.291400][T30189] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 868.297675][T30189] ? __hrtimer_init+0x136/0x280 [ 868.302560][T30189] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 868.308342][T30189] ? hwsim_virtio_rx_work+0x350/0x350 [ 868.313744][T30189] ? hwsim_new_radio_nl+0x992/0x1080 [ 868.319063][T30189] ? memcpy+0x39/0x60 [ 868.323117][T30189] hwsim_new_radio_nl+0x9bc/0x1080 [ 868.328293][T30189] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 868.334232][T30189] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 868.340506][T30189] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 868.347907][T30189] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 868.355228][T30189] genl_family_rcv_msg_doit+0x228/0x320 [ 868.360817][T30189] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 868.368224][T30189] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 868.374512][T30189] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 868.380869][T30189] ? ns_capable+0xd9/0x100 [ 868.385324][T30189] genl_rcv_msg+0x328/0x580 [ 868.389866][T30189] ? genl_get_cmd+0x480/0x480 [ 868.394570][T30189] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 868.400510][T30189] ? lock_release+0x720/0x720 [ 868.405223][T30189] netlink_rcv_skb+0x153/0x420 [ 868.410014][T30189] ? genl_get_cmd+0x480/0x480 [ 868.414721][T30189] ? netlink_ack+0xa60/0xa60 [ 868.419347][T30189] ? netlink_deliver_tap+0x1b1/0xc30 [ 868.424664][T30189] genl_rcv+0x24/0x40 [ 868.428669][T30189] netlink_unicast+0x539/0x7e0 [ 868.433463][T30189] ? netlink_attachskb+0x880/0x880 [ 868.438597][T30189] ? __virt_addr_valid+0x5d/0x2d0 [ 868.443659][T30189] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 868.449928][T30189] ? __phys_addr_symbol+0x2c/0x70 [ 868.454983][T30189] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 868.460732][T30189] ? __check_object_size+0x16e/0x310 [ 868.466052][T30189] netlink_sendmsg+0x904/0xe00 [ 868.470851][T30189] ? netlink_unicast+0x7e0/0x7e0 [ 868.475822][T30189] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 868.482099][T30189] ? netlink_unicast+0x7e0/0x7e0 [ 868.487064][T30189] sock_sendmsg+0xcf/0x120 [ 868.491511][T30189] ____sys_sendmsg+0x6e8/0x810 [ 868.496311][T30189] ? kernel_sendmsg+0x50/0x50 [ 868.501013][T30189] ? do_recvmmsg+0x6d0/0x6d0 [ 868.505634][T30189] ? lock_chain_count+0x20/0x20 [ 868.510519][T30189] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 868.516538][T30189] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 868.522809][T30189] ? futex_wait+0x533/0x670 [ 868.527346][T30189] ___sys_sendmsg+0xf3/0x170 [ 868.531975][T30189] ? sendmsg_copy_msghdr+0x160/0x160 [ 868.537294][T30189] ? lock_downgrade+0x6e0/0x6e0 [ 868.542190][T30189] ? __fget_files+0x28c/0x470 [ 868.546908][T30189] ? __fget_light+0xea/0x280 [ 868.551525][T30189] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 868.557805][T30189] __sys_sendmsg+0xe5/0x1b0 [ 868.562338][T30189] ? __sys_sendmsg_sock+0x30/0x30 [ 868.567408][T30189] ? syscall_enter_from_user_mode+0x21/0x70 [ 868.573340][T30189] do_syscall_64+0x35/0xb0 [ 868.577788][T30189] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 868.583709][T30189] RIP: 0033:0x7f4b423c2059 [ 868.588142][T30189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 868.607784][T30189] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 868.616307][T30189] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 868.624302][T30189] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 868.632293][T30189] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 868.640283][T30189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 868.648275][T30189] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 868.656289][T30189] 20:15:37 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r0, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) getsockopt$inet6_tcp_int(r1, 0x6, 0x12, &(0x7f0000000100), &(0x7f0000000180)=0x4) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETLINK(r2, 0x8912, 0x400308) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x9, 0x1, 0xd0}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x287b361ae6c523fa, 0x10, &(0x7f0000000000), 0x128}, 0x48) 20:15:37 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200023382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 868.756637][T30184] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. 20:15:37 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r0, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) getsockopt$inet6_tcp_int(r1, 0x6, 0x12, &(0x7f0000000100), &(0x7f0000000180)=0x4) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETLINK(r2, 0x8912, 0x400308) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x9, 0x1, 0xd0}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x287b361ae6c523fa, 0x10, &(0x7f0000000000), 0x128}, 0x48) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r0, 0x0) (async) openat$cgroup_ro(r0, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) (async) getsockopt$inet6_tcp_int(r1, 0x6, 0x12, &(0x7f0000000100), &(0x7f0000000180)=0x4) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) ioctl$TUNSETLINK(r2, 0x8912, 0x400308) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x9, 0x1, 0xd0}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x287b361ae6c523fa, 0x10, &(0x7f0000000000), 0x128}, 0x48) (async) [ 868.809753][T30184] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 868.842232][T30184] CPU: 1 PID: 30184 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 868.852831][T30184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 868.862912][T30184] Call Trace: [ 868.866219][T30184] [ 868.869178][T30184] dump_stack_lvl+0xcd/0x134 [ 868.873810][T30184] sysfs_warn_dup.cold+0x1c/0x29 [ 868.878782][T30184] sysfs_do_create_link_sd+0x11e/0x140 [ 868.884280][T30184] sysfs_create_link+0x5f/0xc0 [ 868.889081][T30184] device_add+0x789/0x1ee0 [ 868.893539][T30184] ? wait_for_completion_io+0x270/0x270 [ 868.899128][T30184] ? lock_downgrade+0x6e0/0x6e0 [ 868.904019][T30184] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 20:15:37 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r0, 0x0) (async) r1 = openat$cgroup_ro(r0, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) getsockopt$inet6_tcp_int(r1, 0x6, 0x12, &(0x7f0000000100), &(0x7f0000000180)=0x4) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETLINK(r2, 0x8912, 0x400308) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x9, 0x1, 0xd0}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x287b361ae6c523fa, 0x10, &(0x7f0000000000), 0x128}, 0x48) [ 868.910297][T30184] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 868.916572][T30184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 868.922845][T30184] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 868.928881][T30184] wiphy_register+0x1e86/0x29a0 [ 868.933784][T30184] ? wiphy_unregister+0xbf0/0xbf0 [ 868.938840][T30184] ? minstrel_ht_alloc+0x52c/0xa10 [ 868.944002][T30184] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 868.950112][T30184] ieee80211_register_hw+0x1f16/0x3ed0 [ 868.955627][T30184] ? ieee80211_restart_hw+0x290/0x290 [ 868.961031][T30184] ? debug_object_destroy+0x210/0x210 [ 868.966438][T30184] ? memset+0x20/0x40 [ 868.970450][T30184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 868.976731][T30184] ? __hrtimer_init+0x136/0x280 [ 868.981621][T30184] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 868.987398][T30184] ? hwsim_virtio_rx_work+0x350/0x350 [ 868.992799][T30184] ? hwsim_new_radio_nl+0x992/0x1080 [ 868.998208][T30184] ? memcpy+0x39/0x60 [ 869.002233][T30184] hwsim_new_radio_nl+0x9bc/0x1080 [ 869.007383][T30184] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 869.013320][T30184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.019596][T30184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 869.027005][T30184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 869.034340][T30184] genl_family_rcv_msg_doit+0x228/0x320 [ 869.039926][T30184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 869.047334][T30184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.053628][T30184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.059940][T30184] ? ns_capable+0xd9/0x100 [ 869.064389][T30184] genl_rcv_msg+0x328/0x580 [ 869.068910][T30184] ? genl_get_cmd+0x480/0x480 [ 869.073586][T30184] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 869.079488][T30184] ? lock_release+0x720/0x720 [ 869.084178][T30184] netlink_rcv_skb+0x153/0x420 [ 869.089067][T30184] ? genl_get_cmd+0x480/0x480 [ 869.093744][T30184] ? netlink_ack+0xa60/0xa60 [ 869.098332][T30184] ? netlink_deliver_tap+0x1b1/0xc30 [ 869.103634][T30184] genl_rcv+0x24/0x40 [ 869.107618][T30184] netlink_unicast+0x539/0x7e0 [ 869.112390][T30184] ? netlink_attachskb+0x880/0x880 [ 869.117503][T30184] ? __virt_addr_valid+0x5d/0x2d0 [ 869.122543][T30184] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 869.128793][T30184] ? __phys_addr_symbol+0x2c/0x70 [ 869.133833][T30184] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 869.139561][T30184] ? __check_object_size+0x16e/0x310 [ 869.144847][T30184] netlink_sendmsg+0x904/0xe00 [ 869.149617][T30184] ? netlink_unicast+0x7e0/0x7e0 [ 869.154573][T30184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.160816][T30184] ? netlink_unicast+0x7e0/0x7e0 [ 869.165759][T30184] sock_sendmsg+0xcf/0x120 [ 869.170201][T30184] ____sys_sendmsg+0x6e8/0x810 [ 869.175007][T30184] ? kernel_sendmsg+0x50/0x50 [ 869.179702][T30184] ? do_recvmmsg+0x6d0/0x6d0 [ 869.184301][T30184] ? lock_chain_count+0x20/0x20 [ 869.189157][T30184] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 869.195153][T30184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.201423][T30184] ? futex_wait+0x533/0x670 [ 869.205931][T30184] ___sys_sendmsg+0xf3/0x170 [ 869.210531][T30184] ? sendmsg_copy_msghdr+0x160/0x160 [ 869.215838][T30184] ? lock_downgrade+0x6e0/0x6e0 [ 869.220698][T30184] ? __fget_files+0x28c/0x470 [ 869.225393][T30184] ? __fget_light+0xea/0x280 [ 869.230013][T30184] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 869.236261][T30184] __sys_sendmsg+0xe5/0x1b0 [ 869.240763][T30184] ? __sys_sendmsg_sock+0x30/0x30 [ 869.245807][T30184] ? syscall_enter_from_user_mode+0x21/0x70 [ 869.251740][T30184] do_syscall_64+0x35/0xb0 [ 869.256180][T30184] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 869.262088][T30184] RIP: 0033:0x7f0982948059 [ 869.266510][T30184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 869.286149][T30184] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 869.294568][T30184] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 869.302536][T30184] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 869.310525][T30184] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 869.318494][T30184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 869.326465][T30184] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 869.334458][T30184] [ 869.370416][T30190] netlink: 133820 bytes leftover after parsing attributes in process `syz-executor.3'. [ 869.398156][T30190] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 869.414456][T30190] CPU: 1 PID: 30190 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 869.425018][T30190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 869.435100][T30190] Call Trace: [ 869.438403][T30190] [ 869.441363][T30190] dump_stack_lvl+0xcd/0x134 [ 869.445989][T30190] sysfs_warn_dup.cold+0x1c/0x29 [ 869.450953][T30190] sysfs_do_create_link_sd+0x11e/0x140 [ 869.456452][T30190] sysfs_create_link+0x5f/0xc0 [ 869.461258][T30190] device_add+0x789/0x1ee0 [ 869.465707][T30190] ? wait_for_completion_io+0x270/0x270 [ 869.471252][T30190] ? lock_downgrade+0x6e0/0x6e0 [ 869.476097][T30190] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 869.482373][T30190] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 869.488614][T30190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.494881][T30190] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 869.500874][T30190] wiphy_register+0x1e86/0x29a0 [ 869.505732][T30190] ? wiphy_unregister+0xbf0/0xbf0 [ 869.510778][T30190] ? minstrel_ht_alloc+0x52c/0xa10 [ 869.515899][T30190] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 869.521970][T30190] ieee80211_register_hw+0x1f16/0x3ed0 [ 869.527461][T30190] ? ieee80211_restart_hw+0x290/0x290 [ 869.532840][T30190] ? debug_object_destroy+0x210/0x210 [ 869.538240][T30190] ? memset+0x20/0x40 [ 869.542220][T30190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.548457][T30190] ? __hrtimer_init+0x136/0x280 [ 869.553318][T30190] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 869.559047][T30190] ? hwsim_virtio_rx_work+0x350/0x350 [ 869.564412][T30190] ? hwsim_new_radio_nl+0x992/0x1080 [ 869.569720][T30190] ? memcpy+0x39/0x60 [ 869.573725][T30190] hwsim_new_radio_nl+0x9bc/0x1080 [ 869.578843][T30190] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 869.584737][T30190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.590974][T30190] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 869.598340][T30190] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 869.605657][T30190] genl_family_rcv_msg_doit+0x228/0x320 [ 869.611203][T30190] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 869.618574][T30190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.624829][T30190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.631067][T30190] ? ns_capable+0xd9/0x100 [ 869.635571][T30190] genl_rcv_msg+0x328/0x580 [ 869.640075][T30190] ? genl_get_cmd+0x480/0x480 [ 869.644766][T30190] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 869.650657][T30190] ? lock_release+0x720/0x720 [ 869.655343][T30190] netlink_rcv_skb+0x153/0x420 [ 869.660109][T30190] ? genl_get_cmd+0x480/0x480 [ 869.664823][T30190] ? netlink_ack+0xa60/0xa60 [ 869.669429][T30190] ? netlink_deliver_tap+0x1b1/0xc30 [ 869.674713][T30190] genl_rcv+0x24/0x40 [ 869.678691][T30190] netlink_unicast+0x539/0x7e0 [ 869.683484][T30190] ? netlink_attachskb+0x880/0x880 [ 869.688599][T30190] ? __virt_addr_valid+0x5d/0x2d0 [ 869.693649][T30190] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 869.699896][T30190] ? __phys_addr_symbol+0x2c/0x70 [ 869.704957][T30190] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 869.710696][T30190] ? __check_object_size+0x16e/0x310 [ 869.716003][T30190] netlink_sendmsg+0x904/0xe00 [ 869.720782][T30190] ? netlink_unicast+0x7e0/0x7e0 [ 869.725727][T30190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.731990][T30190] ? netlink_unicast+0x7e0/0x7e0 [ 869.737031][T30190] sock_sendmsg+0xcf/0x120 [ 869.741455][T30190] ____sys_sendmsg+0x6e8/0x810 [ 869.746229][T30190] ? kernel_sendmsg+0x50/0x50 [ 869.750928][T30190] ? do_recvmmsg+0x6d0/0x6d0 [ 869.755522][T30190] ? lock_chain_count+0x20/0x20 [ 869.760390][T30190] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 869.766375][T30190] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 869.772640][T30190] ? futex_wait+0x533/0x670 [ 869.777168][T30190] ___sys_sendmsg+0xf3/0x170 [ 869.781758][T30190] ? sendmsg_copy_msghdr+0x160/0x160 [ 869.787047][T30190] ? lock_downgrade+0x6e0/0x6e0 [ 869.791914][T30190] ? __fget_files+0x28c/0x470 [ 869.796674][T30190] ? __fget_light+0xea/0x280 [ 869.801273][T30190] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 869.807628][T30190] __sys_sendmsg+0xe5/0x1b0 [ 869.812132][T30190] ? __sys_sendmsg_sock+0x30/0x30 [ 869.817161][T30190] ? syscall_enter_from_user_mode+0x21/0x70 [ 869.823066][T30190] do_syscall_64+0x35/0xb0 [ 869.827502][T30190] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 869.833394][T30190] RIP: 0033:0x7f8a7fbd7059 [ 869.837813][T30190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 869.857416][T30190] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 869.865830][T30190] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 869.873806][T30190] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 869.881771][T30190] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 869.889752][T30190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 869.898159][T30190] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 869.906157][T30190] [ 869.917528][ T1226] ieee802154 phy0 wpan0: encryption failed: -22 [ 869.924164][ T1226] ieee802154 phy1 wpan1: encryption failed: -22 [ 869.966313][T30191] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.2'. [ 869.993615][T30191] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 870.010655][T30191] CPU: 0 PID: 30191 Comm: syz-executor.2 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 870.021220][T30191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 870.031326][T30191] Call Trace: [ 870.034616][T30191] [ 870.037589][T30191] dump_stack_lvl+0xcd/0x134 [ 870.042207][T30191] sysfs_warn_dup.cold+0x1c/0x29 [ 870.047261][T30191] sysfs_do_create_link_sd+0x11e/0x140 [ 870.052751][T30191] sysfs_create_link+0x5f/0xc0 [ 870.057534][T30191] device_add+0x789/0x1ee0 [ 870.061979][T30191] ? wait_for_completion_io+0x270/0x270 [ 870.067643][T30191] ? lock_downgrade+0x6e0/0x6e0 [ 870.072528][T30191] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 870.078792][T30191] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 870.085069][T30191] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.091313][T30191] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 870.097334][T30191] wiphy_register+0x1e86/0x29a0 [ 870.102223][T30191] ? wiphy_unregister+0xbf0/0xbf0 [ 870.107272][T30191] ? minstrel_ht_alloc+0x52c/0xa10 [ 870.112436][T30191] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 870.118533][T30191] ieee80211_register_hw+0x1f16/0x3ed0 [ 870.124023][T30191] ? ieee80211_restart_hw+0x290/0x290 [ 870.129401][T30191] ? debug_object_destroy+0x210/0x210 [ 870.134803][T30191] ? memset+0x20/0x40 [ 870.138810][T30191] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.145072][T30191] ? __hrtimer_init+0x136/0x280 [ 870.149927][T30191] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 870.155707][T30191] ? hwsim_virtio_rx_work+0x350/0x350 [ 870.161103][T30191] ? hwsim_new_radio_nl+0x992/0x1080 [ 870.166413][T30191] ? memcpy+0x39/0x60 [ 870.170424][T30191] hwsim_new_radio_nl+0x9bc/0x1080 [ 870.175563][T30191] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 870.181492][T30191] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.187848][T30191] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 870.195252][T30191] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 870.202542][T30191] genl_family_rcv_msg_doit+0x228/0x320 [ 870.208114][T30191] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 870.215510][T30191] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.221788][T30191] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.228058][T30191] ? ns_capable+0xd9/0x100 [ 870.232507][T30191] genl_rcv_msg+0x328/0x580 [ 870.237040][T30191] ? genl_get_cmd+0x480/0x480 [ 870.241739][T30191] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 870.247663][T30191] ? lock_release+0x720/0x720 [ 870.252360][T30191] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 870.258197][T30191] netlink_rcv_skb+0x153/0x420 [ 870.262983][T30191] ? genl_get_cmd+0x480/0x480 [ 870.267689][T30191] ? netlink_ack+0xa60/0xa60 [ 870.273090][T30191] ? netlink_deliver_tap+0x1b1/0xc30 [ 870.278405][T30191] genl_rcv+0x24/0x40 [ 870.282419][T30191] netlink_unicast+0x539/0x7e0 [ 870.287213][T30191] ? netlink_attachskb+0x880/0x880 [ 870.292344][T30191] ? __virt_addr_valid+0x5d/0x2d0 [ 870.297392][T30191] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 870.303655][T30191] ? __phys_addr_symbol+0x2c/0x70 [ 870.308678][T30191] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 870.314419][T30191] ? __check_object_size+0x16e/0x310 [ 870.319732][T30191] netlink_sendmsg+0x904/0xe00 [ 870.324516][T30191] ? netlink_unicast+0x7e0/0x7e0 [ 870.329461][T30191] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.335743][T30191] ? netlink_unicast+0x7e0/0x7e0 [ 870.340708][T30191] sock_sendmsg+0xcf/0x120 [ 870.345145][T30191] ____sys_sendmsg+0x6e8/0x810 [ 870.349914][T30191] ? kernel_sendmsg+0x50/0x50 [ 870.354624][T30191] ? do_recvmmsg+0x6d0/0x6d0 [ 870.359213][T30191] ? lock_chain_count+0x20/0x20 [ 870.364092][T30191] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 870.370115][T30191] ___sys_sendmsg+0xf3/0x170 [ 870.374723][T30191] ? sendmsg_copy_msghdr+0x160/0x160 [ 870.380016][T30191] ? lock_downgrade+0x6e0/0x6e0 [ 870.384943][T30191] ? __fget_files+0x28c/0x470 [ 870.389638][T30191] ? __fget_light+0xea/0x280 [ 870.394298][T30191] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 870.400546][T30191] __sys_sendmsg+0xe5/0x1b0 [ 870.405070][T30191] ? __sys_sendmsg_sock+0x30/0x30 [ 870.410110][T30191] ? syscall_enter_from_user_mode+0x21/0x70 [ 870.416040][T30191] do_syscall_64+0x35/0xb0 [ 870.420477][T30191] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 870.426405][T30191] RIP: 0033:0x7fbfd5013059 [ 870.430841][T30191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 870.450515][T30191] RSP: 002b:00007fbfd3988168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 870.458956][T30191] RAX: ffffffffffffffda RBX: 00007fbfd5125f60 RCX: 00007fbfd5013059 [ 870.466949][T30191] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 870.474932][T30191] RBP: 00007fbfd506d08d R08: 0000000000000000 R09: 0000000000000000 [ 870.482899][T30191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 870.490896][T30191] R13: 00007ffec3a9244f R14: 00007fbfd3988300 R15: 0000000000022000 [ 870.498908][T30191] [ 870.517136][T30205] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 870.535767][T30205] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 870.577410][T30205] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 870.585965][T30205] CPU: 1 PID: 30205 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 870.596587][T30205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 870.606659][T30205] Call Trace: [ 870.609950][T30205] [ 870.612887][T30205] dump_stack_lvl+0xcd/0x134 [ 870.617503][T30205] sysfs_warn_dup.cold+0x1c/0x29 [ 870.622460][T30205] sysfs_do_create_link_sd+0x11e/0x140 [ 870.627952][T30205] sysfs_create_link+0x5f/0xc0 [ 870.632740][T30205] device_add+0x789/0x1ee0 [ 870.637184][T30205] ? wait_for_completion_io+0x270/0x270 [ 870.642755][T30205] ? lock_downgrade+0x6e0/0x6e0 [ 870.647631][T30205] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 870.653901][T30205] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 870.660167][T30205] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.666432][T30205] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 870.672453][T30205] wiphy_register+0x1e86/0x29a0 [ 870.677348][T30205] ? wiphy_unregister+0xbf0/0xbf0 [ 870.682397][T30205] ? minstrel_ht_alloc+0x52c/0xa10 [ 870.687545][T30205] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 870.693645][T30205] ieee80211_register_hw+0x1f16/0x3ed0 [ 870.699142][T30205] ? ieee80211_restart_hw+0x290/0x290 [ 870.704540][T30205] ? debug_object_destroy+0x210/0x210 [ 870.709940][T30205] ? memset+0x20/0x40 [ 870.713939][T30205] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.720203][T30205] ? __hrtimer_init+0x136/0x280 [ 870.725075][T30205] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 870.730839][T30205] ? hwsim_virtio_rx_work+0x350/0x350 [ 870.736229][T30205] ? hwsim_new_radio_nl+0x992/0x1080 [ 870.741535][T30205] ? memcpy+0x39/0x60 [ 870.745550][T30205] hwsim_new_radio_nl+0x9bc/0x1080 [ 870.750689][T30205] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 870.756621][T30205] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.762888][T30205] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 870.770287][T30205] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 870.777602][T30205] genl_family_rcv_msg_doit+0x228/0x320 [ 870.783169][T30205] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 870.790576][T30205] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.796860][T30205] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.803121][T30205] ? ns_capable+0xd9/0x100 [ 870.807573][T30205] genl_rcv_msg+0x328/0x580 [ 870.812102][T30205] ? genl_get_cmd+0x480/0x480 [ 870.816797][T30205] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 870.822719][T30205] ? lock_release+0x720/0x720 [ 870.827429][T30205] netlink_rcv_skb+0x153/0x420 [ 870.832224][T30205] ? genl_get_cmd+0x480/0x480 [ 870.836923][T30205] ? netlink_ack+0xa60/0xa60 [ 870.841537][T30205] ? netlink_deliver_tap+0x1b1/0xc30 [ 870.846844][T30205] genl_rcv+0x24/0x40 [ 870.850844][T30205] netlink_unicast+0x539/0x7e0 [ 870.855630][T30205] ? netlink_attachskb+0x880/0x880 [ 870.860753][T30205] ? __virt_addr_valid+0x5d/0x2d0 [ 870.865808][T30205] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 870.872070][T30205] ? __phys_addr_symbol+0x2c/0x70 [ 870.877114][T30205] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 870.882854][T30205] ? __check_object_size+0x16e/0x310 [ 870.888166][T30205] netlink_sendmsg+0x904/0xe00 [ 870.892958][T30205] ? netlink_unicast+0x7e0/0x7e0 [ 870.898011][T30205] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 870.904282][T30205] ? netlink_unicast+0x7e0/0x7e0 [ 870.909240][T30205] sock_sendmsg+0xcf/0x120 [ 870.913692][T30205] ____sys_sendmsg+0x6e8/0x810 [ 870.918492][T30205] ? kernel_sendmsg+0x50/0x50 [ 870.923201][T30205] ? do_recvmmsg+0x6d0/0x6d0 [ 870.927817][T30205] ? lock_chain_count+0x20/0x20 [ 870.932700][T30205] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 870.938721][T30205] ___sys_sendmsg+0xf3/0x170 [ 870.943338][T30205] ? sendmsg_copy_msghdr+0x160/0x160 [ 870.948657][T30205] ? lock_downgrade+0x6e0/0x6e0 [ 870.953556][T30205] ? __fget_files+0x28c/0x470 [ 870.958266][T30205] ? __fget_light+0xea/0x280 [ 870.962874][T30205] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 870.969146][T30205] __sys_sendmsg+0xe5/0x1b0 [ 870.973676][T30205] ? __sys_sendmsg_sock+0x30/0x30 [ 870.978751][T30205] ? syscall_enter_from_user_mode+0x21/0x70 [ 870.984701][T30205] do_syscall_64+0x35/0xb0 [ 870.989145][T30205] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 870.995064][T30205] RIP: 0033:0x7f4b423c2059 [ 870.999496][T30205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 871.019132][T30205] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 871.027574][T30205] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 871.035563][T30205] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 871.043547][T30205] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 871.051533][T30205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 871.059607][T30205] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 871.067614][T30205] 20:15:40 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69940d0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:40 executing program 0: mmap(&(0x7f0000e93000/0x4000)=nil, 0x4000, 0x2fffffd, 0x8d071, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x5, &(0x7f00000000c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xe}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000003880)='GPL\x00', 0x4, 0x8d, &(0x7f00000038c0)=""/141, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_page_free_batched\x00', r0}, 0x10) pipe(&(0x7f0000000bc0)={0xffffffffffffffff}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r1]}}], 0x30}}], 0x1, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x4ca31, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000640)={'ip_vti0\x00', &(0x7f0000000600)={'gretap0\x00', 0x0, 0x7, 0x8000, 0x0, 0x3, {{0x8, 0x4, 0x3, 0x1c, 0x20, 0x66, 0x0, 0x81, 0x29, 0x0, @rand_addr=0x64010101, @private=0xa010102, {[@generic={0x89, 0x8, "c0aa48bfe905"}, @ra={0x94, 0x4}]}}}}}) sendmsg$inet(r2, &(0x7f00000007c0)={&(0x7f00000001c0)={0x2, 0x4e22, @broadcast}, 0x10, &(0x7f0000000a00)=[{&(0x7f00000002c0)="1a2f10da608f3c635a4cd0d572313834b0a0b004da52a825f2b402b9c97abd6f700702c97406ff08ada36b52e98b1aea825ffdaf4d732ef8cba8be3e1a1c60ca187444dbfc9d3c09ee31a872231b9b0c2ca3f15d53d632b22bfb446a6f34f18d6649fad54105d187030e643aa98ee016dc35d1e863413611ac10e32c2336422d05c71142288e3972a18017c7d8e328dba0c6d7555abb85ab95f0a10bfb726c5821bc4e627dde9fafa5fe7e7c8d63bd891a4862e5a4cf4da657f0e84dfb4b", 0xbe}, {&(0x7f0000000380)="1877108443bffcb9b50dc01ccf040b53e47ed74aa785aa6cbba32ab15a198864d6a77a0f49427d823d7185caf2f451a15f4eae474901efc20c2fa2e3964c72dcb54a1fdd1e2f907c51f738dc453a6e71dd77333058621f67a2e3d5acc0fd4a4c665b310dcc73e3db09e2f5bdac519dc569d9bc51cb025be81606d5e00a0199298b63db1451cac40287ad1a8b1b88104b451f730d30d8d09544e1a7ed290b258a22e8127c8e4dec7309a8f2d96c9cfac1390a1e7a2047c21f44b6e4aec55965b06302b68d27b3d7db15e8de63cfcd8145450935ba58a871ef6450e66d0081eb8f9de401b5c6abfaf3dd72", 0xea}, {&(0x7f0000003980)="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", 0x1000}, {&(0x7f0000000480)="58d7543991741e42ef22c1b069131104506d8456e7e6e69bb3ed73fa0715f81e55a3d06aa36787340e330ed2759c385f5fae0d30e3bafd20e1d594603b758c052d8fc13901701edb9ec50d6345a676e4b5b268772a3a807aff12a24540915b2abcbf13502e7ac32856e566af01a1c1871804336f5265f6cbb2cf3108dcfe1bfaf6d02e758f5d178ebd838458a36d64dd930b4666c3cc49177662e262db4016810ef7290f4d64c3ea461d4dfa7a321839d2a60cb6e3d0c0f434347b424794ac1cab166fce711de23a31eb6d01715cba1a804381", 0xd3}, {&(0x7f0000000580)="fdd65da1a80d5ad4989ff6e3fdbc618469b4485fae3e3f51e81940f7619327e3cf88e56974eb7563b922f6768616a5d3fdd5a113df3f4c85984c8955b7f109e8d7fa90a424c1e299afbec75b", 0x4c}, {&(0x7f00000006c0)="1f0bca0a611cc13aae96d580c34cac2a5d09cdae23c40f86b1292c47a4f8f363914dad922f8314a8b7eea962ad48ca1e270cf55a25f547ee4233da3e065824dade845a03a55a48e0330e03713bea2ff6c4a50e8b24a5aa9803c60e83c9b809083eac5acaef375179b1c4f37c1969a4e25e68aaf8558e6fcd57e3f50a763c6f7c4da7e09ec82d64770398983dff6e7d77300ba63c067e32e3100761bb72b8e0c81f559d0747bdd830bc34547662ba298ac035ae600c990b6f6ba3b77a8125788a09d9bb711ec4b94069d09dc67ccb98be039e7eac9f6617fdf67457fc73fb9c001b6812c6fae2b696b88ab3471f827bde3b", 0xf1}, {&(0x7f0000004980)="f62e08de6eb19cd8eda6c5d2c091db9fdd54854fe2d655f6ba9c89e5458421d2eb9ed867f5540c3898a8b0ace97d5ebe9c223224ea67b39b7e75953b6a9cad15dcfaff8ef68b4780b7e7da3f3d69fb181cd55e5a00468348c35d400ac07a374876a0625ed95263a642a68d977ef9b4429af61a47d06325bc90f99cc3055e8d305e5073c606b6f2833d526b150039077005b8d415433b99a873ed66aafcc7a6f3410d6df6d32d5457504f9df83b59618ba3b580d4a4972066efe20b45bfeb086c394f9ad74cb72b25a4d84a86a14ef232e5653d78d44836c3c0e8e844d321501d5381a0f956ebdf95ef8c18fc81ede59cfa9ae049162f46fe092ade6cc10f9d46413c2a4a43d535cab6eef399c175e8ae84f7a065988832e05a849a12cf96ee7d47ebaf59e781cd38f377fe0e4ff9cc80812ade2a500f94039a2cd0947c7162c733879895dd0d5e2922941b6939403ec0f41b47852742159c38a8f0c21737faa03cdeb8f809be0edfcc924f5f168b84996537db10f5aed226f3eed1eba04ca7d807a97ccc70fdaacab5835d2e10b2f1bcb473f92ab5af199fcc08719222f6932c654da716491e7aa00197c7442e57ca4c4d8aeea104d79f90428046629d4ae585314e4e839bb21ae91ff8ea49f219b6f7a48ac94c9c4033448f49baa8ef4c4748c05432945bca53acff306435ebb4c0184bb8f9a392ef29de046d044907282aeb1a2c7df15177eab9b6e9f2fec15f17e5041a6de77f984b9884df78b4ce70d6f5488f670b085002b305d20ea4ec8a080d41012b182a854749038b3501adcea66ce69928d49ea70c07ff362debfd8e385daaea1e502090547eab9d725620fc5734effdf9b537c31b0242fd7ab154f3d6d8f4c12d9ace5fb5c87c557895e3375d70373d9fd06401e66bcfa49bba68fe0a43fa39cd6733239928404bbfc7cabdc7cdb7b302efb5fc30d086a648aefc1d0eaf02c4a7a75ccc673efd41a288be659f41ecafe9c7f3677ee136cf17c45b528d7f7c4b951ee6c16fabe3bbbbefa87f4a15471751d0038ec37096fa5fbbe2f7bc4d01946976d0f472c69a66da60fc92a70226b8aeccd1e6467a2ea1653fa269b4cda09a01218871ddda9bc12fb2eacacb50349ef2b99eaabdf070cf661a02c1a2bb5b86083c533f13c39bed16e2c63ca85c8ee2fb8204091b37d61c88b7ef926aa006c7e33e03e5a51531dea3effa9bd47a9ad4356225565b0b6c9f3734cc08abdb2c8f62923e69a37586dd104a4842701ec4a31b141c9b97a93f7a63c78eb0b8df9a1568efdff90581989f38172ccbc53ecb92cfab75924dbbbc5cb4f807087ebce9fe392931cb996878776960e5f7bd4a8dbabcb1666aac33d04da0b81443ff0479c8c0de75c68e71d007bbb710032a9429f917061c908b242f40e9cca1993cfe89414207801c2e8f79088d81b27523229aa8aab2954b94735e61ab08b8c7def58c145ab2a3717689fa7403038a88efe51cef1e9cd4a35afcd2850b21cca0c170dbfeeb8ff9d1ef4d3a2b7855674a09630f8d1a6307a6ec13f3002202978655f31587868d712de81fa4da6590df197e85cd84b834b5ee9e5cff24dc654e1280d89407bcb4fa71eee0ebe55306a4a2fef36b939b6be2411da9489582fcd4504fb21fefbc459a64e59b35747c1095351c9f78c3e90796eb0004b7c58b36a564287028eae3ef3cc910f9592fb2d4f45e3c6ebae3b471ed4dcddc66f328bd53bccfb20cbb558a111b33288948e284f072b33642189825df5c325d156bc223b61b4724cef7614b2ab5b9cc6fee07b4896966f3b28c30f803b1edb536c1b6899fc02526e6424f077ffd8992b500ea696d5709cba575dc4d1a2153ad5912395f5517076b30b20d045d444e3db88e74b3a116b609872dcfee1ebd42854799e75a4c24970af77904eb587a6c8679ce601f953f887cacc4535773b8a816c0091a08f993e71f20cea641a593c8391d2ed6c72f1a62b57787c15a5fb8615eaf51ff56c7465d597973d0eeaaf605b9965f7748397dadde941a71c14eb59bbbb7be2c6ca300d623665b01eced3c0132e35bb586d179dec3445d4c094597d57c9990637edca03a68fe1d75f2db91c254b9763d70ffc4db945628cf7126a8c572a3ed107134a9514e4bab07781ee5ddcafc4e82efef7c5a12b79da3d6de7871762823e70fbd08264ff2ecb662c39d19652c9f219b815d0bb3e0a2f3b6722b305adf56b9fead6c5c829365545113a89323b414c94a637fab316548b82a95e9697d7ea25a164ddd153f4aca34500b4c4dbc8dd51b99d0704731b3a22b9a36ecedcae824d619e7733415910677f7c8ea41a38bc40ca490e978030e3f6b7ae400909abf2950a368f18a3eb46316ba2c4e059c8a27a767a0d1a96ce794d6d7959609f8bab9610ecf8e70c2651aa8e2ef36d43f961d4e0c852186a3a71e8fb7da8b980057bfc00398515273ca0012467a3477c061ed960820db93a5fc99885734f93a0ae93c7312c14f76fa83136d6ad60b44fbe71ffea6a65148c91135b39e631eea95908784285318ec82fc9b8ddfa0ee72caa5dbf8dc6efa76e033a65da3af90798059555c75585110186e362d05d2a554baa3c1daaa7061a39f9a2c8a33ad4505a88f77378066aaa47929c694e3e04fb5d86c8556e47fb3d1c8cb7ac23801f802837e445fba59f5972d7303aaab97bf7fa3cbd28e4470f03fd98b6d5391191b979ab5c42462bc9855a9b51c43c8bf333e482933ddf1b91efa126c835134786fd44d357182f48b38dca1e5eb7f2f51021d83c71ad9f74d580b1c87b9721b9a974d9549b02648a06d40a7724d5f354ba3c5b62f2e87ef1dfb06cafb8b5b71fedc93271261435e4e7e340d18cc88334e39b2d0696185ac8f6e2d0b15f5d4bc2071c7fbb9148ba1a67d74ae251322a0da6451cdf0450e55a132db31e049a5d377756a0b5b0959d57ca86375fda899383472e533f796c55c3933e566403ea753ae9718f7a7b3330f53c1afef4aa1a4a8198b1002f7126627fcc0bd5c17cc9d725c52c5defc549513eca503c3b481dd86d61b5e2f22a0e0e01765a877d067b91dd7c81a5ef984d13cb1cd73d33edfbf673aac3f4bae7f0f87e167cabaf26e46d9b128b1bcea83492acfcf5e45dca1d35c81c52b6222500a5265d3698f441185b51b3fcd05a89d34c16b826d9c22feb13b05dc3ad85a5655b63118714fe6ddc84436db3e84df7fd1efe0a839ba2d114688bf04781d4eb9c8e430f8ea1ba1efa41dca58326c8acb70543b00319325bdd7c4f3f4b15d19082011c32d211bcdb4cafd2c7265a88db049a6a6f4a5a632f28f1f08ee36ccf8f2117ab0104d5f0e8600cd326f7dce6f6aa986abb02e687aaea87e5ff2920017a559da609b8bc124fd4007c70320a08a7b3aba3fe943baf7a5ab3e60ce1c6ab9f430030d6386366a12258c164f9bb7847f153831287d17adfe6c8bc22b82bd20d32f419d546d0dffc9136cad4055cfc3e6ff753286e1f3818652272867011e414167c9dea09729c09fdad5558448aaa6810b6348fc00dd93efbd1d759be298d836e1a5b2aa5cf90a7690ca579c76ef9d7eb8114f86c2266b2aa68777742367b8bd718b0edbbba63e7f46bef79451ae8ed1ae541d0c9ad007201ef51fe7dbf98763c3bead461cb84c98d9725b418afb0d3f50c07f04d493692cea15a0f12995d614a067a1adbea1318d638efc9b15482d3c5060f9e51d662c97b94e06e540e62ff51639f5d9bb445d4f6bc8f026ee4c14a2470057d44ab0d4469e1a6c18d010e698d1dcec1a1a23039c7923b3cbd9787313c9adab71d884df034b59fefc82934e4adb4f6c168ebd5555521a23db23297054e382034c44b8afa3712cf8bd424de1290dfc36f0e2f9bf1ef8ae79ed45fd72d655546fe2644cab9d25b0f0b3b46b4a866223c9f174d1444c0c95e58ff9dc1da9729372257e9bd8c9deca7796e8256eac069a791941b495b20358b028300eea01e7415a6c21974711dcc88423f674ff98231427869cdfe28dd63a35edec8396bb252e401be23fb7fdd3df4e9619e55163f682d9f053ba71317021f1de760915a704810fdb68ecb27816239275b86402f6218058e400bf56d1b483a63851cab29f4a5239266ce00235135fbda184075434b40b2d78ef17659f44ca8dd2c15dc12f3e78d092c14c1593bc8111ea97d26b848d7abdf9d0e70adfd17dc97bcaf2fef8d086ff9a7f096cfed4b10cb6dc3acfca2e431e8f0d68b6efab382f185eccc81be34de579abda9e6b5c597d9658fff2a3da63b7f518cf5ed0293cff8c6a38ea60bf934b460822d0b0d8cfc0674c1aaf4ceb0fe7df327d64eb368c0acd65ab0c6e2239215a0dc33be8d92cbfb146724f52cbc5e2f296e13722e7314ccdcd9cf60bfc6b1028632fcea0ab4cd51785c5ba7860d7d99c14edb647c82a7cc586b7630a7445099b17bfe417b9e79514462ec68632125dca81a66bf9370eb8e4244736b04a3e8df3b408e074c6d46b8231d92e765df79855dfb979dba86ea0489d9146a4f53310010c584450b5e4bcb76797716297df258f33f2da7921b91c2732c50fbbe4875fdb60fd7ec42ed7620962fae71531c660badedd58d7c7c4d8fb02f0dc17ca8617693fe2af540a1851ff2945659af7d068009dae77178e1024570ecb12bc5085d49079f7d2a92a2838821fb983c5af2baada045e7822cbfbaae491bd6e92cfef5c2c97e221d5172e4a4d1a46d5196a592a0353cce23396521905afb949a4a63aa7463e427e5dd2d7e401381823582ec55d85faa87cda3590dbcff3a36f2c0bd3fc5737ecb6951240c165ebf4646aa5ed5f4b50ac71e86f6910c6233130adc78d7e7e62c9b847c1bb31ae5824df59c472c529d39796b6affcc15805c89553a49e137b9597b74cbbf705ba2deff53c27ce2363bc7d8ab471a6c332c07c3f75e4a6bb8d7be66bf09db42fd48c35bb303c3d6b609ab6cf3248d510b4d3159a31676aedcc9be1136b3685655c0256259123f7fe0780a481f31e98ea125ceb74a312c763294db2423498a0fbbc297950a0360e7fa57784d7a427f3a303751db1544caec52ae3705d4cd3d8b1871e61879dd6ee7e6a944dd1cc0e4647a819e362b96650d3d5def2383f8d13e87204a15c23075e30c0159c12a899d2644f3a2378e2ec7a0b65a8ca5954aaf6f828eaa3f05a3cf3b32fd49bd8ec211d0e2710f76387a4c6486c0e8b944a142f1b57387383fc73a97f155f9aeb9f780e89ff4b4f2fdcc5d59b2959a13741038413471dbf41f62a7d3b27684bde7f7637bc8b7191f96982306a3a23a094449c06bb09618603728741713c33e7e0a3fe5599541cc2e6066fca3120687a2a9607b357428e028bf829ffc0cd8514bdbbdad6cd03ee49fa1bc433f90a60c5f436d8da4f52aace4d0c833757971c282c64edb4c82e813835342795e9dfa2f549057c89fc06fe5d33e21aac69a4073c472410abd3b377fb795123ed58bd4c44a2dce45f4670ed7e7d5989cf5170835509c750b16bf73d175eaca9dbeeaab8e8463dd0d2558308bde8270d975410c320ec245055da8ae55936c049991f4b11f571ef1a6b6a286ee610cee0ceca9c39f0bf2b9c2e35ca1082172a361bf0bd57def7be765d0fc1176fa75ea1225b95d1d57c6dd1df5307ea8cec4cca27d472141ee1f1c0389ca780d6fc9e57e17bbbe7948904adadccde3b9234cbff06bfd406eb2fa15f3004f278fb1caa7834f404b7ff31d992c80b5c0b24552f963c7b55643c6078b2df91fbf2e38621e9e897b588ea", 0x1000}, {&(0x7f0000000840)="9c0d0fcee94432b33ec5d27d8719ca181d8954633c69727292f68395712791db8c3dd01b988f9a4c077804851aa77eaa7607d60a9d8c9c4922f4d962ce38c074cf72a35c62228f21edf89f22c68aa2674b6d94708eb794bb2881652e908d6d3174d6caa1ba1135d6d3c13880206dc0fd01dcf8eb6df60caec803b499e3c280366214840cd09f771fb3a3a88e712f4c3f85a03a6c6ca61f8967dc065a6a869190daac49e4905194d8ad88035f2a292663ca073eabdae728407d56a90eed0b020ece5fad9ee35da0659f4e89467cde9d34c8040551bf8fa8757f1c1f6f", 0xdc}, {&(0x7f0000000940)="b0e8305041a7d8e280135d4da6ef40345ea610291c4c1a80add264e3a142bcd7b06f6b028dec4c08525423ba561d2e166c97a56f96d25ccc73247bf8ba5d2a1720b271a6164942d93ca4b25ffec0082f4432cfcbd2a791b8990dd4fe1843d682547879f51f05b851cf432d549e5705109bc4211d71aa6fa6c7788414c74f2a78572f79eecda6c3de2aa407235a779609f62e7ad427d59c2be13f77c974c7457d6bd1b553f465bf1a", 0xa8}], 0x9, &(0x7f0000002c00)=[@ip_ttl={{0x14, 0x0, 0x2, 0x3ff}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @multicast2, @private=0xa010102}}}, @ip_retopts={{0xb0, 0x0, 0x7, {[@noop, @ssrr={0x89, 0x1f, 0x28, [@multicast2, @rand_addr=0x64010101, @local, @local, @loopback, @rand_addr=0x64010102, @private=0xa010101]}, @noop, @ssrr={0x89, 0x7, 0x77, [@multicast1]}, @ra={0x94, 0x4}, @lsrr={0x83, 0x7, 0x76, [@multicast2]}, @cipso={0x86, 0x24, 0x0, [{0x1, 0x10, "ada9d4f007b5dc22e48c4a029ce0"}, {0x1, 0xe, "3719357120289d9582097196"}]}, @timestamp_addr={0x44, 0x44, 0x7d, 0x1, 0x8, [{@loopback, 0x80000000}, {@rand_addr=0x64010100, 0x1f}, {@multicast2}, {@remote, 0x9c}, {@multicast1, 0x9}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x2a7c}, {@dev={0xac, 0x14, 0x14, 0x21}, 0x800}, {@dev={0xac, 0x14, 0x14, 0x11}, 0x10001}]}, @ra={0x94, 0x4, 0x1}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_retopts={{0xa0, 0x0, 0x7, {[@generic={0x94, 0x7, "ff822e8972"}, @timestamp={0x44, 0x8, 0x9f, 0x0, 0x6, [0x8]}, @noop, @ssrr={0x89, 0x23, 0xe9, [@broadcast, @remote, @multicast2, @remote, @local, @multicast1, @loopback, @broadcast]}, @cipso={0x86, 0x5a, 0x3, [{0x5, 0x10, "2d7d56a5c83fc7a0917312dbef53"}, {0x5, 0xe, "74e691791574ce6b7e4f5a9e"}, {0x2, 0x12, "0aa984fa59f8047bf7516cf8cde90058"}, {0x2, 0xa, "d26e2e2a7a53196a"}, {0x7, 0xd, "055fc7f83af507879b256d"}, {0x48d6d95669589160, 0xd, "5d9db14ea36500d13dfe6f"}]}]}}}, @ip_retopts={{0x68, 0x0, 0x7, {[@lsrr={0x83, 0x1f, 0xe0, [@local, @broadcast, @loopback, @broadcast, @remote, @multicast1, @rand_addr=0x64010100]}, @timestamp={0x44, 0x1c, 0xff, 0x0, 0xe, [0x5, 0x7fffffff, 0xfffffffe, 0x4, 0x1000, 0xdaf]}, @end, @ssrr={0x89, 0x1b, 0x68, [@loopback, @empty, @multicast2, @broadcast, @private=0xa010101, @local]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xfffffff8}}], 0x220}, 0x40000) sendfile(r3, r2, 0x0, 0x100000002) pwritev(r3, &(0x7f0000000180)=[{&(0x7f0000000c00)="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", 0x1000}, {&(0x7f0000000000)="dd8c1d6481ed1723e3a85319c984fd833597eac8397a203dbf07171661cedfb1bdd8e538a21a3b3d0c5438f7fddcaa099d53aa7946ee630ce22e8cbb09b7d67e3a98781531625a03938b1c8cb5f8b362751e3c6ef2943090f9d7df345e0772e1a15fe0526d40fa6fb9e982e940ee9211f326eedd3164663bad1e93f5f753a4438a", 0x81}, {&(0x7f0000001c00)="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", 0x1000}, {&(0x7f0000000140)="3c94c548fd7a7ed9c10ad40f5d78c30a85c235165bd6c6b852705bede0dc", 0x1e}], 0x4, 0x7, 0x100) 20:15:40 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60104811402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:40 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r2, 0x400, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0) syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), r1) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) r3 = socket$netlink(0x10, 0x3, 0x2) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r1) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x2f, 0x4, 0x32, 0x2, 0xc, @mcast1, @private0, 0x20, 0x7800, 0x43fbe82c, 0x1}}) sendmsg$BATADV_CMD_GET_GATEWAYS(r3, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x5c, r4, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x81) 20:15:40 executing program 4: bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_serviced\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) r1 = socket$rds(0x15, 0x5, 0x0) sendfile(r0, r1, 0x0, 0x1) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000ac0)={'batadv_slave_1\x00'}) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0) r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, 0x0) unshare(0x40000000) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0x4) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_serviced\x00', 0x275a, 0x0) (async) write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) (async) socket$rds(0x15, 0x5, 0x0) (async) sendfile(r0, r1, 0x0, 0x1) (async) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000ac0)={'batadv_slave_1\x00'}) (async) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0) (async) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) (async) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, 0x0) (async) unshare(0x40000000) (async) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0x4) (async) 20:15:40 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200033382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 871.559608][T30222] netlink: 128956 bytes leftover after parsing attributes in process `syz-executor.3'. [ 871.593584][T30222] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 871.611850][T30222] CPU: 1 PID: 30222 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 871.622397][T30222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 871.632460][T30222] Call Trace: [ 871.635741][T30222] [ 871.639110][T30222] dump_stack_lvl+0xcd/0x134 [ 871.643718][T30222] sysfs_warn_dup.cold+0x1c/0x29 [ 871.648666][T30222] sysfs_do_create_link_sd+0x11e/0x140 [ 871.654141][T30222] sysfs_create_link+0x5f/0xc0 [ 871.658921][T30222] device_add+0x789/0x1ee0 [ 871.663371][T30222] ? wait_for_completion_io+0x270/0x270 [ 871.668935][T30222] ? minstrel_ht_alloc+0x4b/0xa10 [ 871.673974][T30222] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 871.680226][T30222] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 871.686477][T30222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 871.692727][T30222] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 871.698732][T30222] wiphy_register+0x1e86/0x29a0 [ 871.703608][T30222] ? wiphy_unregister+0xbf0/0xbf0 [ 871.708639][T30222] ? minstrel_ht_alloc+0x52c/0xa10 [ 871.713770][T30222] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 871.719852][T30222] ieee80211_register_hw+0x1f16/0x3ed0 [ 871.725338][T30222] ? ieee80211_restart_hw+0x290/0x290 [ 871.730726][T30222] ? debug_object_destroy+0x210/0x210 [ 871.736118][T30222] ? memset+0x20/0x40 [ 871.740105][T30222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 871.746363][T30222] ? __hrtimer_init+0x136/0x280 [ 871.751241][T30222] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 871.757000][T30222] ? hwsim_virtio_rx_work+0x350/0x350 [ 871.762403][T30222] ? hwsim_new_radio_nl+0x992/0x1080 [ 871.767705][T30222] ? memcpy+0x39/0x60 [ 871.771702][T30222] hwsim_new_radio_nl+0x9bc/0x1080 [ 871.776825][T30222] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 871.782739][T30222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 871.788990][T30222] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 871.796369][T30222] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 871.803666][T30222] genl_family_rcv_msg_doit+0x228/0x320 [ 871.809223][T30222] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 871.816602][T30222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 871.822866][T30222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 871.829121][T30222] ? ns_capable+0xd9/0x100 [ 871.833555][T30222] genl_rcv_msg+0x328/0x580 [ 871.838067][T30222] ? genl_get_cmd+0x480/0x480 [ 871.842749][T30222] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 871.848656][T30222] ? lock_release+0x720/0x720 [ 871.853349][T30222] netlink_rcv_skb+0x153/0x420 [ 871.858122][T30222] ? genl_get_cmd+0x480/0x480 [ 871.862809][T30222] ? netlink_ack+0xa60/0xa60 [ 871.867418][T30222] ? netlink_deliver_tap+0x1b1/0xc30 [ 871.872734][T30222] genl_rcv+0x24/0x40 [ 871.876743][T30222] netlink_unicast+0x539/0x7e0 [ 871.881545][T30222] ? netlink_attachskb+0x880/0x880 [ 871.886746][T30222] ? __virt_addr_valid+0x5d/0x2d0 [ 871.891777][T30222] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 871.898030][T30222] ? __phys_addr_symbol+0x2c/0x70 [ 871.903063][T30222] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 871.908807][T30222] ? __check_object_size+0x16e/0x310 [ 871.914106][T30222] netlink_sendmsg+0x904/0xe00 [ 871.918883][T30222] ? netlink_unicast+0x7e0/0x7e0 [ 871.923832][T30222] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 871.930085][T30222] ? netlink_unicast+0x7e0/0x7e0 [ 871.935032][T30222] sock_sendmsg+0xcf/0x120 [ 871.939465][T30222] ____sys_sendmsg+0x6e8/0x810 [ 871.944236][T30222] ? kernel_sendmsg+0x50/0x50 [ 871.948917][T30222] ? do_recvmmsg+0x6d0/0x6d0 [ 871.953518][T30222] ? lock_chain_count+0x20/0x20 [ 871.958379][T30222] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 871.964377][T30222] ___sys_sendmsg+0xf3/0x170 [ 871.968977][T30222] ? sendmsg_copy_msghdr+0x160/0x160 [ 871.974279][T30222] ? lock_downgrade+0x6e0/0x6e0 [ 871.979162][T30222] ? __fget_files+0x28c/0x470 [ 871.983854][T30222] ? __fget_light+0xea/0x280 [ 871.988452][T30222] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 871.994708][T30222] __sys_sendmsg+0xe5/0x1b0 [ 871.999222][T30222] ? __sys_sendmsg_sock+0x30/0x30 [ 872.004287][T30222] ? syscall_enter_from_user_mode+0x21/0x70 [ 872.010221][T30222] do_syscall_64+0x35/0xb0 [ 872.014668][T30222] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 872.020583][T30222] RIP: 0033:0x7f8a7fbd7059 [ 872.025004][T30222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 872.044630][T30222] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 872.053047][T30222] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 20:15:41 executing program 0: mmap(&(0x7f0000e93000/0x4000)=nil, 0x4000, 0x2fffffd, 0x8d071, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x5, &(0x7f00000000c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xe}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000003880)='GPL\x00', 0x4, 0x8d, &(0x7f00000038c0)=""/141, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_page_free_batched\x00', r0}, 0x10) (async) pipe(&(0x7f0000000bc0)={0xffffffffffffffff}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r1]}}], 0x30}}], 0x1, 0x0) (async) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x4ca31, 0xffffffffffffffff, 0x0) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) (async) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000640)={'ip_vti0\x00', &(0x7f0000000600)={'gretap0\x00', 0x0, 0x7, 0x8000, 0x0, 0x3, {{0x8, 0x4, 0x3, 0x1c, 0x20, 0x66, 0x0, 0x81, 0x29, 0x0, @rand_addr=0x64010101, @private=0xa010102, {[@generic={0x89, 0x8, "c0aa48bfe905"}, @ra={0x94, 0x4}]}}}}}) sendmsg$inet(r2, &(0x7f00000007c0)={&(0x7f00000001c0)={0x2, 0x4e22, @broadcast}, 0x10, &(0x7f0000000a00)=[{&(0x7f00000002c0)="1a2f10da608f3c635a4cd0d572313834b0a0b004da52a825f2b402b9c97abd6f700702c97406ff08ada36b52e98b1aea825ffdaf4d732ef8cba8be3e1a1c60ca187444dbfc9d3c09ee31a872231b9b0c2ca3f15d53d632b22bfb446a6f34f18d6649fad54105d187030e643aa98ee016dc35d1e863413611ac10e32c2336422d05c71142288e3972a18017c7d8e328dba0c6d7555abb85ab95f0a10bfb726c5821bc4e627dde9fafa5fe7e7c8d63bd891a4862e5a4cf4da657f0e84dfb4b", 0xbe}, {&(0x7f0000000380)="1877108443bffcb9b50dc01ccf040b53e47ed74aa785aa6cbba32ab15a198864d6a77a0f49427d823d7185caf2f451a15f4eae474901efc20c2fa2e3964c72dcb54a1fdd1e2f907c51f738dc453a6e71dd77333058621f67a2e3d5acc0fd4a4c665b310dcc73e3db09e2f5bdac519dc569d9bc51cb025be81606d5e00a0199298b63db1451cac40287ad1a8b1b88104b451f730d30d8d09544e1a7ed290b258a22e8127c8e4dec7309a8f2d96c9cfac1390a1e7a2047c21f44b6e4aec55965b06302b68d27b3d7db15e8de63cfcd8145450935ba58a871ef6450e66d0081eb8f9de401b5c6abfaf3dd72", 0xea}, {&(0x7f0000003980)="ba50d30426851b9446e1588d2e02fa3826e256a74da2978bda37b680c6cb9ba66be35c30cc5f16a3f0b0fb6f112c8d5131f615859cfe1ac0c4e4860c09ae0f13a947a67bf6ab9b3dbf5b7a2c46806683687ff182ba33d808984c38f54acaaaccfdac8b1b502bff65404dcd1016403657c314307cb28790a81c6ca52ad7fa308386b59dbdc24912ea533f43481f96980076099f640e15c31ae68122f0b86f47fc78cdef3b29443124a73ac2af279872ced9a2405c207f034a93321c651a54d8255dbcc53b27c36424b43fa175c2726c97dc0d01c4037e247a29f4658a96a06fc8b0dcc5ad124f2abb207e80995303fac399e5f58a2005d3f66297a297d77401090cae8f81fa38d7e778d6f53747e1ecb96f209aced9688bec1b49efbdc8d791db4e0217278fb0e4cd9c864899acea02ded470ab6d72f4ed501691301336e90fb52cd1bdecdbf7b9a06c5ad4281705207c6bca03f4de74893aec6459f9a8d3e4240d83c753685f0325afef3c21434516bea3e7c5032bd46fbf62f902dbd1330f3b6217f9ae54fc2e16528827495488544a0beb8c4438d1925467d67cb5cee9898c521769ee13555fc50aa88e52929b05936f5582395b076360b5248cb9e704ddac3c4b7fb78f50d7656afbd4003bc715d570aa23216d358fd8089049836a801fbe35a276da81544a27d6120b6b6077aa7162d967288926a1f47f22062db4de1e82d3e52b15fe2e36abc7f7dc843ec49d0d2e97d1789376c625d4ecdf9e29214e89b3315aa4ec5489d2ae3a8da6a1769dea40fe651ade1cd897a5789b307810bacf5f1ab5b5a32c4d96c105f581f9a4ea91a1bc6fa1ed90bd649a5f3846e0dfe6dbcd3ece2a79f908cf1c45f287fba20c0a06632a15f6ffeadd5c657003eddeec81a2ff18916242785f6f5e6813075e844031779d95ac6ebdf3fad99531f7649cfd92b26782f0d30e51b0e202c335346df20c439a2422eb5ef711429ed81c3c670240fb71d2655b6da3ad8234a3f91d5ba1c06cc7313f1ff9f3d20f25abfa6c4b9c8b0d68e56a7f1fe3184bd8681a038095c8d40784f0446f31a9f802c3daa773233e5115916cba4b482e42d22dc526adf72514414b940178cadde45df6d917e9fac9f4d2f83bf89b7b647662a11196b92b96b5f55e2311ceb2c714c52446113f4dc605ac786908d8f8162511ee3372d354b555a4d6bb7623af2e649dcdf5fbaef73f303d69d9c578363a90967f28cd9856fc670da89204e623190c02ba5f8c7d5b0d1e8bb9c5dacd8763a5ff1ceeefbcc0f24d6c8b8650928ff0a0719ffd1714b112ee63788d660f294dcf02ac3618e007c895a645f7790efbb609dbaa971a587b75d497028325110de74e64e11e32fb0aea05fe9ca7d51ad09cb05d06d60958bdb8b91b1b2e6d354c7cf9587a344eb657871752a0b7fcd487ba9400a652a490d2ac32c31ad94f0979da374a955edf3be378c18b7199d01a016cbbfcb931a3d3ea42a5ccd09c6c67e2c6b1e499bdefed5aa5ec153f2dcad0a30baefacd223055eece0c8f76b36e39a4c5d27f259bf182a1272e2d359f0afd581b1d53c5cd51f5a739e06aa204f222eba70ae9dc919308dc8e10a9d0e0a0ea4c231a2fc0a177564b87570cf9fd1bd7955ea7b3a330fc77bd5a723869d69d7273fffed5772ca8bf1cdaa80310b8d4e75494e6216b44e8a8b66d819051084acba9888516e28c1df3ad4696c0203eff492b40a991d74da3245fdea0e98d026d026e72585251c00ab39e09029761df1f35892e05c465655a4a8a35564fc88aeb613026112a4fded04c4809ee9a4374c54d8469bc5836dbc0979c164756e50638471bbc781066d2c6e27bdfea94f0cc0673c883a15ef6d78d4494570ad70bf0956039f2eb5dde05088b78670dd180bf4daee9efe31715d0a2c51dc3d59180bb229fe29dc7955acd0f14c1f23dbf9af0eb532b9bee4a18ec7a491bbb7b2cffa47cbcffcf0501c3f37b8dd2d16108e4c97b1b4fc285bc40565aa3ed007cb5300bccce9ea924ccf9b4704a3dc206eba272af96899910ed08ea00fc74717f7ebe87db8316b932b31766f2dfe7e7abeb69178081063a1f053faf2473f015533f5225252363384263f063cafe317e6959af68d0f56513727440417dcaa6ec768e1eb272ae262a9fa5c27c7a0b5c7999cedc2e9914ae0028be6167bfd814deb03392bc83c1048e4567ef51343b0d71ad4ada0a17452f69215a2e99ced1cc81dd873bc6e7d61079e1a83400304afd4d7225057926e2dd334a66922dbb5f1390baae887c94d5687def8a69b96175724f86f06bcfc59c791ae75df43a08f38d827dae586a0becc0e798a77cbcbf658cc0884cc86c0c5f83b1b39ebfb2e0d533bee6a036af991f27fdbd52de70ab4971fa90f3689e45719370294968eb3711716bf03c8aad6f07b2a6ecd6bb5ae0a83654dc2282b0a9c62b21a20e45aa6fce6ef7907ccb0a02cda42069dfa7b70670fa47214d3d6dfcba820aebe694ecda8859a4b7d3304dda43f464e8e9a1e80099a54eef8746f29ac6430d4b0ae9aa253079de09ead627fa439d34160b4a7e5b6c1eab9ed0729106ae01ad1f1cb59275941aad5a3a4c480c86b887bc731b384d6cdbcf193f665bfb7104163d460d8f4aba7f539d3aaff0da5608ef5e9a45637a0469012bfd224eca183f25d526662a50fe8bb9a66bf6a317e059f22a4e2fba1d84d277176e7b5fded47062458e7f090153bc9698933c5ecd45526f0f92a3c83e593d40906660845d830e0a15d2238135c90c468b10af8b3d280e5b06841777fff803af2b8b2c76019ba3a0f104c336a3fb64b180dcc6ff6da89630226501c138429fcf007445472552902adda936015af37077fc5159093c9b63a6d7e49b0436184b5f8f5946dfe464dc0552f1d3a2e5740b25ccae0e2176b07f76c06371db890c1824c9730257a9017dbc3955bb6ff24b8172ebf1f697b56ae644110f807f91a71284060aa21c3d72992afcfcb49803f358525d38f1d80a219ba4bbffc3879aa63318227a694805885631adbf02043b8ee31935bdbaa60fcea7848dc5779b655e6f390380760ee8464a7b4c59e7fd8cea05b0fe53346235ee4d510a798eb054fea12ebc9d0c6340aa799dd5a1c05f2751e9f8ee19e3f459c500fe957e8b84f7a7189336f6e07428b642f6b8fbbe1f6b8d7b805d84f63862c2823b486ec1839b2fbcecfd4949d35ff05a4acfe118e2966c0086703623df674c504d7cbb19e14bcbed016b65ef9e7acf0c8df03fcfd216a8843b9c1a07b6e7970bc9dc0e4bb44b1bc9e8474e5fb7e8a2d12284060ee1a9f704a8a0957d04244d21e69ce00cc1dfed92a3bf285ff2513775d12ba6fc5b07ea4cc95737577d6031d782149ee5b432a94148d9a42a8b9f4e2ee7afa4a9e8b814853d03f8a1638ca3bc6d3df83e5d715a3981e9a74fc155117bc6a04257ed2f800bca7350c88394a1ce06ee6792346a67b91ff065ae30d33a048a971808d86ad4523f686b8ee6ba4999d7371b043a63915315f51167ad0d98ebd625fca9dc828361beff2d99f85482a86d45e8b6dca33d0492efd9e3d40cd224c7c9c877c2d757c6547f39a71618b15f69dd72a9563bd4ac91edd0bb81627657651fa03d4fab581279121af02dc6892a121107b7cfcb1957b0c7c99008518a37fccd9f44efafafcc49c50e4dcc607ed3f48886c7472349c7041de6dda357b478ff90d2e267b550658ff419319b8eb5de4cb6c6aa3373524adc239e163be13d362a73e840cb283dce0df6e8c5a13c1fc4ef4a207f33f4d0394fb0064f4b640960f6c3f86830a8f3cc2473df3f052b3c558cd620c1e995420412d4156d05f52ecbca03a2ff9627c2b91757e13eb9526fdebf8a5ba0a37f9eec74bad2b4946f117b4796392040c947aa89d3b0b7777cb41d789b9d970f3af1bc653e753b823f9ffdf5c62ce542c6a9ee03e5233c19c359232f415878cbc0798682f28c9de8c0924e350a9dd2d1a825cc9baad0c515476374ede4aa2434f7c4eb486ff38f19e30980e20dd027225c469ab534bd01f3cad4c6806a8e22e01f6b9cc9930ee1adbdbac9a2d5a0685eb324cf373b41c545f0a701f4baaab42e32a351d0f5e4b7ac6a9a42ce8b8699c0dbf88ee6f62a54fed2ec061238bf9c8be6f125155c55a0ae440d4149f65902292bf979dae52e0b749886f0fcd7d0ba471d3b968c4cd2d2903ca00e8032d37cc9d3e10b5b492c93cd36cdb1e068e856323f680a93bb826ddd0881568d63344358b805dcf06d5c3540372c7eb840d597919a02c8943122710d88f77bbebaf38ac78f46bc2fb507f8d0230da6eb5d586150a97fc8de6894540f53c7e4bb474a31e3a013b8eeee807257315a6986500fd83662fc3ac1ad127dd2ae323a9ae98d87a6b75883eb7609ebe49b8c76c5cac3accb6061d8898e18910dc5ef9c9048e251f938e5c01c033a24fa5e1d24a6157ff7a33260b5bd08f6c227bb480c2094f7f95f86441c64ebe5117e3695ad53d6425664da33a855af8732a6890ae8d4b27dae4b3bb33beb23aa22002d1701cacfbea02672f2fd97c0c2d26228108580cfb9376f9883cb8ba67e6d61461becc447dd06f01c1dbe2efa6067740b6df725c8a9b47f6f0e76017b8123a9fdcc71a1aee3683829f1548cf6bda79a4a972241b0a805408467273c7370279d49de8452de7cdc200993589045220ceeffefd8a98d5dee891362971fc0a74da67e31876e17e7eeb1818c8872c0a214e168aca100bf704fa17d0d860d726589fa87cbabd637819cc29873bdc160b28c2b8398823df1b00672744f65beadca315466e91edee8c1ae1172be68b2a9a022e58cad532e44e851a0c8fefc608dcd0c0a8a2f36f0cbb92cf024728d8c577afff587b677bb23fd65b2ab74e8dd13b07afd7a4f8b5363d45dcdb7d87dcef90557dfbbf6bad76b381c544b422a39d88507c2092a05402b83e86912ea54c06f5e2bd8fb88ea784be19ee2e8ab04b4594e5e3a61118030e464359a719524d2561b3068b73f1667fab00c9331a3cb39bb023140213a93f9126af0237b1bf4740e4601643e575fb7255b46b00214efa1bcd8f043bcb0cf4192e48f2ef21df653a12d845628d5beeba35a40a6b65e7df5cef6e34b0de665e1d55602e9a446a1b72fe47212f2028965c9c2482b0854a373c95983b0382983df955300aff23d2dce5201da841c4aa566281aa44e252bad56321bf7543ff633a43e1c1eb49d03c0a9720b9fba3cc4ca207d5360e349a75d0396435f9a81fd7b427fcfc9c51483fd77f5a5bd3fec17dfd435b4ce96b377f581091effb6fddf9ccf5763dc4eb401ff32309badc20b154a9a3824e36eae2f4e3fa680dc616da9dcc0baa14579159001b33c8cf4e7454ae532ad92b0714ead80487c781c5d7fb909e5269bd77f862f3a8bfc8d645a50a6bb63b349da88a647a69af37ca7477f2a1ca6952b4b63cdc043e901244dfcb0b3d598eb4664fe3c681f71d4c5d7822299766dce0b9369970bea74b375912de33028158adb968751cb8215285781bbf0775468e2a6e252bf60e5e896d548829f11d3113c84dc1312895ded75a0a859b6a4b9bc4e17cc26dbad9e6ef947fd6001e1f6f3158dbd9bc12310320ffc052685e89b01a11a15f8570769beb6226ee233033a6df385423e147941ab4226f924290bf5c895e3c641541b299e222c038b63500ee0b7a803a54db0618dff3ca638f241061654641507e13cbba5baa5756318e564ffbe1f54f1edfe6e1464b6896f36d19d48070b60674acb7c", 0x1000}, {&(0x7f0000000480)="58d7543991741e42ef22c1b069131104506d8456e7e6e69bb3ed73fa0715f81e55a3d06aa36787340e330ed2759c385f5fae0d30e3bafd20e1d594603b758c052d8fc13901701edb9ec50d6345a676e4b5b268772a3a807aff12a24540915b2abcbf13502e7ac32856e566af01a1c1871804336f5265f6cbb2cf3108dcfe1bfaf6d02e758f5d178ebd838458a36d64dd930b4666c3cc49177662e262db4016810ef7290f4d64c3ea461d4dfa7a321839d2a60cb6e3d0c0f434347b424794ac1cab166fce711de23a31eb6d01715cba1a804381", 0xd3}, {&(0x7f0000000580)="fdd65da1a80d5ad4989ff6e3fdbc618469b4485fae3e3f51e81940f7619327e3cf88e56974eb7563b922f6768616a5d3fdd5a113df3f4c85984c8955b7f109e8d7fa90a424c1e299afbec75b", 0x4c}, {&(0x7f00000006c0)="1f0bca0a611cc13aae96d580c34cac2a5d09cdae23c40f86b1292c47a4f8f363914dad922f8314a8b7eea962ad48ca1e270cf55a25f547ee4233da3e065824dade845a03a55a48e0330e03713bea2ff6c4a50e8b24a5aa9803c60e83c9b809083eac5acaef375179b1c4f37c1969a4e25e68aaf8558e6fcd57e3f50a763c6f7c4da7e09ec82d64770398983dff6e7d77300ba63c067e32e3100761bb72b8e0c81f559d0747bdd830bc34547662ba298ac035ae600c990b6f6ba3b77a8125788a09d9bb711ec4b94069d09dc67ccb98be039e7eac9f6617fdf67457fc73fb9c001b6812c6fae2b696b88ab3471f827bde3b", 0xf1}, {&(0x7f0000004980)="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", 0x1000}, {&(0x7f0000000840)="9c0d0fcee94432b33ec5d27d8719ca181d8954633c69727292f68395712791db8c3dd01b988f9a4c077804851aa77eaa7607d60a9d8c9c4922f4d962ce38c074cf72a35c62228f21edf89f22c68aa2674b6d94708eb794bb2881652e908d6d3174d6caa1ba1135d6d3c13880206dc0fd01dcf8eb6df60caec803b499e3c280366214840cd09f771fb3a3a88e712f4c3f85a03a6c6ca61f8967dc065a6a869190daac49e4905194d8ad88035f2a292663ca073eabdae728407d56a90eed0b020ece5fad9ee35da0659f4e89467cde9d34c8040551bf8fa8757f1c1f6f", 0xdc}, {&(0x7f0000000940)="b0e8305041a7d8e280135d4da6ef40345ea610291c4c1a80add264e3a142bcd7b06f6b028dec4c08525423ba561d2e166c97a56f96d25ccc73247bf8ba5d2a1720b271a6164942d93ca4b25ffec0082f4432cfcbd2a791b8990dd4fe1843d682547879f51f05b851cf432d549e5705109bc4211d71aa6fa6c7788414c74f2a78572f79eecda6c3de2aa407235a779609f62e7ad427d59c2be13f77c974c7457d6bd1b553f465bf1a", 0xa8}], 0x9, &(0x7f0000002c00)=[@ip_ttl={{0x14, 0x0, 0x2, 0x3ff}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @multicast2, @private=0xa010102}}}, @ip_retopts={{0xb0, 0x0, 0x7, {[@noop, @ssrr={0x89, 0x1f, 0x28, [@multicast2, @rand_addr=0x64010101, @local, @local, @loopback, @rand_addr=0x64010102, @private=0xa010101]}, @noop, @ssrr={0x89, 0x7, 0x77, [@multicast1]}, @ra={0x94, 0x4}, @lsrr={0x83, 0x7, 0x76, [@multicast2]}, @cipso={0x86, 0x24, 0x0, [{0x1, 0x10, "ada9d4f007b5dc22e48c4a029ce0"}, {0x1, 0xe, "3719357120289d9582097196"}]}, @timestamp_addr={0x44, 0x44, 0x7d, 0x1, 0x8, [{@loopback, 0x80000000}, {@rand_addr=0x64010100, 0x1f}, {@multicast2}, {@remote, 0x9c}, {@multicast1, 0x9}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x2a7c}, {@dev={0xac, 0x14, 0x14, 0x21}, 0x800}, {@dev={0xac, 0x14, 0x14, 0x11}, 0x10001}]}, @ra={0x94, 0x4, 0x1}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_retopts={{0xa0, 0x0, 0x7, {[@generic={0x94, 0x7, "ff822e8972"}, @timestamp={0x44, 0x8, 0x9f, 0x0, 0x6, [0x8]}, @noop, @ssrr={0x89, 0x23, 0xe9, [@broadcast, @remote, @multicast2, @remote, @local, @multicast1, @loopback, @broadcast]}, @cipso={0x86, 0x5a, 0x3, [{0x5, 0x10, "2d7d56a5c83fc7a0917312dbef53"}, {0x5, 0xe, "74e691791574ce6b7e4f5a9e"}, {0x2, 0x12, "0aa984fa59f8047bf7516cf8cde90058"}, {0x2, 0xa, "d26e2e2a7a53196a"}, {0x7, 0xd, "055fc7f83af507879b256d"}, {0x48d6d95669589160, 0xd, "5d9db14ea36500d13dfe6f"}]}]}}}, @ip_retopts={{0x68, 0x0, 0x7, {[@lsrr={0x83, 0x1f, 0xe0, [@local, @broadcast, @loopback, @broadcast, @remote, @multicast1, @rand_addr=0x64010100]}, @timestamp={0x44, 0x1c, 0xff, 0x0, 0xe, [0x5, 0x7fffffff, 0xfffffffe, 0x4, 0x1000, 0xdaf]}, @end, @ssrr={0x89, 0x1b, 0x68, [@loopback, @empty, @multicast2, @broadcast, @private=0xa010101, @local]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xfffffff8}}], 0x220}, 0x40000) sendfile(r3, r2, 0x0, 0x100000002) (async) pwritev(r3, &(0x7f0000000180)=[{&(0x7f0000000c00)="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", 0x1000}, {&(0x7f0000000000)="dd8c1d6481ed1723e3a85319c984fd833597eac8397a203dbf07171661cedfb1bdd8e538a21a3b3d0c5438f7fddcaa099d53aa7946ee630ce22e8cbb09b7d67e3a98781531625a03938b1c8cb5f8b362751e3c6ef2943090f9d7df345e0772e1a15fe0526d40fa6fb9e982e940ee9211f326eedd3164663bad1e93f5f753a4438a", 0x81}, {&(0x7f0000001c00)="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", 0x1000}, {&(0x7f0000000140)="3c94c548fd7a7ed9c10ad40f5d78c30a85c235165bd6c6b852705bede0dc", 0x1e}], 0x4, 0x7, 0x100) [ 872.061022][T30222] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 872.068995][T30222] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 872.076968][T30222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 872.084939][T30222] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 872.092932][T30222] 20:15:41 executing program 0: mmap(&(0x7f0000e93000/0x4000)=nil, 0x4000, 0x2fffffd, 0x8d071, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x5, &(0x7f00000000c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xe}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000003880)='GPL\x00', 0x4, 0x8d, &(0x7f00000038c0)=""/141, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_page_free_batched\x00', r0}, 0x10) (async) pipe(&(0x7f0000000bc0)={0xffffffffffffffff}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r1]}}], 0x30}}], 0x1, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x4ca31, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (async, rerun: 32) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 32) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000640)={'ip_vti0\x00', &(0x7f0000000600)={'gretap0\x00', 0x0, 0x7, 0x8000, 0x0, 0x3, {{0x8, 0x4, 0x3, 0x1c, 0x20, 0x66, 0x0, 0x81, 0x29, 0x0, @rand_addr=0x64010101, @private=0xa010102, {[@generic={0x89, 0x8, "c0aa48bfe905"}, @ra={0x94, 0x4}]}}}}}) sendmsg$inet(r2, &(0x7f00000007c0)={&(0x7f00000001c0)={0x2, 0x4e22, @broadcast}, 0x10, &(0x7f0000000a00)=[{&(0x7f00000002c0)="1a2f10da608f3c635a4cd0d572313834b0a0b004da52a825f2b402b9c97abd6f700702c97406ff08ada36b52e98b1aea825ffdaf4d732ef8cba8be3e1a1c60ca187444dbfc9d3c09ee31a872231b9b0c2ca3f15d53d632b22bfb446a6f34f18d6649fad54105d187030e643aa98ee016dc35d1e863413611ac10e32c2336422d05c71142288e3972a18017c7d8e328dba0c6d7555abb85ab95f0a10bfb726c5821bc4e627dde9fafa5fe7e7c8d63bd891a4862e5a4cf4da657f0e84dfb4b", 0xbe}, {&(0x7f0000000380)="1877108443bffcb9b50dc01ccf040b53e47ed74aa785aa6cbba32ab15a198864d6a77a0f49427d823d7185caf2f451a15f4eae474901efc20c2fa2e3964c72dcb54a1fdd1e2f907c51f738dc453a6e71dd77333058621f67a2e3d5acc0fd4a4c665b310dcc73e3db09e2f5bdac519dc569d9bc51cb025be81606d5e00a0199298b63db1451cac40287ad1a8b1b88104b451f730d30d8d09544e1a7ed290b258a22e8127c8e4dec7309a8f2d96c9cfac1390a1e7a2047c21f44b6e4aec55965b06302b68d27b3d7db15e8de63cfcd8145450935ba58a871ef6450e66d0081eb8f9de401b5c6abfaf3dd72", 0xea}, {&(0x7f0000003980)="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", 0x1000}, {&(0x7f0000000480)="58d7543991741e42ef22c1b069131104506d8456e7e6e69bb3ed73fa0715f81e55a3d06aa36787340e330ed2759c385f5fae0d30e3bafd20e1d594603b758c052d8fc13901701edb9ec50d6345a676e4b5b268772a3a807aff12a24540915b2abcbf13502e7ac32856e566af01a1c1871804336f5265f6cbb2cf3108dcfe1bfaf6d02e758f5d178ebd838458a36d64dd930b4666c3cc49177662e262db4016810ef7290f4d64c3ea461d4dfa7a321839d2a60cb6e3d0c0f434347b424794ac1cab166fce711de23a31eb6d01715cba1a804381", 0xd3}, {&(0x7f0000000580)="fdd65da1a80d5ad4989ff6e3fdbc618469b4485fae3e3f51e81940f7619327e3cf88e56974eb7563b922f6768616a5d3fdd5a113df3f4c85984c8955b7f109e8d7fa90a424c1e299afbec75b", 0x4c}, {&(0x7f00000006c0)="1f0bca0a611cc13aae96d580c34cac2a5d09cdae23c40f86b1292c47a4f8f363914dad922f8314a8b7eea962ad48ca1e270cf55a25f547ee4233da3e065824dade845a03a55a48e0330e03713bea2ff6c4a50e8b24a5aa9803c60e83c9b809083eac5acaef375179b1c4f37c1969a4e25e68aaf8558e6fcd57e3f50a763c6f7c4da7e09ec82d64770398983dff6e7d77300ba63c067e32e3100761bb72b8e0c81f559d0747bdd830bc34547662ba298ac035ae600c990b6f6ba3b77a8125788a09d9bb711ec4b94069d09dc67ccb98be039e7eac9f6617fdf67457fc73fb9c001b6812c6fae2b696b88ab3471f827bde3b", 0xf1}, {&(0x7f0000004980)="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", 0x1000}, {&(0x7f0000000840)="9c0d0fcee94432b33ec5d27d8719ca181d8954633c69727292f68395712791db8c3dd01b988f9a4c077804851aa77eaa7607d60a9d8c9c4922f4d962ce38c074cf72a35c62228f21edf89f22c68aa2674b6d94708eb794bb2881652e908d6d3174d6caa1ba1135d6d3c13880206dc0fd01dcf8eb6df60caec803b499e3c280366214840cd09f771fb3a3a88e712f4c3f85a03a6c6ca61f8967dc065a6a869190daac49e4905194d8ad88035f2a292663ca073eabdae728407d56a90eed0b020ece5fad9ee35da0659f4e89467cde9d34c8040551bf8fa8757f1c1f6f", 0xdc}, {&(0x7f0000000940)="b0e8305041a7d8e280135d4da6ef40345ea610291c4c1a80add264e3a142bcd7b06f6b028dec4c08525423ba561d2e166c97a56f96d25ccc73247bf8ba5d2a1720b271a6164942d93ca4b25ffec0082f4432cfcbd2a791b8990dd4fe1843d682547879f51f05b851cf432d549e5705109bc4211d71aa6fa6c7788414c74f2a78572f79eecda6c3de2aa407235a779609f62e7ad427d59c2be13f77c974c7457d6bd1b553f465bf1a", 0xa8}], 0x9, &(0x7f0000002c00)=[@ip_ttl={{0x14, 0x0, 0x2, 0x3ff}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @multicast2, @private=0xa010102}}}, @ip_retopts={{0xb0, 0x0, 0x7, {[@noop, @ssrr={0x89, 0x1f, 0x28, [@multicast2, @rand_addr=0x64010101, @local, @local, @loopback, @rand_addr=0x64010102, @private=0xa010101]}, @noop, @ssrr={0x89, 0x7, 0x77, [@multicast1]}, @ra={0x94, 0x4}, @lsrr={0x83, 0x7, 0x76, [@multicast2]}, @cipso={0x86, 0x24, 0x0, [{0x1, 0x10, "ada9d4f007b5dc22e48c4a029ce0"}, {0x1, 0xe, "3719357120289d9582097196"}]}, @timestamp_addr={0x44, 0x44, 0x7d, 0x1, 0x8, [{@loopback, 0x80000000}, {@rand_addr=0x64010100, 0x1f}, {@multicast2}, {@remote, 0x9c}, {@multicast1, 0x9}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x2a7c}, {@dev={0xac, 0x14, 0x14, 0x21}, 0x800}, {@dev={0xac, 0x14, 0x14, 0x11}, 0x10001}]}, @ra={0x94, 0x4, 0x1}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_retopts={{0xa0, 0x0, 0x7, {[@generic={0x94, 0x7, "ff822e8972"}, @timestamp={0x44, 0x8, 0x9f, 0x0, 0x6, [0x8]}, @noop, @ssrr={0x89, 0x23, 0xe9, [@broadcast, @remote, @multicast2, @remote, @local, @multicast1, @loopback, @broadcast]}, @cipso={0x86, 0x5a, 0x3, [{0x5, 0x10, "2d7d56a5c83fc7a0917312dbef53"}, {0x5, 0xe, "74e691791574ce6b7e4f5a9e"}, {0x2, 0x12, "0aa984fa59f8047bf7516cf8cde90058"}, {0x2, 0xa, "d26e2e2a7a53196a"}, {0x7, 0xd, "055fc7f83af507879b256d"}, {0x48d6d95669589160, 0xd, "5d9db14ea36500d13dfe6f"}]}]}}}, @ip_retopts={{0x68, 0x0, 0x7, {[@lsrr={0x83, 0x1f, 0xe0, [@local, @broadcast, @loopback, @broadcast, @remote, @multicast1, @rand_addr=0x64010100]}, @timestamp={0x44, 0x1c, 0xff, 0x0, 0xe, [0x5, 0x7fffffff, 0xfffffffe, 0x4, 0x1000, 0xdaf]}, @end, @ssrr={0x89, 0x1b, 0x68, [@loopback, @empty, @multicast2, @broadcast, @private=0xa010101, @local]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xfffffff8}}], 0x220}, 0x40000) (async) sendfile(r3, r2, 0x0, 0x100000002) (async) pwritev(r3, &(0x7f0000000180)=[{&(0x7f0000000c00)="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", 0x1000}, {&(0x7f0000000000)="dd8c1d6481ed1723e3a85319c984fd833597eac8397a203dbf07171661cedfb1bdd8e538a21a3b3d0c5438f7fddcaa099d53aa7946ee630ce22e8cbb09b7d67e3a98781531625a03938b1c8cb5f8b362751e3c6ef2943090f9d7df345e0772e1a15fe0526d40fa6fb9e982e940ee9211f326eedd3164663bad1e93f5f753a4438a", 0x81}, {&(0x7f0000001c00)="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", 0x1000}, {&(0x7f0000000140)="3c94c548fd7a7ed9c10ad40f5d78c30a85c235165bd6c6b852705bede0dc", 0x1e}], 0x4, 0x7, 0x100) 20:15:41 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60104c11402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 872.453154][T30223] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 872.481552][T30223] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 872.540358][T30223] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 872.551456][T30223] CPU: 0 PID: 30223 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 872.562006][T30223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 872.572091][T30223] Call Trace: [ 872.575386][T30223] [ 872.578329][T30223] dump_stack_lvl+0xcd/0x134 [ 872.582953][T30223] sysfs_warn_dup.cold+0x1c/0x29 [ 872.587915][T30223] sysfs_do_create_link_sd+0x11e/0x140 [ 872.593400][T30223] sysfs_create_link+0x5f/0xc0 [ 872.598191][T30223] device_add+0x789/0x1ee0 [ 872.602641][T30223] ? wait_for_completion_io+0x270/0x270 [ 872.608214][T30223] ? lock_downgrade+0x6e0/0x6e0 [ 872.613093][T30223] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 872.619364][T30223] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 872.625636][T30223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 872.631903][T30223] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 872.637923][T30223] wiphy_register+0x1e86/0x29a0 [ 872.642816][T30223] ? wiphy_unregister+0xbf0/0xbf0 [ 872.647861][T30223] ? minstrel_ht_alloc+0x52c/0xa10 [ 872.653013][T30223] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 872.659112][T30223] ieee80211_register_hw+0x1f16/0x3ed0 [ 872.664615][T30223] ? ieee80211_restart_hw+0x290/0x290 [ 872.670013][T30223] ? debug_object_destroy+0x210/0x210 [ 872.675416][T30223] ? memset+0x20/0x40 [ 872.679424][T30223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 872.685698][T30223] ? __hrtimer_init+0x136/0x280 [ 872.690579][T30223] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 872.696350][T30223] ? hwsim_virtio_rx_work+0x350/0x350 [ 872.701743][T30223] ? hwsim_new_radio_nl+0x992/0x1080 [ 872.707059][T30223] ? memcpy+0x39/0x60 [ 872.711071][T30223] hwsim_new_radio_nl+0x9bc/0x1080 [ 872.716214][T30223] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 872.722148][T30223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 872.728417][T30223] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 872.735815][T30223] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 872.743134][T30223] genl_family_rcv_msg_doit+0x228/0x320 [ 872.748704][T30223] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 872.756106][T30223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 872.762389][T30223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 872.768659][T30223] ? ns_capable+0xd9/0x100 [ 872.773115][T30223] genl_rcv_msg+0x328/0x580 [ 872.777647][T30223] ? genl_get_cmd+0x480/0x480 [ 872.782349][T30223] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 872.788280][T30223] ? lock_release+0x720/0x720 [ 872.792992][T30223] netlink_rcv_skb+0x153/0x420 [ 872.797781][T30223] ? genl_get_cmd+0x480/0x480 [ 872.802488][T30223] ? netlink_ack+0xa60/0xa60 [ 872.807106][T30223] ? netlink_deliver_tap+0x1b1/0xc30 [ 872.812422][T30223] genl_rcv+0x24/0x40 [ 872.816428][T30223] netlink_unicast+0x539/0x7e0 [ 872.821222][T30223] ? netlink_attachskb+0x880/0x880 [ 872.826353][T30223] ? __virt_addr_valid+0x5d/0x2d0 [ 872.831444][T30223] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 872.837722][T30223] ? __phys_addr_symbol+0x2c/0x70 [ 872.842775][T30223] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 872.848523][T30223] ? __check_object_size+0x16e/0x310 [ 872.853840][T30223] netlink_sendmsg+0x904/0xe00 [ 872.858637][T30223] ? netlink_unicast+0x7e0/0x7e0 [ 872.863605][T30223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 872.869878][T30223] ? netlink_unicast+0x7e0/0x7e0 [ 872.874839][T30223] sock_sendmsg+0xcf/0x120 [ 872.879283][T30223] ____sys_sendmsg+0x6e8/0x810 [ 872.884075][T30223] ? kernel_sendmsg+0x50/0x50 [ 872.888774][T30223] ? do_recvmmsg+0x6d0/0x6d0 [ 872.893470][T30223] ? lock_chain_count+0x20/0x20 [ 872.898361][T30223] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 872.904370][T30223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 872.910641][T30223] ? futex_wait+0x533/0x670 [ 872.915181][T30223] ___sys_sendmsg+0xf3/0x170 [ 872.919806][T30223] ? sendmsg_copy_msghdr+0x160/0x160 [ 872.925119][T30223] ? lock_downgrade+0x6e0/0x6e0 [ 872.929988][T30223] ? __fget_files+0x28c/0x470 [ 872.934702][T30223] ? __fget_light+0xea/0x280 [ 872.939314][T30223] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 872.945599][T30223] __sys_sendmsg+0xe5/0x1b0 [ 872.950132][T30223] ? __sys_sendmsg_sock+0x30/0x30 [ 872.955186][T30223] ? syscall_enter_from_user_mode+0x21/0x70 [ 872.961098][T30223] do_syscall_64+0x35/0xb0 [ 872.965537][T30223] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 872.971457][T30223] RIP: 0033:0x7f4b423c2059 [ 872.975886][T30223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 872.995521][T30223] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 873.003954][T30223] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 873.011952][T30223] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 873.019941][T30223] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 873.027932][T30223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 20:15:42 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_route(0x10, 0x3, 0x0) write$binfmt_elf32(0xffffffffffffffff, &(0x7f00000004c0)={{0x7f, 0x45, 0x4c, 0x46, 0x28, 0x1, 0x4, 0x8, 0x340d, 0x3, 0x3e, 0x7fffffff, 0x1ba, 0x38, 0x3aa, 0x5, 0x8001, 0x20, 0x1, 0x6, 0x2, 0x1}, [{0x5, 0x2, 0x400, 0x0, 0x80, 0x0, 0x6, 0x1}], "d456bc74b746d9c28c5266acf748ba7baf17aab6643760f6bafc84d6e4af41d5c6664c497bab99444d75", ['\x00', '\x00', '\x00', '\x00']}, 0x482) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x10001}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_DELFLOWTABLE={0x84, 0x18, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_FLAGS={0x8}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x58, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0xa1}, @NFTA_SET_EXPR={0x1c, 0x11, 0x0, 0x1, @redir={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REDIR_REG_PROTO_MIN={0x8, 0x1, 0x1, 0x0, 0x11}]}}}]}], {0x14, 0x10}}, 0x104}}, 0x0) [ 873.035919][T30223] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 873.043931][T30223] 20:15:42 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200043382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:42 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) (async) r1 = socket$nl_route(0x10, 0x3, 0x0) write$binfmt_elf32(0xffffffffffffffff, &(0x7f00000004c0)={{0x7f, 0x45, 0x4c, 0x46, 0x28, 0x1, 0x4, 0x8, 0x340d, 0x3, 0x3e, 0x7fffffff, 0x1ba, 0x38, 0x3aa, 0x5, 0x8001, 0x20, 0x1, 0x6, 0x2, 0x1}, [{0x5, 0x2, 0x400, 0x0, 0x80, 0x0, 0x6, 0x1}], "d456bc74b746d9c28c5266acf748ba7baf17aab6643760f6bafc84d6e4af41d5c6664c497bab99444d75", ['\x00', '\x00', '\x00', '\x00']}, 0x482) (async) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x10001}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_DELFLOWTABLE={0x84, 0x18, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_FLAGS={0x8}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x58, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0xa1}, @NFTA_SET_EXPR={0x1c, 0x11, 0x0, 0x1, @redir={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REDIR_REG_PROTO_MIN={0x8, 0x1, 0x1, 0x0, 0x11}]}}}]}], {0x14, 0x10}}, 0x104}}, 0x0) [ 873.081537][T30221] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 873.191500][T30221] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 873.203392][T30221] CPU: 0 PID: 30221 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 873.213938][T30221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 873.224023][T30221] Call Trace: [ 873.227327][T30221] [ 873.230269][T30221] dump_stack_lvl+0xcd/0x134 [ 873.234887][T30221] sysfs_warn_dup.cold+0x1c/0x29 [ 873.239831][T30221] sysfs_do_create_link_sd+0x11e/0x140 [ 873.245326][T30221] sysfs_create_link+0x5f/0xc0 [ 873.250125][T30221] device_add+0x789/0x1ee0 [ 873.254575][T30221] ? wait_for_completion_io+0x270/0x270 [ 873.260157][T30221] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 873.266432][T30221] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 873.272703][T30221] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 873.278978][T30221] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 873.285001][T30221] wiphy_register+0x1e86/0x29a0 [ 873.289873][T30221] ? wiphy_unregister+0xbf0/0xbf0 [ 873.294924][T30221] ? minstrel_ht_alloc+0x52c/0xa10 [ 873.300073][T30221] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 873.306182][T30221] ieee80211_register_hw+0x1f16/0x3ed0 [ 873.311681][T30221] ? ieee80211_restart_hw+0x290/0x290 [ 873.317059][T30221] ? debug_object_destroy+0x210/0x210 [ 873.322721][T30221] ? memset+0x20/0x40 [ 873.326726][T30221] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 873.333001][T30221] ? __hrtimer_init+0x136/0x280 [ 873.337881][T30221] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 873.343649][T30221] ? hwsim_virtio_rx_work+0x350/0x350 [ 873.349051][T30221] ? hwsim_new_radio_nl+0x992/0x1080 [ 873.354357][T30221] ? memcpy+0x39/0x60 [ 873.358345][T30221] hwsim_new_radio_nl+0x9bc/0x1080 [ 873.363478][T30221] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 873.369385][T30221] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 873.375653][T30221] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 873.383047][T30221] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 873.390361][T30221] genl_family_rcv_msg_doit+0x228/0x320 [ 873.395951][T30221] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 873.403369][T30221] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 873.409665][T30221] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 873.415945][T30221] ? ns_capable+0xd9/0x100 [ 873.420389][T30221] genl_rcv_msg+0x328/0x580 [ 873.424898][T30221] ? genl_get_cmd+0x480/0x480 [ 873.429585][T30221] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 873.435510][T30221] ? lock_release+0x720/0x720 [ 873.440208][T30221] netlink_rcv_skb+0x153/0x420 [ 873.444990][T30221] ? genl_get_cmd+0x480/0x480 [ 873.449679][T30221] ? netlink_ack+0xa60/0xa60 [ 873.454302][T30221] ? netlink_deliver_tap+0x1b1/0xc30 [ 873.459617][T30221] genl_rcv+0x24/0x40 [ 873.463615][T30221] netlink_unicast+0x539/0x7e0 [ 873.468384][T30221] ? netlink_attachskb+0x880/0x880 [ 873.473514][T30221] ? __virt_addr_valid+0x5d/0x2d0 [ 873.478566][T30221] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 873.484831][T30221] ? __phys_addr_symbol+0x2c/0x70 [ 873.489860][T30221] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 873.495609][T30221] ? __check_object_size+0x16e/0x310 [ 873.500915][T30221] netlink_sendmsg+0x904/0xe00 [ 873.505691][T30221] ? netlink_unicast+0x7e0/0x7e0 [ 873.510664][T30221] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 873.516939][T30221] ? netlink_unicast+0x7e0/0x7e0 [ 873.521896][T30221] sock_sendmsg+0xcf/0x120 [ 873.526316][T30221] ____sys_sendmsg+0x6e8/0x810 [ 873.531114][T30221] ? kernel_sendmsg+0x50/0x50 [ 873.535812][T30221] ? do_recvmmsg+0x6d0/0x6d0 [ 873.540441][T30221] ? lock_chain_count+0x20/0x20 [ 873.545288][T30221] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 873.551293][T30221] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 873.557579][T30221] ? futex_wait+0x533/0x670 [ 873.562107][T30221] ___sys_sendmsg+0xf3/0x170 [ 873.566705][T30221] ? sendmsg_copy_msghdr+0x160/0x160 [ 873.572024][T30221] ? lock_downgrade+0x6e0/0x6e0 [ 873.577010][T30221] ? __fget_files+0x28c/0x470 [ 873.581716][T30221] ? __fget_light+0xea/0x280 [ 873.586306][T30221] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 873.592593][T30221] __sys_sendmsg+0xe5/0x1b0 [ 873.597128][T30221] ? __sys_sendmsg_sock+0x30/0x30 [ 873.602182][T30221] ? syscall_enter_from_user_mode+0x21/0x70 [ 873.608091][T30221] do_syscall_64+0x35/0xb0 [ 873.612537][T30221] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 873.618548][T30221] RIP: 0033:0x7f0982948059 [ 873.622980][T30221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 873.642722][T30221] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 873.651143][T30221] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 873.659145][T30221] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 873.667139][T30221] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 873.675132][T30221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 873.683100][T30221] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 873.691094][T30221] 20:15:42 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69940e0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:42 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) (async, rerun: 64) r1 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 64) write$binfmt_elf32(0xffffffffffffffff, &(0x7f00000004c0)={{0x7f, 0x45, 0x4c, 0x46, 0x28, 0x1, 0x4, 0x8, 0x340d, 0x3, 0x3e, 0x7fffffff, 0x1ba, 0x38, 0x3aa, 0x5, 0x8001, 0x20, 0x1, 0x6, 0x2, 0x1}, [{0x5, 0x2, 0x400, 0x0, 0x80, 0x0, 0x6, 0x1}], "d456bc74b746d9c28c5266acf748ba7baf17aab6643760f6bafc84d6e4af41d5c6664c497bab99444d75", ['\x00', '\x00', '\x00', '\x00']}, 0x482) (async, rerun: 64) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x10001}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) (rerun: 64) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_DELFLOWTABLE={0x84, 0x18, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_FLAGS={0x8}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x58, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0xa1}, @NFTA_SET_EXPR={0x1c, 0x11, 0x0, 0x1, @redir={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REDIR_REG_PROTO_MIN={0x8, 0x1, 0x1, 0x0, 0x11}]}}}]}], {0x14, 0x10}}, 0x104}}, 0x0) 20:15:42 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r2, 0x400, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0) syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), r1) (async) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) (async) r3 = socket$netlink(0x10, 0x3, 0x2) (async) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r1) (async) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x2f, 0x4, 0x32, 0x2, 0xc, @mcast1, @private0, 0x20, 0x7800, 0x43fbe82c, 0x1}}) sendmsg$BATADV_CMD_GET_GATEWAYS(r3, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x5c, r4, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x81) [ 873.717923][T30248] netlink: 127932 bytes leftover after parsing attributes in process `syz-executor.3'. [ 873.762855][T30248] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 873.802404][T30248] CPU: 1 PID: 30248 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 873.812960][T30248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 873.823045][T30248] Call Trace: [ 873.826345][T30248] [ 873.829275][T30248] dump_stack_lvl+0xcd/0x134 [ 873.833889][T30248] sysfs_warn_dup.cold+0x1c/0x29 [ 873.838844][T30248] sysfs_do_create_link_sd+0x11e/0x140 [ 873.844337][T30248] sysfs_create_link+0x5f/0xc0 [ 873.849107][T30248] device_add+0x789/0x1ee0 [ 873.853535][T30248] ? wait_for_completion_io+0x270/0x270 [ 873.859120][T30248] ? minstrel_ht_alloc+0x4b/0xa10 [ 873.864177][T30248] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 873.870428][T30248] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 873.876694][T30248] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 873.882943][T30248] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 873.888960][T30248] wiphy_register+0x1e86/0x29a0 [ 873.893842][T30248] ? wiphy_unregister+0xbf0/0xbf0 [ 873.898865][T30248] ? minstrel_ht_alloc+0x52c/0xa10 [ 873.904081][T30248] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 873.910159][T30248] ieee80211_register_hw+0x1f16/0x3ed0 [ 873.915651][T30248] ? ieee80211_restart_hw+0x290/0x290 [ 873.921031][T30248] ? debug_object_destroy+0x210/0x210 [ 873.926438][T30248] ? memset+0x20/0x40 [ 873.930420][T30248] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 873.936664][T30248] ? __hrtimer_init+0x136/0x280 [ 873.941549][T30248] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 873.947302][T30248] ? hwsim_virtio_rx_work+0x350/0x350 [ 873.952679][T30248] ? hwsim_new_radio_nl+0x992/0x1080 [ 873.957987][T30248] ? memcpy+0x39/0x60 [ 873.961988][T30248] hwsim_new_radio_nl+0x9bc/0x1080 [ 873.967110][T30248] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 873.973050][T30248] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 873.979317][T30248] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 873.986740][T30248] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 873.994049][T30248] genl_family_rcv_msg_doit+0x228/0x320 [ 873.999627][T30248] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 874.007025][T30248] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 874.013279][T30248] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 874.019574][T30248] ? ns_capable+0xd9/0x100 [ 874.024030][T30248] genl_rcv_msg+0x328/0x580 [ 874.028540][T30248] ? genl_get_cmd+0x480/0x480 [ 874.033212][T30248] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 874.039116][T30248] ? lock_release+0x720/0x720 [ 874.043815][T30248] netlink_rcv_skb+0x153/0x420 [ 874.048671][T30248] ? genl_get_cmd+0x480/0x480 [ 874.053357][T30248] ? netlink_ack+0xa60/0xa60 [ 874.057996][T30248] ? netlink_deliver_tap+0x1b1/0xc30 [ 874.063310][T30248] genl_rcv+0x24/0x40 [ 874.067297][T30248] netlink_unicast+0x539/0x7e0 [ 874.072096][T30248] ? netlink_attachskb+0x880/0x880 [ 874.077217][T30248] ? __virt_addr_valid+0x5d/0x2d0 [ 874.082270][T30248] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 874.088520][T30248] ? __phys_addr_symbol+0x2c/0x70 [ 874.093567][T30248] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 874.099286][T30248] ? __check_object_size+0x16e/0x310 [ 874.104583][T30248] netlink_sendmsg+0x904/0xe00 [ 874.109362][T30248] ? netlink_unicast+0x7e0/0x7e0 [ 874.114298][T30248] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 874.120544][T30248] ? netlink_unicast+0x7e0/0x7e0 [ 874.125483][T30248] sock_sendmsg+0xcf/0x120 [ 874.129900][T30248] ____sys_sendmsg+0x6e8/0x810 [ 874.134660][T30248] ? kernel_sendmsg+0x50/0x50 [ 874.139353][T30248] ? do_recvmmsg+0x6d0/0x6d0 [ 874.143956][T30248] ? lock_chain_count+0x20/0x20 [ 874.148821][T30248] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 874.154823][T30248] ___sys_sendmsg+0xf3/0x170 [ 874.159414][T30248] ? sendmsg_copy_msghdr+0x160/0x160 [ 874.164704][T30248] ? lock_downgrade+0x6e0/0x6e0 [ 874.169561][T30248] ? __fget_files+0x28c/0x470 [ 874.174247][T30248] ? __fget_light+0xea/0x280 [ 874.178832][T30248] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 874.185078][T30248] __sys_sendmsg+0xe5/0x1b0 [ 874.189582][T30248] ? __sys_sendmsg_sock+0x30/0x30 [ 874.194635][T30248] ? syscall_enter_from_user_mode+0x21/0x70 [ 874.200567][T30248] do_syscall_64+0x35/0xb0 [ 874.204986][T30248] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 874.210891][T30248] RIP: 0033:0x7f8a7fbd7059 [ 874.215307][T30248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 874.234963][T30248] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 874.243389][T30248] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 874.251367][T30248] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 874.259358][T30248] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 874.267327][T30248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 874.275340][T30248] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 874.283338][T30248] 20:15:43 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x1}, 0x14}}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r4, r3, 0x0, 0x100000002) openat$cgroup_ro(r3, &(0x7f0000000180)='cpuset.memory_pressure\x00', 0x0, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) write$binfmt_script(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB="2321202e2f66696c6530207d20a520202d2f20207d2d265b5c285c5c2abe5e2a5c7d3a7b7d2a26215b2d6e7d0a0b8d5a46f06577720bd9cfb72d62b04c7ef6c8b787646a715f25ab4bb27ea7e868a570a880f417956a1fd326e84b63fdffbe6f9f04c0e0d77ff76266c3d0e7cd86e3467419ab2dd1b72ccee48a564395119d04ce7230dcf18f59949e862731f1648919adf1204336e21c776e745b412985f2088d85c915161efbe9f50472ce50f40d5ebb459471239555"], 0xb7) close(r0) [ 874.320889][T30255] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 874.336460][T30255] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 874.404214][T30255] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 874.419532][T30255] CPU: 1 PID: 30255 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 874.430084][T30255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 874.440168][T30255] Call Trace: [ 874.443465][T30255] [ 874.446415][T30255] dump_stack_lvl+0xcd/0x134 [ 874.451038][T30255] sysfs_warn_dup.cold+0x1c/0x29 [ 874.456114][T30255] sysfs_do_create_link_sd+0x11e/0x140 [ 874.461578][T30255] sysfs_create_link+0x5f/0xc0 [ 874.466353][T30255] device_add+0x789/0x1ee0 [ 874.470797][T30255] ? wait_for_completion_io+0x270/0x270 [ 874.476364][T30255] ? lock_downgrade+0x6e0/0x6e0 [ 874.481232][T30255] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 874.487508][T30255] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 874.493755][T30255] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 874.499998][T30255] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 874.505999][T30255] wiphy_register+0x1e86/0x29a0 [ 874.510882][T30255] ? wiphy_unregister+0xbf0/0xbf0 [ 874.515904][T30255] ? minstrel_ht_alloc+0x52c/0xa10 [ 874.521060][T30255] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 874.527149][T30255] ieee80211_register_hw+0x1f16/0x3ed0 [ 874.532637][T30255] ? ieee80211_restart_hw+0x290/0x290 [ 874.538024][T30255] ? debug_object_destroy+0x210/0x210 [ 874.543402][T30255] ? memset+0x20/0x40 [ 874.547403][T30255] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 874.553641][T30255] ? __hrtimer_init+0x136/0x280 [ 874.558502][T30255] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 874.564279][T30255] ? hwsim_virtio_rx_work+0x350/0x350 [ 874.569683][T30255] ? hwsim_new_radio_nl+0x992/0x1080 [ 874.574978][T30255] ? memcpy+0x39/0x60 [ 874.579028][T30255] hwsim_new_radio_nl+0x9bc/0x1080 [ 874.584148][T30255] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 874.590085][T30255] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 874.596346][T30255] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 874.603711][T30255] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 874.610994][T30255] genl_family_rcv_msg_doit+0x228/0x320 [ 874.616544][T30255] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 874.623941][T30255] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 874.630225][T30255] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 874.636487][T30255] ? ns_capable+0xd9/0x100 [ 874.640906][T30255] genl_rcv_msg+0x328/0x580 [ 874.645408][T30255] ? genl_get_cmd+0x480/0x480 [ 874.650081][T30255] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 874.655979][T30255] ? lock_release+0x720/0x720 [ 874.660680][T30255] netlink_rcv_skb+0x153/0x420 [ 874.665443][T30255] ? genl_get_cmd+0x480/0x480 [ 874.670133][T30255] ? netlink_ack+0xa60/0xa60 [ 874.674757][T30255] ? netlink_deliver_tap+0x1b1/0xc30 [ 874.680045][T30255] genl_rcv+0x24/0x40 [ 874.684024][T30255] netlink_unicast+0x539/0x7e0 [ 874.688810][T30255] ? netlink_attachskb+0x880/0x880 [ 874.693927][T30255] ? __virt_addr_valid+0x5d/0x2d0 [ 874.698998][T30255] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 874.705243][T30255] ? __phys_addr_symbol+0x2c/0x70 [ 874.710286][T30255] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 874.716015][T30255] ? __check_object_size+0x16e/0x310 [ 874.721306][T30255] netlink_sendmsg+0x904/0xe00 [ 874.726083][T30255] ? netlink_unicast+0x7e0/0x7e0 [ 874.731038][T30255] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 874.737287][T30255] ? netlink_unicast+0x7e0/0x7e0 [ 874.742238][T30255] sock_sendmsg+0xcf/0x120 [ 874.746660][T30255] ____sys_sendmsg+0x6e8/0x810 [ 874.751424][T30255] ? kernel_sendmsg+0x50/0x50 [ 874.756096][T30255] ? do_recvmmsg+0x6d0/0x6d0 [ 874.760700][T30255] ? lock_chain_count+0x20/0x20 [ 874.765547][T30255] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 874.771531][T30255] ___sys_sendmsg+0xf3/0x170 [ 874.776121][T30255] ? sendmsg_copy_msghdr+0x160/0x160 [ 874.781410][T30255] ? lock_downgrade+0x6e0/0x6e0 [ 874.786286][T30255] ? __fget_files+0x28c/0x470 [ 874.791001][T30255] ? __fget_light+0xea/0x280 [ 874.795587][T30255] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 874.801829][T30255] __sys_sendmsg+0xe5/0x1b0 [ 874.806338][T30255] ? __sys_sendmsg_sock+0x30/0x30 [ 874.811370][T30255] ? syscall_enter_from_user_mode+0x21/0x70 [ 874.817264][T30255] do_syscall_64+0x35/0xb0 [ 874.821701][T30255] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 874.827592][T30255] RIP: 0033:0x7f4b423c2059 [ 874.832003][T30255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 874.851607][T30255] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 874.860017][T30255] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 874.867982][T30255] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 874.875961][T30255] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 874.883928][T30255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 874.891902][T30255] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 874.899882][T30255] [ 874.918719][T30261] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 874.957901][T30261] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 874.973664][T30261] CPU: 1 PID: 30261 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 874.984189][T30261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 874.994248][T30261] Call Trace: [ 874.997526][T30261] [ 875.000463][T30261] dump_stack_lvl+0xcd/0x134 [ 875.005097][T30261] sysfs_warn_dup.cold+0x1c/0x29 [ 875.010090][T30261] sysfs_do_create_link_sd+0x11e/0x140 [ 875.015554][T30261] sysfs_create_link+0x5f/0xc0 [ 875.020321][T30261] device_add+0x789/0x1ee0 [ 875.024740][T30261] ? wait_for_completion_io+0x270/0x270 [ 875.030303][T30261] ? lock_downgrade+0x6e0/0x6e0 [ 875.035157][T30261] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 875.041417][T30261] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 875.047690][T30261] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 875.053939][T30261] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 875.059953][T30261] wiphy_register+0x1e86/0x29a0 [ 875.064811][T30261] ? wiphy_unregister+0xbf0/0xbf0 [ 875.069833][T30261] ? minstrel_ht_alloc+0x52c/0xa10 [ 875.074962][T30261] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 875.081040][T30261] ieee80211_register_hw+0x1f16/0x3ed0 [ 875.086511][T30261] ? ieee80211_restart_hw+0x290/0x290 [ 875.091897][T30261] ? debug_object_destroy+0x210/0x210 [ 875.097271][T30261] ? memset+0x20/0x40 [ 875.101253][T30261] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 875.107506][T30261] ? __hrtimer_init+0x136/0x280 [ 875.112379][T30261] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 875.118141][T30261] ? hwsim_virtio_rx_work+0x350/0x350 [ 875.123508][T30261] ? hwsim_new_radio_nl+0x992/0x1080 [ 875.128794][T30261] ? memcpy+0x39/0x60 [ 875.132773][T30261] hwsim_new_radio_nl+0x9bc/0x1080 [ 875.137882][T30261] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 875.143787][T30261] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 875.150029][T30261] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 875.157400][T30261] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 875.164729][T30261] genl_family_rcv_msg_doit+0x228/0x320 [ 875.170288][T30261] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 875.177654][T30261] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 875.183900][T30261] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 875.190139][T30261] ? ns_capable+0xd9/0x100 [ 875.194572][T30261] genl_rcv_msg+0x328/0x580 [ 875.199074][T30261] ? genl_get_cmd+0x480/0x480 [ 875.203745][T30261] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 875.209637][T30261] ? lock_release+0x720/0x720 [ 875.214308][T30261] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 875.220110][T30261] netlink_rcv_skb+0x153/0x420 [ 875.224887][T30261] ? genl_get_cmd+0x480/0x480 [ 875.229556][T30261] ? netlink_ack+0xa60/0xa60 [ 875.234141][T30261] ? netlink_deliver_tap+0x1b1/0xc30 [ 875.239425][T30261] genl_rcv+0x24/0x40 [ 875.243424][T30261] netlink_unicast+0x539/0x7e0 [ 875.248191][T30261] ? netlink_attachskb+0x880/0x880 [ 875.253314][T30261] ? __virt_addr_valid+0x5d/0x2d0 [ 875.258365][T30261] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 875.264599][T30261] ? __phys_addr_symbol+0x2c/0x70 [ 875.269625][T30261] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 875.275359][T30261] ? __check_object_size+0x16e/0x310 [ 875.280651][T30261] netlink_sendmsg+0x904/0xe00 [ 875.285486][T30261] ? netlink_unicast+0x7e0/0x7e0 [ 875.290432][T30261] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 875.296680][T30261] ? netlink_unicast+0x7e0/0x7e0 [ 875.301639][T30261] sock_sendmsg+0xcf/0x120 [ 875.306064][T30261] ____sys_sendmsg+0x6e8/0x810 [ 875.310839][T30261] ? kernel_sendmsg+0x50/0x50 [ 875.315516][T30261] ? do_recvmmsg+0x6d0/0x6d0 [ 875.320108][T30261] ? lock_chain_count+0x20/0x20 [ 875.324959][T30261] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 875.330964][T30261] ___sys_sendmsg+0xf3/0x170 [ 875.335564][T30261] ? sendmsg_copy_msghdr+0x160/0x160 [ 875.340866][T30261] ? lock_downgrade+0x6e0/0x6e0 [ 875.345733][T30261] ? __fget_files+0x28c/0x470 [ 875.350426][T30261] ? __fget_light+0xea/0x280 [ 875.355028][T30261] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 875.361368][T30261] __sys_sendmsg+0xe5/0x1b0 [ 875.365907][T30261] ? __sys_sendmsg_sock+0x30/0x30 [ 875.370985][T30261] ? syscall_enter_from_user_mode+0x21/0x70 [ 875.376880][T30261] do_syscall_64+0x35/0xb0 [ 875.381292][T30261] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 875.387187][T30261] RIP: 0033:0x7f0982948059 [ 875.391595][T30261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 875.411206][T30261] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 875.419686][T30261] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 875.427651][T30261] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 875.435621][T30261] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 875.443779][T30261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 875.451753][T30261] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 875.459778][T30261] 20:15:44 executing program 4: bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async, rerun: 64) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_serviced\x00', 0x275a, 0x0) (rerun: 64) write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x208e24b) r1 = socket$rds(0x15, 0x5, 0x0) sendfile(r0, r1, 0x0, 0x1) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000ac0)={'batadv_slave_1\x00'}) (async, rerun: 64) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0) (async, rerun: 64) r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) (async) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, 0x0) (async) unshare(0x40000000) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0x4) 20:15:44 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60106011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:44 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200053382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:44 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r2, 0x400, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0) (async) syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), r1) (async) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) r3 = socket$netlink(0x10, 0x3, 0x2) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r1) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x2f, 0x4, 0x32, 0x2, 0xc, @mcast1, @private0, 0x20, 0x7800, 0x43fbe82c, 0x1}}) sendmsg$BATADV_CMD_GET_GATEWAYS(r3, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x5c, r4, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x81) 20:15:44 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x1}, 0x14}}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r4, r3, 0x0, 0x100000002) openat$cgroup_ro(r3, &(0x7f0000000180)='cpuset.memory_pressure\x00', 0x0, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) write$binfmt_script(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB="2321202e2f66696c6530207d20a520202d2f20207d2d265b5c285c5c2abe5e2a5c7d3a7b7d2a26215b2d6e7d0a0b8d5a46f06577720bd9cfb72d62b04c7ef6c8b787646a715f25ab4bb27ea7e868a570a880f417956a1fd326e84b63fdffbe6f9f04c0e0d77ff76266c3d0e7cd86e3467419ab2dd1b72ccee48a564395119d04ce7230dcf18f59949e862731f1648919adf1204336e21c776e745b412985f2088d85c915161efbe9f50472ce50f40d5ebb459471239555"], 0xb7) close(r0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$gtp(&(0x7f0000000080), 0xffffffffffffffff) (async) sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x1}, 0x14}}, 0x0) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r0, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (async) socket$nl_netfilter(0x10, 0x3, 0xc) (async) sendfile(r4, r3, 0x0, 0x100000002) (async) openat$cgroup_ro(r3, &(0x7f0000000180)='cpuset.memory_pressure\x00', 0x0, 0x0) (async) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) (async) write$binfmt_script(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB="2321202e2f66696c6530207d20a520202d2f20207d2d265b5c285c5c2abe5e2a5c7d3a7b7d2a26215b2d6e7d0a0b8d5a46f06577720bd9cfb72d62b04c7ef6c8b787646a715f25ab4bb27ea7e868a570a880f417956a1fd326e84b63fdffbe6f9f04c0e0d77ff76266c3d0e7cd86e3467419ab2dd1b72ccee48a564395119d04ce7230dcf18f59949e862731f1648919adf1204336e21c776e745b412985f2088d85c915161efbe9f50472ce50f40d5ebb459471239555"], 0xb7) (async) close(r0) (async) 20:15:44 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69940f0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 875.866584][T30280] netlink: 122812 bytes leftover after parsing attributes in process `syz-executor.3'. [ 875.906465][T30280] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 875.927283][T30280] CPU: 0 PID: 30280 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 875.937845][T30280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 875.947928][T30280] Call Trace: [ 875.951226][T30280] [ 875.954174][T30280] dump_stack_lvl+0xcd/0x134 [ 875.958802][T30280] sysfs_warn_dup.cold+0x1c/0x29 [ 875.963782][T30280] sysfs_do_create_link_sd+0x11e/0x140 [ 875.969281][T30280] sysfs_create_link+0x5f/0xc0 [ 875.974076][T30280] device_add+0x789/0x1ee0 [ 875.978530][T30280] ? wait_for_completion_io+0x270/0x270 [ 875.984100][T30280] ? lock_downgrade+0x6e0/0x6e0 [ 875.988984][T30280] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 875.995254][T30280] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 876.001521][T30280] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.007776][T30280] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 876.013785][T30280] wiphy_register+0x1e86/0x29a0 [ 876.018657][T30280] ? wiphy_unregister+0xbf0/0xbf0 [ 876.023691][T30280] ? minstrel_ht_alloc+0x52c/0xa10 [ 876.028834][T30280] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 876.034917][T30280] ieee80211_register_hw+0x1f16/0x3ed0 [ 876.040401][T30280] ? ieee80211_restart_hw+0x290/0x290 [ 876.045792][T30280] ? debug_object_destroy+0x210/0x210 [ 876.051179][T30280] ? memset+0x20/0x40 [ 876.055170][T30280] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.061422][T30280] ? __hrtimer_init+0x136/0x280 [ 876.066296][T30280] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 876.072067][T30280] ? hwsim_virtio_rx_work+0x350/0x350 [ 876.077454][T30280] ? hwsim_new_radio_nl+0x992/0x1080 [ 876.082752][T30280] ? memcpy+0x39/0x60 [ 876.086747][T30280] hwsim_new_radio_nl+0x9bc/0x1080 [ 876.091876][T30280] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 876.097787][T30280] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.104041][T30280] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 876.111426][T30280] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 876.118723][T30280] genl_family_rcv_msg_doit+0x228/0x320 [ 876.124280][T30280] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 876.131660][T30280] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.137925][T30280] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.144178][T30280] ? ns_capable+0xd9/0x100 [ 876.148626][T30280] genl_rcv_msg+0x328/0x580 [ 876.153148][T30280] ? genl_get_cmd+0x480/0x480 [ 876.157830][T30280] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 876.163742][T30280] ? lock_release+0x720/0x720 [ 876.168439][T30280] netlink_rcv_skb+0x153/0x420 [ 876.173213][T30280] ? genl_get_cmd+0x480/0x480 [ 876.177902][T30280] ? netlink_ack+0xa60/0xa60 [ 876.182509][T30280] ? netlink_deliver_tap+0x1b1/0xc30 [ 876.187813][T30280] genl_rcv+0x24/0x40 [ 876.191805][T30280] netlink_unicast+0x539/0x7e0 [ 876.196602][T30280] ? netlink_attachskb+0x880/0x880 [ 876.201720][T30280] ? __virt_addr_valid+0x5d/0x2d0 [ 876.206762][T30280] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 876.213038][T30280] ? __phys_addr_symbol+0x2c/0x70 [ 876.218073][T30280] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 876.223809][T30280] ? __check_object_size+0x16e/0x310 [ 876.229107][T30280] netlink_sendmsg+0x904/0xe00 [ 876.233890][T30280] ? netlink_unicast+0x7e0/0x7e0 [ 876.238843][T30280] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.245099][T30280] ? netlink_unicast+0x7e0/0x7e0 [ 876.250049][T30280] sock_sendmsg+0xcf/0x120 [ 876.254477][T30280] ____sys_sendmsg+0x6e8/0x810 [ 876.259255][T30280] ? kernel_sendmsg+0x50/0x50 [ 876.263957][T30280] ? do_recvmmsg+0x6d0/0x6d0 [ 876.268555][T30280] ? lock_chain_count+0x20/0x20 [ 876.273423][T30280] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 876.279421][T30280] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.285676][T30280] ? futex_wait+0x533/0x670 [ 876.290199][T30280] ___sys_sendmsg+0xf3/0x170 [ 876.294804][T30280] ? sendmsg_copy_msghdr+0x160/0x160 [ 876.300106][T30280] ? lock_downgrade+0x6e0/0x6e0 [ 876.304989][T30280] ? __fget_files+0x28c/0x470 [ 876.309690][T30280] ? __fget_light+0xea/0x280 [ 876.314292][T30280] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 876.320554][T30280] __sys_sendmsg+0xe5/0x1b0 [ 876.325072][T30280] ? __sys_sendmsg_sock+0x30/0x30 [ 876.330128][T30280] ? syscall_enter_from_user_mode+0x21/0x70 [ 876.336042][T30280] do_syscall_64+0x35/0xb0 [ 876.340474][T30280] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 876.346383][T30280] RIP: 0033:0x7f8a7fbd7059 [ 876.350806][T30280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 876.370422][T30280] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 876.378844][T30280] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 876.386828][T30280] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 876.394801][T30280] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 876.402778][T30280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 876.410762][T30280] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 876.418758][T30280] [ 876.447791][T30281] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 876.456385][T30281] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 876.469249][T30281] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 876.478035][T30281] CPU: 1 PID: 30281 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 876.488576][T30281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 876.498747][T30281] Call Trace: [ 876.502043][T30281] [ 876.504989][T30281] dump_stack_lvl+0xcd/0x134 [ 876.509619][T30281] sysfs_warn_dup.cold+0x1c/0x29 [ 876.514592][T30281] sysfs_do_create_link_sd+0x11e/0x140 [ 876.520094][T30281] sysfs_create_link+0x5f/0xc0 [ 876.524900][T30281] device_add+0x789/0x1ee0 [ 876.529351][T30281] ? wait_for_completion_io+0x270/0x270 [ 876.534914][T30281] ? asm_exc_int3+0x31/0x40 [ 876.540295][T30281] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 876.546551][T30281] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 876.552813][T30281] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.559151][T30281] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 876.565165][T30281] wiphy_register+0x1e86/0x29a0 [ 876.570042][T30281] ? wiphy_unregister+0xbf0/0xbf0 [ 876.575076][T30281] ? minstrel_ht_alloc+0x52c/0xa10 [ 876.580212][T30281] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 876.586297][T30281] ieee80211_register_hw+0x1f16/0x3ed0 [ 876.591790][T30281] ? ieee80211_restart_hw+0x290/0x290 [ 876.597183][T30281] ? debug_object_destroy+0x210/0x210 [ 876.602570][T30281] ? memset+0x20/0x40 [ 876.606564][T30281] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.612825][T30281] ? __hrtimer_init+0x136/0x280 [ 876.617690][T30281] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 876.623476][T30281] ? hwsim_virtio_rx_work+0x350/0x350 [ 876.628944][T30281] ? hwsim_new_radio_nl+0x992/0x1080 [ 876.634242][T30281] ? memcpy+0x39/0x60 [ 876.638239][T30281] hwsim_new_radio_nl+0x9bc/0x1080 [ 876.643374][T30281] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 876.649303][T30281] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.655556][T30281] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 876.663028][T30281] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 876.670328][T30281] genl_family_rcv_msg_doit+0x228/0x320 [ 876.675887][T30281] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 876.683271][T30281] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.689538][T30281] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.695795][T30281] ? ns_capable+0xd9/0x100 [ 876.700224][T30281] genl_rcv_msg+0x328/0x580 [ 876.704738][T30281] ? genl_get_cmd+0x480/0x480 [ 876.709422][T30281] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 876.715350][T30281] ? lock_release+0x720/0x720 [ 876.720043][T30281] netlink_rcv_skb+0x153/0x420 [ 876.724826][T30281] ? genl_get_cmd+0x480/0x480 [ 876.729512][T30281] ? netlink_ack+0xa60/0xa60 [ 876.734114][T30281] ? netlink_deliver_tap+0x1b1/0xc30 [ 876.739419][T30281] genl_rcv+0x24/0x40 [ 876.743426][T30281] netlink_unicast+0x539/0x7e0 [ 876.748210][T30281] ? netlink_attachskb+0x880/0x880 [ 876.753333][T30281] ? __virt_addr_valid+0x5d/0x2d0 [ 876.758376][T30281] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 876.764633][T30281] ? __phys_addr_symbol+0x2c/0x70 [ 876.769670][T30281] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 876.775399][T30281] ? __check_object_size+0x16e/0x310 [ 876.780696][T30281] netlink_sendmsg+0x904/0xe00 [ 876.785476][T30281] ? netlink_unicast+0x7e0/0x7e0 [ 876.790427][T30281] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.796683][T30281] ? netlink_unicast+0x7e0/0x7e0 [ 876.801627][T30281] sock_sendmsg+0xcf/0x120 [ 876.806055][T30281] ____sys_sendmsg+0x6e8/0x810 [ 876.810833][T30281] ? kernel_sendmsg+0x50/0x50 [ 876.815526][T30281] ? do_recvmmsg+0x6d0/0x6d0 [ 876.820123][T30281] ? lock_chain_count+0x20/0x20 [ 876.824983][T30281] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 876.830975][T30281] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 876.837229][T30281] ? futex_wait+0x533/0x670 [ 876.841750][T30281] ___sys_sendmsg+0xf3/0x170 [ 876.846350][T30281] ? sendmsg_copy_msghdr+0x160/0x160 [ 876.851651][T30281] ? lock_downgrade+0x6e0/0x6e0 [ 876.856535][T30281] ? __fget_files+0x28c/0x470 [ 876.861233][T30281] ? __fget_light+0xea/0x280 [ 876.865835][T30281] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 876.872093][T30281] __sys_sendmsg+0xe5/0x1b0 [ 876.876610][T30281] ? __sys_sendmsg_sock+0x30/0x30 [ 876.881660][T30281] ? syscall_enter_from_user_mode+0x21/0x70 [ 876.887571][T30281] do_syscall_64+0x35/0xb0 [ 876.891995][T30281] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 876.897900][T30281] RIP: 0033:0x7f4b423c2059 [ 876.902320][T30281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 876.921940][T30281] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 876.930381][T30281] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 876.938355][T30281] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 876.946330][T30281] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 876.954306][T30281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 876.962280][T30281] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 876.970290][T30281] 20:15:46 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60106811402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:46 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200063382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 877.018644][T30285] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 877.050072][T30285] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 877.080837][T30285] CPU: 1 PID: 30285 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 877.091397][T30285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 877.101479][T30285] Call Trace: [ 877.104769][T30285] [ 877.107704][T30285] dump_stack_lvl+0xcd/0x134 [ 877.112311][T30285] sysfs_warn_dup.cold+0x1c/0x29 [ 877.117260][T30285] sysfs_do_create_link_sd+0x11e/0x140 [ 877.122734][T30285] sysfs_create_link+0x5f/0xc0 [ 877.127520][T30285] device_add+0x789/0x1ee0 [ 877.131953][T30285] ? wait_for_completion_io+0x270/0x270 [ 877.137510][T30285] ? asm_exc_int3+0x31/0x40 [ 877.142024][T30285] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 877.148286][T30285] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 877.154539][T30285] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 877.160795][T30285] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 877.166799][T30285] wiphy_register+0x1e86/0x29a0 [ 877.171677][T30285] ? wiphy_unregister+0xbf0/0xbf0 [ 877.176706][T30285] ? minstrel_ht_alloc+0x52c/0xa10 [ 877.181848][T30285] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 877.187941][T30285] ieee80211_register_hw+0x1f16/0x3ed0 [ 877.193426][T30285] ? ieee80211_restart_hw+0x290/0x290 [ 877.198819][T30285] ? debug_object_destroy+0x210/0x210 [ 877.204248][T30285] ? memset+0x20/0x40 [ 877.208262][T30285] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 877.214522][T30285] ? __hrtimer_init+0x136/0x280 [ 877.219584][T30285] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 877.225342][T30285] ? hwsim_virtio_rx_work+0x350/0x350 [ 877.230722][T30285] ? hwsim_new_radio_nl+0x992/0x1080 [ 877.236018][T30285] ? memcpy+0x39/0x60 [ 877.240025][T30285] hwsim_new_radio_nl+0x9bc/0x1080 [ 877.245163][T30285] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 877.251085][T30285] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 877.257433][T30285] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 877.264829][T30285] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 877.272159][T30285] genl_family_rcv_msg_doit+0x228/0x320 [ 877.277730][T30285] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 877.285114][T30285] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 877.291381][T30285] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 877.297636][T30285] ? ns_capable+0xd9/0x100 [ 877.302092][T30285] genl_rcv_msg+0x328/0x580 [ 877.306616][T30285] ? genl_get_cmd+0x480/0x480 [ 877.311305][T30285] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 877.317222][T30285] ? lock_release+0x720/0x720 [ 877.321912][T30285] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 877.327758][T30285] netlink_rcv_skb+0x153/0x420 [ 877.332533][T30285] ? genl_get_cmd+0x480/0x480 [ 877.337222][T30285] ? netlink_ack+0xa60/0xa60 [ 877.341841][T30285] ? netlink_deliver_tap+0x1b1/0xc30 [ 877.347142][T30285] genl_rcv+0x24/0x40 [ 877.351134][T30285] netlink_unicast+0x539/0x7e0 [ 877.355911][T30285] ? netlink_attachskb+0x880/0x880 [ 877.361029][T30285] ? __virt_addr_valid+0x5d/0x2d0 [ 877.366068][T30285] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 877.372328][T30285] ? __phys_addr_symbol+0x2c/0x70 [ 877.377362][T30285] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 877.383093][T30285] ? __check_object_size+0x16e/0x310 [ 877.388394][T30285] netlink_sendmsg+0x904/0xe00 [ 877.393173][T30285] ? netlink_unicast+0x7e0/0x7e0 [ 877.398122][T30285] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 877.404379][T30285] ? netlink_unicast+0x7e0/0x7e0 [ 877.409324][T30285] sock_sendmsg+0xcf/0x120 [ 877.413758][T30285] ____sys_sendmsg+0x6e8/0x810 [ 877.418533][T30285] ? kernel_sendmsg+0x50/0x50 [ 877.423215][T30285] ? do_recvmmsg+0x6d0/0x6d0 [ 877.427821][T30285] ? lock_chain_count+0x20/0x20 [ 877.432685][T30285] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 877.438688][T30285] ___sys_sendmsg+0xf3/0x170 [ 877.443317][T30285] ? sendmsg_copy_msghdr+0x160/0x160 [ 877.448620][T30285] ? lock_downgrade+0x6e0/0x6e0 [ 877.453497][T30285] ? __fget_files+0x28c/0x470 [ 877.458193][T30285] ? __fget_light+0xea/0x280 [ 877.462797][T30285] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 877.469061][T30285] __sys_sendmsg+0xe5/0x1b0 [ 877.473580][T30285] ? __sys_sendmsg_sock+0x30/0x30 [ 877.478632][T30285] ? syscall_enter_from_user_mode+0x21/0x70 [ 877.484547][T30285] do_syscall_64+0x35/0xb0 [ 877.488974][T30285] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 877.494882][T30285] RIP: 0033:0x7f0982948059 [ 877.499306][T30285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 877.518920][T30285] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 877.527357][T30285] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 877.535332][T30285] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 877.543312][T30285] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 877.551290][T30285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 877.559267][T30285] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 877.567260][T30285] 20:15:46 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) r2 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), 0xffffffffffffffff) (rerun: 32) sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x1}, 0x14}}, 0x0) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (async) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r4, r3, 0x0, 0x100000002) openat$cgroup_ro(r3, &(0x7f0000000180)='cpuset.memory_pressure\x00', 0x0, 0x0) (async, rerun: 32) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) (async, rerun: 32) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) write$binfmt_script(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB="2321202e2f66696c6530207d20a520202d2f20207d2d265b5c285c5c2abe5e2a5c7d3a7b7d2a26215b2d6e7d0a0b8d5a46f06577720bd9cfb72d62b04c7ef6c8b787646a715f25ab4bb27ea7e868a570a880f417956a1fd326e84b63fdffbe6f9f04c0e0d77ff76266c3d0e7cd86e3467419ab2dd1b72ccee48a564395119d04ce7230dcf18f59949e862731f1648919adf1204336e21c776e745b412985f2088d85c915161efbe9f50472ce50f40d5ebb459471239555"], 0xb7) (async) close(r0) 20:15:46 executing program 2: syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffe0d35b10932ecf9576710faba3780300000045040000000000d8175bc06870307e017f00000108006371dcec50257f06feae9b1c0100"/72], 0x0) syz_emit_ethernet(0x19, &(0x7f0000000100)={@broadcast, @local, @val={@val={0x9100, 0x5}, {0x8100, 0x5, 0x1, 0x4}}, {@x25={0x805, {0x3, 0x80, 0xfd}}}}, &(0x7f0000000140)={0x1, 0x3, [0xf2c, 0xd4f, 0x7f5, 0x2]}) syz_emit_ethernet(0x5a, &(0x7f0000000080)={@remote, @local, @val={@void, {0x8100, 0x5, 0x0, 0x4}}, {@canfd={0xd, {{0x0, 0x1}, 0x27, 0x0, 0x0, 0x0, "1699f64b1665f4e8b638d26665244b43729c0625672cbdbd4cb7d3fb247b7108cf906d75512c8d02f4fe545fbb6c79929c412a4524e832f2c02333a729aa67fe"}}}}, 0x0) [ 877.605441][T30303] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 877.613649][T30303] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. 20:15:46 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994100424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 877.733011][T30303] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 877.746721][T30303] CPU: 1 PID: 30303 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 877.757271][T30303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 877.767445][T30303] Call Trace: [ 877.770746][T30303] [ 877.773703][T30303] dump_stack_lvl+0xcd/0x134 [ 877.778331][T30303] sysfs_warn_dup.cold+0x1c/0x29 [ 877.783302][T30303] sysfs_do_create_link_sd+0x11e/0x140 [ 877.788795][T30303] sysfs_create_link+0x5f/0xc0 [ 877.793589][T30303] device_add+0x789/0x1ee0 [ 877.798031][T30303] ? wait_for_completion_io+0x270/0x270 [ 877.803611][T30303] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 877.809885][T30303] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 877.816154][T30303] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 877.822429][T30303] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 877.828441][T30303] wiphy_register+0x1e86/0x29a0 20:15:46 executing program 2: syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffe0d35b10932ecf9576710faba3780300000045040000000000d8175bc06870307e017f00000108006371dcec50257f06feae9b1c0100"/72], 0x0) syz_emit_ethernet(0x19, &(0x7f0000000100)={@broadcast, @local, @val={@val={0x9100, 0x5}, {0x8100, 0x5, 0x1, 0x4}}, {@x25={0x805, {0x3, 0x80, 0xfd}}}}, &(0x7f0000000140)={0x1, 0x3, [0xf2c, 0xd4f, 0x7f5, 0x2]}) syz_emit_ethernet(0x5a, &(0x7f0000000080)={@remote, @local, @val={@void, {0x8100, 0x5, 0x0, 0x4}}, {@canfd={0xd, {{0x0, 0x1}, 0x27, 0x0, 0x0, 0x0, "1699f64b1665f4e8b638d26665244b43729c0625672cbdbd4cb7d3fb247b7108cf906d75512c8d02f4fe545fbb6c79929c412a4524e832f2c02333a729aa67fe"}}}}, 0x0) syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffe0d35b10932ecf9576710faba3780300000045040000000000d8175bc06870307e017f00000108006371dcec50257f06feae9b1c0100"/72], 0x0) (async) syz_emit_ethernet(0x19, &(0x7f0000000100)={@broadcast, @local, @val={@val={0x9100, 0x5}, {0x8100, 0x5, 0x1, 0x4}}, {@x25={0x805, {0x3, 0x80, 0xfd}}}}, &(0x7f0000000140)={0x1, 0x3, [0xf2c, 0xd4f, 0x7f5, 0x2]}) (async) syz_emit_ethernet(0x5a, &(0x7f0000000080)={@remote, @local, @val={@void, {0x8100, 0x5, 0x0, 0x4}}, {@canfd={0xd, {{0x0, 0x1}, 0x27, 0x0, 0x0, 0x0, "1699f64b1665f4e8b638d26665244b43729c0625672cbdbd4cb7d3fb247b7108cf906d75512c8d02f4fe545fbb6c79929c412a4524e832f2c02333a729aa67fe"}}}}, 0x0) (async) [ 877.833336][T30303] ? wiphy_unregister+0xbf0/0xbf0 [ 877.838387][T30303] ? minstrel_ht_alloc+0x52c/0xa10 [ 877.843540][T30303] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 877.849642][T30303] ieee80211_register_hw+0x1f16/0x3ed0 [ 877.855151][T30303] ? ieee80211_restart_hw+0x290/0x290 [ 877.860561][T30303] ? debug_object_destroy+0x210/0x210 [ 877.865972][T30303] ? memset+0x20/0x40 [ 877.869986][T30303] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 877.876263][T30303] ? __hrtimer_init+0x136/0x280 [ 877.881144][T30303] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 877.886905][T30303] ? hwsim_virtio_rx_work+0x350/0x350 [ 877.892280][T30303] ? hwsim_new_radio_nl+0x992/0x1080 [ 877.897565][T30303] ? memcpy+0x39/0x60 [ 877.901561][T30303] hwsim_new_radio_nl+0x9bc/0x1080 [ 877.906693][T30303] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 877.912592][T30303] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 877.918833][T30303] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 877.926195][T30303] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 877.933477][T30303] genl_family_rcv_msg_doit+0x228/0x320 [ 877.939025][T30303] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 877.946390][T30303] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 877.952638][T30303] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 877.958884][T30303] ? ns_capable+0xd9/0x100 [ 877.963312][T30303] genl_rcv_msg+0x328/0x580 [ 877.967811][T30303] ? genl_get_cmd+0x480/0x480 [ 877.972480][T30303] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 877.978378][T30303] ? lock_release+0x720/0x720 [ 877.983064][T30303] netlink_rcv_skb+0x153/0x420 [ 877.987835][T30303] ? genl_get_cmd+0x480/0x480 [ 877.992537][T30303] ? netlink_ack+0xa60/0xa60 [ 877.997129][T30303] ? netlink_deliver_tap+0x1b1/0xc30 [ 878.002429][T30303] genl_rcv+0x24/0x40 [ 878.006412][T30303] netlink_unicast+0x539/0x7e0 [ 878.011173][T30303] ? netlink_attachskb+0x880/0x880 [ 878.016287][T30303] ? __virt_addr_valid+0x5d/0x2d0 [ 878.021314][T30303] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 878.027554][T30303] ? __phys_addr_symbol+0x2c/0x70 [ 878.032574][T30303] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 878.038289][T30303] ? __check_object_size+0x16e/0x310 [ 878.043574][T30303] netlink_sendmsg+0x904/0xe00 [ 878.048343][T30303] ? netlink_unicast+0x7e0/0x7e0 [ 878.053286][T30303] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 878.059525][T30303] ? netlink_unicast+0x7e0/0x7e0 [ 878.064463][T30303] sock_sendmsg+0xcf/0x120 [ 878.068906][T30303] ____sys_sendmsg+0x6e8/0x810 [ 878.073687][T30303] ? kernel_sendmsg+0x50/0x50 [ 878.078353][T30303] ? do_recvmmsg+0x6d0/0x6d0 [ 878.082937][T30303] ? lock_chain_count+0x20/0x20 [ 878.087779][T30303] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 878.093769][T30303] ___sys_sendmsg+0xf3/0x170 [ 878.098374][T30303] ? sendmsg_copy_msghdr+0x160/0x160 [ 878.103653][T30303] ? lock_downgrade+0x6e0/0x6e0 [ 878.108525][T30303] ? __fget_files+0x28c/0x470 [ 878.113199][T30303] ? __fget_light+0xea/0x280 [ 878.117782][T30303] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 878.124034][T30303] __sys_sendmsg+0xe5/0x1b0 [ 878.128556][T30303] ? __sys_sendmsg_sock+0x30/0x30 [ 878.133582][T30303] ? syscall_enter_from_user_mode+0x21/0x70 [ 878.139474][T30303] do_syscall_64+0x35/0xb0 [ 878.143884][T30303] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 878.149776][T30303] RIP: 0033:0x7f4b423c2059 [ 878.154205][T30303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 878.173828][T30303] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 878.182238][T30303] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 878.190228][T30303] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 878.198211][T30303] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 878.206176][T30303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 878.214144][T30303] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 878.222127][T30303] [ 878.260102][T30304] netlink: 120764 bytes leftover after parsing attributes in process `syz-executor.3'. [ 878.285107][T30304] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 878.300278][T30304] CPU: 1 PID: 30304 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 878.310831][T30304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 878.320912][T30304] Call Trace: [ 878.324205][T30304] [ 878.327131][T30304] dump_stack_lvl+0xcd/0x134 [ 878.331722][T30304] sysfs_warn_dup.cold+0x1c/0x29 [ 878.336672][T30304] sysfs_do_create_link_sd+0x11e/0x140 [ 878.342151][T30304] sysfs_create_link+0x5f/0xc0 [ 878.346912][T30304] device_add+0x789/0x1ee0 [ 878.351329][T30304] ? wait_for_completion_io+0x270/0x270 [ 878.356868][T30304] ? minstrel_ht_alloc+0x4b/0xa10 [ 878.361890][T30304] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 878.368130][T30304] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 878.374388][T30304] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 878.380635][T30304] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 878.386636][T30304] wiphy_register+0x1e86/0x29a0 [ 878.391507][T30304] ? wiphy_unregister+0xbf0/0xbf0 [ 878.396541][T30304] ? minstrel_ht_alloc+0x52c/0xa10 [ 878.401671][T30304] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 878.407751][T30304] ieee80211_register_hw+0x1f16/0x3ed0 [ 878.413215][T30304] ? ieee80211_restart_hw+0x290/0x290 [ 878.418581][T30304] ? debug_object_destroy+0x210/0x210 [ 878.423952][T30304] ? memset+0x20/0x40 [ 878.427933][T30304] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 878.434171][T30304] ? __hrtimer_init+0x136/0x280 [ 878.439028][T30304] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 878.444793][T30304] ? hwsim_virtio_rx_work+0x350/0x350 [ 878.450156][T30304] ? hwsim_new_radio_nl+0x992/0x1080 [ 878.455438][T30304] ? memcpy+0x39/0x60 [ 878.459417][T30304] hwsim_new_radio_nl+0x9bc/0x1080 [ 878.464527][T30304] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 878.470425][T30304] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 878.476690][T30304] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 878.484142][T30304] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 878.491443][T30304] genl_family_rcv_msg_doit+0x228/0x320 [ 878.496987][T30304] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 878.504364][T30304] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 878.510609][T30304] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 878.516845][T30304] ? ns_capable+0xd9/0x100 [ 878.521258][T30304] genl_rcv_msg+0x328/0x580 [ 878.525758][T30304] ? genl_get_cmd+0x480/0x480 [ 878.530428][T30304] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 878.536324][T30304] ? lock_release+0x720/0x720 [ 878.540996][T30304] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 878.546804][T30304] netlink_rcv_skb+0x153/0x420 [ 878.551567][T30304] ? genl_get_cmd+0x480/0x480 [ 878.556247][T30304] ? netlink_ack+0xa60/0xa60 [ 878.560833][T30304] ? netlink_deliver_tap+0x1b1/0xc30 [ 878.566123][T30304] genl_rcv+0x24/0x40 [ 878.570122][T30304] netlink_unicast+0x539/0x7e0 [ 878.574884][T30304] ? netlink_attachskb+0x880/0x880 [ 878.579984][T30304] ? __virt_addr_valid+0x5d/0x2d0 [ 878.585003][T30304] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 878.591238][T30304] ? __phys_addr_symbol+0x2c/0x70 [ 878.596256][T30304] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 878.601972][T30304] ? __check_object_size+0x16e/0x310 [ 878.607254][T30304] netlink_sendmsg+0x904/0xe00 [ 878.612019][T30304] ? netlink_unicast+0x7e0/0x7e0 [ 878.616950][T30304] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 878.623197][T30304] ? netlink_unicast+0x7e0/0x7e0 [ 878.628135][T30304] sock_sendmsg+0xcf/0x120 [ 878.632561][T30304] ____sys_sendmsg+0x6e8/0x810 [ 878.637341][T30304] ? kernel_sendmsg+0x50/0x50 [ 878.642004][T30304] ? do_recvmmsg+0x6d0/0x6d0 [ 878.646585][T30304] ? lock_chain_count+0x20/0x20 [ 878.651429][T30304] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 878.657426][T30304] ___sys_sendmsg+0xf3/0x170 [ 878.662013][T30304] ? sendmsg_copy_msghdr+0x160/0x160 [ 878.667306][T30304] ? lock_downgrade+0x6e0/0x6e0 [ 878.672194][T30304] ? __fget_files+0x28c/0x470 [ 878.676867][T30304] ? __fget_light+0xea/0x280 [ 878.681448][T30304] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 878.687692][T30304] __sys_sendmsg+0xe5/0x1b0 [ 878.692195][T30304] ? __sys_sendmsg_sock+0x30/0x30 [ 878.697222][T30304] ? syscall_enter_from_user_mode+0x21/0x70 [ 878.703114][T30304] do_syscall_64+0x35/0xb0 [ 878.707525][T30304] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 878.713420][T30304] RIP: 0033:0x7f8a7fbd7059 [ 878.717848][T30304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 878.737665][T30304] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 878.746080][T30304] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 878.754048][T30304] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 878.762077][T30304] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 878.770038][T30304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 878.778019][T30304] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 878.785994][T30304] 20:15:48 executing program 2: syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffe0d35b10932ecf9576710faba3780300000045040000000000d8175bc06870307e017f00000108006371dcec50257f06feae9b1c0100"/72], 0x0) (async, rerun: 64) syz_emit_ethernet(0x19, &(0x7f0000000100)={@broadcast, @local, @val={@val={0x9100, 0x5}, {0x8100, 0x5, 0x1, 0x4}}, {@x25={0x805, {0x3, 0x80, 0xfd}}}}, &(0x7f0000000140)={0x1, 0x3, [0xf2c, 0xd4f, 0x7f5, 0x2]}) (async, rerun: 64) syz_emit_ethernet(0x5a, &(0x7f0000000080)={@remote, @local, @val={@void, {0x8100, 0x5, 0x0, 0x4}}, {@canfd={0xd, {{0x0, 0x1}, 0x27, 0x0, 0x0, 0x0, "1699f64b1665f4e8b638d26665244b43729c0625672cbdbd4cb7d3fb247b7108cf906d75512c8d02f4fe545fbb6c79929c412a4524e832f2c02333a729aa67fe"}}}}, 0x0) 20:15:48 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994110424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:48 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200083382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:48 executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f0000000400)={'gretap0\x00', 0x0, 0x8000, 0x8, 0x0, 0x4b4c, {{0x12, 0x4, 0x0, 0x5, 0x48, 0x0, 0x0, 0x1, 0x4, 0x0, @multicast1, @local, {[@ssrr={0x89, 0x23, 0x34, [@initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @dev={0xac, 0x14, 0x14, 0x11}, @loopback, @multicast1, @loopback, @dev={0xac, 0x14, 0x14, 0x3f}, @empty]}, @generic={0x82, 0x11, "aaec341cec58e3ed91f4330aa0598b"}]}}}}}) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000002c0)={0x0, @remote, @remote}, &(0x7f0000000300)=0xc) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c0000001400200029bd7000fadbdf250a0880ff", @ANYRES32=r1, @ANYBLOB="1400010000000000000000000000ffff64010101"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000814) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f00000005c0)={0x8, 0x4, 0x3, 0x5, 0x0, 0x3}) sendfile(r3, 0xffffffffffffffff, 0x0, 0xf03b0000) sendfile(r3, r2, 0x0, 0x8000000000004) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) r4 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r4, &(0x7f0000000040), 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000001c0), 0x40) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) 20:15:48 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60106c11402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:48 executing program 4: bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) recvfrom$unix(r0, &(0x7f0000000100)=""/12, 0xc, 0x120, &(0x7f0000000280)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f00000001c0)=0xffffffffffffffff) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000020000000000000000000850000000700000095"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x8f, &(0x7f0000000000)=""/143, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='signal_generate\x00', r1}, 0x10) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x2) connect$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x7d, &(0x7f0000001280)=""/4090, &(0x7f0000000040)=0xffa) sendfile(r0, 0xffffffffffffffff, 0x0, 0x3f) sendmmsg(r0, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x3ec0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000240)={0xa, 0x0, 0x0, @empty}, 0x1c) write$binfmt_misc(r2, &(0x7f0000000480)={'syz0', "fd3b2c2faa8f2e30a3fe3d1aa0a85a728e3b160945696cb9e9982e43cdad77a2cd1fc476"}, 0x30) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000380)={@rand_addr=' \x01\x00', 0x7, 0x1, 0x0, 0x0, 0x910, 0x8}, &(0x7f0000000400)=0x20) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000180)={r0, 0x1, 0x2}) connect$unix(r4, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000004c0)=ANY=[@ANYBLOB="280000001300010d000000000000100008000000", @ANYRES32=r3, @ANYBLOB="08000000ffffffff08000300", @ANYRES32, @ANYBLOB="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"], 0x28}], 0x1, 0x0, 0x0, 0x2000c804}, 0x0) [ 879.172013][T30321] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. 20:15:48 executing program 2: setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f00000002c0), 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f00000000c0)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x18, r4, 0x20, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x4, 0x6, 0x0, 0x0}]}, 0x18}}, 0x0) sendfile(r3, r2, 0x0, 0x100000002) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f0000000040)) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r5, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x20, &(0x7f00000000c0)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x4e21, @local}]}, &(0x7f0000000080)=0x10) [ 879.226245][T30321] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 879.250262][T30321] CPU: 0 PID: 30321 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 879.260823][T30321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 879.270988][T30321] Call Trace: [ 879.274272][T30321] [ 879.277204][T30321] dump_stack_lvl+0xcd/0x134 [ 879.281813][T30321] sysfs_warn_dup.cold+0x1c/0x29 [ 879.286760][T30321] sysfs_do_create_link_sd+0x11e/0x140 [ 879.292234][T30321] sysfs_create_link+0x5f/0xc0 [ 879.297007][T30321] device_add+0x789/0x1ee0 [ 879.301444][T30321] ? wait_for_completion_io+0x270/0x270 [ 879.307001][T30321] ? lock_downgrade+0x6e0/0x6e0 [ 879.311864][T30321] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 879.318118][T30321] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 879.324371][T30321] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 879.330621][T30321] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 879.336621][T30321] wiphy_register+0x1e86/0x29a0 [ 879.341494][T30321] ? wiphy_unregister+0xbf0/0xbf0 [ 879.346527][T30321] ? minstrel_ht_alloc+0x52c/0xa10 [ 879.351665][T30321] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 879.357748][T30321] ieee80211_register_hw+0x1f16/0x3ed0 [ 879.363233][T30321] ? ieee80211_restart_hw+0x290/0x290 [ 879.368616][T30321] ? debug_object_destroy+0x210/0x210 [ 879.374012][T30321] ? memset+0x20/0x40 [ 879.378004][T30321] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 879.384258][T30321] ? __hrtimer_init+0x136/0x280 [ 879.389120][T30321] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 879.394874][T30321] ? hwsim_virtio_rx_work+0x350/0x350 [ 879.400254][T30321] ? hwsim_new_radio_nl+0x992/0x1080 [ 879.405550][T30321] ? memcpy+0x39/0x60 [ 879.409543][T30321] hwsim_new_radio_nl+0x9bc/0x1080 [ 879.414671][T30321] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 879.420586][T30321] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 879.426838][T30321] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 879.434218][T30321] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 879.441519][T30321] genl_family_rcv_msg_doit+0x228/0x320 [ 879.447080][T30321] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 879.454476][T30321] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 879.460758][T30321] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 879.467009][T30321] ? ns_capable+0xd9/0x100 [ 879.471452][T30321] genl_rcv_msg+0x328/0x580 [ 879.475968][T30321] ? genl_get_cmd+0x480/0x480 [ 879.480656][T30321] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 879.486564][T30321] ? lock_release+0x720/0x720 [ 879.491253][T30321] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 879.497077][T30321] netlink_rcv_skb+0x153/0x420 [ 879.501863][T30321] ? genl_get_cmd+0x480/0x480 [ 879.506552][T30321] ? netlink_ack+0xa60/0xa60 [ 879.511158][T30321] ? netlink_deliver_tap+0x1b1/0xc30 [ 879.516461][T30321] genl_rcv+0x24/0x40 [ 879.520451][T30321] netlink_unicast+0x539/0x7e0 [ 879.525228][T30321] ? netlink_attachskb+0x880/0x880 [ 879.530341][T30321] ? __virt_addr_valid+0x5d/0x2d0 [ 879.535377][T30321] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 879.541631][T30321] ? __phys_addr_symbol+0x2c/0x70 [ 879.546662][T30321] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 879.552391][T30321] ? __check_object_size+0x16e/0x310 [ 879.557690][T30321] netlink_sendmsg+0x904/0xe00 [ 879.562469][T30321] ? netlink_unicast+0x7e0/0x7e0 [ 879.567428][T30321] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 879.573684][T30321] ? netlink_unicast+0x7e0/0x7e0 [ 879.578633][T30321] sock_sendmsg+0xcf/0x120 [ 879.583064][T30321] ____sys_sendmsg+0x6e8/0x810 [ 879.587852][T30321] ? kernel_sendmsg+0x50/0x50 [ 879.592537][T30321] ? do_recvmmsg+0x6d0/0x6d0 [ 879.597137][T30321] ? lock_chain_count+0x20/0x20 [ 879.602001][T30321] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 879.607997][T30321] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 879.614268][T30321] ? futex_wait+0x533/0x670 [ 879.618790][T30321] ___sys_sendmsg+0xf3/0x170 [ 879.623394][T30321] ? sendmsg_copy_msghdr+0x160/0x160 [ 879.628705][T30321] ? lock_downgrade+0x6e0/0x6e0 [ 879.633580][T30321] ? __fget_files+0x28c/0x470 [ 879.638277][T30321] ? __fget_light+0xea/0x280 [ 879.642875][T30321] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 879.649134][T30321] __sys_sendmsg+0xe5/0x1b0 [ 879.653650][T30321] ? __sys_sendmsg_sock+0x30/0x30 [ 879.658728][T30321] ? syscall_enter_from_user_mode+0x21/0x70 [ 879.664642][T30321] do_syscall_64+0x35/0xb0 [ 879.669076][T30321] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 879.674992][T30321] RIP: 0033:0x7f0982948059 [ 879.679412][T30321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 879.699025][T30321] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 879.707443][T30321] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 879.715425][T30321] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 879.723399][T30321] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 879.731374][T30321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 879.739433][T30321] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 879.747440][T30321] 20:15:48 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994120424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 879.775887][T30325] netlink: 'syz-executor.1': attribute type 11 has an invalid length. 20:15:48 executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f0000000400)={'gretap0\x00', 0x0, 0x8000, 0x8, 0x0, 0x4b4c, {{0x12, 0x4, 0x0, 0x5, 0x48, 0x0, 0x0, 0x1, 0x4, 0x0, @multicast1, @local, {[@ssrr={0x89, 0x23, 0x34, [@initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @dev={0xac, 0x14, 0x14, 0x11}, @loopback, @multicast1, @loopback, @dev={0xac, 0x14, 0x14, 0x3f}, @empty]}, @generic={0x82, 0x11, "aaec341cec58e3ed91f4330aa0598b"}]}}}}}) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000002c0)={0x0, @remote, @remote}, &(0x7f0000000300)=0xc) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c0000001400200029bd7000fadbdf250a0880ff", @ANYRES32=r1, @ANYBLOB="1400010000000000000000000000ffff64010101"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000814) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f00000005c0)={0x8, 0x4, 0x3, 0x5, 0x0, 0x3}) sendfile(r3, 0xffffffffffffffff, 0x0, 0xf03b0000) sendfile(r3, r2, 0x0, 0x8000000000004) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) r4 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r4, &(0x7f0000000040), 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000001c0), 0x40) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000004c79db9e5f939c6cbc8ef9612a0a37ec078429a494e1b1c85ad76072a74a553d98d5f29e7a0d5d813ae4a3d6bd1fc55cb65d2c01a28e6cb53a18119a4c1fe1300ab7d449de230b256eb4625d04e55dfa1744d0b1dbe3f0fbedc259abbb41bd609e96238415beeaeb6ac0cdaaeb96cea1341ccc20fe63b6a2c03adc300e029b8a9190bf7e033acfd265f63ac46059cc47f6cb8bdb0e122b61040a3df19044711423ffa96ed2e57cba4c6d9226c114b30c11e79b80f7cf9b1d7294522ffd8b306e3d0e3c2a1a65da1696ba5f067522b73f2b52a12d07c79c32f51487bdfbd6789df3b219ea61e943f8e32fa5b7f801d89245f2ea66e"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f0000000400)={'gretap0\x00', 0x0, 0x8000, 0x8, 0x0, 0x4b4c, {{0x12, 0x4, 0x0, 0x5, 0x48, 0x0, 0x0, 0x1, 0x4, 0x0, @multicast1, @local, {[@ssrr={0x89, 0x23, 0x34, [@initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @dev={0xac, 0x14, 0x14, 0x11}, @loopback, @multicast1, @loopback, @dev={0xac, 0x14, 0x14, 0x3f}, @empty]}, @generic={0x82, 0x11, "aaec341cec58e3ed91f4330aa0598b"}]}}}}}) (async) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000002c0)={0x0, @remote, @remote}, &(0x7f0000000300)=0xc) (async) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c0000001400200029bd7000fadbdf250a0880ff", @ANYRES32=r1, @ANYBLOB="1400010000000000000000000000ffff64010101"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000814) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) (async) getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) (async) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) (async) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f00000005c0)={0x8, 0x4, 0x3, 0x5, 0x0, 0x3}) (async) sendfile(r3, 0xffffffffffffffff, 0x0, 0xf03b0000) (async) sendfile(r3, r2, 0x0, 0x8000000000004) (async) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) (async) socket$can_bcm(0x1d, 0x2, 0x2) (async) connect$can_bcm(r4, &(0x7f0000000040), 0x10) (async) bpf$MAP_CREATE(0x0, &(0x7f00000001c0), 0x40) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) (async) [ 879.821309][T30325] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 879.889709][T30325] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 879.914247][ T25] audit: type=1804 audit(1643832948.887:1023): pid=30335 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir602834281/syzkaller.s78526/1248/cgroup.controllers" dev="sda1" ino=1161 res=1 errno=0 [ 879.946819][T30325] CPU: 1 PID: 30325 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 879.957374][T30325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 879.967454][T30325] Call Trace: [ 879.970756][T30325] [ 879.973701][T30325] dump_stack_lvl+0xcd/0x134 [ 879.978334][T30325] sysfs_warn_dup.cold+0x1c/0x29 [ 879.983306][T30325] sysfs_do_create_link_sd+0x11e/0x140 [ 879.988799][T30325] sysfs_create_link+0x5f/0xc0 [ 879.993588][T30325] device_add+0x789/0x1ee0 [ 879.998039][T30325] ? wait_for_completion_io+0x270/0x270 [ 880.003617][T30325] ? minstrel_ht_alloc+0x4b/0xa10 [ 880.008678][T30325] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 880.014924][T30325] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 880.021167][T30325] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.027412][T30325] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 880.033405][T30325] wiphy_register+0x1e86/0x29a0 [ 880.038280][T30325] ? wiphy_unregister+0xbf0/0xbf0 [ 880.043311][T30325] ? minstrel_ht_alloc+0x52c/0xa10 [ 880.048432][T30325] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 880.054583][T30325] ieee80211_register_hw+0x1f16/0x3ed0 [ 880.060076][T30325] ? ieee80211_restart_hw+0x290/0x290 [ 880.065454][T30325] ? debug_object_destroy+0x210/0x210 [ 880.070840][T30325] ? memset+0x20/0x40 [ 880.074833][T30325] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.081071][T30325] ? __hrtimer_init+0x136/0x280 [ 880.085933][T30325] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 880.091694][T30325] ? hwsim_virtio_rx_work+0x350/0x350 [ 880.097067][T30325] ? hwsim_new_radio_nl+0x992/0x1080 [ 880.102355][T30325] ? memcpy+0x39/0x60 [ 880.106594][T30325] hwsim_new_radio_nl+0x9bc/0x1080 [ 880.111714][T30325] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 880.117638][T30325] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.123875][T30325] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 880.131249][T30325] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 880.138531][T30325] genl_family_rcv_msg_doit+0x228/0x320 [ 880.144073][T30325] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 880.151440][T30325] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.157695][T30325] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.163937][T30325] ? ns_capable+0xd9/0x100 [ 880.168376][T30325] genl_rcv_msg+0x328/0x580 [ 880.172882][T30325] ? genl_get_cmd+0x480/0x480 [ 880.177560][T30325] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 880.183465][T30325] ? lock_release+0x720/0x720 [ 880.188167][T30325] netlink_rcv_skb+0x153/0x420 [ 880.192990][T30325] ? genl_get_cmd+0x480/0x480 [ 880.197669][T30325] ? netlink_ack+0xa60/0xa60 [ 880.202261][T30325] ? netlink_deliver_tap+0x1b1/0xc30 [ 880.207563][T30325] genl_rcv+0x24/0x40 [ 880.211659][T30325] netlink_unicast+0x539/0x7e0 [ 880.216434][T30325] ? netlink_attachskb+0x880/0x880 [ 880.221560][T30325] ? __virt_addr_valid+0x5d/0x2d0 [ 880.226583][T30325] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 880.232825][T30325] ? __phys_addr_symbol+0x2c/0x70 [ 880.237865][T30325] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 880.243605][T30325] ? __check_object_size+0x16e/0x310 [ 880.248891][T30325] netlink_sendmsg+0x904/0xe00 [ 880.253708][T30325] ? netlink_unicast+0x7e0/0x7e0 [ 880.258676][T30325] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.264920][T30325] ? netlink_unicast+0x7e0/0x7e0 [ 880.269856][T30325] sock_sendmsg+0xcf/0x120 [ 880.274290][T30325] ____sys_sendmsg+0x6e8/0x810 [ 880.279061][T30325] ? kernel_sendmsg+0x50/0x50 [ 880.283754][T30325] ? do_recvmmsg+0x6d0/0x6d0 [ 880.288342][T30325] ? lock_chain_count+0x20/0x20 [ 880.293208][T30325] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 880.299192][T30325] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.305431][T30325] ? futex_wait+0x533/0x670 [ 880.309944][T30325] ___sys_sendmsg+0xf3/0x170 [ 880.314546][T30325] ? sendmsg_copy_msghdr+0x160/0x160 [ 880.319836][T30325] ? lock_downgrade+0x6e0/0x6e0 [ 880.324723][T30325] ? __fget_files+0x28c/0x470 [ 880.329404][T30325] ? __fget_light+0xea/0x280 [ 880.333999][T30325] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 880.340244][T30325] __sys_sendmsg+0xe5/0x1b0 [ 880.344870][T30325] ? __sys_sendmsg_sock+0x30/0x30 [ 880.349948][T30325] ? syscall_enter_from_user_mode+0x21/0x70 [ 880.355846][T30325] do_syscall_64+0x35/0xb0 [ 880.360261][T30325] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 880.366156][T30325] RIP: 0033:0x7f4b423c2059 [ 880.370574][T30325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 20:15:49 executing program 4: bpf$ENABLE_STATS(0x20, 0x0, 0x0) (async) r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) recvfrom$unix(r0, &(0x7f0000000100)=""/12, 0xc, 0x120, &(0x7f0000000280)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f00000001c0)=0xffffffffffffffff) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000020000000000000000000850000000700000095"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x8f, &(0x7f0000000000)=""/143, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='signal_generate\x00', r1}, 0x10) (async, rerun: 64) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x2) (rerun: 64) connect$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x7d, &(0x7f0000001280)=""/4090, &(0x7f0000000040)=0xffa) (async, rerun: 32) sendfile(r0, 0xffffffffffffffff, 0x0, 0x3f) (async, rerun: 32) sendmmsg(r0, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x3ec0) (async) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000240)={0xa, 0x0, 0x0, @empty}, 0x1c) write$binfmt_misc(r2, &(0x7f0000000480)={'syz0', "fd3b2c2faa8f2e30a3fe3d1aa0a85a728e3b160945696cb9e9982e43cdad77a2cd1fc476"}, 0x30) (async, rerun: 32) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000380)={@rand_addr=' \x01\x00', 0x7, 0x1, 0x0, 0x0, 0x910, 0x8}, &(0x7f0000000400)=0x20) (rerun: 32) r3 = socket$nl_route(0x10, 0x3, 0x0) (async) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000180)={r0, 0x1, 0x2}) connect$unix(r4, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000004c0)=ANY=[@ANYBLOB="280000001300010d000000000000100008000000", @ANYRES32=r3, @ANYBLOB="08000000ffffffff08000300", @ANYRES32, @ANYBLOB="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"], 0x28}], 0x1, 0x0, 0x0, 0x2000c804}, 0x0) [ 880.390181][T30325] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 880.398597][T30325] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 880.406565][T30325] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 880.414531][T30325] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 880.422521][T30325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 880.430491][T30325] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 880.438474][T30325] [ 880.458925][T30319] netlink: 119740 bytes leftover after parsing attributes in process `syz-executor.3'. [ 880.510712][T30319] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 880.544375][T30319] CPU: 1 PID: 30319 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 880.554935][T30319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 880.565007][T30319] Call Trace: [ 880.568290][T30319] [ 880.571220][T30319] dump_stack_lvl+0xcd/0x134 [ 880.575826][T30319] sysfs_warn_dup.cold+0x1c/0x29 [ 880.580780][T30319] sysfs_do_create_link_sd+0x11e/0x140 [ 880.586278][T30319] sysfs_create_link+0x5f/0xc0 [ 880.591054][T30319] device_add+0x789/0x1ee0 [ 880.595487][T30319] ? wait_for_completion_io+0x270/0x270 [ 880.601051][T30319] ? minstrel_ht_alloc+0x4b/0xa10 [ 880.606092][T30319] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 880.612349][T30319] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 880.618632][T30319] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.624984][T30319] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 880.630990][T30319] wiphy_register+0x1e86/0x29a0 [ 880.635864][T30319] ? wiphy_unregister+0xbf0/0xbf0 [ 880.640902][T30319] ? minstrel_ht_alloc+0x52c/0xa10 [ 880.646035][T30319] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 880.652125][T30319] ieee80211_register_hw+0x1f16/0x3ed0 [ 880.657615][T30319] ? ieee80211_restart_hw+0x290/0x290 [ 880.662997][T30319] ? debug_object_destroy+0x210/0x210 [ 880.668393][T30319] ? memset+0x20/0x40 [ 880.672386][T30319] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.678638][T30319] ? __hrtimer_init+0x136/0x280 [ 880.683506][T30319] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 880.689259][T30319] ? hwsim_virtio_rx_work+0x350/0x350 [ 880.694642][T30319] ? hwsim_new_radio_nl+0x992/0x1080 [ 880.699938][T30319] ? memcpy+0x39/0x60 [ 880.703932][T30319] hwsim_new_radio_nl+0x9bc/0x1080 [ 880.709060][T30319] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 880.714976][T30319] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.721234][T30319] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 880.728617][T30319] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 880.735941][T30319] genl_family_rcv_msg_doit+0x228/0x320 [ 880.741501][T30319] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 880.748884][T30319] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.755149][T30319] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.761403][T30319] ? ns_capable+0xd9/0x100 [ 880.765923][T30319] genl_rcv_msg+0x328/0x580 [ 880.770440][T30319] ? genl_get_cmd+0x480/0x480 [ 880.775123][T30319] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 880.781033][T30319] ? lock_release+0x720/0x720 [ 880.785746][T30319] netlink_rcv_skb+0x153/0x420 [ 880.790522][T30319] ? genl_get_cmd+0x480/0x480 [ 880.795211][T30319] ? netlink_ack+0xa60/0xa60 [ 880.799815][T30319] ? netlink_deliver_tap+0x1b1/0xc30 [ 880.805122][T30319] genl_rcv+0x24/0x40 [ 880.809112][T30319] netlink_unicast+0x539/0x7e0 [ 880.813895][T30319] ? netlink_attachskb+0x880/0x880 [ 880.819019][T30319] ? __virt_addr_valid+0x5d/0x2d0 [ 880.824058][T30319] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 880.830314][T30319] ? __phys_addr_symbol+0x2c/0x70 [ 880.835351][T30319] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 880.841087][T30319] ? __check_object_size+0x16e/0x310 [ 880.846393][T30319] netlink_sendmsg+0x904/0xe00 [ 880.851171][T30319] ? netlink_unicast+0x7e0/0x7e0 [ 880.856124][T30319] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.862381][T30319] ? netlink_unicast+0x7e0/0x7e0 [ 880.867328][T30319] sock_sendmsg+0xcf/0x120 [ 880.871768][T30319] ____sys_sendmsg+0x6e8/0x810 [ 880.876547][T30319] ? kernel_sendmsg+0x50/0x50 [ 880.881232][T30319] ? do_recvmmsg+0x6d0/0x6d0 [ 880.885921][T30319] ? lock_chain_count+0x20/0x20 [ 880.890781][T30319] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 880.896787][T30319] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 880.903062][T30319] ? futex_wait+0x533/0x670 [ 880.907615][T30319] ___sys_sendmsg+0xf3/0x170 [ 880.912229][T30319] ? sendmsg_copy_msghdr+0x160/0x160 [ 880.917540][T30319] ? lock_downgrade+0x6e0/0x6e0 [ 880.922417][T30319] ? __fget_files+0x28c/0x470 [ 880.927116][T30319] ? __fget_light+0xea/0x280 [ 880.931718][T30319] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 880.937984][T30319] __sys_sendmsg+0xe5/0x1b0 [ 880.942507][T30319] ? __sys_sendmsg_sock+0x30/0x30 [ 880.947573][T30319] ? syscall_enter_from_user_mode+0x21/0x70 [ 880.953490][T30319] do_syscall_64+0x35/0xb0 [ 880.957937][T30319] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 880.963932][T30319] RIP: 0033:0x7f8a7fbd7059 [ 880.968354][T30319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 880.987969][T30319] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 880.996388][T30319] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 881.004370][T30319] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 20:15:50 executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f0000000400)={'gretap0\x00', 0x0, 0x8000, 0x8, 0x0, 0x4b4c, {{0x12, 0x4, 0x0, 0x5, 0x48, 0x0, 0x0, 0x1, 0x4, 0x0, @multicast1, @local, {[@ssrr={0x89, 0x23, 0x34, [@initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @dev={0xac, 0x14, 0x14, 0x11}, @loopback, @multicast1, @loopback, @dev={0xac, 0x14, 0x14, 0x3f}, @empty]}, @generic={0x82, 0x11, "aaec341cec58e3ed91f4330aa0598b"}]}}}}}) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000002c0)={0x0, @remote, @remote}, &(0x7f0000000300)=0xc) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c0000001400200029bd7000fadbdf250a0880ff", @ANYRES32=r1, @ANYBLOB="1400010000000000000000000000ffff64010101"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000814) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f00000005c0)={0x8, 0x4, 0x3, 0x5, 0x0, 0x3}) sendfile(r3, 0xffffffffffffffff, 0x0, 0xf03b0000) sendfile(r3, r2, 0x0, 0x8000000000004) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) r4 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r4, &(0x7f0000000040), 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000001c0), 0x40) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f0000000400)={'gretap0\x00', 0x0, 0x8000, 0x8, 0x0, 0x4b4c, {{0x12, 0x4, 0x0, 0x5, 0x48, 0x0, 0x0, 0x1, 0x4, 0x0, @multicast1, @local, {[@ssrr={0x89, 0x23, 0x34, [@initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @dev={0xac, 0x14, 0x14, 0x11}, @loopback, @multicast1, @loopback, @dev={0xac, 0x14, 0x14, 0x3f}, @empty]}, @generic={0x82, 0x11, "aaec341cec58e3ed91f4330aa0598b"}]}}}}}) (async) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000002c0)={0x0, @remote, @remote}, &(0x7f0000000300)=0xc) (async) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c0000001400200029bd7000fadbdf250a0880ff", @ANYRES32=r1, @ANYBLOB="1400010000000000000000000000ffff64010101"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000814) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) (async) getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) (async) write$cgroup_int(r3, &(0x7f0000000200), 0xf000) (async) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f00000005c0)={0x8, 0x4, 0x3, 0x5, 0x0, 0x3}) (async) sendfile(r3, 0xffffffffffffffff, 0x0, 0xf03b0000) (async) sendfile(r3, r2, 0x0, 0x8000000000004) (async) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) (async) socket$can_bcm(0x1d, 0x2, 0x2) (async) connect$can_bcm(r4, &(0x7f0000000040), 0x10) (async) bpf$MAP_CREATE(0x0, &(0x7f00000001c0), 0x40) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) (async) 20:15:50 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200103382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 881.012360][T30319] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 881.020339][T30319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 881.028317][T30319] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 881.036312][T30319] 20:15:50 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60107411402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 881.090644][T30337] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 881.130628][T30337] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 881.189158][T30337] CPU: 0 PID: 30337 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 881.200066][T30337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 881.210154][T30337] Call Trace: [ 881.213453][T30337] [ 881.216404][T30337] dump_stack_lvl+0xcd/0x134 [ 881.221029][T30337] sysfs_warn_dup.cold+0x1c/0x29 [ 881.225997][T30337] sysfs_do_create_link_sd+0x11e/0x140 [ 881.231492][T30337] sysfs_create_link+0x5f/0xc0 [ 881.236296][T30337] device_add+0x789/0x1ee0 [ 881.240754][T30337] ? wait_for_completion_io+0x270/0x270 [ 881.246347][T30337] ? lock_downgrade+0x6e0/0x6e0 [ 881.251234][T30337] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 881.257516][T30337] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 881.263791][T30337] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 881.270060][T30337] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 881.276072][T30337] wiphy_register+0x1e86/0x29a0 [ 881.280955][T30337] ? wiphy_unregister+0xbf0/0xbf0 [ 881.285994][T30337] ? minstrel_ht_alloc+0x52c/0xa10 [ 881.291129][T30337] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 881.297222][T30337] ieee80211_register_hw+0x1f16/0x3ed0 [ 881.302720][T30337] ? ieee80211_restart_hw+0x290/0x290 [ 881.308141][T30337] ? debug_object_destroy+0x210/0x210 [ 881.313548][T30337] ? memset+0x20/0x40 [ 881.317587][T30337] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 881.323843][T30337] ? __hrtimer_init+0x136/0x280 [ 881.328714][T30337] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 881.334472][T30337] ? hwsim_virtio_rx_work+0x350/0x350 [ 881.339858][T30337] ? hwsim_new_radio_nl+0x992/0x1080 [ 881.345158][T30337] ? memcpy+0x39/0x60 [ 881.349252][T30337] hwsim_new_radio_nl+0x9bc/0x1080 [ 881.354385][T30337] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 881.360326][T30337] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 881.366608][T30337] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 881.373999][T30337] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 881.381308][T30337] genl_family_rcv_msg_doit+0x228/0x320 [ 881.386870][T30337] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 881.394253][T30337] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 881.400615][T30337] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 881.406870][T30337] ? ns_capable+0xd9/0x100 [ 881.411314][T30337] genl_rcv_msg+0x328/0x580 [ 881.415832][T30337] ? genl_get_cmd+0x480/0x480 [ 881.420523][T30337] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 881.426438][T30337] ? lock_release+0x720/0x720 [ 881.431136][T30337] netlink_rcv_skb+0x153/0x420 [ 881.437386][T30337] ? genl_get_cmd+0x480/0x480 [ 881.442082][T30337] ? netlink_ack+0xa60/0xa60 [ 881.446692][T30337] ? netlink_deliver_tap+0x1b1/0xc30 [ 881.452001][T30337] genl_rcv+0x24/0x40 [ 881.456167][T30337] netlink_unicast+0x539/0x7e0 [ 881.460945][T30337] ? netlink_attachskb+0x880/0x880 [ 881.466063][T30337] ? __virt_addr_valid+0x5d/0x2d0 [ 881.471102][T30337] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 881.477365][T30337] ? __phys_addr_symbol+0x2c/0x70 [ 881.482425][T30337] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 881.488171][T30337] ? __check_object_size+0x16e/0x310 [ 881.493471][T30337] netlink_sendmsg+0x904/0xe00 [ 881.498256][T30337] ? netlink_unicast+0x7e0/0x7e0 [ 881.503216][T30337] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 881.509483][T30337] ? netlink_unicast+0x7e0/0x7e0 [ 881.514432][T30337] sock_sendmsg+0xcf/0x120 [ 881.518859][T30337] ____sys_sendmsg+0x6e8/0x810 [ 881.523636][T30337] ? kernel_sendmsg+0x50/0x50 [ 881.528327][T30337] ? do_recvmmsg+0x6d0/0x6d0 [ 881.532925][T30337] ? lock_chain_count+0x20/0x20 [ 881.537797][T30337] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 881.543799][T30337] ___sys_sendmsg+0xf3/0x170 [ 881.548411][T30337] ? sendmsg_copy_msghdr+0x160/0x160 [ 881.553713][T30337] ? lock_downgrade+0x6e0/0x6e0 [ 881.558591][T30337] ? __fget_files+0x28c/0x470 [ 881.563294][T30337] ? __fget_light+0xea/0x280 [ 881.567899][T30337] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 881.574165][T30337] __sys_sendmsg+0xe5/0x1b0 [ 881.578680][T30337] ? __sys_sendmsg_sock+0x30/0x30 [ 881.583751][T30337] ? syscall_enter_from_user_mode+0x21/0x70 [ 881.589664][T30337] do_syscall_64+0x35/0xb0 [ 881.594089][T30337] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 881.600005][T30337] RIP: 0033:0x7f0982948059 [ 881.604441][T30337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 881.624057][T30337] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 881.632479][T30337] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 881.640468][T30337] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 881.648440][T30337] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 881.656416][T30337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 881.664392][T30337] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 881.672389][T30337] 20:15:50 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994130424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 881.691989][T30355] netlink: 'syz-executor.1': attribute type 11 has an invalid length. 20:15:50 executing program 4: bpf$ENABLE_STATS(0x20, 0x0, 0x0) (async) r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) recvfrom$unix(r0, &(0x7f0000000100)=""/12, 0xc, 0x120, &(0x7f0000000280)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async, rerun: 64) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f00000001c0)=0xffffffffffffffff) (async, rerun: 64) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000020000000000000000000850000000700000095"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x8f, &(0x7f0000000000)=""/143, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='signal_generate\x00', r1}, 0x10) (async) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x2) connect$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x7d, &(0x7f0000001280)=""/4090, &(0x7f0000000040)=0xffa) sendfile(r0, 0xffffffffffffffff, 0x0, 0x3f) (async, rerun: 64) sendmmsg(r0, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x3ec0) (async, rerun: 64) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000240)={0xa, 0x0, 0x0, @empty}, 0x1c) write$binfmt_misc(r2, &(0x7f0000000480)={'syz0', "fd3b2c2faa8f2e30a3fe3d1aa0a85a728e3b160945696cb9e9982e43cdad77a2cd1fc476"}, 0x30) (async) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000380)={@rand_addr=' \x01\x00', 0x7, 0x1, 0x0, 0x0, 0x910, 0x8}, &(0x7f0000000400)=0x20) (async) r3 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000180)={r0, 0x1, 0x2}) (rerun: 32) connect$unix(r4, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async, rerun: 64) sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000004c0)=ANY=[@ANYBLOB="280000001300010d000000000000100008000000", @ANYRES32=r3, @ANYBLOB="08000000ffffffff08000300", @ANYRES32, @ANYBLOB="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"], 0x28}], 0x1, 0x0, 0x0, 0x2000c804}, 0x0) (rerun: 64) [ 881.747435][T30355] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. 20:15:50 executing program 2: setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) (async) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f00000002c0), 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f00000000c0)=ANY=[], 0x208e24b) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) (async, rerun: 64) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (rerun: 64) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x18, r4, 0x20, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x4, 0x6, 0x0, 0x0}]}, 0x18}}, 0x0) sendfile(r3, r2, 0x0, 0x100000002) (async) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f0000000040)) (async) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r5, 0x0) (async) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x20, &(0x7f00000000c0)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x4e21, @local}]}, &(0x7f0000000080)=0x10) 20:15:50 executing program 0: bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) recvfrom$unix(r0, &(0x7f0000000100)=""/12, 0xc, 0x120, &(0x7f0000000280)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f00000001c0)=0xffffffffffffffff) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000020000000000000000000850000000700000095"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x8f, &(0x7f0000000000)=""/143, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='signal_generate\x00', r1}, 0x10) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x2) connect$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x7d, &(0x7f0000001280)=""/4090, &(0x7f0000000040)=0xffa) sendfile(r0, 0xffffffffffffffff, 0x0, 0x3f) sendmmsg(r0, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x3ec0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000240)={0xa, 0x0, 0x0, @empty}, 0x1c) write$binfmt_misc(r2, &(0x7f0000000480)={'syz0', "fd3b2c2faa8f2e30a3fe3d1aa0a85a728e3b160945696cb9e9982e43cdad77a2cd1fc476"}, 0x30) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000380)={@rand_addr=' \x01\x00', 0x7, 0x1, 0x0, 0x0, 0x910, 0x8}, &(0x7f0000000400)=0x20) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000180)={r0, 0x1, 0x2}) connect$unix(r4, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000004c0)=ANY=[@ANYBLOB="280000001300010d000000000000100008000000", @ANYRES32=r3, @ANYBLOB="08000000ffffffff08000300", @ANYRES32, @ANYBLOB="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"], 0x28}], 0x1, 0x0, 0x0, 0x2000c804}, 0x0) [ 881.791007][T30355] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 881.845061][T30355] CPU: 0 PID: 30355 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 881.855633][T30355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 881.865703][T30355] Call Trace: [ 881.868994][T30355] [ 881.871935][T30355] dump_stack_lvl+0xcd/0x134 [ 881.876544][T30355] sysfs_warn_dup.cold+0x1c/0x29 [ 881.881494][T30355] sysfs_do_create_link_sd+0x11e/0x140 [ 881.886972][T30355] sysfs_create_link+0x5f/0xc0 [ 881.891750][T30355] device_add+0x789/0x1ee0 [ 881.896183][T30355] ? wait_for_completion_io+0x270/0x270 [ 881.901741][T30355] ? lock_downgrade+0x6e0/0x6e0 [ 881.906605][T30355] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 881.912858][T30355] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 881.919111][T30355] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 881.925360][T30355] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 881.931372][T30355] wiphy_register+0x1e86/0x29a0 [ 881.936243][T30355] ? wiphy_unregister+0xbf0/0xbf0 [ 881.941278][T30355] ? minstrel_ht_alloc+0x52c/0xa10 [ 881.946414][T30355] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 881.952502][T30355] ieee80211_register_hw+0x1f16/0x3ed0 [ 881.957987][T30355] ? ieee80211_restart_hw+0x290/0x290 [ 881.963377][T30355] ? debug_object_destroy+0x210/0x210 [ 881.968775][T30355] ? memset+0x20/0x40 [ 881.972781][T30355] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 881.979037][T30355] ? __hrtimer_init+0x136/0x280 [ 881.983912][T30355] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 881.989668][T30355] ? hwsim_virtio_rx_work+0x350/0x350 [ 881.995057][T30355] ? hwsim_new_radio_nl+0x992/0x1080 [ 882.000381][T30355] ? memcpy+0x39/0x60 [ 882.004380][T30355] hwsim_new_radio_nl+0x9bc/0x1080 [ 882.009520][T30355] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 882.015442][T30355] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 882.021696][T30355] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 882.029100][T30355] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 882.036418][T30355] genl_family_rcv_msg_doit+0x228/0x320 [ 882.041980][T30355] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 882.049369][T30355] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 882.055642][T30355] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 882.061897][T30355] ? ns_capable+0xd9/0x100 [ 882.066329][T30355] genl_rcv_msg+0x328/0x580 [ 882.070854][T30355] ? genl_get_cmd+0x480/0x480 [ 882.075555][T30355] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 882.081463][T30355] ? lock_release+0x720/0x720 [ 882.086157][T30355] netlink_rcv_skb+0x153/0x420 [ 882.090929][T30355] ? genl_get_cmd+0x480/0x480 [ 882.095619][T30355] ? netlink_ack+0xa60/0xa60 [ 882.100238][T30355] ? netlink_deliver_tap+0x1b1/0xc30 [ 882.105540][T30355] genl_rcv+0x24/0x40 [ 882.109530][T30355] netlink_unicast+0x539/0x7e0 [ 882.114323][T30355] ? netlink_attachskb+0x880/0x880 [ 882.119453][T30355] ? __virt_addr_valid+0x5d/0x2d0 [ 882.124595][T30355] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 882.130850][T30355] ? __phys_addr_symbol+0x2c/0x70 [ 882.135883][T30355] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 882.141615][T30355] ? __check_object_size+0x16e/0x310 [ 882.146929][T30355] netlink_sendmsg+0x904/0xe00 [ 882.151719][T30355] ? netlink_unicast+0x7e0/0x7e0 [ 882.156677][T30355] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 882.162930][T30355] ? netlink_unicast+0x7e0/0x7e0 [ 882.167874][T30355] sock_sendmsg+0xcf/0x120 [ 882.172333][T30355] ____sys_sendmsg+0x6e8/0x810 [ 882.177118][T30355] ? kernel_sendmsg+0x50/0x50 [ 882.181801][T30355] ? do_recvmmsg+0x6d0/0x6d0 [ 882.186401][T30355] ? lock_chain_count+0x20/0x20 [ 882.191261][T30355] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 882.197357][T30355] ___sys_sendmsg+0xf3/0x170 [ 882.201960][T30355] ? sendmsg_copy_msghdr+0x160/0x160 [ 882.207282][T30355] ? lock_downgrade+0x6e0/0x6e0 [ 882.212162][T30355] ? __fget_files+0x28c/0x470 [ 882.216858][T30355] ? __fget_light+0xea/0x280 [ 882.221457][T30355] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 882.227723][T30355] __sys_sendmsg+0xe5/0x1b0 [ 882.232240][T30355] ? __sys_sendmsg_sock+0x30/0x30 [ 882.237292][T30355] ? syscall_enter_from_user_mode+0x21/0x70 [ 882.243210][T30355] do_syscall_64+0x35/0xb0 [ 882.247636][T30355] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 882.253542][T30355] RIP: 0033:0x7f4b423c2059 [ 882.257965][T30355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 882.277588][T30355] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 882.286009][T30355] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 882.293987][T30355] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 882.301963][T30355] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 882.309938][T30355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 882.317914][T30355] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 882.325922][T30355] [ 882.377942][T30362] netlink: 117692 bytes leftover after parsing attributes in process `syz-executor.3'. [ 882.423404][T30362] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 882.466837][T30362] CPU: 1 PID: 30362 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 882.477390][T30362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 882.487560][T30362] Call Trace: [ 882.490858][T30362] [ 882.493813][T30362] dump_stack_lvl+0xcd/0x134 [ 882.498453][T30362] sysfs_warn_dup.cold+0x1c/0x29 [ 882.503427][T30362] sysfs_do_create_link_sd+0x11e/0x140 [ 882.508925][T30362] sysfs_create_link+0x5f/0xc0 [ 882.513719][T30362] device_add+0x789/0x1ee0 [ 882.518169][T30362] ? wait_for_completion_io+0x270/0x270 [ 882.523752][T30362] ? asm_exc_int3+0x31/0x40 [ 882.528260][T30362] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 882.534534][T30362] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 882.539021][ T25] audit: type=1804 audit(1643832951.447:1024): pid=30392 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir602834281/syzkaller.s78526/1249/cgroup.controllers" dev="sda1" ino=1182 res=1 errno=0 [ 882.540800][T30362] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 882.540845][T30362] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 882.579645][T30362] wiphy_register+0x1e86/0x29a0 [ 882.584549][T30362] ? wiphy_unregister+0xbf0/0xbf0 [ 882.589610][T30362] ? minstrel_ht_alloc+0x52c/0xa10 [ 882.594777][T30362] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 882.600893][T30362] ieee80211_register_hw+0x1f16/0x3ed0 [ 882.606406][T30362] ? ieee80211_restart_hw+0x290/0x290 [ 882.611816][T30362] ? debug_object_destroy+0x210/0x210 [ 882.617237][T30362] ? memset+0x20/0x40 [ 882.621251][T30362] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 882.627522][T30362] ? __hrtimer_init+0x136/0x280 [ 882.632413][T30362] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 882.638196][T30362] ? hwsim_virtio_rx_work+0x350/0x350 [ 882.643598][T30362] ? hwsim_new_radio_nl+0x992/0x1080 [ 882.648919][T30362] ? memcpy+0x39/0x60 [ 882.652948][T30362] hwsim_new_radio_nl+0x9bc/0x1080 [ 882.658098][T30362] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 882.664035][T30362] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 882.670311][T30362] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 882.677725][T30362] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 882.685063][T30362] genl_family_rcv_msg_doit+0x228/0x320 [ 882.690651][T30362] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 882.698074][T30362] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 882.704331][T30362] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 882.710579][T30362] ? ns_capable+0xd9/0x100 [ 882.715018][T30362] genl_rcv_msg+0x328/0x580 [ 882.719524][T30362] ? genl_get_cmd+0x480/0x480 [ 882.724204][T30362] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 882.730114][T30362] ? lock_release+0x720/0x720 [ 882.734987][T30362] netlink_rcv_skb+0x153/0x420 [ 882.739781][T30362] ? genl_get_cmd+0x480/0x480 [ 882.744492][T30362] ? netlink_ack+0xa60/0xa60 [ 882.749206][T30362] ? netlink_deliver_tap+0x1b1/0xc30 [ 882.754523][T30362] genl_rcv+0x24/0x40 [ 882.758521][T30362] netlink_unicast+0x539/0x7e0 [ 882.763299][T30362] ? netlink_attachskb+0x880/0x880 [ 882.768418][T30362] ? __virt_addr_valid+0x5d/0x2d0 [ 882.773484][T30362] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 882.779828][T30362] ? __phys_addr_symbol+0x2c/0x70 [ 882.784879][T30362] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 882.790623][T30362] ? __check_object_size+0x16e/0x310 [ 882.795929][T30362] netlink_sendmsg+0x904/0xe00 [ 882.800724][T30362] ? netlink_unicast+0x7e0/0x7e0 [ 882.805680][T30362] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 882.811940][T30362] ? netlink_unicast+0x7e0/0x7e0 [ 882.816885][T30362] sock_sendmsg+0xcf/0x120 [ 882.821312][T30362] ____sys_sendmsg+0x6e8/0x810 [ 882.826093][T30362] ? kernel_sendmsg+0x50/0x50 [ 882.830799][T30362] ? do_recvmmsg+0x6d0/0x6d0 [ 882.835404][T30362] ? lock_chain_count+0x20/0x20 [ 882.840270][T30362] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 882.846264][T30362] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 882.852528][T30362] ? futex_wait+0x533/0x670 [ 882.857052][T30362] ___sys_sendmsg+0xf3/0x170 [ 882.861659][T30362] ? sendmsg_copy_msghdr+0x160/0x160 [ 882.866965][T30362] ? lock_downgrade+0x6e0/0x6e0 [ 882.871842][T30362] ? __fget_files+0x28c/0x470 [ 882.876546][T30362] ? __fget_light+0xea/0x280 [ 882.881165][T30362] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 882.887442][T30362] __sys_sendmsg+0xe5/0x1b0 [ 882.891978][T30362] ? __sys_sendmsg_sock+0x30/0x30 [ 882.897052][T30362] ? syscall_enter_from_user_mode+0x21/0x70 [ 882.902977][T30362] do_syscall_64+0x35/0xb0 [ 882.907412][T30362] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 882.913327][T30362] RIP: 0033:0x7f8a7fbd7059 [ 882.917747][T30362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 882.937365][T30362] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 882.945788][T30362] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 882.953775][T30362] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 20:15:51 executing program 4: bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) recvfrom$unix(r0, &(0x7f0000000100)=""/12, 0xc, 0x120, &(0x7f0000000280)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f00000001c0)=0xffffffffffffffff) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000020000000000000000000850000000700000095"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x8f, &(0x7f0000000000)=""/143, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='signal_generate\x00', r1}, 0x10) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x2) connect$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x7d, &(0x7f0000001280)=""/4090, &(0x7f0000000040)=0xffa) sendfile(r0, 0xffffffffffffffff, 0x0, 0x3f) sendmmsg(r0, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x3ec0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000240)={0xa, 0x0, 0x0, @empty}, 0x1c) write$binfmt_misc(r2, &(0x7f0000000480)={'syz0', "fd3b2c2faa8f2e30a3fe3d1aa0a85a728e3b160945696cb9e9982e43cdad77a2cd1fc476"}, 0x30) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000380)={@rand_addr=' \x01\x00', 0x7, 0x1, 0x0, 0x0, 0x910, 0x8}, &(0x7f0000000400)=0x20) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000180)={r0, 0x1, 0x2}) connect$unix(r4, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000004c0)=ANY=[@ANYBLOB="280000001300010d000000000000100008000000", @ANYRES32=r3, @ANYBLOB="08000000ffffffff08000300", @ANYRES32, @ANYBLOB="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"], 0x28}], 0x1, 0x0, 0x0, 0x2000c804}, 0x0) 20:15:51 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200183382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 882.961754][T30362] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 882.969732][T30362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 882.977710][T30362] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 882.985713][T30362] [ 883.022643][T30377] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 883.062677][T30377] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 883.070863][T30377] CPU: 1 PID: 30377 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 883.081399][T30377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 883.091480][T30377] Call Trace: [ 883.094782][T30377] [ 883.097736][T30377] dump_stack_lvl+0xcd/0x134 [ 883.102360][T30377] sysfs_warn_dup.cold+0x1c/0x29 [ 883.107339][T30377] sysfs_do_create_link_sd+0x11e/0x140 [ 883.112829][T30377] sysfs_create_link+0x5f/0xc0 [ 883.117618][T30377] device_add+0x789/0x1ee0 [ 883.122053][T30377] ? wait_for_completion_io+0x270/0x270 [ 883.127611][T30377] ? lock_downgrade+0x6e0/0x6e0 [ 883.132476][T30377] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 883.138736][T30377] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 883.144994][T30377] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 883.151247][T30377] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 883.157264][T30377] wiphy_register+0x1e86/0x29a0 [ 883.162178][T30377] ? wiphy_unregister+0xbf0/0xbf0 [ 883.167213][T30377] ? minstrel_ht_alloc+0x52c/0xa10 [ 883.172355][T30377] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 883.178443][T30377] ieee80211_register_hw+0x1f16/0x3ed0 [ 883.183929][T30377] ? ieee80211_restart_hw+0x290/0x290 [ 883.189317][T30377] ? debug_object_destroy+0x210/0x210 [ 883.194709][T30377] ? memset+0x20/0x40 [ 883.198705][T30377] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 883.204965][T30377] ? __hrtimer_init+0x136/0x280 [ 883.209834][T30377] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 883.215587][T30377] ? hwsim_virtio_rx_work+0x350/0x350 [ 883.220971][T30377] ? hwsim_new_radio_nl+0x992/0x1080 [ 883.226269][T30377] ? memcpy+0x39/0x60 [ 883.230270][T30377] hwsim_new_radio_nl+0x9bc/0x1080 [ 883.235399][T30377] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 883.241323][T30377] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 883.247579][T30377] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 883.254960][T30377] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 883.262276][T30377] genl_family_rcv_msg_doit+0x228/0x320 [ 883.267922][T30377] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 883.275309][T30377] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 883.281578][T30377] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 883.287831][T30377] ? ns_capable+0xd9/0x100 [ 883.292263][T30377] genl_rcv_msg+0x328/0x580 [ 883.296779][T30377] ? genl_get_cmd+0x480/0x480 [ 883.301464][T30377] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 883.307398][T30377] ? lock_release+0x720/0x720 [ 883.312097][T30377] netlink_rcv_skb+0x153/0x420 [ 883.316873][T30377] ? genl_get_cmd+0x480/0x480 [ 883.321565][T30377] ? netlink_ack+0xa60/0xa60 [ 883.326171][T30377] ? netlink_deliver_tap+0x1b1/0xc30 [ 883.331468][T30377] genl_rcv+0x24/0x40 [ 883.335457][T30377] netlink_unicast+0x539/0x7e0 [ 883.340233][T30377] ? netlink_attachskb+0x880/0x880 [ 883.345357][T30377] ? __virt_addr_valid+0x5d/0x2d0 [ 883.350404][T30377] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 883.356657][T30377] ? __phys_addr_symbol+0x2c/0x70 [ 883.361690][T30377] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 883.367519][T30377] ? __check_object_size+0x16e/0x310 [ 883.372839][T30377] netlink_sendmsg+0x904/0xe00 [ 883.377622][T30377] ? netlink_unicast+0x7e0/0x7e0 [ 883.382574][T30377] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 883.388840][T30377] ? netlink_unicast+0x7e0/0x7e0 [ 883.393798][T30377] sock_sendmsg+0xcf/0x120 [ 883.398228][T30377] ____sys_sendmsg+0x6e8/0x810 [ 883.403007][T30377] ? kernel_sendmsg+0x50/0x50 [ 883.407703][T30377] ? do_recvmmsg+0x6d0/0x6d0 [ 883.412303][T30377] ? lock_chain_count+0x20/0x20 [ 883.417175][T30377] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 883.423194][T30377] ___sys_sendmsg+0xf3/0x170 [ 883.427799][T30377] ? sendmsg_copy_msghdr+0x160/0x160 [ 883.433101][T30377] ? lock_downgrade+0x6e0/0x6e0 [ 883.437979][T30377] ? __fget_files+0x28c/0x470 [ 883.442676][T30377] ? __fget_light+0xea/0x280 [ 883.447276][T30377] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 883.453623][T30377] __sys_sendmsg+0xe5/0x1b0 [ 883.458137][T30377] ? __sys_sendmsg_sock+0x30/0x30 [ 883.463189][T30377] ? syscall_enter_from_user_mode+0x21/0x70 [ 883.469106][T30377] do_syscall_64+0x35/0xb0 [ 883.473537][T30377] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 883.479447][T30377] RIP: 0033:0x7f0982948059 [ 883.483870][T30377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 883.503492][T30377] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 883.511914][T30377] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 20:15:52 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60107a11402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 883.519910][T30377] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 883.528073][T30377] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 883.536058][T30377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 883.544038][T30377] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 883.552033][T30377] 20:15:52 executing program 0: bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2, 0x3}, 0x6) r0 = socket$kcm(0x10, 0x2, 0x0) r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000400)='syz1\x00', 0x200002, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r3, r2, 0x0, 0x100000002) sendmsg$kcm(r2, &(0x7f00000003c0)={&(0x7f00000001c0)=@generic={0x6, "599d6a4bc1e1a54e4d56c6bfe1152f84792eff9ad0fb87fb5762b2b0bf3b88ec50f1765c257b00f1edf06e8d40f23a4f5ffcdaf52a731167c91e75fb7616ad4938f48e2140de3497397ec1604cbe7e2990263d4c3f040b80947a78bca649bf42271d44e34148292e34c5defecfa34d0fe9ddbac0a1ea896725a4d620cced"}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000240)="a27fbc2b502c911c27b2c4a3af9a3fec194927bb0c8fa75ff9a091841973925084f37ca5e1ce63a08a0679cbd5c92321e23c421d9a7092f017fcdaee49af7ef8d4b63ff0f1118873fc6741a08d3e84bbecd71ce3c6a475d39ee890e05c9f8e3e38e26f5779d67c7337dd40a0180aad8a7d828dcac64d01695356fa1aa8583d2a641490a2be3d1adf6fd47b8ae69d47bdafb997a7a3b41c64a82aa0796ef0e2be9bf2474afdbde3d91b47d8608adf354a6de55d58909fb30851e68a170ef252f68f2cd8", 0xc3}, {&(0x7f0000000340)="e72c4c2204ccbc3f43c2de0d02a4f9fba4a3", 0x12}], 0x2}, 0x10000) sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="d800000018008105e00f80ecdb4cb904021d65ef12007c05e87c55a1bc000900b8002e9925000000160012400a00fe79000000000b0005000600020003ac040000d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe04000000730d16a4683e4f6d021f003f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e04adcdf634c1f215ce3081ad809d5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f27260e9703", 0xd8}], 0x1}, 0x0) 20:15:52 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994140424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 883.657223][T30401] netlink: 116156 bytes leftover after parsing attributes in process `syz-executor.3'. [ 883.681766][T30401] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 883.701164][T30401] CPU: 1 PID: 30401 Comm: syz-executor.3 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 883.711732][T30401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 883.721815][T30401] Call Trace: [ 883.725118][T30401] [ 883.728071][T30401] dump_stack_lvl+0xcd/0x134 [ 883.732694][T30401] sysfs_warn_dup.cold+0x1c/0x29 [ 883.737687][T30401] sysfs_do_create_link_sd+0x11e/0x140 [ 883.743184][T30401] sysfs_create_link+0x5f/0xc0 [ 883.747956][T30401] device_add+0x789/0x1ee0 [ 883.752405][T30401] ? wait_for_completion_io+0x270/0x270 [ 883.757958][T30401] ? minstrel_ht_alloc+0x4b/0xa10 [ 883.763012][T30401] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 883.769259][T30401] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 883.775534][T30401] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 883.781799][T30401] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 883.787829][T30401] wiphy_register+0x1e86/0x29a0 [ 883.792707][T30401] ? wiphy_unregister+0xbf0/0xbf0 [ 883.797744][T30401] ? minstrel_ht_alloc+0x52c/0xa10 [ 883.802866][T30401] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 883.808946][T30401] ieee80211_register_hw+0x1f16/0x3ed0 [ 883.814450][T30401] ? ieee80211_restart_hw+0x290/0x290 [ 883.819854][T30401] ? debug_object_destroy+0x210/0x210 [ 883.825297][T30401] ? memset+0x20/0x40 [ 883.829295][T30401] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 883.835538][T30401] ? __hrtimer_init+0x136/0x280 [ 883.840406][T30401] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 883.846164][T30401] ? hwsim_virtio_rx_work+0x350/0x350 [ 883.851540][T30401] ? hwsim_new_radio_nl+0x992/0x1080 [ 883.856852][T30401] ? memcpy+0x39/0x60 [ 883.860837][T30401] hwsim_new_radio_nl+0x9bc/0x1080 [ 883.865946][T30401] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 883.871853][T30401] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 883.878092][T30401] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 883.885461][T30401] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 883.892761][T30401] genl_family_rcv_msg_doit+0x228/0x320 [ 883.898331][T30401] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 883.905753][T30401] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 883.912040][T30401] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 883.918290][T30401] ? ns_capable+0xd9/0x100 [ 883.922713][T30401] genl_rcv_msg+0x328/0x580 [ 883.927233][T30401] ? genl_get_cmd+0x480/0x480 [ 883.931924][T30401] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 883.937852][T30401] ? lock_release+0x720/0x720 [ 883.942554][T30401] netlink_rcv_skb+0x153/0x420 [ 883.947340][T30401] ? genl_get_cmd+0x480/0x480 [ 883.952019][T30401] ? netlink_ack+0xa60/0xa60 [ 883.956623][T30401] ? netlink_deliver_tap+0x1b1/0xc30 [ 883.961926][T30401] genl_rcv+0x24/0x40 [ 883.965902][T30401] netlink_unicast+0x539/0x7e0 [ 883.970674][T30401] ? netlink_attachskb+0x880/0x880 [ 883.975781][T30401] ? __virt_addr_valid+0x5d/0x2d0 [ 883.980805][T30401] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 883.987049][T30401] ? __phys_addr_symbol+0x2c/0x70 [ 883.992072][T30401] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 883.997838][T30401] ? __check_object_size+0x16e/0x310 [ 884.003123][T30401] netlink_sendmsg+0x904/0xe00 [ 884.007899][T30401] ? netlink_unicast+0x7e0/0x7e0 [ 884.012863][T30401] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 884.019114][T30401] ? netlink_unicast+0x7e0/0x7e0 [ 884.024068][T30401] sock_sendmsg+0xcf/0x120 [ 884.028508][T30401] ____sys_sendmsg+0x6e8/0x810 [ 884.033271][T30401] ? kernel_sendmsg+0x50/0x50 [ 884.037992][T30401] ? do_recvmmsg+0x6d0/0x6d0 [ 884.042610][T30401] ? lock_chain_count+0x20/0x20 [ 884.047485][T30401] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 884.053463][T30401] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 884.059705][T30401] ? futex_wait+0x533/0x670 [ 884.064219][T30401] ___sys_sendmsg+0xf3/0x170 [ 884.068820][T30401] ? sendmsg_copy_msghdr+0x160/0x160 [ 884.074130][T30401] ? lock_downgrade+0x6e0/0x6e0 [ 884.078990][T30401] ? __fget_files+0x28c/0x470 [ 884.083690][T30401] ? __fget_light+0xea/0x280 [ 884.088304][T30401] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 884.094549][T30401] __sys_sendmsg+0xe5/0x1b0 [ 884.099055][T30401] ? __sys_sendmsg_sock+0x30/0x30 [ 884.104108][T30401] ? syscall_enter_from_user_mode+0x21/0x70 [ 884.110009][T30401] do_syscall_64+0x35/0xb0 [ 884.114423][T30401] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 884.120317][T30401] RIP: 0033:0x7f8a7fbd7059 [ 884.124731][T30401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 884.144333][T30401] RSP: 002b:00007f8a7e54c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 884.152747][T30401] RAX: ffffffffffffffda RBX: 00007f8a7fce9f60 RCX: 00007f8a7fbd7059 [ 884.160743][T30401] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 884.168714][T30401] RBP: 00007f8a7fc3108d R08: 0000000000000000 R09: 0000000000000000 [ 884.176683][T30401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 884.184664][T30401] R13: 00007ffe55afb13f R14: 00007f8a7e54c300 R15: 0000000000022000 [ 884.192685][T30401] 20:15:53 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100018402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:53 executing program 2: setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) (async) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f00000002c0), 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f00000000c0)=ANY=[], 0x208e24b) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x18, r4, 0x20, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x4, 0x6, 0x0, 0x0}]}, 0x18}}, 0x0) (async) sendfile(r3, r2, 0x0, 0x100000002) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f0000000040)) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r5, 0x0) (async) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x20, &(0x7f00000000c0)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x4e21, @local}]}, &(0x7f0000000080)=0x10) [ 884.225602][T30398] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 884.233825][T30398] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. 20:15:53 executing program 0: bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2, 0x3}, 0x6) (async, rerun: 64) r0 = socket$kcm(0x10, 0x2, 0x0) (rerun: 64) r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000400)='syz1\x00', 0x200002, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (async) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r3, r2, 0x0, 0x100000002) (async, rerun: 32) sendmsg$kcm(r2, &(0x7f00000003c0)={&(0x7f00000001c0)=@generic={0x6, "599d6a4bc1e1a54e4d56c6bfe1152f84792eff9ad0fb87fb5762b2b0bf3b88ec50f1765c257b00f1edf06e8d40f23a4f5ffcdaf52a731167c91e75fb7616ad4938f48e2140de3497397ec1604cbe7e2990263d4c3f040b80947a78bca649bf42271d44e34148292e34c5defecfa34d0fe9ddbac0a1ea896725a4d620cced"}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000240)="a27fbc2b502c911c27b2c4a3af9a3fec194927bb0c8fa75ff9a091841973925084f37ca5e1ce63a08a0679cbd5c92321e23c421d9a7092f017fcdaee49af7ef8d4b63ff0f1118873fc6741a08d3e84bbecd71ce3c6a475d39ee890e05c9f8e3e38e26f5779d67c7337dd40a0180aad8a7d828dcac64d01695356fa1aa8583d2a641490a2be3d1adf6fd47b8ae69d47bdafb997a7a3b41c64a82aa0796ef0e2be9bf2474afdbde3d91b47d8608adf354a6de55d58909fb30851e68a170ef252f68f2cd8", 0xc3}, {&(0x7f0000000340)="e72c4c2204ccbc3f43c2de0d02a4f9fba4a3", 0x12}], 0x2}, 0x10000) (async, rerun: 32) sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="d800000018008105e00f80ecdb4cb904021d65ef12007c05e87c55a1bc000900b8002e9925000000160012400a00fe79000000000b0005000600020003ac040000d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe04000000730d16a4683e4f6d021f003f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e04adcdf634c1f215ce3081ad809d5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f27260e9703", 0xd8}], 0x1}, 0x0) [ 884.307262][T30398] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 884.315018][T30398] CPU: 0 PID: 30398 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 884.325537][T30398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 884.335600][T30398] Call Trace: [ 884.338887][T30398] [ 884.341821][T30398] dump_stack_lvl+0xcd/0x134 [ 884.346425][T30398] sysfs_warn_dup.cold+0x1c/0x29 [ 884.351413][T30398] sysfs_do_create_link_sd+0x11e/0x140 [ 884.356883][T30398] sysfs_create_link+0x5f/0xc0 [ 884.361656][T30398] device_add+0x789/0x1ee0 [ 884.366093][T30398] ? wait_for_completion_io+0x270/0x270 [ 884.371656][T30398] ? minstrel_ht_alloc+0x4b/0xa10 [ 884.376693][T30398] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 884.382953][T30398] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 884.389205][T30398] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 884.395460][T30398] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 884.401467][T30398] wiphy_register+0x1e86/0x29a0 [ 884.406342][T30398] ? wiphy_unregister+0xbf0/0xbf0 [ 884.411381][T30398] ? minstrel_ht_alloc+0x52c/0xa10 [ 884.416518][T30398] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 884.422607][T30398] ieee80211_register_hw+0x1f16/0x3ed0 [ 884.428095][T30398] ? ieee80211_restart_hw+0x290/0x290 [ 884.433483][T30398] ? debug_object_destroy+0x210/0x210 [ 884.438874][T30398] ? memset+0x20/0x40 [ 884.442863][T30398] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 884.449145][T30398] ? __hrtimer_init+0x136/0x280 [ 884.454026][T30398] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 884.459779][T30398] ? hwsim_virtio_rx_work+0x350/0x350 [ 884.465161][T30398] ? hwsim_new_radio_nl+0x992/0x1080 [ 884.470461][T30398] ? memcpy+0x39/0x60 [ 884.474465][T30398] hwsim_new_radio_nl+0x9bc/0x1080 [ 884.479593][T30398] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 884.485503][T30398] ? __nla_validate_parse+0x2df/0x2410 [ 884.491044][T30398] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 884.497298][T30398] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 884.504682][T30398] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 884.511986][T30398] genl_family_rcv_msg_doit+0x228/0x320 [ 884.517547][T30398] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 884.524929][T30398] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 884.531200][T30398] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 884.537453][T30398] ? ns_capable+0xd9/0x100 [ 884.541889][T30398] genl_rcv_msg+0x328/0x580 [ 884.546406][T30398] ? genl_get_cmd+0x480/0x480 [ 884.551088][T30398] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 884.557013][T30398] ? lock_release+0x720/0x720 [ 884.561704][T30398] netlink_rcv_skb+0x153/0x420 [ 884.566478][T30398] ? genl_get_cmd+0x480/0x480 [ 884.571251][T30398] ? netlink_ack+0xa60/0xa60 [ 884.575858][T30398] ? netlink_deliver_tap+0x1b1/0xc30 [ 884.581158][T30398] genl_rcv+0x24/0x40 [ 884.585148][T30398] netlink_unicast+0x539/0x7e0 [ 884.589925][T30398] ? netlink_attachskb+0x880/0x880 [ 884.595041][T30398] ? __virt_addr_valid+0x5d/0x2d0 [ 884.600077][T30398] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 884.606333][T30398] ? __phys_addr_symbol+0x2c/0x70 [ 884.611379][T30398] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 884.617108][T30398] ? __check_object_size+0x16e/0x310 [ 884.622409][T30398] netlink_sendmsg+0x904/0xe00 [ 884.627184][T30398] ? netlink_unicast+0x7e0/0x7e0 [ 884.632138][T30398] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 884.638393][T30398] ? netlink_unicast+0x7e0/0x7e0 [ 884.643344][T30398] sock_sendmsg+0xcf/0x120 [ 884.647772][T30398] ____sys_sendmsg+0x6e8/0x810 [ 884.652548][T30398] ? kernel_sendmsg+0x50/0x50 [ 884.657229][T30398] ? do_recvmmsg+0x6d0/0x6d0 [ 884.661827][T30398] ? lock_chain_count+0x20/0x20 [ 884.666687][T30398] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 884.672678][T30398] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 884.678935][T30398] ? futex_wait+0x533/0x670 [ 884.683455][T30398] ___sys_sendmsg+0xf3/0x170 [ 884.688058][T30398] ? sendmsg_copy_msghdr+0x160/0x160 [ 884.693364][T30398] ? lock_downgrade+0x6e0/0x6e0 [ 884.698254][T30398] ? __fget_files+0x28c/0x470 [ 884.702966][T30398] ? __fget_light+0xea/0x280 [ 884.707573][T30398] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 884.713830][T30398] __sys_sendmsg+0xe5/0x1b0 [ 884.718349][T30398] ? __sys_sendmsg_sock+0x30/0x30 [ 884.723397][T30398] ? syscall_enter_from_user_mode+0x21/0x70 [ 884.729310][T30398] do_syscall_64+0x35/0xb0 [ 884.733735][T30398] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 884.739641][T30398] RIP: 0033:0x7f4b423c2059 [ 884.744061][T30398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 884.763677][T30398] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 884.772099][T30398] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 884.780079][T30398] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 884.788058][T30398] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 884.796032][T30398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 884.804012][T30398] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 884.812005][T30398] [ 884.872313][T30405] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 884.899303][T30405] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 884.920094][T30405] CPU: 0 PID: 30405 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 884.930657][T30405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 884.940740][T30405] Call Trace: [ 884.944032][T30405] [ 884.946980][T30405] dump_stack_lvl+0xcd/0x134 [ 884.951602][T30405] sysfs_warn_dup.cold+0x1c/0x29 [ 884.956566][T30405] sysfs_do_create_link_sd+0x11e/0x140 [ 884.962065][T30405] sysfs_create_link+0x5f/0xc0 [ 884.966870][T30405] device_add+0x789/0x1ee0 [ 884.971325][T30405] ? wait_for_completion_io+0x270/0x270 [ 884.976908][T30405] ? lock_downgrade+0x6e0/0x6e0 [ 884.981801][T30405] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 884.988068][T30405] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 884.994340][T30405] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 885.000603][T30405] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 885.006616][T30405] wiphy_register+0x1e86/0x29a0 [ 885.011502][T30405] ? wiphy_unregister+0xbf0/0xbf0 [ 885.016542][T30405] ? minstrel_ht_alloc+0x52c/0xa10 [ 885.021680][T30405] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 885.027764][T30405] ieee80211_register_hw+0x1f16/0x3ed0 [ 885.033252][T30405] ? ieee80211_restart_hw+0x290/0x290 [ 885.038720][T30405] ? debug_object_destroy+0x210/0x210 [ 885.044106][T30405] ? memset+0x20/0x40 [ 885.048099][T30405] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 885.054353][T30405] ? __hrtimer_init+0x136/0x280 [ 885.059217][T30405] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 885.064965][T30405] ? hwsim_virtio_rx_work+0x350/0x350 [ 885.070343][T30405] ? hwsim_new_radio_nl+0x992/0x1080 [ 885.075637][T30405] ? memcpy+0x39/0x60 [ 885.079630][T30405] hwsim_new_radio_nl+0x9bc/0x1080 [ 885.084754][T30405] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 885.090674][T30405] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 885.096929][T30405] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 885.104311][T30405] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 885.111611][T30405] genl_family_rcv_msg_doit+0x228/0x320 [ 885.117166][T30405] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 885.124545][T30405] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 885.130817][T30405] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 885.137069][T30405] ? ns_capable+0xd9/0x100 [ 885.141510][T30405] genl_rcv_msg+0x328/0x580 [ 885.146036][T30405] ? genl_get_cmd+0x480/0x480 [ 885.150720][T30405] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 885.156628][T30405] ? lock_release+0x720/0x720 [ 885.161314][T30405] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 885.167154][T30405] netlink_rcv_skb+0x153/0x420 [ 885.171925][T30405] ? genl_get_cmd+0x480/0x480 [ 885.176611][T30405] ? netlink_ack+0xa60/0xa60 [ 885.181212][T30405] ? netlink_deliver_tap+0x1b1/0xc30 [ 885.186513][T30405] genl_rcv+0x24/0x40 [ 885.190527][T30405] netlink_unicast+0x539/0x7e0 [ 885.195308][T30405] ? netlink_attachskb+0x880/0x880 [ 885.200426][T30405] ? __virt_addr_valid+0x5d/0x2d0 [ 885.205462][T30405] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 885.211716][T30405] ? __phys_addr_symbol+0x2c/0x70 [ 885.216755][T30405] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 885.222496][T30405] ? __check_object_size+0x16e/0x310 [ 885.227797][T30405] netlink_sendmsg+0x904/0xe00 [ 885.232578][T30405] ? netlink_unicast+0x7e0/0x7e0 [ 885.237526][T30405] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 885.243783][T30405] ? netlink_unicast+0x7e0/0x7e0 [ 885.248764][T30405] sock_sendmsg+0xcf/0x120 [ 885.253363][T30405] ____sys_sendmsg+0x6e8/0x810 [ 885.258137][T30405] ? kernel_sendmsg+0x50/0x50 [ 885.262816][T30405] ? do_recvmmsg+0x6d0/0x6d0 [ 885.267417][T30405] ? lock_chain_count+0x20/0x20 [ 885.272455][T30405] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 885.278456][T30405] ___sys_sendmsg+0xf3/0x170 [ 885.283061][T30405] ? sendmsg_copy_msghdr+0x160/0x160 [ 885.288362][T30405] ? lock_downgrade+0x6e0/0x6e0 [ 885.293238][T30405] ? __fget_files+0x28c/0x470 [ 885.297946][T30405] ? __fget_light+0xea/0x280 [ 885.302547][T30405] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 885.308805][T30405] __sys_sendmsg+0xe5/0x1b0 [ 885.313323][T30405] ? __sys_sendmsg_sock+0x30/0x30 [ 885.318378][T30405] ? syscall_enter_from_user_mode+0x21/0x70 [ 885.324294][T30405] do_syscall_64+0x35/0xb0 [ 885.328719][T30405] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 885.334625][T30405] RIP: 0033:0x7f0982948059 [ 885.339046][T30405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 885.358661][T30405] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 20:15:54 executing program 0: bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2, 0x3}, 0x6) r0 = socket$kcm(0x10, 0x2, 0x0) r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000400)='syz1\x00', 0x200002, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (async) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r3, r2, 0x0, 0x100000002) (async) sendmsg$kcm(r2, &(0x7f00000003c0)={&(0x7f00000001c0)=@generic={0x6, "599d6a4bc1e1a54e4d56c6bfe1152f84792eff9ad0fb87fb5762b2b0bf3b88ec50f1765c257b00f1edf06e8d40f23a4f5ffcdaf52a731167c91e75fb7616ad4938f48e2140de3497397ec1604cbe7e2990263d4c3f040b80947a78bca649bf42271d44e34148292e34c5defecfa34d0fe9ddbac0a1ea896725a4d620cced"}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000240)="a27fbc2b502c911c27b2c4a3af9a3fec194927bb0c8fa75ff9a091841973925084f37ca5e1ce63a08a0679cbd5c92321e23c421d9a7092f017fcdaee49af7ef8d4b63ff0f1118873fc6741a08d3e84bbecd71ce3c6a475d39ee890e05c9f8e3e38e26f5779d67c7337dd40a0180aad8a7d828dcac64d01695356fa1aa8583d2a641490a2be3d1adf6fd47b8ae69d47bdafb997a7a3b41c64a82aa0796ef0e2be9bf2474afdbde3d91b47d8608adf354a6de55d58909fb30851e68a170ef252f68f2cd8", 0xc3}, {&(0x7f0000000340)="e72c4c2204ccbc3f43c2de0d02a4f9fba4a3", 0x12}], 0x2}, 0x10000) (async) sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="d800000018008105e00f80ecdb4cb904021d65ef12007c05e87c55a1bc000900b8002e9925000000160012400a00fe79000000000b0005000600020003ac040000d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe04000000730d16a4683e4f6d021f003f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e04adcdf634c1f215ce3081ad809d5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f27260e9703", 0xd8}], 0x1}, 0x0) 20:15:54 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200253382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:54 executing program 4: r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000000)={0x114, 0x3f, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x2, 0x0, 0x0, @u64=0x1}, @generic="c898d63bab6b91", @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5331e1ddfd4d770b57e091511131"]}]}, 0x114}], 0x1}, 0x0) r1 = socket$nl_crypto(0x10, 0x3, 0x15) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000300)={{{@in=@loopback, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={""/10, ""/2, @remote}}, 0x0, @in=@multicast2}}, &(0x7f0000000400)=0xe8) r3 = socket$unix(0x1, 0x2, 0x0) r4 = gettid() r5 = getuid() sendmmsg$unix(r3, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=0x0, @ANYBLOB='\x00\x00\n\x00,'], 0x50}}], 0x1, 0x40c1) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r7, r6, 0x0, 0x100000002) r8 = socket$unix(0x1, 0x2, 0x0) r9 = gettid() r10 = getuid() r11 = getuid() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32, @ANYRES32=r11, @ANYRES32=0x0, @ANYRESOCT=r9], 0x50}}], 0x1, 0x40c1) ioctl$sock_FIOSETOWN(0xffffffffffffffff, 0x8901, &(0x7f00000005c0)) sendmmsg$unix(r8, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r9, @ANYRES32=r10, @ANYRES32=0x0, @ANYBLOB='\x00\x00\n\x00,'], 0x50}}], 0x1, 0x40c1) sendmsg$netlink(r1, &(0x7f00000004c0)={&(0x7f0000000140)=@proc={0x10, 0x0, 0x25dfdbff, 0x2000}, 0xc, &(0x7f0000000440)=[{&(0x7f0000000180)={0x24, 0x38, 0x0, 0x70bd28, 0x25dfdbfd, "", [@typed={0x14, 0x66, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}]}, 0x24}, {&(0x7f0000000600)={0x110, 0x3a, 0x800, 0x70bd2c, 0x25dfdbfe, "", [@typed={0x39, 0x11, 0x0, 0x0, @binary="e7f9f25ffb02f3b8df83aff4a940efff3433e77c5ee95bb2a2927fb5237990d8ea95056143ab39ff25c76c986497e2339496493f1c"}, @generic="00ecfb081322d409d9b7f613d84e4b655b803103a99086b604", @nested={0xa5, 0x59, 0x0, 0x1, [@generic="d6f17466615a445787a9a7cb822ae39fab8408d72f570eafc2c01057f0c1b31136b0aca7b17a3d751fe91f1c6633fb0adf9fed0a142861db7ab4", @typed={0x10, 0x8c, 0x0, 0x0, @str='\'&\x00\xaa\xac\xab\x8f [ 885.472323][ T25] audit: type=1804 audit(1643832954.447:1025): pid=30419 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir602834281/syzkaller.s78526/1250/cgroup.controllers" dev="sda1" ino=1181 res=1 errno=0 [ 885.514328][T30407] netlink: 'syz-executor.3': attribute type 11 has an invalid length. 20:15:54 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'veth1_to_hsr\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x60, 0x10, 0x503, 0x0, 0x0, {0x0, 0xcf, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @gre={{0x8}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x8, 0x6, @local}, @IFLA_GRE_REMOTE={0x8, 0x7, @multicast1=0xe0000003}, @IFLA_GRE_LINK={0x8, 0x1, r2}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e21}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x60}, 0x1, 0x0, 0x0, 0x24040011}, 0x0) r3 = accept(r0, 0x0, &(0x7f0000000040)) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x3, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_FLUSH(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)={0x14}, 0x14}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r8, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c00000024000b0f00000000e4ff000000000000", @ANYRES32=r8, @ANYBLOB="00000000ffffffff000000000b00010064736d61726b00000c0002000600010020"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newtfilter={0x24, 0x29, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x5}}}, 0x24}}, 0x0) sendmsg$nl_route(r3, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20008080}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=@newlinkprop={0x110, 0x6c, 0x200, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, r8, 0x40, 0x18040}, [@IFLA_EVENT={0x8, 0x2c, 0x101}, @IFLA_MTU={0x8, 0x4, 0x4}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x8}, @IFLA_OPERSTATE={0x5}, @IFLA_OPERSTATE={0x5, 0x10, 0x6}, @IFLA_AF_SPEC={0x88, 0x1a, 0x0, 0x1, [@AF_BRIDGE={0x4}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8, 0xc, 0x0, 0x0, 0x3}, {0x8, 0x6, 0x0, 0x0, 0xaa4f}, {0x8, 0x9, 0x0, 0x0, 0x7f}, {0x8, 0x11, 0x0, 0x0, 0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x54, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x9}, @IFLA_INET6_TOKEN={0x14, 0x7, @private0={0xfc, 0x0, '\x00', 0x1}}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x8}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x4}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x6}, @IFLA_INET6_TOKEN={0x14, 0x7, @local}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x9}]}]}, @IFLA_PROP_LIST={0x18, 0x34, 0x0, 0x1, [{0x14, 0x35, 'ip_vti0\x00'}]}, @IFLA_PROTO_DOWN={0x5}, @IFLA_IFNAME={0x14, 0x3, 'erspan0\x00'}, @IFLA_PHYS_SWITCH_ID={0xa, 0x24, "18b6be76a90f"}]}, 0x110}, 0x1, 0x0, 0x0, 0x20000000}, 0x200c) 20:15:54 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994150424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 885.525999][T30407] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. [ 885.551405][T30415] netlink: 'syz-executor.4': attribute type 2 has an invalid length. [ 885.572834][T30415] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.4'. 20:15:54 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100028402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 885.626118][T30416] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 885.634476][T30416] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. 20:15:54 executing program 4: r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000000)={0x114, 0x3f, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x2, 0x0, 0x0, @u64=0x1}, @generic="c898d63bab6b91", @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5331e1ddfd4d770b57e091511131"]}]}, 0x114}], 0x1}, 0x0) (async) r1 = socket$nl_crypto(0x10, 0x3, 0x15) (async) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000300)={{{@in=@loopback, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={""/10, ""/2, @remote}}, 0x0, @in=@multicast2}}, &(0x7f0000000400)=0xe8) r3 = socket$unix(0x1, 0x2, 0x0) (async) r4 = gettid() r5 = getuid() sendmmsg$unix(r3, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=0x0, @ANYBLOB='\x00\x00\n\x00,'], 0x50}}], 0x1, 0x40c1) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (async) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r7, r6, 0x0, 0x100000002) r8 = socket$unix(0x1, 0x2, 0x0) r9 = gettid() (async) r10 = getuid() (async) r11 = getuid() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32, @ANYRES32=r11, @ANYRES32=0x0, @ANYRESOCT=r9], 0x50}}], 0x1, 0x40c1) (async) ioctl$sock_FIOSETOWN(0xffffffffffffffff, 0x8901, &(0x7f00000005c0)) (async) sendmmsg$unix(r8, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r9, @ANYRES32=r10, @ANYRES32=0x0, @ANYBLOB='\x00\x00\n\x00,'], 0x50}}], 0x1, 0x40c1) (async) sendmsg$netlink(r1, &(0x7f00000004c0)={&(0x7f0000000140)=@proc={0x10, 0x0, 0x25dfdbff, 0x2000}, 0xc, &(0x7f0000000440)=[{&(0x7f0000000180)={0x24, 0x38, 0x0, 0x70bd28, 0x25dfdbfd, "", [@typed={0x14, 0x66, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}]}, 0x24}, {&(0x7f0000000600)={0x110, 0x3a, 0x800, 0x70bd2c, 0x25dfdbfe, "", [@typed={0x39, 0x11, 0x0, 0x0, @binary="e7f9f25ffb02f3b8df83aff4a940efff3433e77c5ee95bb2a2927fb5237990d8ea95056143ab39ff25c76c986497e2339496493f1c"}, @generic="00ecfb081322d409d9b7f613d84e4b655b803103a99086b604", @nested={0xa5, 0x59, 0x0, 0x1, [@generic="d6f17466615a445787a9a7cb822ae39fab8408d72f570eafc2c01057f0c1b31136b0aca7b17a3d751fe91f1c6633fb0adf9fed0a142861db7ab4", @typed={0x10, 0x8c, 0x0, 0x0, @str='\'&\x00\xaa\xac\xab\x8f [ 885.790447][T30416] dump_stack_lvl+0xcd/0x134 [ 885.795038][T30416] sysfs_warn_dup.cold+0x1c/0x29 [ 885.799978][T30416] sysfs_do_create_link_sd+0x11e/0x140 [ 885.805444][T30416] sysfs_create_link+0x5f/0xc0 [ 885.810211][T30416] device_add+0x789/0x1ee0 [ 885.814629][T30416] ? wait_for_completion_io+0x270/0x270 [ 885.820191][T30416] ? lock_downgrade+0x6e0/0x6e0 [ 885.825047][T30416] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 885.831319][T30416] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 885.837560][T30416] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 885.843819][T30416] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 885.849835][T30416] wiphy_register+0x1e86/0x29a0 [ 885.854725][T30416] ? wiphy_unregister+0xbf0/0xbf0 [ 885.859775][T30416] ? minstrel_ht_alloc+0x52c/0xa10 [ 885.864923][T30416] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 885.870996][T30416] ieee80211_register_hw+0x1f16/0x3ed0 [ 885.876484][T30416] ? ieee80211_restart_hw+0x290/0x290 [ 885.881865][T30416] ? debug_object_destroy+0x210/0x210 [ 885.887250][T30416] ? memset+0x20/0x40 [ 885.891256][T30416] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 885.897497][T30416] ? __hrtimer_init+0x136/0x280 [ 885.902381][T30416] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 885.908115][T30416] ? hwsim_virtio_rx_work+0x350/0x350 [ 885.913491][T30416] ? hwsim_new_radio_nl+0x992/0x1080 [ 885.918794][T30416] ? memcpy+0x39/0x60 [ 885.922801][T30416] hwsim_new_radio_nl+0x9bc/0x1080 [ 885.927919][T30416] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 885.934024][T30416] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 885.940299][T30416] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 885.947690][T30416] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 885.954982][T30416] genl_family_rcv_msg_doit+0x228/0x320 [ 885.960557][T30416] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 885.967953][T30416] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 885.974214][T30416] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 885.980481][T30416] ? ns_capable+0xd9/0x100 [ 885.984924][T30416] genl_rcv_msg+0x328/0x580 [ 885.989450][T30416] ? genl_get_cmd+0x480/0x480 [ 885.994127][T30416] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 886.000039][T30416] ? lock_release+0x720/0x720 [ 886.004746][T30416] netlink_rcv_skb+0x153/0x420 [ 886.009518][T30416] ? genl_get_cmd+0x480/0x480 [ 886.014210][T30416] ? netlink_ack+0xa60/0xa60 [ 886.018817][T30416] ? netlink_deliver_tap+0x1b1/0xc30 [ 886.024113][T30416] genl_rcv+0x24/0x40 [ 886.028102][T30416] netlink_unicast+0x539/0x7e0 [ 886.032886][T30416] ? netlink_attachskb+0x880/0x880 [ 886.037986][T30416] ? __virt_addr_valid+0x5d/0x2d0 [ 886.043018][T30416] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 886.049266][T30416] ? __phys_addr_symbol+0x2c/0x70 [ 886.054311][T30416] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 886.060032][T30416] ? __check_object_size+0x16e/0x310 [ 886.065354][T30416] netlink_sendmsg+0x904/0xe00 [ 886.070126][T30416] ? netlink_unicast+0x7e0/0x7e0 [ 886.075102][T30416] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 886.081371][T30416] ? netlink_unicast+0x7e0/0x7e0 [ 886.086306][T30416] sock_sendmsg+0xcf/0x120 [ 886.090719][T30416] ____sys_sendmsg+0x6e8/0x810 [ 886.095574][T30416] ? kernel_sendmsg+0x50/0x50 [ 886.100268][T30416] ? do_recvmmsg+0x6d0/0x6d0 [ 886.104878][T30416] ? lock_chain_count+0x20/0x20 [ 886.109726][T30416] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 886.115708][T30416] ___sys_sendmsg+0xf3/0x170 [ 886.120309][T30416] ? sendmsg_copy_msghdr+0x160/0x160 [ 886.125629][T30416] ? lock_downgrade+0x6e0/0x6e0 [ 886.130518][T30416] ? __fget_files+0x28c/0x470 [ 886.135219][T30416] ? __fget_light+0xea/0x280 [ 886.139813][T30416] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 886.146053][T30416] __sys_sendmsg+0xe5/0x1b0 [ 886.150604][T30416] ? __sys_sendmsg_sock+0x30/0x30 [ 886.155660][T30416] ? syscall_enter_from_user_mode+0x21/0x70 [ 886.161587][T30416] do_syscall_64+0x35/0xb0 [ 886.166025][T30416] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 886.171937][T30416] RIP: 0033:0x7f4b423c2059 [ 886.176365][T30416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 886.195968][T30416] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 886.204384][T30416] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 886.212367][T30416] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 886.220336][T30416] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 886.228317][T30416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 886.236309][T30416] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 886.244311][T30416] 20:15:55 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200353382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:55 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x34, r1, 0x1, 0x70bd2a, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x30}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xda}]}]}]}, 0x34}}, 0x0) 20:15:55 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'veth1_to_hsr\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x60, 0x10, 0x503, 0x0, 0x0, {0x0, 0xcf, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @gre={{0x8}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x8, 0x6, @local}, @IFLA_GRE_REMOTE={0x8, 0x7, @multicast1=0xe0000003}, @IFLA_GRE_LINK={0x8, 0x1, r2}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e21}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x60}, 0x1, 0x0, 0x0, 0x24040011}, 0x0) r3 = accept(r0, 0x0, &(0x7f0000000040)) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x3, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_FLUSH(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)={0x14}, 0x14}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r8, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c00000024000b0f00000000e4ff000000000000", @ANYRES32=r8, @ANYBLOB="00000000ffffffff000000000b00010064736d61726b00000c0002000600010020"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newtfilter={0x24, 0x29, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x5}}}, 0x24}}, 0x0) sendmsg$nl_route(r3, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20008080}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=@newlinkprop={0x110, 0x6c, 0x200, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, r8, 0x40, 0x18040}, [@IFLA_EVENT={0x8, 0x2c, 0x101}, @IFLA_MTU={0x8, 0x4, 0x4}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x8}, @IFLA_OPERSTATE={0x5}, @IFLA_OPERSTATE={0x5, 0x10, 0x6}, @IFLA_AF_SPEC={0x88, 0x1a, 0x0, 0x1, [@AF_BRIDGE={0x4}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8, 0xc, 0x0, 0x0, 0x3}, {0x8, 0x6, 0x0, 0x0, 0xaa4f}, {0x8, 0x9, 0x0, 0x0, 0x7f}, {0x8, 0x11, 0x0, 0x0, 0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x54, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x9}, @IFLA_INET6_TOKEN={0x14, 0x7, @private0={0xfc, 0x0, '\x00', 0x1}}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x8}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x4}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x6}, @IFLA_INET6_TOKEN={0x14, 0x7, @local}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x9}]}]}, @IFLA_PROP_LIST={0x18, 0x34, 0x0, 0x1, [{0x14, 0x35, 'ip_vti0\x00'}]}, @IFLA_PROTO_DOWN={0x5}, @IFLA_IFNAME={0x14, 0x3, 'erspan0\x00'}, @IFLA_PHYS_SWITCH_ID={0xa, 0x24, "18b6be76a90f"}]}, 0x110}, 0x1, 0x0, 0x0, 0x20000000}, 0x200c) socket$nl_route(0x10, 0x3, 0x0) (async) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'veth1_to_hsr\x00'}) (async) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x60, 0x10, 0x503, 0x0, 0x0, {0x0, 0xcf, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @gre={{0x8}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x8, 0x6, @local}, @IFLA_GRE_REMOTE={0x8, 0x7, @multicast1=0xe0000003}, @IFLA_GRE_LINK={0x8, 0x1, r2}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e21}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x60}, 0x1, 0x0, 0x0, 0x24040011}, 0x0) (async) accept(r0, 0x0, &(0x7f0000000040)) (async) socket$nl_route(0x10, 0x3, 0x0) (async) socket(0x10, 0x3, 0x0) (async) socket$netlink(0x10, 0x3, 0x0) (async) socket(0x10, 0x803, 0x0) (async) sendmsg$SMC_PNETID_FLUSH(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)={0x14}, 0x14}}, 0x0) (async) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) (async) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r8, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) (async) sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c00000024000b0f00000000e4ff000000000000", @ANYRES32=r8, @ANYBLOB="00000000ffffffff000000000b00010064736d61726b00000c0002000600010020"], 0x3c}}, 0x0) (async) sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newtfilter={0x24, 0x29, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x5}}}, 0x24}}, 0x0) (async) sendmsg$nl_route(r3, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20008080}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=@newlinkprop={0x110, 0x6c, 0x200, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, r8, 0x40, 0x18040}, [@IFLA_EVENT={0x8, 0x2c, 0x101}, @IFLA_MTU={0x8, 0x4, 0x4}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x8}, @IFLA_OPERSTATE={0x5}, @IFLA_OPERSTATE={0x5, 0x10, 0x6}, @IFLA_AF_SPEC={0x88, 0x1a, 0x0, 0x1, [@AF_BRIDGE={0x4}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8, 0xc, 0x0, 0x0, 0x3}, {0x8, 0x6, 0x0, 0x0, 0xaa4f}, {0x8, 0x9, 0x0, 0x0, 0x7f}, {0x8, 0x11, 0x0, 0x0, 0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x54, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x9}, @IFLA_INET6_TOKEN={0x14, 0x7, @private0={0xfc, 0x0, '\x00', 0x1}}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x8}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x4}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x6}, @IFLA_INET6_TOKEN={0x14, 0x7, @local}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x9}]}]}, @IFLA_PROP_LIST={0x18, 0x34, 0x0, 0x1, [{0x14, 0x35, 'ip_vti0\x00'}]}, @IFLA_PROTO_DOWN={0x5}, @IFLA_IFNAME={0x14, 0x3, 'erspan0\x00'}, @IFLA_PHYS_SWITCH_ID={0xa, 0x24, "18b6be76a90f"}]}, 0x110}, 0x1, 0x0, 0x0, 0x20000000}, 0x200c) (async) [ 886.335950][T30428] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 886.360679][T30428] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 886.404887][T30428] CPU: 0 PID: 30428 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 886.415438][T30428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 886.425515][T30428] Call Trace: [ 886.428810][T30428] [ 886.431759][T30428] dump_stack_lvl+0xcd/0x134 [ 886.436381][T30428] sysfs_warn_dup.cold+0x1c/0x29 [ 886.441343][T30428] sysfs_do_create_link_sd+0x11e/0x140 [ 886.446836][T30428] sysfs_create_link+0x5f/0xc0 [ 886.451631][T30428] device_add+0x789/0x1ee0 [ 886.456083][T30428] ? wait_for_completion_io+0x270/0x270 [ 886.461654][T30428] ? lock_downgrade+0x6e0/0x6e0 [ 886.466535][T30428] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 886.472806][T30428] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 886.479076][T30428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 886.485343][T30428] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 886.491374][T30428] wiphy_register+0x1e86/0x29a0 [ 886.496263][T30428] ? wiphy_unregister+0xbf0/0xbf0 [ 886.501307][T30428] ? minstrel_ht_alloc+0x52c/0xa10 [ 886.506460][T30428] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 886.512557][T30428] ieee80211_register_hw+0x1f16/0x3ed0 [ 886.518068][T30428] ? ieee80211_restart_hw+0x290/0x290 [ 886.523469][T30428] ? debug_object_destroy+0x210/0x210 [ 886.528872][T30428] ? memset+0x20/0x40 [ 886.532882][T30428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 886.539155][T30428] ? __hrtimer_init+0x136/0x280 [ 886.544035][T30428] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 886.549803][T30428] ? hwsim_virtio_rx_work+0x350/0x350 [ 886.555199][T30428] ? hwsim_new_radio_nl+0x992/0x1080 [ 886.560522][T30428] ? memcpy+0x39/0x60 [ 886.564535][T30428] hwsim_new_radio_nl+0x9bc/0x1080 [ 886.569674][T30428] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 886.575604][T30428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 886.581869][T30428] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 886.589271][T30428] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 886.596598][T30428] genl_family_rcv_msg_doit+0x228/0x320 [ 886.602171][T30428] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 886.609587][T30428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 886.615871][T30428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 886.622142][T30428] ? ns_capable+0xd9/0x100 [ 886.626611][T30428] genl_rcv_msg+0x328/0x580 [ 886.631143][T30428] ? genl_get_cmd+0x480/0x480 [ 886.635845][T30428] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 886.641798][T30428] ? lock_release+0x720/0x720 [ 886.646520][T30428] netlink_rcv_skb+0x153/0x420 [ 886.651316][T30428] ? genl_get_cmd+0x480/0x480 [ 886.655525][T30443] warn_alloc: 1 callbacks suppressed [ 886.655541][T30443] syz-executor.0: vmalloc error: size 4096, page order 0, failed to allocate pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 886.656019][T30428] ? netlink_ack+0xa60/0xa60 [ 886.656061][T30428] ? netlink_deliver_tap+0x1b1/0xc30 [ 886.656097][T30428] genl_rcv+0x24/0x40 [ 886.663003][T30443] ,cpuset= [ 886.675147][T30428] netlink_unicast+0x539/0x7e0 [ 886.675189][T30428] ? netlink_attachskb+0x880/0x880 [ 886.675214][T30428] ? __virt_addr_valid+0x5d/0x2d0 [ 886.675243][T30428] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 886.675274][T30428] ? __phys_addr_symbol+0x2c/0x70 [ 886.675300][T30428] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 886.675331][T30428] ? __check_object_size+0x16e/0x310 [ 886.675365][T30428] netlink_sendmsg+0x904/0xe00 [ 886.675398][T30428] ? netlink_unicast+0x7e0/0x7e0 [ 886.675431][T30428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 886.675465][T30428] ? netlink_unicast+0x7e0/0x7e0 [ 886.675489][T30428] sock_sendmsg+0xcf/0x120 [ 886.675517][T30428] ____sys_sendmsg+0x6e8/0x810 [ 886.675548][T30428] ? kernel_sendmsg+0x50/0x50 [ 886.675574][T30428] ? do_recvmmsg+0x6d0/0x6d0 [ 886.713007][T30443] syz0 [ 886.713509][T30428] ? lock_chain_count+0x20/0x20 [ 886.730942][T30443] ,mems_allowed=0-1 [ 886.734424][T30428] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 886.734466][T30428] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 886.734505][T30428] ? futex_wait+0x533/0x670 [ 886.758558][T30443] [ 886.759767][T30428] ___sys_sendmsg+0xf3/0x170 [ 886.759811][T30428] ? sendmsg_copy_msghdr+0x160/0x160 [ 886.809242][T30428] ? lock_downgrade+0x6e0/0x6e0 [ 886.814141][T30428] ? __fget_files+0x28c/0x470 [ 886.818856][T30428] ? __fget_light+0xea/0x280 [ 886.823466][T30428] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 886.829745][T30428] __sys_sendmsg+0xe5/0x1b0 [ 886.834273][T30428] ? __sys_sendmsg_sock+0x30/0x30 [ 886.839345][T30428] ? syscall_enter_from_user_mode+0x21/0x70 [ 886.845461][T30428] do_syscall_64+0x35/0xb0 [ 886.849894][T30428] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 886.855807][T30428] RIP: 0033:0x7f0982948059 [ 886.860242][T30428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 886.879871][T30428] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 886.888315][T30428] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 886.896313][T30428] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 886.904304][T30428] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 886.912298][T30428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 886.920294][T30428] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 886.928318][T30428] [ 886.936541][T30443] CPU: 1 PID: 30443 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 886.947086][T30443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 886.957161][T30443] Call Trace: [ 886.960450][T30443] [ 886.963389][T30443] dump_stack_lvl+0xcd/0x134 [ 886.968004][T30443] warn_alloc.cold+0x9b/0x189 [ 886.972704][T30443] ? zone_watermark_ok_safe+0x290/0x290 [ 886.978280][T30443] ? __kmalloc_node+0x62/0x390 [ 886.983094][T30443] ? __vmalloc_node_range+0x7bf/0x1060 [ 886.988572][T30443] __vmalloc_node_range+0xe1e/0x1060 [ 886.993879][T30443] ? vfree_atomic+0xe0/0xe0 [ 886.998470][T30443] ? rcu_read_lock_sched_held+0x3a/0x70 [ 887.004030][T30443] ? kernel_clone+0xe7/0xab0 [ 887.006919][T30431] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 887.008619][T30443] copy_process+0x926/0x7300 [ 887.008650][T30443] ? kernel_clone+0xe7/0xab0 [ 887.008676][T30443] ? lock_chain_count+0x20/0x20 [ 887.030805][T30443] ? lock_chain_count+0x20/0x20 [ 887.035757][T30443] ? find_held_lock+0x2d/0x110 [ 887.040515][T30443] ? __cleanup_sighand+0xb0/0xb0 [ 887.045446][T30443] ? lock_downgrade+0x6e0/0x6e0 [ 887.050304][T30443] ? __lock_acquire+0x1655/0x5470 [ 887.055345][T30443] ? kernel_clone+0x314/0xab0 [ 887.060038][T30443] kernel_clone+0xe7/0xab0 [ 887.064475][T30443] ? create_io_thread+0xf0/0xf0 [ 887.069339][T30443] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 887.075357][T30443] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 887.081351][T30443] ? find_held_lock+0x2d/0x110 [ 887.086118][T30443] __do_sys_clone+0xc8/0x110 [ 887.090701][T30443] ? kernel_clone+0xab0/0xab0 [ 887.095367][T30443] ? lock_downgrade+0x6e0/0x6e0 [ 887.100235][T30443] ? syscall_enter_from_user_mode+0x21/0x70 [ 887.106147][T30443] do_syscall_64+0x35/0xb0 [ 887.110571][T30443] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 887.116461][T30443] RIP: 0033:0x7ff5c0e32481 [ 887.120871][T30443] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00 [ 887.140529][T30443] RSP: 002b:00007ffd7465eee8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 887.148961][T30443] RAX: ffffffffffffffda RBX: 00007ff5bf575700 RCX: 00007ff5c0e32481 20:15:56 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994160424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 887.157013][T30443] RDX: 00007ff5bf5759d0 RSI: 00007ff5bf5752f0 RDI: 00000000003d0f00 [ 887.165002][T30443] RBP: 00007ffd7465f130 R08: 00007ff5bf575700 R09: 00007ff5bf575700 [ 887.172976][T30443] R10: 00007ff5bf5759d0 R11: 0000000000000206 R12: 00007ffd7465ef9e [ 887.180950][T30443] R13: 00007ffd7465ef9f R14: 00007ff5bf575300 R15: 0000000000022000 [ 887.188981][T30443] [ 887.226437][T30443] Mem-Info: [ 887.229854][T30443] active_anon:1119 inactive_anon:89004 isolated_anon:0 [ 887.229854][T30443] active_file:4744 inactive_file:35428 isolated_file:0 [ 887.229854][T30443] unevictable:768 dirty:22 writeback:0 [ 887.229854][T30443] slab_reclaimable:21930 slab_unreclaimable:116857 [ 887.229854][T30443] mapped:28214 shmem:2859 pagetables:735 bounce:0 [ 887.229854][T30443] kernel_misc_reclaimable:0 [ 887.229854][T30443] free:1332037 free_pcp:10902 free_cma:0 [ 887.273668][T30443] Node 0 active_anon:4464kB inactive_anon:357272kB active_file:18900kB inactive_file:141712kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:112856kB dirty:84kB writeback:0kB shmem:8952kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 348160kB writeback_tmp:0kB kernel_stack:11292kB pagetables:3036kB all_unreclaimable? no [ 887.315039][T30443] Node 1 active_anon:12kB inactive_anon:936kB active_file:76kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:2484kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:4kB all_unreclaimable? no [ 887.354654][T30443] Node 0 DMA free:15360kB boost:0kB min:200kB low:248kB high:296kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 887.382511][T30443] lowmem_reserve[]: 0 2645 2645 2645 2645 [ 887.399126][T30443] Node 0 DMA32 free:1359620kB boost:0kB min:35676kB low:44592kB high:53508kB reserved_highatomic:0KB active_anon:4464kB inactive_anon:357272kB active_file:18900kB inactive_file:141712kB unevictable:1536kB writepending:84kB present:3129332kB managed:2716664kB mlocked:0kB bounce:0kB free_pcp:43852kB local_pcp:22208kB free_cma:0kB [ 887.460452][T30433] netlink: 'syz-executor.4': attribute type 2 has an invalid length. [ 887.473308][T30433] __nla_validate_parse: 2 callbacks suppressed [ 887.473325][T30433] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.4'. [ 887.497643][T30443] lowmem_reserve[]: 0 0 0 0 0 20:15:56 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100033402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 887.502507][T30443] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:400kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 887.530327][T30442] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 887.544815][T30442] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. 20:15:56 executing program 4: r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000000)={0x114, 0x3f, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x2, 0x0, 0x0, @u64=0x1}, @generic="c898d63bab6b91", @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb47d96219c08c029d1608a487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5331e1ddfd4d770b57e091511131"]}]}, 0x114}], 0x1}, 0x0) r1 = socket$nl_crypto(0x10, 0x3, 0x15) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000300)={{{@in=@loopback, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={""/10, ""/2, @remote}}, 0x0, @in=@multicast2}}, &(0x7f0000000400)=0xe8) r3 = socket$unix(0x1, 0x2, 0x0) r4 = gettid() r5 = getuid() sendmmsg$unix(r3, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=0x0, @ANYBLOB='\x00\x00\n\x00,'], 0x50}}], 0x1, 0x40c1) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r7, r6, 0x0, 0x100000002) r8 = socket$unix(0x1, 0x2, 0x0) r9 = gettid() r10 = getuid() r11 = getuid() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32, @ANYRES32=r11, @ANYRES32=0x0, @ANYRESOCT=r9], 0x50}}], 0x1, 0x40c1) ioctl$sock_FIOSETOWN(0xffffffffffffffff, 0x8901, &(0x7f00000005c0)) sendmmsg$unix(r8, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r9, @ANYRES32=r10, @ANYRES32=0x0, @ANYBLOB='\x00\x00\n\x00,'], 0x50}}], 0x1, 0x40c1) sendmsg$netlink(r1, &(0x7f00000004c0)={&(0x7f0000000140)=@proc={0x10, 0x0, 0x25dfdbff, 0x2000}, 0xc, &(0x7f0000000440)=[{&(0x7f0000000180)={0x24, 0x38, 0x0, 0x70bd28, 0x25dfdbfd, "", [@typed={0x14, 0x66, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}]}, 0x24}, {&(0x7f0000000600)={0x110, 0x3a, 0x800, 0x70bd2c, 0x25dfdbfe, "", [@typed={0x39, 0x11, 0x0, 0x0, @binary="e7f9f25ffb02f3b8df83aff4a940efff3433e77c5ee95bb2a2927fb5237990d8ea95056143ab39ff25c76c986497e2339496493f1c"}, @generic="00ecfb081322d409d9b7f613d84e4b655b803103a99086b604", @nested={0xa5, 0x59, 0x0, 0x1, [@generic="d6f17466615a445787a9a7cb822ae39fab8408d72f570eafc2c01057f0c1b31136b0aca7b17a3d751fe91f1c6633fb0adf9fed0a142861db7ab4", @typed={0x10, 0x8c, 0x0, 0x0, @str='\'&\x00\xaa\xac\xab\x8f [ 887.604611][T30442] dump_stack_lvl+0xcd/0x134 [ 887.609234][T30442] sysfs_warn_dup.cold+0x1c/0x29 [ 887.614204][T30442] sysfs_do_create_link_sd+0x11e/0x140 [ 887.619703][T30442] sysfs_create_link+0x5f/0xc0 [ 887.624501][T30442] device_add+0x789/0x1ee0 [ 887.628958][T30442] ? wait_for_completion_io+0x270/0x270 [ 887.634538][T30442] ? lock_downgrade+0x6e0/0x6e0 [ 887.639420][T30442] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 887.645686][T30442] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 887.651944][T30442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 887.658197][T30442] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 887.664195][T30442] wiphy_register+0x1e86/0x29a0 [ 887.669068][T30442] ? wiphy_unregister+0xbf0/0xbf0 [ 887.674095][T30442] ? minstrel_ht_alloc+0x52c/0xa10 [ 887.679229][T30442] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 887.685317][T30442] ieee80211_register_hw+0x1f16/0x3ed0 [ 887.690804][T30442] ? ieee80211_restart_hw+0x290/0x290 [ 887.696190][T30442] ? debug_object_destroy+0x210/0x210 [ 887.701575][T30442] ? memset+0x20/0x40 [ 887.705574][T30442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 887.711829][T30442] ? __hrtimer_init+0x136/0x280 [ 887.716693][T30442] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 887.722452][T30442] ? hwsim_virtio_rx_work+0x350/0x350 [ 887.727840][T30442] ? hwsim_new_radio_nl+0x992/0x1080 [ 887.733138][T30442] ? memcpy+0x39/0x60 [ 887.737147][T30442] hwsim_new_radio_nl+0x9bc/0x1080 [ 887.742391][T30442] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 887.748326][T30442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 887.754592][T30442] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 887.761976][T30442] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 887.769635][T30442] genl_family_rcv_msg_doit+0x228/0x320 [ 887.775211][T30442] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 887.782600][T30442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 887.788874][T30442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 887.795133][T30442] ? ns_capable+0xd9/0x100 [ 887.799561][T30442] genl_rcv_msg+0x328/0x580 [ 887.804072][T30442] ? genl_get_cmd+0x480/0x480 [ 887.808757][T30442] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 887.814668][T30442] ? lock_release+0x720/0x720 [ 887.819358][T30442] netlink_rcv_skb+0x153/0x420 [ 887.824130][T30442] ? genl_get_cmd+0x480/0x480 [ 887.828821][T30442] ? netlink_ack+0xa60/0xa60 [ 887.833424][T30442] ? netlink_deliver_tap+0x1b1/0xc30 [ 887.838724][T30442] genl_rcv+0x24/0x40 [ 887.842710][T30442] netlink_unicast+0x539/0x7e0 [ 887.847487][T30442] ? netlink_attachskb+0x880/0x880 [ 887.852604][T30442] ? __virt_addr_valid+0x5d/0x2d0 [ 887.857640][T30442] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 887.863889][T30442] ? __phys_addr_symbol+0x2c/0x70 [ 887.868925][T30442] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 887.874652][T30442] ? __check_object_size+0x16e/0x310 [ 887.879948][T30442] netlink_sendmsg+0x904/0xe00 [ 887.884726][T30442] ? netlink_unicast+0x7e0/0x7e0 [ 887.889677][T30442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 887.895931][T30442] ? netlink_unicast+0x7e0/0x7e0 [ 887.900879][T30442] sock_sendmsg+0xcf/0x120 [ 887.905315][T30442] ____sys_sendmsg+0x6e8/0x810 [ 887.910095][T30442] ? kernel_sendmsg+0x50/0x50 [ 887.914773][T30442] ? do_recvmmsg+0x6d0/0x6d0 [ 887.919370][T30442] ? lock_chain_count+0x20/0x20 [ 887.924230][T30442] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 887.930221][T30442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 887.936480][T30442] ? futex_wait+0x533/0x670 [ 887.941009][T30442] ___sys_sendmsg+0xf3/0x170 [ 887.945618][T30442] ? sendmsg_copy_msghdr+0x160/0x160 [ 887.950929][T30442] ? lock_downgrade+0x6e0/0x6e0 [ 887.955813][T30442] ? __fget_files+0x28c/0x470 [ 887.960516][T30442] ? __fget_light+0xea/0x280 [ 887.965116][T30442] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 887.971374][T30442] __sys_sendmsg+0xe5/0x1b0 [ 887.975887][T30442] ? __sys_sendmsg_sock+0x30/0x30 [ 887.980935][T30442] ? syscall_enter_from_user_mode+0x21/0x70 [ 887.986852][T30442] do_syscall_64+0x35/0xb0 [ 887.991288][T30442] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 887.997196][T30442] RIP: 0033:0x7f4b423c2059 [ 888.001628][T30442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 888.021254][T30442] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 888.029681][T30442] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 888.037657][T30442] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 888.045630][T30442] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 888.053603][T30442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 888.061576][T30442] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 888.069573][T30442] [ 888.081061][T30443] lowmem_reserve[]: 0 0 0 0 0 [ 888.107788][T30466] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. 20:15:57 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200010982c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 888.140044][T30443] Node 1 Normal free:3948832kB boost:0kB min:54224kB low:67780kB high:81336kB reserved_highatomic:0KB active_anon:12kB inactive_anon:936kB active_file:76kB inactive_file:0kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:1448kB local_pcp:0kB free_cma:0kB [ 888.175651][T30443] lowmem_reserve[]: 0 0 0 0 0 [ 888.178730][T30466] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 888.181760][T30443] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 888.204837][T30466] CPU: 1 PID: 30466 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 888.222811][T30466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 888.232907][T30466] Call Trace: [ 888.235917][T30443] Node 0 DMA32: [ 888.236198][T30466] [ 888.236212][T30466] dump_stack_lvl+0xcd/0x134 [ 888.244386][T30443] 3761*4kB [ 888.247249][T30466] sysfs_warn_dup.cold+0x1c/0x29 [ 888.247281][T30466] sysfs_do_create_link_sd+0x11e/0x140 [ 888.247317][T30466] sysfs_create_link+0x5f/0xc0 [ 888.254451][T30443] (UME) [ 888.255390][T30466] device_add+0x789/0x1ee0 [ 888.255429][T30466] ? wait_for_completion_io+0x270/0x270 [ 888.255462][T30466] ? asm_exc_int3+0x31/0x40 [ 888.255488][T30466] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 888.262326][T30443] 2340*8kB [ 888.265681][T30466] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 888.265719][T30466] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 888.265750][T30466] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 888.272069][T30443] (UME) [ 888.273000][T30466] wiphy_register+0x1e86/0x29a0 [ 888.286556][T30443] 942*16kB [ 888.289253][T30466] ? wiphy_unregister+0xbf0/0xbf0 [ 888.289288][T30466] ? minstrel_ht_alloc+0x52c/0xa10 [ 888.294733][T30443] (UME) [ 888.298622][T30466] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 888.298663][T30466] ieee80211_register_hw+0x1f16/0x3ed0 [ 888.306166][T30443] 429*32kB [ 888.310884][T30466] ? ieee80211_restart_hw+0x290/0x290 [ 888.310926][T30466] ? debug_object_destroy+0x210/0x210 [ 888.313863][T30443] (UME) [ 888.318598][T30466] ? memset+0x20/0x40 [ 888.318628][T30466] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 888.318661][T30466] ? __hrtimer_init+0x136/0x280 [ 888.318693][T30466] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 888.321924][T30443] 95*64kB [ 888.326836][T30466] ? hwsim_virtio_rx_work+0x350/0x350 [ 888.326870][T30466] ? hwsim_new_radio_nl+0x992/0x1080 [ 888.332120][T30443] (UME) [ 888.334836][T30466] ? memcpy+0x39/0x60 [ 888.334874][T30466] hwsim_new_radio_nl+0x9bc/0x1080 [ 888.341336][T30443] 26*128kB [ 888.346385][T30466] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 888.346435][T30466] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 888.349672][T30443] (ME) [ 888.354911][T30466] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 888.354946][T30466] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 888.361098][T30443] 11*256kB [ 888.363166][T30466] genl_family_rcv_msg_doit+0x228/0x320 [ 888.363205][T30466] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 888.367355][T30443] (UM) [ 888.373416][T30466] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 888.373468][T30466] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 888.378463][T30443] 56*512kB [ 888.384009][T30466] ? ns_capable+0xd9/0x100 [ 888.384046][T30466] genl_rcv_msg+0x328/0x580 [ 888.387211][T30443] (UM) [ 888.392434][T30466] ? genl_get_cmd+0x480/0x480 [ 888.392466][T30466] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 888.397899][T30443] 35*1024kB [ 888.400592][T30466] ? lock_release+0x720/0x720 [ 888.400626][T30466] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 888.404709][T30443] (U) [ 888.409707][T30466] netlink_rcv_skb+0x153/0x420 [ 888.409740][T30466] ? genl_get_cmd+0x480/0x480 [ 888.409771][T30466] ? netlink_ack+0xa60/0xa60 [ 888.412982][T30443] 27*2048kB [ 888.418764][T30466] ? netlink_deliver_tap+0x1b1/0xc30 [ 888.418802][T30466] genl_rcv+0x24/0x40 [ 888.418827][T30466] netlink_unicast+0x539/0x7e0 [ 888.425161][T30443] (UME) 20:15:57 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x34, r1, 0x1, 0x70bd2a, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x30}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xda}]}]}]}, 0x34}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) (async) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x34, r1, 0x1, 0x70bd2a, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x30}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xda}]}]}]}, 0x34}}, 0x0) (async) [ 888.427806][T30466] ? netlink_attachskb+0x880/0x880 [ 888.427834][T30466] ? __virt_addr_valid+0x5d/0x2d0 [ 888.427867][T30466] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 888.435359][T30443] 286*4096kB [ 888.442476][T30466] ? __phys_addr_symbol+0x2c/0x70 [ 888.442507][T30466] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 888.442538][T30466] ? __check_object_size+0x16e/0x310 [ 888.445809][T30443] (UM) [ 888.451462][T30466] netlink_sendmsg+0x904/0xe00 [ 888.451502][T30466] ? netlink_unicast+0x7e0/0x7e0 [ 888.459713][T30443] = 1366052kB [ 888.461630][T30466] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 888.461673][T30466] ? netlink_unicast+0x7e0/0x7e0 [ 888.468057][T30443] Node 0 [ 888.474157][T30466] sock_sendmsg+0xcf/0x120 [ 888.474191][T30466] ____sys_sendmsg+0x6e8/0x810 [ 888.474223][T30466] ? kernel_sendmsg+0x50/0x50 [ 888.477459][T30443] Normal: [ 888.481708][T30466] ? do_recvmmsg+0x6d0/0x6d0 [ 888.481741][T30466] ? lock_chain_count+0x20/0x20 [ 888.486392][T30443] 0*4kB 20:15:57 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994170424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 888.488997][T30466] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 888.489046][T30466] ___sys_sendmsg+0xf3/0x170 [ 888.493821][T30443] 0*8kB [ 888.499587][T30466] ? sendmsg_copy_msghdr+0x160/0x160 [ 888.499626][T30466] ? lock_downgrade+0x6e0/0x6e0 [ 888.499672][T30466] ? __fget_files+0x28c/0x470 [ 888.502964][T30443] 0*16kB [ 888.507526][T30466] ? __fget_light+0xea/0x280 [ 888.507559][T30466] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 888.513495][T30443] 0*32kB [ 888.516038][T30466] __sys_sendmsg+0xe5/0x1b0 [ 888.516073][T30466] ? __sys_sendmsg_sock+0x30/0x30 [ 888.516119][T30466] ? syscall_enter_from_user_mode+0x21/0x70 [ 888.520953][T30443] 0*64kB [ 888.525517][T30466] do_syscall_64+0x35/0xb0 [ 888.525548][T30466] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 888.525582][T30466] RIP: 0033:0x7f0982948059 [ 888.530276][T30443] 0*128kB [ 888.533343][T30466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 888.533372][T30466] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 888.533400][T30466] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 888.538805][T30443] 0*256kB [ 888.542637][T30466] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 888.542657][T30466] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 888.542675][T30466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 888.542692][T30466] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 888.547753][T30443] 0*512kB [ 888.550290][T30466] [ 888.567941][T30468] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 888.611919][T30443] 0*1024kB [ 888.634036][T30468] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. [ 888.670089][T30443] 0*2048kB [ 888.728567][T30443] 0*4096kB [ 888.769926][T30470] netlink: 'syz-executor.4': attribute type 2 has an invalid length. [ 888.811649][T30443] = 0kB 20:15:57 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100035402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 888.853762][T30443] Node 1 Normal: 152*4kB (UME) 54*8kB (UME) 35*16kB (UME) 153*32kB (UE) 75*64kB (UME) 30*128kB (UME) 12*256kB (UME) 5*512kB (UME) 2*1024kB (ME) 3*2048kB (UME) 957*4096kB (M) = 3948832kB [ 888.873850][T30443] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 888.884132][T30443] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 888.893832][T30443] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 888.903747][T30443] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 888.913453][T30443] 15304 total pagecache pages [ 888.919619][T30443] 0 pages in swap cache [ 888.924063][T30443] Swap cache stats: add 0, delete 0, find 0/0 [ 888.930559][T30443] Free swap = 0kB [ 888.934522][T30443] Total swap = 0kB [ 888.938534][T30443] 2097051 pages RAM [ 888.942579][T30443] 0 pages HighMem/MovableOnly [ 888.947586][T30443] 384540 pages reserved 20:15:57 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'veth1_to_hsr\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x60, 0x10, 0x503, 0x0, 0x0, {0x0, 0xcf, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @gre={{0x8}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x8, 0x6, @local}, @IFLA_GRE_REMOTE={0x8, 0x7, @multicast1=0xe0000003}, @IFLA_GRE_LINK={0x8, 0x1, r2}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e21}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x60}, 0x1, 0x0, 0x0, 0x24040011}, 0x0) r3 = accept(r0, 0x0, &(0x7f0000000040)) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x3, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_FLUSH(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)={0x14}, 0x14}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r8, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c00000024000b0f00000000e4ff000000000000", @ANYRES32=r8, @ANYBLOB="00000000ffffffff000000000b00010064736d61726b00000c0002000600010020"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newtfilter={0x24, 0x29, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x5}}}, 0x24}}, 0x0) sendmsg$nl_route(r3, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20008080}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=@newlinkprop={0x110, 0x6c, 0x200, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, r8, 0x40, 0x18040}, [@IFLA_EVENT={0x8, 0x2c, 0x101}, @IFLA_MTU={0x8, 0x4, 0x4}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x8}, @IFLA_OPERSTATE={0x5}, @IFLA_OPERSTATE={0x5, 0x10, 0x6}, @IFLA_AF_SPEC={0x88, 0x1a, 0x0, 0x1, [@AF_BRIDGE={0x4}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8, 0xc, 0x0, 0x0, 0x3}, {0x8, 0x6, 0x0, 0x0, 0xaa4f}, {0x8, 0x9, 0x0, 0x0, 0x7f}, {0x8, 0x11, 0x0, 0x0, 0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x54, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x9}, @IFLA_INET6_TOKEN={0x14, 0x7, @private0={0xfc, 0x0, '\x00', 0x1}}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x8}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x4}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x6}, @IFLA_INET6_TOKEN={0x14, 0x7, @local}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x9}]}]}, @IFLA_PROP_LIST={0x18, 0x34, 0x0, 0x1, [{0x14, 0x35, 'ip_vti0\x00'}]}, @IFLA_PROTO_DOWN={0x5}, @IFLA_IFNAME={0x14, 0x3, 'erspan0\x00'}, @IFLA_PHYS_SWITCH_ID={0xa, 0x24, "18b6be76a90f"}]}, 0x110}, 0x1, 0x0, 0x0, 0x20000000}, 0x200c) socket$nl_route(0x10, 0x3, 0x0) (async) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'veth1_to_hsr\x00'}) (async) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x60, 0x10, 0x503, 0x0, 0x0, {0x0, 0xcf, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @gre={{0x8}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x8, 0x6, @local}, @IFLA_GRE_REMOTE={0x8, 0x7, @multicast1=0xe0000003}, @IFLA_GRE_LINK={0x8, 0x1, r2}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e21}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x60}, 0x1, 0x0, 0x0, 0x24040011}, 0x0) (async) accept(r0, 0x0, &(0x7f0000000040)) (async) socket$nl_route(0x10, 0x3, 0x0) (async) socket(0x10, 0x3, 0x0) (async) socket$netlink(0x10, 0x3, 0x0) (async) socket(0x10, 0x803, 0x0) (async) sendmsg$SMC_PNETID_FLUSH(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)={0x14}, 0x14}}, 0x0) (async) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) (async) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r8, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) (async) sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c00000024000b0f00000000e4ff000000000000", @ANYRES32=r8, @ANYBLOB="00000000ffffffff000000000b00010064736d61726b00000c0002000600010020"], 0x3c}}, 0x0) (async) sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newtfilter={0x24, 0x29, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x5}}}, 0x24}}, 0x0) (async) sendmsg$nl_route(r3, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20008080}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=@newlinkprop={0x110, 0x6c, 0x200, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, r8, 0x40, 0x18040}, [@IFLA_EVENT={0x8, 0x2c, 0x101}, @IFLA_MTU={0x8, 0x4, 0x4}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x8}, @IFLA_OPERSTATE={0x5}, @IFLA_OPERSTATE={0x5, 0x10, 0x6}, @IFLA_AF_SPEC={0x88, 0x1a, 0x0, 0x1, [@AF_BRIDGE={0x4}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8, 0xc, 0x0, 0x0, 0x3}, {0x8, 0x6, 0x0, 0x0, 0xaa4f}, {0x8, 0x9, 0x0, 0x0, 0x7f}, {0x8, 0x11, 0x0, 0x0, 0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x54, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x9}, @IFLA_INET6_TOKEN={0x14, 0x7, @private0={0xfc, 0x0, '\x00', 0x1}}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x8}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x4}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x6}, @IFLA_INET6_TOKEN={0x14, 0x7, @local}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x9}]}]}, @IFLA_PROP_LIST={0x18, 0x34, 0x0, 0x1, [{0x14, 0x35, 'ip_vti0\x00'}]}, @IFLA_PROTO_DOWN={0x5}, @IFLA_IFNAME={0x14, 0x3, 'erspan0\x00'}, @IFLA_PHYS_SWITCH_ID={0xa, 0x24, "18b6be76a90f"}]}, 0x110}, 0x1, 0x0, 0x0, 0x20000000}, 0x200c) (async) [ 888.948478][T30470] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.4'. [ 888.951950][T30443] 0 pages cma reserved [ 888.986001][T30488] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. 20:15:58 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x34, r1, 0x1, 0x70bd2a, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x30}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xda}]}]}]}, 0x34}}, 0x0) 20:15:58 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$packet(0x11, 0x2, 0x300) getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000900)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@bridge_delvlan={0x34, 0x10, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r3}, [@BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_MCAST_ROUTER={0x5}}]}, 0x34}}, 0x0) [ 889.009543][T30488] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 889.063467][T30488] CPU: 0 PID: 30488 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 889.074029][T30488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 889.084192][T30488] Call Trace: [ 889.087502][T30488] [ 889.090450][T30488] dump_stack_lvl+0xcd/0x134 [ 889.095073][T30488] sysfs_warn_dup.cold+0x1c/0x29 [ 889.100044][T30488] sysfs_do_create_link_sd+0x11e/0x140 [ 889.105543][T30488] sysfs_create_link+0x5f/0xc0 [ 889.110344][T30488] device_add+0x789/0x1ee0 [ 889.114796][T30488] ? wait_for_completion_io+0x270/0x270 [ 889.120372][T30488] ? minstrel_ht_alloc+0x4b/0xa10 [ 889.125430][T30488] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 889.131702][T30488] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 889.138063][T30488] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 889.144419][T30488] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 889.150446][T30488] wiphy_register+0x1e86/0x29a0 [ 889.155334][T30488] ? wiphy_unregister+0xbf0/0xbf0 [ 889.160382][T30488] ? minstrel_ht_alloc+0x52c/0xa10 [ 889.165538][T30488] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 889.171635][T30488] ieee80211_register_hw+0x1f16/0x3ed0 [ 889.177140][T30488] ? ieee80211_restart_hw+0x290/0x290 [ 889.182543][T30488] ? debug_object_destroy+0x210/0x210 [ 889.187949][T30488] ? memset+0x20/0x40 [ 889.191956][T30488] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 889.198224][T30488] ? __hrtimer_init+0x136/0x280 [ 889.203105][T30488] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 889.208876][T30488] ? hwsim_virtio_rx_work+0x350/0x350 [ 889.214278][T30488] ? hwsim_new_radio_nl+0x992/0x1080 [ 889.219592][T30488] ? memcpy+0x39/0x60 [ 889.223604][T30488] hwsim_new_radio_nl+0x9bc/0x1080 [ 889.228752][T30488] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 889.234682][T30488] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 889.240952][T30488] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 889.248350][T30488] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 889.255672][T30488] genl_family_rcv_msg_doit+0x228/0x320 [ 889.261255][T30488] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 889.268670][T30488] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 889.274957][T30488] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 889.281231][T30488] ? ns_capable+0xd9/0x100 [ 889.285684][T30488] genl_rcv_msg+0x328/0x580 [ 889.290219][T30488] ? genl_get_cmd+0x480/0x480 [ 889.294920][T30488] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 889.300849][T30488] ? lock_release+0x720/0x720 [ 889.305556][T30488] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 889.311399][T30488] netlink_rcv_skb+0x153/0x420 [ 889.316187][T30488] ? genl_get_cmd+0x480/0x480 [ 889.320897][T30488] ? netlink_ack+0xa60/0xa60 [ 889.325528][T30488] ? netlink_deliver_tap+0x1b1/0xc30 [ 889.330845][T30488] genl_rcv+0x24/0x40 [ 889.334852][T30488] netlink_unicast+0x539/0x7e0 [ 889.339648][T30488] ? netlink_attachskb+0x880/0x880 [ 889.344777][T30488] ? __virt_addr_valid+0x5d/0x2d0 [ 889.349832][T30488] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 889.356108][T30488] ? __phys_addr_symbol+0x2c/0x70 [ 889.361160][T30488] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 889.366909][T30488] ? __check_object_size+0x16e/0x310 [ 889.372223][T30488] netlink_sendmsg+0x904/0xe00 [ 889.377020][T30488] ? netlink_unicast+0x7e0/0x7e0 [ 889.381988][T30488] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 889.388284][T30488] ? netlink_unicast+0x7e0/0x7e0 [ 889.393245][T30488] sock_sendmsg+0xcf/0x120 [ 889.397683][T30488] ____sys_sendmsg+0x6e8/0x810 [ 889.402473][T30488] ? kernel_sendmsg+0x50/0x50 [ 889.407167][T30488] ? do_recvmmsg+0x6d0/0x6d0 [ 889.411784][T30488] ? lock_chain_count+0x20/0x20 [ 889.416664][T30488] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 889.422675][T30488] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 889.428948][T30488] ? futex_wait+0x533/0x670 [ 889.433490][T30488] ___sys_sendmsg+0xf3/0x170 [ 889.438114][T30488] ? sendmsg_copy_msghdr+0x160/0x160 [ 889.443428][T30488] ? lock_downgrade+0x6e0/0x6e0 [ 889.448323][T30488] ? __fget_files+0x28c/0x470 [ 889.453037][T30488] ? __fget_light+0xea/0x280 [ 889.457651][T30488] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 889.463929][T30488] __sys_sendmsg+0xe5/0x1b0 [ 889.468458][T30488] ? __sys_sendmsg_sock+0x30/0x30 [ 889.473524][T30488] ? syscall_enter_from_user_mode+0x21/0x70 [ 889.479457][T30488] do_syscall_64+0x35/0xb0 [ 889.483905][T30488] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 889.489829][T30488] RIP: 0033:0x7f0982948059 [ 889.494266][T30488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 889.513897][T30488] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 889.522346][T30488] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 889.530342][T30488] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 889.538332][T30488] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 889.546320][T30488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 889.554382][T30488] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 889.562399][T30488] 20:15:58 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994180424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 889.580015][T30498] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 889.589750][T30490] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 889.589776][T30490] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. [ 889.652123][T30497] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. 20:15:58 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = socket$packet(0x11, 0x2, 0x300) getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000900)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@bridge_delvlan={0x34, 0x10, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r3}, [@BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_MCAST_ROUTER={0x5}}]}, 0x34}}, 0x0) 20:15:58 executing program 0: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x275a, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) close(r0) openat$cgroup_ro(r0, &(0x7f0000000980)='cgroup.controllers\x00', 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) write$cgroup_int(r2, &(0x7f0000000200), 0x12) bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58) r4 = openat$cgroup_ro(r1, &(0x7f00000000c0)='rdma.current\x00', 0x0, 0x0) openat$cgroup_ro(r4, &(0x7f0000000180)='blkio.bfq.io_service_bytes_recursive\x00', 0x0, 0x0) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000080)="ec66aea43bb0b7cf37e865a64234e52e89cc47c96c06f5bd09611a3fc36f64068667a96cc37fcb0f0dfe060acb", 0x2d) r5 = accept(0xffffffffffffffff, 0x0, 0x0) recvmsg$can_j1939(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000800)}, 0x2) setsockopt$IPT_SO_SET_ADD_COUNTERS(r5, 0x0, 0x41, 0x0, 0x78) recvmsg$can_j1939(r5, &(0x7f00000045c0)={0x0, 0x0, 0x0}, 0x0) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r5, 0x84, 0x8, &(0x7f00000001c0), &(0x7f0000000280)=0x4) sendfile(r0, r3, 0x0, 0x8000000000005) sendfile(r0, r1, 0x0, 0xfff) 20:15:58 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = socket$packet(0x11, 0x2, 0x300) getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000900)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@bridge_delvlan={0x34, 0x10, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r3}, [@BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_MCAST_ROUTER={0x5}}]}, 0x34}}, 0x0) 20:15:58 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc6010003b402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 889.801474][T30491] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 889.815689][T30491] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 889.857925][T30491] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 889.892432][T30491] CPU: 0 PID: 30491 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 889.902991][T30491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 889.913055][T30491] Call Trace: [ 889.916342][T30491] [ 889.919277][T30491] dump_stack_lvl+0xcd/0x134 [ 889.923892][T30491] sysfs_warn_dup.cold+0x1c/0x29 [ 889.928845][T30491] sysfs_do_create_link_sd+0x11e/0x140 [ 889.934328][T30491] sysfs_create_link+0x5f/0xc0 [ 889.939103][T30491] device_add+0x789/0x1ee0 [ 889.943536][T30491] ? wait_for_completion_io+0x270/0x270 [ 889.949100][T30491] ? lock_downgrade+0x6e0/0x6e0 [ 889.953962][T30491] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 889.960214][T30491] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 889.966464][T30491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 889.972711][T30491] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 889.978710][T30491] wiphy_register+0x1e86/0x29a0 [ 889.983580][T30491] ? wiphy_unregister+0xbf0/0xbf0 [ 889.988613][T30491] ? minstrel_ht_alloc+0x52c/0xa10 [ 889.993752][T30491] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 889.999838][T30491] ieee80211_register_hw+0x1f16/0x3ed0 [ 890.005329][T30491] ? ieee80211_restart_hw+0x290/0x290 [ 890.010712][T30491] ? debug_object_destroy+0x210/0x210 [ 890.016101][T30491] ? memset+0x20/0x40 [ 890.020090][T30491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.026339][T30491] ? __hrtimer_init+0x136/0x280 [ 890.031200][T30491] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 890.036947][T30491] ? hwsim_virtio_rx_work+0x350/0x350 [ 890.042329][T30491] ? hwsim_new_radio_nl+0x992/0x1080 [ 890.047623][T30491] ? memcpy+0x39/0x60 [ 890.051619][T30491] hwsim_new_radio_nl+0x9bc/0x1080 [ 890.056744][T30491] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 890.062660][T30491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.068923][T30491] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 890.076303][T30491] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 890.083609][T30491] genl_family_rcv_msg_doit+0x228/0x320 [ 890.089165][T30491] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 890.096725][T30491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.102991][T30491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.109335][T30491] ? ns_capable+0xd9/0x100 [ 890.113762][T30491] genl_rcv_msg+0x328/0x580 [ 890.118276][T30491] ? genl_get_cmd+0x480/0x480 [ 890.122965][T30491] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 890.128870][T30491] ? lock_release+0x720/0x720 [ 890.133565][T30491] netlink_rcv_skb+0x153/0x420 [ 890.138348][T30491] ? genl_get_cmd+0x480/0x480 [ 890.143039][T30491] ? netlink_ack+0xa60/0xa60 [ 890.147644][T30491] ? netlink_deliver_tap+0x1b1/0xc30 [ 890.152943][T30491] genl_rcv+0x24/0x40 [ 890.156932][T30491] netlink_unicast+0x539/0x7e0 [ 890.161706][T30491] ? netlink_attachskb+0x880/0x880 [ 890.166823][T30491] ? __virt_addr_valid+0x5d/0x2d0 [ 890.171860][T30491] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 890.178121][T30491] ? __phys_addr_symbol+0x2c/0x70 [ 890.183154][T30491] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 890.188887][T30491] ? __check_object_size+0x16e/0x310 [ 890.194183][T30491] netlink_sendmsg+0x904/0xe00 [ 890.198960][T30491] ? netlink_unicast+0x7e0/0x7e0 [ 890.203911][T30491] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.210164][T30491] ? netlink_unicast+0x7e0/0x7e0 [ 890.215106][T30491] sock_sendmsg+0xcf/0x120 [ 890.219532][T30491] ____sys_sendmsg+0x6e8/0x810 [ 890.224336][T30491] ? kernel_sendmsg+0x50/0x50 [ 890.229022][T30491] ? do_recvmmsg+0x6d0/0x6d0 [ 890.233623][T30491] ? lock_chain_count+0x20/0x20 [ 890.238487][T30491] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 890.244491][T30491] ___sys_sendmsg+0xf3/0x170 [ 890.249105][T30491] ? sendmsg_copy_msghdr+0x160/0x160 [ 890.254409][T30491] ? lock_downgrade+0x6e0/0x6e0 [ 890.259282][T30491] ? __fget_files+0x28c/0x470 [ 890.263983][T30491] ? __fget_light+0xea/0x280 [ 890.268584][T30491] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 890.274840][T30491] __sys_sendmsg+0xe5/0x1b0 [ 890.279357][T30491] ? __sys_sendmsg_sock+0x30/0x30 [ 890.284407][T30491] ? syscall_enter_from_user_mode+0x21/0x70 [ 890.290319][T30491] do_syscall_64+0x35/0xb0 [ 890.294743][T30491] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 890.300670][T30491] RIP: 0033:0x7f4b423c2059 [ 890.305090][T30491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 890.324706][T30491] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 890.333129][T30491] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 890.341111][T30491] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 890.349092][T30491] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 890.357067][T30491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 890.365053][T30491] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 890.373055][T30491] [ 890.434052][T30506] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 890.445860][T30506] CPU: 0 PID: 30506 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 890.456421][T30506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 890.466507][T30506] Call Trace: [ 890.469813][T30506] [ 890.472775][T30506] dump_stack_lvl+0xcd/0x134 [ 890.477409][T30506] sysfs_warn_dup.cold+0x1c/0x29 [ 890.482394][T30506] sysfs_do_create_link_sd+0x11e/0x140 [ 890.487904][T30506] sysfs_create_link+0x5f/0xc0 [ 890.492694][T30506] device_add+0x789/0x1ee0 [ 890.497136][T30506] ? wait_for_completion_io+0x270/0x270 [ 890.502698][T30506] ? lock_downgrade+0x6e0/0x6e0 [ 890.507567][T30506] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 890.513828][T30506] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 890.520085][T30506] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.526343][T30506] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 890.532352][T30506] wiphy_register+0x1e86/0x29a0 [ 890.537232][T30506] ? wiphy_unregister+0xbf0/0xbf0 [ 890.542275][T30506] ? minstrel_ht_alloc+0x52c/0xa10 [ 890.547419][T30506] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 890.553504][T30506] ieee80211_register_hw+0x1f16/0x3ed0 [ 890.558990][T30506] ? ieee80211_restart_hw+0x290/0x290 [ 890.564379][T30506] ? debug_object_destroy+0x210/0x210 [ 890.569777][T30506] ? memset+0x20/0x40 [ 890.573768][T30506] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.580021][T30506] ? __hrtimer_init+0x136/0x280 [ 890.584889][T30506] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 890.590644][T30506] ? hwsim_virtio_rx_work+0x350/0x350 [ 890.596030][T30506] ? hwsim_new_radio_nl+0x992/0x1080 [ 890.601327][T30506] ? memcpy+0x39/0x60 [ 890.605329][T30506] hwsim_new_radio_nl+0x9bc/0x1080 [ 890.610464][T30506] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 890.616379][T30506] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.622635][T30506] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 890.630023][T30506] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 890.637328][T30506] genl_family_rcv_msg_doit+0x228/0x320 [ 890.642889][T30506] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 890.650278][T30506] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.656546][T30506] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.662805][T30506] ? ns_capable+0xd9/0x100 [ 890.667247][T30506] genl_rcv_msg+0x328/0x580 [ 890.671768][T30506] ? genl_get_cmd+0x480/0x480 [ 890.676456][T30506] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 890.682367][T30506] ? lock_release+0x720/0x720 [ 890.687246][T30506] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 890.693084][T30506] netlink_rcv_skb+0x153/0x420 [ 890.697884][T30506] ? genl_get_cmd+0x480/0x480 [ 890.702586][T30506] ? netlink_ack+0xa60/0xa60 [ 890.707193][T30506] ? netlink_deliver_tap+0x1b1/0xc30 [ 890.712502][T30506] genl_rcv+0x24/0x40 [ 890.716496][T30506] netlink_unicast+0x539/0x7e0 [ 890.721277][T30506] ? netlink_attachskb+0x880/0x880 [ 890.726397][T30506] ? __virt_addr_valid+0x5d/0x2d0 [ 890.731435][T30506] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 890.737862][T30506] ? __phys_addr_symbol+0x2c/0x70 [ 890.742991][T30506] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 890.748824][T30506] ? __check_object_size+0x16e/0x310 [ 890.754136][T30506] netlink_sendmsg+0x904/0xe00 [ 890.758934][T30506] ? netlink_unicast+0x7e0/0x7e0 [ 890.763902][T30506] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.770172][T30506] ? netlink_unicast+0x7e0/0x7e0 [ 890.775144][T30506] sock_sendmsg+0xcf/0x120 [ 890.779588][T30506] ____sys_sendmsg+0x6e8/0x810 [ 890.784376][T30506] ? kernel_sendmsg+0x50/0x50 [ 890.789063][T30506] ? do_recvmmsg+0x6d0/0x6d0 [ 890.793664][T30506] ? lock_chain_count+0x20/0x20 [ 890.798530][T30506] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 890.804522][T30506] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 890.810778][T30506] ? futex_wait+0x533/0x670 [ 890.815301][T30506] ___sys_sendmsg+0xf3/0x170 [ 890.819910][T30506] ? sendmsg_copy_msghdr+0x160/0x160 [ 890.825210][T30506] ? lock_downgrade+0x6e0/0x6e0 [ 890.830095][T30506] ? __fget_files+0x28c/0x470 [ 890.834811][T30506] ? __fget_light+0xea/0x280 [ 890.839429][T30506] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 890.845692][T30506] __sys_sendmsg+0xe5/0x1b0 [ 890.850233][T30506] ? __sys_sendmsg_sock+0x30/0x30 [ 890.855294][T30506] ? syscall_enter_from_user_mode+0x21/0x70 [ 890.861211][T30506] do_syscall_64+0x35/0xb0 [ 890.865639][T30506] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 890.871545][T30506] RIP: 0033:0x7f0982948059 [ 890.876006][T30506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 890.895633][T30506] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 890.904066][T30506] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 890.912042][T30506] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 890.920021][T30506] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 890.928015][T30506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 20:15:59 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:15:59 executing program 2: sendmsg$DEVLINK_CMD_TRAP_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="7d4e00db", @ANYRES16, @ANYBLOB="000000000000000000003e0000000800010070"], 0x54}}, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000400)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000070601801fdb59cce5c4ed700100e90005"], 0x1}}, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x7c, 0x1, 0x1, 0x801, 0x0, 0x0, {0x0, 0x0, 0x7}, [@CTA_TUPLE_REPLY={0x60, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @rand_addr=' \x01\x00'}}}]}, @CTA_MARK={0x8}]}, 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x40000) sendfile(r2, r1, 0x0, 0xfffffffe) 20:15:59 executing program 4: unshare(0x40000400) setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10) setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f00000005c0)=0x80000001, 0x4) r1 = socket(0x11, 0x800000003, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x208e24b) bind(r2, &(0x7f0000000080)=@generic={0x6, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0xad) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r4 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=@newqdisc={0x30, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}}, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000200)=0xbf6, 0x4) sendto$inet(r0, 0x0, 0x0, 0x20020080, &(0x7f0000000080)={0x2, 0x4e20}, 0x10) r5 = socket(0x10, 0x3, 0x0) r6 = socket(0x11, 0x800000003, 0x0) bind(r6, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(0xffffffffffffffff, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x2f) sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="4001000024000b0f00e400000000f10febca0746", @ANYRES32=r7, @ANYBLOB="00000000ffffffff000000f6090001006e6574656d00000010010200ca000000b01d84dd3bb3170b"], 0x140}}, 0x0) sendto$inet(r0, &(0x7f0000000580)="8f", 0x20000581, 0x400c040, 0x0, 0x0) [ 890.935991][T30506] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 890.943993][T30506] [ 890.994836][T30520] netlink: 'syz-executor.3': attribute type 11 has an invalid length. 20:16:00 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994190424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:00 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100040402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:00 executing program 0: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x275a, 0x0) (async) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) (async) close(r0) (async) openat$cgroup_ro(r0, &(0x7f0000000980)='cgroup.controllers\x00', 0x0, 0x0) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) (async) write$cgroup_int(r2, &(0x7f0000000200), 0x12) (async, rerun: 64) bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58) (rerun: 64) r4 = openat$cgroup_ro(r1, &(0x7f00000000c0)='rdma.current\x00', 0x0, 0x0) openat$cgroup_ro(r4, &(0x7f0000000180)='blkio.bfq.io_service_bytes_recursive\x00', 0x0, 0x0) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000080)="ec66aea43bb0b7cf37e865a64234e52e89cc47c96c06f5bd09611a3fc36f64068667a96cc37fcb0f0dfe060acb", 0x2d) r5 = accept(0xffffffffffffffff, 0x0, 0x0) (async) recvmsg$can_j1939(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000800)}, 0x2) setsockopt$IPT_SO_SET_ADD_COUNTERS(r5, 0x0, 0x41, 0x0, 0x78) (async) recvmsg$can_j1939(r5, &(0x7f00000045c0)={0x0, 0x0, 0x0}, 0x0) (async, rerun: 64) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r5, 0x84, 0x8, &(0x7f00000001c0), &(0x7f0000000280)=0x4) (async, rerun: 64) sendfile(r0, r3, 0x0, 0x8000000000005) sendfile(r0, r1, 0x0, 0xfff) [ 891.154283][T30522] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 891.197350][T30522] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 891.219906][T30522] CPU: 1 PID: 30522 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 891.230466][T30522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 891.240547][T30522] Call Trace: [ 891.243853][T30522] [ 891.246804][T30522] dump_stack_lvl+0xcd/0x134 [ 891.251436][T30522] sysfs_warn_dup.cold+0x1c/0x29 [ 891.256407][T30522] sysfs_do_create_link_sd+0x11e/0x140 [ 891.261928][T30522] sysfs_create_link+0x5f/0xc0 [ 891.266731][T30522] device_add+0x789/0x1ee0 [ 891.271188][T30522] ? wait_for_completion_io+0x270/0x270 [ 891.276772][T30522] ? lock_downgrade+0x6e0/0x6e0 [ 891.281656][T30522] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 891.287934][T30522] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 891.294216][T30522] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 891.300499][T30522] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 891.306531][T30522] wiphy_register+0x1e86/0x29a0 [ 891.311437][T30522] ? wiphy_unregister+0xbf0/0xbf0 [ 891.316493][T30522] ? minstrel_ht_alloc+0x52c/0xa10 [ 891.321658][T30522] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 891.327777][T30522] ieee80211_register_hw+0x1f16/0x3ed0 [ 891.333291][T30522] ? ieee80211_restart_hw+0x290/0x290 [ 891.338709][T30522] ? debug_object_destroy+0x210/0x210 [ 891.344124][T30522] ? memset+0x20/0x40 [ 891.348134][T30522] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 891.354412][T30522] ? __hrtimer_init+0x136/0x280 [ 891.359302][T30522] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 891.365098][T30522] ? hwsim_virtio_rx_work+0x350/0x350 [ 891.370513][T30522] ? hwsim_new_radio_nl+0x992/0x1080 [ 891.375836][T30522] ? memcpy+0x39/0x60 [ 891.379856][T30522] hwsim_new_radio_nl+0x9bc/0x1080 [ 891.385004][T30522] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 891.390946][T30522] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 891.397226][T30522] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 891.404639][T30522] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 891.411965][T30522] genl_family_rcv_msg_doit+0x228/0x320 [ 891.417550][T30522] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 891.424959][T30522] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 891.431255][T30522] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 891.437545][T30522] ? ns_capable+0xd9/0x100 [ 891.442007][T30522] genl_rcv_msg+0x328/0x580 [ 891.446553][T30522] ? genl_get_cmd+0x480/0x480 [ 891.451262][T30522] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 891.457204][T30522] ? lock_release+0x720/0x720 [ 891.461934][T30522] netlink_rcv_skb+0x153/0x420 [ 891.466729][T30522] ? genl_get_cmd+0x480/0x480 [ 891.471438][T30522] ? netlink_ack+0xa60/0xa60 [ 891.476063][T30522] ? netlink_deliver_tap+0x1b1/0xc30 [ 891.481378][T30522] genl_rcv+0x24/0x40 [ 891.485385][T30522] netlink_unicast+0x539/0x7e0 [ 891.490186][T30522] ? netlink_attachskb+0x880/0x880 [ 891.495330][T30522] ? __virt_addr_valid+0x5d/0x2d0 [ 891.500387][T30522] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 891.506662][T30522] ? __phys_addr_symbol+0x2c/0x70 [ 891.511729][T30522] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 891.517480][T30522] ? __check_object_size+0x16e/0x310 [ 891.522801][T30522] netlink_sendmsg+0x904/0xe00 [ 891.527607][T30522] ? netlink_unicast+0x7e0/0x7e0 [ 891.532586][T30522] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 891.538910][T30522] ? netlink_unicast+0x7e0/0x7e0 [ 891.543877][T30522] sock_sendmsg+0xcf/0x120 [ 891.548325][T30522] ____sys_sendmsg+0x6e8/0x810 [ 891.553128][T30522] ? kernel_sendmsg+0x50/0x50 [ 891.557833][T30522] ? do_recvmmsg+0x6d0/0x6d0 [ 891.562451][T30522] ? lock_chain_count+0x20/0x20 [ 891.567331][T30522] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 891.573352][T30522] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 891.579627][T30522] ? futex_wait+0x533/0x670 [ 891.584169][T30522] ___sys_sendmsg+0xf3/0x170 [ 891.588796][T30522] ? sendmsg_copy_msghdr+0x160/0x160 [ 891.594209][T30522] ? lock_downgrade+0x6e0/0x6e0 [ 891.599106][T30522] ? __fget_files+0x28c/0x470 [ 891.603823][T30522] ? __fget_light+0xea/0x280 [ 891.608441][T30522] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 891.614727][T30522] __sys_sendmsg+0xe5/0x1b0 [ 891.619265][T30522] ? __sys_sendmsg_sock+0x30/0x30 [ 891.624350][T30522] ? syscall_enter_from_user_mode+0x21/0x70 [ 891.630282][T30522] do_syscall_64+0x35/0xb0 [ 891.634737][T30522] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 891.640666][T30522] RIP: 0033:0x7f4b423c2059 [ 891.645114][T30522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 891.664749][T30522] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 891.673201][T30522] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 891.681208][T30522] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 891.689205][T30522] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 891.697201][T30522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 891.705207][T30522] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 891.713228][T30522] [ 891.759731][T30529] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 891.775954][T30529] CPU: 1 PID: 30529 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 891.786513][T30529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 891.796596][T30529] Call Trace: [ 891.799895][T30529] [ 891.802849][T30529] dump_stack_lvl+0xcd/0x134 [ 891.807474][T30529] sysfs_warn_dup.cold+0x1c/0x29 [ 891.812441][T30529] sysfs_do_create_link_sd+0x11e/0x140 [ 891.817935][T30529] sysfs_create_link+0x5f/0xc0 [ 891.822735][T30529] device_add+0x789/0x1ee0 [ 891.827192][T30529] ? wait_for_completion_io+0x270/0x270 [ 891.832774][T30529] ? lock_downgrade+0x6e0/0x6e0 [ 891.837659][T30529] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 891.843943][T30529] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 891.850221][T30529] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 20:16:00 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c10a153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:00 executing program 2: sendmsg$DEVLINK_CMD_TRAP_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="7d4e00db", @ANYRES16, @ANYBLOB="000000000000000000003e0000000800010070"], 0x54}}, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000400)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000070601801fdb59cce5c4ed700100e90005"], 0x1}}, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x7c, 0x1, 0x1, 0x801, 0x0, 0x0, {0x0, 0x0, 0x7}, [@CTA_TUPLE_REPLY={0x60, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @rand_addr=' \x01\x00'}}}]}, @CTA_MARK={0x8}]}, 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x40000) sendfile(r2, r1, 0x0, 0xfffffffe) sendmsg$DEVLINK_CMD_TRAP_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="7d4e00db", @ANYRES16, @ANYBLOB="000000000000000000003e0000000800010070"], 0x54}}, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0) (async) write$binfmt_script(r0, &(0x7f0000000400)=ANY=[], 0x208e24b) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (async) sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000070601801fdb59cce5c4ed700100e90005"], 0x1}}, 0x0) (async) socket$nl_netfilter(0x10, 0x3, 0xc) (async) sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x7c, 0x1, 0x1, 0x801, 0x0, 0x0, {0x0, 0x0, 0x7}, [@CTA_TUPLE_REPLY={0x60, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @rand_addr=' \x01\x00'}}}]}, @CTA_MARK={0x8}]}, 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x40000) (async) sendfile(r2, r1, 0x0, 0xfffffffe) (async) [ 891.856502][T30529] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 891.862530][T30529] wiphy_register+0x1e86/0x29a0 [ 891.867429][T30529] ? wiphy_unregister+0xbf0/0xbf0 [ 891.872477][T30529] ? minstrel_ht_alloc+0x52c/0xa10 [ 891.877637][T30529] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 891.883750][T30529] ieee80211_register_hw+0x1f16/0x3ed0 [ 891.889252][T30529] ? ieee80211_restart_hw+0x290/0x290 [ 891.894644][T30529] ? debug_object_destroy+0x210/0x210 [ 891.900054][T30529] ? memset+0x20/0x40 [ 891.904067][T30529] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 891.910343][T30529] ? __hrtimer_init+0x136/0x280 [ 891.915236][T30529] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 891.920996][T30529] ? hwsim_virtio_rx_work+0x350/0x350 [ 891.926391][T30529] ? hwsim_new_radio_nl+0x992/0x1080 [ 891.931692][T30529] ? memcpy+0x39/0x60 [ 891.935699][T30529] hwsim_new_radio_nl+0x9bc/0x1080 [ 891.940825][T30529] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 891.946760][T30529] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 891.953005][T30529] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 891.960379][T30529] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 891.967694][T30529] genl_family_rcv_msg_doit+0x228/0x320 [ 891.973258][T30529] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 891.980664][T30529] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 891.987054][T30529] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 891.993343][T30529] ? ns_capable+0xd9/0x100 [ 891.998024][T30529] genl_rcv_msg+0x328/0x580 [ 892.002550][T30529] ? genl_get_cmd+0x480/0x480 [ 892.007233][T30529] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 892.013164][T30529] ? lock_release+0x720/0x720 [ 892.017844][T30529] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 892.023856][T30529] netlink_rcv_skb+0x153/0x420 [ 892.028650][T30529] ? genl_get_cmd+0x480/0x480 [ 892.033394][T30529] ? netlink_ack+0xa60/0xa60 [ 892.038014][T30529] ? netlink_deliver_tap+0x1b1/0xc30 [ 892.043329][T30529] genl_rcv+0x24/0x40 [ 892.047333][T30529] netlink_unicast+0x539/0x7e0 [ 892.052167][T30529] ? netlink_attachskb+0x880/0x880 [ 892.057283][T30529] ? __virt_addr_valid+0x5d/0x2d0 [ 892.062337][T30529] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 892.068588][T30529] ? __phys_addr_symbol+0x2c/0x70 [ 892.073637][T30529] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 892.079355][T30529] ? __check_object_size+0x16e/0x310 [ 892.084654][T30529] netlink_sendmsg+0x904/0xe00 [ 892.089424][T30529] ? netlink_unicast+0x7e0/0x7e0 [ 892.094382][T30529] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 892.100659][T30529] ? netlink_unicast+0x7e0/0x7e0 [ 892.105601][T30529] sock_sendmsg+0xcf/0x120 [ 892.110049][T30529] ____sys_sendmsg+0x6e8/0x810 [ 892.114844][T30529] ? kernel_sendmsg+0x50/0x50 [ 892.119516][T30529] ? do_recvmmsg+0x6d0/0x6d0 [ 892.124107][T30529] ? lock_chain_count+0x20/0x20 [ 892.128971][T30529] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 892.134955][T30529] ? lock_chain_count+0x20/0x20 [ 892.139972][T30529] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 892.145970][T30529] ___sys_sendmsg+0xf3/0x170 [ 892.150607][T30529] ? sendmsg_copy_msghdr+0x160/0x160 [ 892.155925][T30529] ? lock_downgrade+0x6e0/0x6e0 [ 892.160888][T30529] ? __fget_files+0x28c/0x470 [ 892.165595][T30529] ? __fget_light+0xea/0x280 [ 892.170186][T30529] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 892.176443][T30529] __sys_sendmsg+0xe5/0x1b0 [ 892.180991][T30529] ? __sys_sendmsg_sock+0x30/0x30 [ 892.186039][T30529] ? syscall_enter_from_user_mode+0x21/0x70 [ 892.191953][T30529] do_syscall_64+0x35/0xb0 [ 892.196392][T30529] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 892.202301][T30529] RIP: 0033:0x7f0982948059 [ 892.206737][T30529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 892.226378][T30529] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 892.234798][T30529] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 892.242792][T30529] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 892.250793][T30529] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 892.258819][T30529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 892.266805][T30529] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 892.274803][T30529] 20:16:01 executing program 0: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x275a, 0x0) (async) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) (async) close(r0) openat$cgroup_ro(r0, &(0x7f0000000980)='cgroup.controllers\x00', 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) (async, rerun: 64) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) (rerun: 64) write$cgroup_int(r2, &(0x7f0000000200), 0x12) (async, rerun: 32) bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58) (rerun: 32) r4 = openat$cgroup_ro(r1, &(0x7f00000000c0)='rdma.current\x00', 0x0, 0x0) openat$cgroup_ro(r4, &(0x7f0000000180)='blkio.bfq.io_service_bytes_recursive\x00', 0x0, 0x0) (async, rerun: 64) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000080)="ec66aea43bb0b7cf37e865a64234e52e89cc47c96c06f5bd09611a3fc36f64068667a96cc37fcb0f0dfe060acb", 0x2d) (rerun: 64) r5 = accept(0xffffffffffffffff, 0x0, 0x0) recvmsg$can_j1939(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000800)}, 0x2) (async) setsockopt$IPT_SO_SET_ADD_COUNTERS(r5, 0x0, 0x41, 0x0, 0x78) (async) recvmsg$can_j1939(r5, &(0x7f00000045c0)={0x0, 0x0, 0x0}, 0x0) (async, rerun: 64) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r5, 0x84, 0x8, &(0x7f00000001c0), &(0x7f0000000280)=0x4) (async, rerun: 64) sendfile(r0, r3, 0x0, 0x8000000000005) (async, rerun: 64) sendfile(r0, r1, 0x0, 0xfff) (rerun: 64) [ 892.307591][T30530] netlink: 'syz-executor.3': attribute type 11 has an invalid length. 20:16:01 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69941a0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 892.467540][ T25] audit: type=1804 audit(1643832961.447:1026): pid=30550 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir602834281/syzkaller.s78526/1255/cgroup.controllers" dev="sda1" ino=1175 res=1 errno=0 20:16:01 executing program 0: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 892.547607][ T25] audit: type=1804 audit(1643832961.527:1027): pid=30559 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir602834281/syzkaller.s78526/1255/cgroup.controllers" dev="sda1" ino=1175 res=1 errno=0 [ 892.574193][T30545] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 892.583649][T30545] __nla_validate_parse: 6 callbacks suppressed [ 892.583667][T30545] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. 20:16:01 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100018402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:01 executing program 2: sendmsg$DEVLINK_CMD_TRAP_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="7d4e00db", @ANYRES16, @ANYBLOB="000000000000000000003e0000000800010070"], 0x54}}, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000400)=ANY=[], 0x208e24b) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) (async) sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000070601801fdb59cce5c4ed700100e90005"], 0x1}}, 0x0) (async) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x7c, 0x1, 0x1, 0x801, 0x0, 0x0, {0x0, 0x0, 0x7}, [@CTA_TUPLE_REPLY={0x60, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @rand_addr=' \x01\x00'}}}]}, @CTA_MARK={0x8}]}, 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x40000) (async) sendfile(r2, r1, 0x0, 0xfffffffe) [ 892.618346][T30545] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 892.630145][T30545] CPU: 0 PID: 30545 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 892.640693][T30545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 892.650772][T30545] Call Trace: [ 892.654074][T30545] [ 892.657024][T30545] dump_stack_lvl+0xcd/0x134 [ 892.661648][T30545] sysfs_warn_dup.cold+0x1c/0x29 [ 892.666603][T30545] sysfs_do_create_link_sd+0x11e/0x140 [ 892.672911][T30545] sysfs_create_link+0x5f/0xc0 [ 892.677860][T30545] device_add+0x789/0x1ee0 [ 892.682327][T30545] ? wait_for_completion_io+0x270/0x270 [ 892.687906][T30545] ? minstrel_ht_alloc+0x4b/0xa10 [ 892.692948][T30545] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 892.699201][T30545] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 892.705541][T30545] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 892.711801][T30545] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 892.717805][T30545] wiphy_register+0x1e86/0x29a0 [ 892.722681][T30545] ? wiphy_unregister+0xbf0/0xbf0 [ 892.727719][T30545] ? minstrel_ht_alloc+0x52c/0xa10 [ 892.732869][T30545] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 892.738960][T30545] ieee80211_register_hw+0x1f16/0x3ed0 [ 892.744458][T30545] ? ieee80211_restart_hw+0x290/0x290 [ 892.749848][T30545] ? debug_object_destroy+0x210/0x210 [ 892.755252][T30545] ? memset+0x20/0x40 [ 892.759259][T30545] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 892.765517][T30545] ? __hrtimer_init+0x136/0x280 [ 892.770393][T30545] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 892.776148][T30545] ? hwsim_virtio_rx_work+0x350/0x350 [ 892.781531][T30545] ? hwsim_new_radio_nl+0x992/0x1080 [ 892.786832][T30545] ? memcpy+0x39/0x60 [ 892.790829][T30545] hwsim_new_radio_nl+0x9bc/0x1080 [ 892.795959][T30545] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 892.801884][T30545] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 892.808226][T30545] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 892.815870][T30545] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 892.823175][T30545] genl_family_rcv_msg_doit+0x228/0x320 [ 892.828738][T30545] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 892.836130][T30545] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 892.842396][T30545] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 892.848647][T30545] ? ns_capable+0xd9/0x100 [ 892.853086][T30545] genl_rcv_msg+0x328/0x580 [ 892.857606][T30545] ? genl_get_cmd+0x480/0x480 [ 892.862291][T30545] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 892.868208][T30545] ? lock_release+0x720/0x720 [ 892.872901][T30545] netlink_rcv_skb+0x153/0x420 [ 892.877673][T30545] ? genl_get_cmd+0x480/0x480 [ 892.882366][T30545] ? netlink_ack+0xa60/0xa60 [ 892.886971][T30545] ? netlink_deliver_tap+0x1b1/0xc30 [ 892.892275][T30545] genl_rcv+0x24/0x40 [ 892.896276][T30545] netlink_unicast+0x539/0x7e0 [ 892.901057][T30545] ? netlink_attachskb+0x880/0x880 [ 892.906179][T30545] ? __virt_addr_valid+0x5d/0x2d0 [ 892.911218][T30545] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 892.917472][T30545] ? __phys_addr_symbol+0x2c/0x70 [ 892.922507][T30545] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 892.928352][T30545] ? __check_object_size+0x16e/0x310 [ 892.933668][T30545] netlink_sendmsg+0x904/0xe00 [ 892.938459][T30545] ? netlink_unicast+0x7e0/0x7e0 [ 892.943423][T30545] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 892.949687][T30545] ? netlink_unicast+0x7e0/0x7e0 [ 892.954638][T30545] sock_sendmsg+0xcf/0x120 [ 892.959069][T30545] ____sys_sendmsg+0x6e8/0x810 [ 892.963846][T30545] ? kernel_sendmsg+0x50/0x50 [ 892.968532][T30545] ? do_recvmmsg+0x6d0/0x6d0 [ 892.973137][T30545] ? lock_chain_count+0x20/0x20 [ 892.978003][T30545] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 892.984009][T30545] ___sys_sendmsg+0xf3/0x170 [ 892.988703][T30545] ? sendmsg_copy_msghdr+0x160/0x160 [ 892.994026][T30545] ? lock_downgrade+0x6e0/0x6e0 [ 892.998925][T30545] ? __fget_files+0x28c/0x470 [ 893.003634][T30545] ? __fget_light+0xea/0x280 [ 893.008243][T30545] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 893.014507][T30545] __sys_sendmsg+0xe5/0x1b0 [ 893.019033][T30545] ? __sys_sendmsg_sock+0x30/0x30 [ 893.024085][T30545] ? syscall_enter_from_user_mode+0x21/0x70 [ 893.030005][T30545] do_syscall_64+0x35/0xb0 [ 893.034494][T30545] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 893.040441][T30545] RIP: 0033:0x7f4b423c2059 [ 893.044872][T30545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 893.064575][T30545] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 893.073006][T30545] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 893.080986][T30545] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 893.088963][T30545] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 893.096938][T30545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 893.104917][T30545] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 893.112911][T30545] [ 893.165811][ T25] audit: type=1804 audit(1643832962.147:1028): pid=30573 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir602834281/syzkaller.s78526/1256/cgroup.controllers" dev="sda1" ino=1179 res=1 errno=0 20:16:02 executing program 2: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc6010003b402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 893.229943][T30555] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 893.260997][T30555] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 893.287248][T30555] CPU: 0 PID: 30555 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 893.297807][T30555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 893.307889][T30555] Call Trace: [ 893.311187][T30555] [ 893.314130][T30555] dump_stack_lvl+0xcd/0x134 [ 893.318747][T30555] sysfs_warn_dup.cold+0x1c/0x29 [ 893.323731][T30555] sysfs_do_create_link_sd+0x11e/0x140 [ 893.329220][T30555] sysfs_create_link+0x5f/0xc0 [ 893.334013][T30555] device_add+0x789/0x1ee0 [ 893.338458][T30555] ? wait_for_completion_io+0x270/0x270 [ 893.344030][T30555] ? asm_exc_int3+0x31/0x40 [ 893.348558][T30555] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 893.354888][T30555] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 893.361160][T30555] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 893.367428][T30555] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 893.373441][T30555] wiphy_register+0x1e86/0x29a0 [ 893.378317][T30555] ? wiphy_unregister+0xbf0/0xbf0 [ 893.383352][T30555] ? minstrel_ht_alloc+0x52c/0xa10 [ 893.388492][T30555] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 893.394575][T30555] ieee80211_register_hw+0x1f16/0x3ed0 [ 893.400156][T30555] ? ieee80211_restart_hw+0x290/0x290 [ 893.405546][T30555] ? debug_object_destroy+0x210/0x210 [ 893.410938][T30555] ? memset+0x20/0x40 [ 893.414934][T30555] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 893.421211][T30555] ? __hrtimer_init+0x136/0x280 [ 893.426075][T30555] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 893.431827][T30555] ? hwsim_virtio_rx_work+0x350/0x350 [ 893.437211][T30555] ? hwsim_new_radio_nl+0x992/0x1080 [ 893.442509][T30555] ? memcpy+0x39/0x60 [ 893.446508][T30555] hwsim_new_radio_nl+0x9bc/0x1080 [ 893.451638][T30555] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 893.457557][T30555] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 893.463817][T30555] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 893.471205][T30555] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 893.478510][T30555] genl_family_rcv_msg_doit+0x228/0x320 [ 893.484070][T30555] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 893.491450][T30555] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 893.497721][T30555] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 893.503974][T30555] ? ns_capable+0xd9/0x100 [ 893.508405][T30555] genl_rcv_msg+0x328/0x580 [ 893.512929][T30555] ? genl_get_cmd+0x480/0x480 [ 893.517702][T30555] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 893.523617][T30555] ? lock_release+0x720/0x720 [ 893.528313][T30555] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 893.534144][T30555] netlink_rcv_skb+0x153/0x420 [ 893.538918][T30555] ? genl_get_cmd+0x480/0x480 [ 893.543606][T30555] ? netlink_ack+0xa60/0xa60 [ 893.548214][T30555] ? netlink_deliver_tap+0x1b1/0xc30 [ 893.553515][T30555] genl_rcv+0x24/0x40 [ 893.557509][T30555] netlink_unicast+0x539/0x7e0 [ 893.562289][T30555] ? netlink_attachskb+0x880/0x880 [ 893.567405][T30555] ? __virt_addr_valid+0x5d/0x2d0 [ 893.572444][T30555] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 893.578703][T30555] ? __phys_addr_symbol+0x2c/0x70 [ 893.583743][T30555] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 893.589475][T30555] ? __check_object_size+0x16e/0x310 [ 893.594791][T30555] netlink_sendmsg+0x904/0xe00 [ 893.599575][T30555] ? netlink_unicast+0x7e0/0x7e0 [ 893.604534][T30555] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 893.610795][T30555] ? netlink_unicast+0x7e0/0x7e0 [ 893.615740][T30555] sock_sendmsg+0xcf/0x120 [ 893.620165][T30555] ____sys_sendmsg+0x6e8/0x810 [ 893.624940][T30555] ? kernel_sendmsg+0x50/0x50 [ 893.629623][T30555] ? do_recvmmsg+0x6d0/0x6d0 [ 893.634237][T30555] ? lock_chain_count+0x20/0x20 [ 893.639108][T30555] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 893.645115][T30555] ___sys_sendmsg+0xf3/0x170 [ 893.649732][T30555] ? sendmsg_copy_msghdr+0x160/0x160 [ 893.655033][T30555] ? lock_downgrade+0x6e0/0x6e0 [ 893.659914][T30555] ? __fget_files+0x28c/0x470 [ 893.664615][T30555] ? __fget_light+0xea/0x280 [ 893.669215][T30555] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 893.675476][T30555] __sys_sendmsg+0xe5/0x1b0 [ 893.679994][T30555] ? __sys_sendmsg_sock+0x30/0x30 [ 893.685045][T30555] ? syscall_enter_from_user_mode+0x21/0x70 [ 893.690959][T30555] do_syscall_64+0x35/0xb0 [ 893.695392][T30555] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 893.701318][T30555] RIP: 0033:0x7f0982948059 [ 893.705749][T30555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 893.725381][T30555] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 893.733827][T30555] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 893.741808][T30555] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 893.749782][T30555] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 893.757757][T30555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 893.765748][T30555] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 893.773755][T30555] [ 893.795534][T30567] netlink: 'syz-executor.0': attribute type 11 has an invalid length. [ 893.813891][T30567] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.0'. [ 893.840068][T30567] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 893.848940][T30567] CPU: 0 PID: 30567 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 893.859486][T30567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 893.869576][T30567] Call Trace: [ 893.872907][T30567] [ 893.875861][T30567] dump_stack_lvl+0xcd/0x134 [ 893.880488][T30567] sysfs_warn_dup.cold+0x1c/0x29 [ 893.885458][T30567] sysfs_do_create_link_sd+0x11e/0x140 [ 893.892004][T30567] sysfs_create_link+0x5f/0xc0 [ 893.896809][T30567] device_add+0x789/0x1ee0 [ 893.901268][T30567] ? wait_for_completion_io+0x270/0x270 [ 893.906855][T30567] ? asm_exc_int3+0x31/0x40 [ 893.911406][T30567] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 893.917687][T30567] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 893.923981][T30567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 893.930265][T30567] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 893.936388][T30567] wiphy_register+0x1e86/0x29a0 [ 893.941298][T30567] ? wiphy_unregister+0xbf0/0xbf0 [ 893.946373][T30567] ? minstrel_ht_alloc+0x52c/0xa10 [ 893.951535][T30567] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 893.957645][T30567] ieee80211_register_hw+0x1f16/0x3ed0 [ 893.963155][T30567] ? ieee80211_restart_hw+0x290/0x290 [ 893.968559][T30567] ? debug_object_destroy+0x210/0x210 [ 893.973966][T30567] ? memset+0x20/0x40 [ 893.977963][T30567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 893.984233][T30567] ? __hrtimer_init+0x136/0x280 [ 893.989112][T30567] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 893.994888][T30567] ? hwsim_virtio_rx_work+0x350/0x350 [ 894.000277][T30567] ? hwsim_new_radio_nl+0x992/0x1080 [ 894.005581][T30567] ? memcpy+0x39/0x60 [ 894.009591][T30567] hwsim_new_radio_nl+0x9bc/0x1080 [ 894.014725][T30567] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 894.020657][T30567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 894.026924][T30567] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 894.034399][T30567] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 894.041709][T30567] genl_family_rcv_msg_doit+0x228/0x320 [ 894.047298][T30567] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 894.054683][T30567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 894.060954][T30567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 894.067209][T30567] ? ns_capable+0xd9/0x100 [ 894.071644][T30567] genl_rcv_msg+0x328/0x580 [ 894.076164][T30567] ? genl_get_cmd+0x480/0x480 [ 894.080859][T30567] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 894.086788][T30567] ? lock_release+0x720/0x720 [ 894.091486][T30567] netlink_rcv_skb+0x153/0x420 [ 894.096259][T30567] ? genl_get_cmd+0x480/0x480 [ 894.100954][T30567] ? netlink_ack+0xa60/0xa60 [ 894.105561][T30567] ? netlink_deliver_tap+0x1b1/0xc30 [ 894.110863][T30567] genl_rcv+0x24/0x40 [ 894.114855][T30567] netlink_unicast+0x539/0x7e0 [ 894.119636][T30567] ? netlink_attachskb+0x880/0x880 [ 894.124753][T30567] ? __virt_addr_valid+0x5d/0x2d0 [ 894.129811][T30567] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 894.136094][T30567] ? __phys_addr_symbol+0x2c/0x70 [ 894.141130][T30567] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 894.146885][T30567] ? __check_object_size+0x16e/0x310 [ 894.152189][T30567] netlink_sendmsg+0x904/0xe00 [ 894.156977][T30567] ? netlink_unicast+0x7e0/0x7e0 [ 894.161933][T30567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 894.168195][T30567] ? netlink_unicast+0x7e0/0x7e0 [ 894.173144][T30567] sock_sendmsg+0xcf/0x120 [ 894.177587][T30567] ____sys_sendmsg+0x6e8/0x810 [ 894.182365][T30567] ? kernel_sendmsg+0x50/0x50 [ 894.187049][T30567] ? do_recvmmsg+0x6d0/0x6d0 [ 894.191656][T30567] ? lock_chain_count+0x20/0x20 [ 894.196527][T30567] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 894.202520][T30567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 894.208797][T30567] ? futex_wait+0x533/0x670 [ 894.213319][T30567] ___sys_sendmsg+0xf3/0x170 [ 894.217927][T30567] ? sendmsg_copy_msghdr+0x160/0x160 [ 894.223232][T30567] ? lock_downgrade+0x6e0/0x6e0 [ 894.228110][T30567] ? __fget_files+0x28c/0x470 [ 894.232812][T30567] ? __fget_light+0xea/0x280 [ 894.237414][T30567] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 894.243804][T30567] __sys_sendmsg+0xe5/0x1b0 [ 894.248330][T30567] ? __sys_sendmsg_sock+0x30/0x30 [ 894.253384][T30567] ? syscall_enter_from_user_mode+0x21/0x70 [ 894.259304][T30567] do_syscall_64+0x35/0xb0 [ 894.263733][T30567] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 894.269645][T30567] RIP: 0033:0x7ff5c0e31059 [ 894.274068][T30567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 894.293684][T30567] RSP: 002b:00007ff5bf7a6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 894.302109][T30567] RAX: ffffffffffffffda RBX: 00007ff5c0f43f60 RCX: 00007ff5c0e31059 [ 894.310087][T30567] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 894.318064][T30567] RBP: 00007ff5c0e8b08d R08: 0000000000000000 R09: 0000000000000000 [ 894.326039][T30567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 894.334015][T30567] R13: 00007ffd7465ef9f R14: 00007ff5bf7a6300 R15: 0000000000022000 [ 894.342012][T30567] [ 894.362331][T30569] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 894.376223][T30569] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. 20:16:03 executing program 4: unshare(0x40000400) setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10) setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f00000005c0)=0x80000001, 0x4) r1 = socket(0x11, 0x800000003, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x208e24b) bind(r2, &(0x7f0000000080)=@generic={0x6, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0xad) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r4 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=@newqdisc={0x30, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}}, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000200)=0xbf6, 0x4) sendto$inet(r0, 0x0, 0x0, 0x20020080, &(0x7f0000000080)={0x2, 0x4e20}, 0x10) r5 = socket(0x10, 0x3, 0x0) r6 = socket(0x11, 0x800000003, 0x0) bind(r6, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(0xffffffffffffffff, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x2f) sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="4001000024000b0f00e400000000f10febca0746", @ANYRES32=r7, @ANYBLOB="00000000ffffffff000000f6090001006e6574656d00000010010200ca000000b01d84dd3bb3170b"], 0x140}}, 0x0) sendto$inet(r0, &(0x7f0000000580)="8f", 0x20000581, 0x400c040, 0x0, 0x0) unshare(0x40000400) (async) setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0) (async) socket$inet_tcp(0x2, 0x1, 0x0) (async) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10) (async) setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f00000005c0)=0x80000001, 0x4) (async) socket(0x11, 0x800000003, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) (async) write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x208e24b) (async) bind(r2, &(0x7f0000000080)=@generic={0x6, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0xad) (async) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) (async) socket(0x10, 0x3, 0x0) (async) sendmsg$nl_route_sched(r4, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=@newqdisc={0x30, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}}, 0x0) (async) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000200)=0xbf6, 0x4) (async) sendto$inet(r0, 0x0, 0x0, 0x20020080, &(0x7f0000000080)={0x2, 0x4e20}, 0x10) (async) socket(0x10, 0x3, 0x0) (async) socket(0x11, 0x800000003, 0x0) (async) bind(r6, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) (async) getsockname$packet(0xffffffffffffffff, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x2f) (async) sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="4001000024000b0f00e400000000f10febca0746", @ANYRES32=r7, @ANYBLOB="00000000ffffffff000000f6090001006e6574656d00000010010200ca000000b01d84dd3bb3170b"], 0x140}}, 0x0) (async) sendto$inet(r0, &(0x7f0000000580)="8f", 0x20000581, 0x400c040, 0x0, 0x0) (async) 20:16:03 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100028402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:03 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137353e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:03 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69941b0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:03 executing program 2: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc6010003b402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:03 executing program 0: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 894.658800][T30582] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 894.699402][T30582] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 894.718134][T30582] CPU: 0 PID: 30582 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 894.728695][T30582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 894.738795][T30582] Call Trace: [ 894.742096][T30582] [ 894.745045][T30582] dump_stack_lvl+0xcd/0x134 [ 894.749668][T30582] sysfs_warn_dup.cold+0x1c/0x29 [ 894.754644][T30582] sysfs_do_create_link_sd+0x11e/0x140 [ 894.760146][T30582] sysfs_create_link+0x5f/0xc0 [ 894.764951][T30582] device_add+0x789/0x1ee0 [ 894.769422][T30582] ? wait_for_completion_io+0x270/0x270 [ 894.775014][T30582] ? minstrel_ht_alloc+0x4b/0xa10 [ 894.780082][T30582] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 894.786365][T30582] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 894.792638][T30582] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 894.798913][T30582] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 894.804940][T30582] wiphy_register+0x1e86/0x29a0 [ 894.809844][T30582] ? wiphy_unregister+0xbf0/0xbf0 [ 894.814901][T30582] ? minstrel_ht_alloc+0x52c/0xa10 [ 894.820067][T30582] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 894.826178][T30582] ieee80211_register_hw+0x1f16/0x3ed0 [ 894.831688][T30582] ? ieee80211_restart_hw+0x290/0x290 [ 894.837103][T30582] ? debug_object_destroy+0x210/0x210 [ 894.842521][T30582] ? memset+0x20/0x40 [ 894.846542][T30582] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 894.852828][T30582] ? __hrtimer_init+0x136/0x280 [ 894.857728][T30582] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 894.863508][T30582] ? hwsim_virtio_rx_work+0x350/0x350 [ 894.868925][T30582] ? hwsim_new_radio_nl+0x992/0x1080 [ 894.874253][T30582] ? memcpy+0x39/0x60 [ 894.878300][T30582] hwsim_new_radio_nl+0x9bc/0x1080 [ 894.883447][T30582] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 894.889395][T30582] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 894.895677][T30582] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 894.903117][T30582] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 894.910455][T30582] genl_family_rcv_msg_doit+0x228/0x320 [ 894.916046][T30582] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 894.923453][T30582] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 894.930096][T30582] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 894.936375][T30582] ? ns_capable+0xd9/0x100 [ 894.940827][T30582] genl_rcv_msg+0x328/0x580 [ 894.945369][T30582] ? genl_get_cmd+0x480/0x480 [ 894.950081][T30582] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 894.956028][T30582] ? lock_release+0x720/0x720 [ 894.960745][T30582] netlink_rcv_skb+0x153/0x420 [ 894.965541][T30582] ? genl_get_cmd+0x480/0x480 [ 894.970251][T30582] ? netlink_ack+0xa60/0xa60 [ 894.974887][T30582] ? netlink_deliver_tap+0x1b1/0xc30 [ 894.980211][T30582] genl_rcv+0x24/0x40 [ 894.984232][T30582] netlink_unicast+0x539/0x7e0 [ 894.989036][T30582] ? netlink_attachskb+0x880/0x880 [ 894.994173][T30582] ? __virt_addr_valid+0x5d/0x2d0 [ 894.999228][T30582] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 895.005499][T30582] ? __phys_addr_symbol+0x2c/0x70 [ 895.010567][T30582] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 895.016321][T30582] ? __check_object_size+0x16e/0x310 [ 895.021646][T30582] netlink_sendmsg+0x904/0xe00 [ 895.026478][T30582] ? netlink_unicast+0x7e0/0x7e0 [ 895.031444][T30582] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 895.037732][T30582] ? netlink_unicast+0x7e0/0x7e0 [ 895.042798][T30582] sock_sendmsg+0xcf/0x120 [ 895.047258][T30582] ____sys_sendmsg+0x6e8/0x810 [ 895.052059][T30582] ? kernel_sendmsg+0x50/0x50 [ 895.056774][T30582] ? do_recvmmsg+0x6d0/0x6d0 [ 895.061406][T30582] ? lock_chain_count+0x20/0x20 [ 895.066300][T30582] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 895.072328][T30582] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 895.078622][T30582] ? futex_wait+0x533/0x670 [ 895.083175][T30582] ___sys_sendmsg+0xf3/0x170 [ 895.087809][T30582] ? sendmsg_copy_msghdr+0x160/0x160 [ 895.093137][T30582] ? lock_downgrade+0x6e0/0x6e0 [ 895.098043][T30582] ? __fget_files+0x28c/0x470 [ 895.102779][T30582] ? __fget_light+0xea/0x280 [ 895.107408][T30582] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 895.113694][T30582] __sys_sendmsg+0xe5/0x1b0 [ 895.118232][T30582] ? __sys_sendmsg_sock+0x30/0x30 [ 895.123314][T30582] ? syscall_enter_from_user_mode+0x21/0x70 [ 895.129264][T30582] do_syscall_64+0x35/0xb0 [ 895.133722][T30582] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 895.139658][T30582] RIP: 0033:0x7f0982948059 [ 895.144102][T30582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 895.163746][T30582] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 895.172205][T30582] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 895.180209][T30582] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 895.188210][T30582] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 895.196208][T30582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 895.204208][T30582] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 895.212234][T30582] [ 895.228487][T30587] netlink: 'syz-executor.3': attribute type 11 has an invalid length. 20:16:04 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69941c0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 895.267883][T30587] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. [ 895.328035][T30593] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.4'. [ 895.398370][T30594] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.4'. [ 895.428987][T30586] netlink: 'syz-executor.1': attribute type 11 has an invalid length. 20:16:04 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100033402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 895.442191][T30586] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 895.508702][T30586] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 895.518614][T30586] CPU: 1 PID: 30586 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 895.529163][T30586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 895.539333][T30586] Call Trace: [ 895.542620][T30586] [ 895.545567][T30586] dump_stack_lvl+0xcd/0x134 [ 895.550190][T30586] sysfs_warn_dup.cold+0x1c/0x29 [ 895.555166][T30586] sysfs_do_create_link_sd+0x11e/0x140 [ 895.560654][T30586] sysfs_create_link+0x5f/0xc0 [ 895.565433][T30586] device_add+0x789/0x1ee0 [ 895.569867][T30586] ? wait_for_completion_io+0x270/0x270 [ 895.575437][T30586] ? lock_downgrade+0x6e0/0x6e0 [ 895.580298][T30586] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 895.586546][T30586] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 895.592794][T30586] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 895.599048][T30586] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 895.605046][T30586] wiphy_register+0x1e86/0x29a0 [ 895.609908][T30586] ? wiphy_unregister+0xbf0/0xbf0 [ 895.614935][T30586] ? minstrel_ht_alloc+0x52c/0xa10 [ 895.620098][T30586] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 895.626181][T30586] ieee80211_register_hw+0x1f16/0x3ed0 [ 895.631680][T30586] ? ieee80211_restart_hw+0x290/0x290 [ 895.637059][T30586] ? debug_object_destroy+0x210/0x210 [ 895.642445][T30586] ? memset+0x20/0x40 [ 895.646454][T30586] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 895.652697][T30586] ? __hrtimer_init+0x136/0x280 [ 895.657573][T30586] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 895.663311][T30586] ? hwsim_virtio_rx_work+0x350/0x350 [ 895.668775][T30586] ? hwsim_new_radio_nl+0x992/0x1080 [ 895.674080][T30586] ? memcpy+0x39/0x60 [ 895.678066][T30586] hwsim_new_radio_nl+0x9bc/0x1080 [ 895.683211][T30586] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 895.689236][T30586] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 895.695514][T30586] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 895.702917][T30586] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 895.710244][T30586] genl_family_rcv_msg_doit+0x228/0x320 [ 895.715852][T30586] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 895.723271][T30586] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 895.729526][T30586] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 895.735808][T30586] ? ns_capable+0xd9/0x100 [ 895.740286][T30586] genl_rcv_msg+0x328/0x580 [ 895.744847][T30586] ? genl_get_cmd+0x480/0x480 [ 895.749533][T30586] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 895.755439][T30586] ? lock_release+0x720/0x720 [ 895.760156][T30586] netlink_rcv_skb+0x153/0x420 [ 895.764943][T30586] ? genl_get_cmd+0x480/0x480 [ 895.769624][T30586] ? netlink_ack+0xa60/0xa60 [ 895.774223][T30586] ? netlink_deliver_tap+0x1b1/0xc30 [ 895.779511][T30586] genl_rcv+0x24/0x40 [ 895.783498][T30586] netlink_unicast+0x539/0x7e0 [ 895.788286][T30586] ? netlink_attachskb+0x880/0x880 [ 895.793431][T30586] ? __virt_addr_valid+0x5d/0x2d0 [ 895.798487][T30586] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 895.804730][T30586] ? __phys_addr_symbol+0x2c/0x70 [ 895.809764][T30586] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 895.815488][T30586] ? __check_object_size+0x16e/0x310 [ 895.820789][T30586] netlink_sendmsg+0x904/0xe00 [ 895.825584][T30586] ? netlink_unicast+0x7e0/0x7e0 [ 895.830549][T30586] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 895.836819][T30586] ? netlink_unicast+0x7e0/0x7e0 [ 895.841767][T30586] sock_sendmsg+0xcf/0x120 [ 895.846196][T30586] ____sys_sendmsg+0x6e8/0x810 [ 895.850965][T30586] ? kernel_sendmsg+0x50/0x50 [ 895.855638][T30586] ? do_recvmmsg+0x6d0/0x6d0 [ 895.860248][T30586] ? lock_chain_count+0x20/0x20 [ 895.865106][T30586] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 895.871130][T30586] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 895.877381][T30586] ? futex_wait+0x533/0x670 [ 895.881904][T30586] ___sys_sendmsg+0xf3/0x170 [ 895.886501][T30586] ? sendmsg_copy_msghdr+0x160/0x160 [ 895.891796][T30586] ? lock_downgrade+0x6e0/0x6e0 [ 895.896657][T30586] ? __fget_files+0x28c/0x470 [ 895.901363][T30586] ? __fget_light+0xea/0x280 [ 895.905951][T30586] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 895.912323][T30586] __sys_sendmsg+0xe5/0x1b0 [ 895.916830][T30586] ? __sys_sendmsg_sock+0x30/0x30 [ 895.921882][T30586] ? syscall_enter_from_user_mode+0x21/0x70 [ 895.927807][T30586] do_syscall_64+0x35/0xb0 [ 895.932221][T30586] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 895.938125][T30586] RIP: 0033:0x7f4b423c2059 [ 895.942556][T30586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 895.962187][T30586] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 895.970628][T30586] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 895.978599][T30586] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 895.986655][T30586] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 895.994627][T30586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 896.002606][T30586] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 896.010615][T30586] 20:16:05 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e0a0848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 896.032655][T30585] netlink: 'syz-executor.2': attribute type 11 has an invalid length. [ 896.046759][T30585] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.2'. [ 896.136608][T30588] netlink: 'syz-executor.0': attribute type 11 has an invalid length. [ 896.173807][T30588] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 896.185092][T30588] CPU: 1 PID: 30588 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 896.195635][T30588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 896.205690][T30588] Call Trace: [ 896.208968][T30588] [ 896.211899][T30588] dump_stack_lvl+0xcd/0x134 [ 896.216495][T30588] sysfs_warn_dup.cold+0x1c/0x29 [ 896.221437][T30588] sysfs_do_create_link_sd+0x11e/0x140 [ 896.226914][T30588] sysfs_create_link+0x5f/0xc0 [ 896.231704][T30588] device_add+0x789/0x1ee0 [ 896.236127][T30588] ? wait_for_completion_io+0x270/0x270 [ 896.241682][T30588] ? minstrel_ht_alloc+0x4b/0xa10 [ 896.246735][T30588] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 896.252984][T30588] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 896.259236][T30588] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.265485][T30588] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 896.271495][T30588] wiphy_register+0x1e86/0x29a0 [ 896.276385][T30588] ? wiphy_unregister+0xbf0/0xbf0 [ 896.281413][T30588] ? minstrel_ht_alloc+0x52c/0xa10 [ 896.286555][T30588] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 896.292623][T30588] ieee80211_register_hw+0x1f16/0x3ed0 [ 896.298208][T30588] ? ieee80211_restart_hw+0x290/0x290 [ 896.303585][T30588] ? debug_object_destroy+0x210/0x210 [ 896.308972][T30588] ? memset+0x20/0x40 [ 896.312967][T30588] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.319301][T30588] ? __hrtimer_init+0x136/0x280 [ 896.324154][T30588] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 896.329885][T30588] ? hwsim_virtio_rx_work+0x350/0x350 [ 896.335254][T30588] ? hwsim_new_radio_nl+0x992/0x1080 [ 896.340545][T30588] ? memcpy+0x39/0x60 [ 896.344547][T30588] hwsim_new_radio_nl+0x9bc/0x1080 [ 896.349678][T30588] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 896.355576][T30588] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.361835][T30588] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 896.369236][T30588] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 896.376558][T30588] genl_family_rcv_msg_doit+0x228/0x320 [ 896.382105][T30588] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 896.389523][T30588] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.395807][T30588] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.402054][T30588] ? ns_capable+0xd9/0x100 [ 896.406495][T30588] genl_rcv_msg+0x328/0x580 [ 896.411036][T30588] ? genl_get_cmd+0x480/0x480 [ 896.415734][T30588] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 896.421639][T30588] ? lock_release+0x720/0x720 [ 896.426318][T30588] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 896.432128][T30588] netlink_rcv_skb+0x153/0x420 [ 896.436889][T30588] ? genl_get_cmd+0x480/0x480 [ 896.441562][T30588] ? netlink_ack+0xa60/0xa60 [ 896.446167][T30588] ? netlink_deliver_tap+0x1b1/0xc30 [ 896.451468][T30588] genl_rcv+0x24/0x40 [ 896.455451][T30588] netlink_unicast+0x539/0x7e0 [ 896.460234][T30588] ? netlink_attachskb+0x880/0x880 [ 896.465344][T30588] ? __virt_addr_valid+0x5d/0x2d0 [ 896.470391][T30588] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 896.476641][T30588] ? __phys_addr_symbol+0x2c/0x70 [ 896.481692][T30588] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 896.487436][T30588] ? __check_object_size+0x16e/0x310 [ 896.492732][T30588] netlink_sendmsg+0x904/0xe00 [ 896.497507][T30588] ? netlink_unicast+0x7e0/0x7e0 [ 896.502475][T30588] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.508718][T30588] ? netlink_unicast+0x7e0/0x7e0 [ 896.513667][T30588] sock_sendmsg+0xcf/0x120 [ 896.518083][T30588] ____sys_sendmsg+0x6e8/0x810 [ 896.522858][T30588] ? kernel_sendmsg+0x50/0x50 [ 896.527535][T30588] ? do_recvmmsg+0x6d0/0x6d0 [ 896.532128][T30588] ? lock_chain_count+0x20/0x20 [ 896.537000][T30588] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 896.543012][T30588] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.549268][T30588] ? futex_wait+0x533/0x670 [ 896.553825][T30588] ___sys_sendmsg+0xf3/0x170 [ 896.558441][T30588] ? sendmsg_copy_msghdr+0x160/0x160 [ 896.563750][T30588] ? lock_downgrade+0x6e0/0x6e0 [ 896.568611][T30588] ? __fget_files+0x28c/0x470 [ 896.573299][T30588] ? __fget_light+0xea/0x280 [ 896.577920][T30588] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 896.584169][T30588] __sys_sendmsg+0xe5/0x1b0 [ 896.588674][T30588] ? __sys_sendmsg_sock+0x30/0x30 [ 896.593728][T30588] ? syscall_enter_from_user_mode+0x21/0x70 [ 896.599676][T30588] do_syscall_64+0x35/0xb0 [ 896.604095][T30588] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 896.609996][T30588] RIP: 0033:0x7ff5c0e31059 [ 896.614408][T30588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 20:16:05 executing program 2: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc6010003b402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 896.634099][T30588] RSP: 002b:00007ff5bf7a6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 896.642515][T30588] RAX: ffffffffffffffda RBX: 00007ff5c0f43f60 RCX: 00007ff5c0e31059 [ 896.650514][T30588] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 896.658509][T30588] RBP: 00007ff5c0e8b08d R08: 0000000000000000 R09: 0000000000000000 [ 896.666527][T30588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 896.674494][T30588] R13: 00007ffd7465ef9f R14: 00007ff5bf7a6300 R15: 0000000000022000 [ 896.682478][T30588] 20:16:05 executing program 0: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013582c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 896.763648][T30602] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 896.778689][T30602] CPU: 1 PID: 30602 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 896.789332][T30602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 896.799414][T30602] Call Trace: [ 896.802728][T30602] [ 896.805679][T30602] dump_stack_lvl+0xcd/0x134 [ 896.810306][T30602] sysfs_warn_dup.cold+0x1c/0x29 [ 896.815255][T30602] sysfs_do_create_link_sd+0x11e/0x140 [ 896.820726][T30602] sysfs_create_link+0x5f/0xc0 [ 896.825497][T30602] device_add+0x789/0x1ee0 [ 896.830004][T30602] ? wait_for_completion_io+0x270/0x270 [ 896.835554][T30602] ? minstrel_ht_alloc+0x4b/0xa10 [ 896.840582][T30602] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 896.846836][T30602] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 896.853088][T30602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.859358][T30602] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 896.865374][T30602] wiphy_register+0x1e86/0x29a0 [ 896.870256][T30602] ? wiphy_unregister+0xbf0/0xbf0 [ 896.875278][T30602] ? minstrel_ht_alloc+0x52c/0xa10 [ 896.880417][T30602] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 896.886526][T30602] ieee80211_register_hw+0x1f16/0x3ed0 [ 896.891997][T30602] ? ieee80211_restart_hw+0x290/0x290 [ 896.897372][T30602] ? debug_object_destroy+0x210/0x210 [ 896.902767][T30602] ? memset+0x20/0x40 [ 896.906770][T30602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.913057][T30602] ? __hrtimer_init+0x136/0x280 [ 896.917941][T30602] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 896.923679][T30602] ? hwsim_virtio_rx_work+0x350/0x350 [ 896.929064][T30602] ? hwsim_new_radio_nl+0x992/0x1080 [ 896.934976][T30602] ? memcpy+0x39/0x60 [ 896.938960][T30602] hwsim_new_radio_nl+0x9bc/0x1080 [ 896.944072][T30602] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 896.949975][T30602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.956223][T30602] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 896.963618][T30602] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 896.970908][T30602] genl_family_rcv_msg_doit+0x228/0x320 [ 896.976451][T30602] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 896.983848][T30602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.990105][T30602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 896.996371][T30602] ? ns_capable+0xd9/0x100 [ 897.000795][T30602] genl_rcv_msg+0x328/0x580 [ 897.005299][T30602] ? genl_get_cmd+0x480/0x480 [ 897.009995][T30602] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 897.015891][T30602] ? lock_release+0x720/0x720 [ 897.020592][T30602] netlink_rcv_skb+0x153/0x420 [ 897.025371][T30602] ? genl_get_cmd+0x480/0x480 [ 897.030061][T30602] ? netlink_ack+0xa60/0xa60 [ 897.034679][T30602] ? netlink_deliver_tap+0x1b1/0xc30 [ 897.039988][T30602] genl_rcv+0x24/0x40 [ 897.043974][T30602] netlink_unicast+0x539/0x7e0 [ 897.048748][T30602] ? netlink_attachskb+0x880/0x880 [ 897.053856][T30602] ? __virt_addr_valid+0x5d/0x2d0 [ 897.058905][T30602] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 897.065147][T30602] ? __phys_addr_symbol+0x2c/0x70 [ 897.070175][T30602] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 897.075920][T30602] ? __check_object_size+0x16e/0x310 [ 897.081294][T30602] netlink_sendmsg+0x904/0xe00 [ 897.086079][T30602] ? netlink_unicast+0x7e0/0x7e0 [ 897.091053][T30602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 897.097296][T30602] ? netlink_unicast+0x7e0/0x7e0 [ 897.102232][T30602] sock_sendmsg+0xcf/0x120 [ 897.106646][T30602] ____sys_sendmsg+0x6e8/0x810 [ 897.111405][T30602] ? kernel_sendmsg+0x50/0x50 [ 897.116082][T30602] ? do_recvmmsg+0x6d0/0x6d0 [ 897.120671][T30602] ? lock_chain_count+0x20/0x20 [ 897.125519][T30602] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 897.131494][T30602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 897.137732][T30602] ? futex_wait+0x533/0x670 [ 897.142236][T30602] ___sys_sendmsg+0xf3/0x170 [ 897.146828][T30602] ? sendmsg_copy_msghdr+0x160/0x160 [ 897.152130][T30602] ? lock_downgrade+0x6e0/0x6e0 [ 897.156999][T30602] ? __fget_files+0x28c/0x470 [ 897.161691][T30602] ? __fget_light+0xea/0x280 [ 897.166290][T30602] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 897.172542][T30602] __sys_sendmsg+0xe5/0x1b0 [ 897.177055][T30602] ? __sys_sendmsg_sock+0x30/0x30 [ 897.182094][T30602] ? syscall_enter_from_user_mode+0x21/0x70 [ 897.188002][T30602] do_syscall_64+0x35/0xb0 [ 897.192426][T30602] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 897.198326][T30602] RIP: 0033:0x7f0982948059 [ 897.202741][T30602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 897.222369][T30602] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 897.230787][T30602] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 897.238781][T30602] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 897.246771][T30602] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 897.254846][T30602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 20:16:06 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69941d0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 897.262812][T30602] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 897.270791][T30602] [ 897.299631][T30604] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 897.397361][T30606] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 897.418651][T30606] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 897.437024][T30606] CPU: 1 PID: 30606 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 897.447576][T30606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 897.457673][T30606] Call Trace: [ 897.460949][T30606] [ 897.463877][T30606] dump_stack_lvl+0xcd/0x134 [ 897.468477][T30606] sysfs_warn_dup.cold+0x1c/0x29 [ 897.473421][T30606] sysfs_do_create_link_sd+0x11e/0x140 [ 897.478883][T30606] sysfs_create_link+0x5f/0xc0 [ 897.483646][T30606] device_add+0x789/0x1ee0 [ 897.488064][T30606] ? wait_for_completion_io+0x270/0x270 [ 897.493620][T30606] ? lock_downgrade+0x6e0/0x6e0 [ 897.498543][T30606] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 897.504794][T30606] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 897.511036][T30606] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 897.517277][T30606] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 897.523261][T30606] wiphy_register+0x1e86/0x29a0 [ 897.528119][T30606] ? wiphy_unregister+0xbf0/0xbf0 [ 897.533137][T30606] ? minstrel_ht_alloc+0x52c/0xa10 [ 897.538258][T30606] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 897.544332][T30606] ieee80211_register_hw+0x1f16/0x3ed0 [ 897.549816][T30606] ? ieee80211_restart_hw+0x290/0x290 [ 897.555188][T30606] ? debug_object_destroy+0x210/0x210 [ 897.560591][T30606] ? memset+0x20/0x40 [ 897.564570][T30606] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 897.570831][T30606] ? __hrtimer_init+0x136/0x280 [ 897.575684][T30606] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 897.581415][T30606] ? hwsim_virtio_rx_work+0x350/0x350 [ 897.586779][T30606] ? hwsim_new_radio_nl+0x992/0x1080 [ 897.592069][T30606] ? memcpy+0x39/0x60 [ 897.596067][T30606] hwsim_new_radio_nl+0x9bc/0x1080 [ 897.601178][T30606] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 897.607077][T30606] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 897.613318][T30606] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 897.620711][T30606] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 897.628011][T30606] genl_family_rcv_msg_doit+0x228/0x320 [ 897.633557][T30606] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 897.640930][T30606] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 897.647205][T30606] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 897.653449][T30606] ? ns_capable+0xd9/0x100 [ 897.657894][T30606] genl_rcv_msg+0x328/0x580 [ 897.662412][T30606] ? genl_get_cmd+0x480/0x480 [ 897.667092][T30606] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 897.673004][T30606] ? lock_release+0x720/0x720 [ 897.677703][T30606] netlink_rcv_skb+0x153/0x420 [ 897.682467][T30606] ? genl_get_cmd+0x480/0x480 [ 897.687148][T30606] ? netlink_ack+0xa60/0xa60 [ 897.691764][T30606] ? netlink_deliver_tap+0x1b1/0xc30 [ 897.697044][T30606] genl_rcv+0x24/0x40 [ 897.701023][T30606] netlink_unicast+0x539/0x7e0 [ 897.705795][T30606] ? netlink_attachskb+0x880/0x880 [ 897.710935][T30606] ? __virt_addr_valid+0x5d/0x2d0 [ 897.715982][T30606] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 897.722219][T30606] ? __phys_addr_symbol+0x2c/0x70 [ 897.727238][T30606] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 897.732953][T30606] ? __check_object_size+0x16e/0x310 [ 897.738246][T30606] netlink_sendmsg+0x904/0xe00 [ 897.743028][T30606] ? netlink_unicast+0x7e0/0x7e0 [ 897.747963][T30606] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 897.754210][T30606] ? netlink_unicast+0x7e0/0x7e0 [ 897.759148][T30606] sock_sendmsg+0xcf/0x120 [ 897.763564][T30606] ____sys_sendmsg+0x6e8/0x810 [ 897.768323][T30606] ? kernel_sendmsg+0x50/0x50 [ 897.772995][T30606] ? do_recvmmsg+0x6d0/0x6d0 [ 897.777583][T30606] ? lock_chain_count+0x20/0x20 [ 897.782441][T30606] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 897.788420][T30606] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 897.794662][T30606] ? futex_wait+0x533/0x670 [ 897.799184][T30606] ___sys_sendmsg+0xf3/0x170 [ 897.803789][T30606] ? sendmsg_copy_msghdr+0x160/0x160 [ 897.809097][T30606] ? lock_downgrade+0x6e0/0x6e0 [ 897.813971][T30606] ? __fget_files+0x28c/0x470 [ 897.818652][T30606] ? __fget_light+0xea/0x280 [ 897.823236][T30606] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 897.829482][T30606] __sys_sendmsg+0xe5/0x1b0 [ 897.833986][T30606] ? __sys_sendmsg_sock+0x30/0x30 [ 897.839017][T30606] ? syscall_enter_from_user_mode+0x21/0x70 [ 897.844917][T30606] do_syscall_64+0x35/0xb0 [ 897.849384][T30606] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 897.855297][T30606] RIP: 0033:0x7f4b423c2059 [ 897.859747][T30606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 897.879354][T30606] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 897.887764][T30606] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 897.895730][T30606] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 897.903694][T30606] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 897.911661][T30606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 897.919626][T30606] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 897.927607][T30606] [ 897.955606][T30608] netlink: 'syz-executor.2': attribute type 11 has an invalid length. [ 897.968419][T30608] __nla_validate_parse: 4 callbacks suppressed [ 897.968438][T30608] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.2'. [ 898.065926][T30610] netlink: 'syz-executor.0': attribute type 11 has an invalid length. [ 898.075526][T30610] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.0'. [ 898.090028][T30610] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 898.110337][T30610] CPU: 0 PID: 30610 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 898.120880][T30610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 898.130955][T30610] Call Trace: [ 898.134248][T30610] [ 898.137198][T30610] dump_stack_lvl+0xcd/0x134 [ 898.141822][T30610] sysfs_warn_dup.cold+0x1c/0x29 [ 898.146785][T30610] sysfs_do_create_link_sd+0x11e/0x140 [ 898.152273][T30610] sysfs_create_link+0x5f/0xc0 [ 898.157068][T30610] device_add+0x789/0x1ee0 [ 898.161520][T30610] ? wait_for_completion_io+0x270/0x270 [ 898.167094][T30610] ? lock_downgrade+0x6e0/0x6e0 [ 898.171971][T30610] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 898.178241][T30610] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 898.184504][T30610] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.190755][T30610] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 898.196764][T30610] wiphy_register+0x1e86/0x29a0 [ 898.201647][T30610] ? wiphy_unregister+0xbf0/0xbf0 [ 898.206679][T30610] ? minstrel_ht_alloc+0x52c/0xa10 [ 898.211821][T30610] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 898.217909][T30610] ieee80211_register_hw+0x1f16/0x3ed0 [ 898.223393][T30610] ? ieee80211_restart_hw+0x290/0x290 [ 898.228780][T30610] ? debug_object_destroy+0x210/0x210 [ 898.234171][T30610] ? memset+0x20/0x40 [ 898.238162][T30610] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.244426][T30610] ? __hrtimer_init+0x136/0x280 [ 898.249305][T30610] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 898.255244][T30610] ? hwsim_virtio_rx_work+0x350/0x350 [ 898.260626][T30610] ? hwsim_new_radio_nl+0x992/0x1080 [ 898.265921][T30610] ? memcpy+0x39/0x60 [ 898.269919][T30610] hwsim_new_radio_nl+0x9bc/0x1080 [ 898.275042][T30610] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 898.280958][T30610] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.287210][T30610] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 898.294588][T30610] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 898.301897][T30610] genl_family_rcv_msg_doit+0x228/0x320 [ 898.307464][T30610] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 898.314871][T30610] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.321139][T30610] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.327397][T30610] ? ns_capable+0xd9/0x100 [ 898.331841][T30610] genl_rcv_msg+0x328/0x580 [ 898.336359][T30610] ? genl_get_cmd+0x480/0x480 [ 898.341047][T30610] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 898.346959][T30610] ? lock_release+0x720/0x720 [ 898.351647][T30610] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 898.357496][T30610] netlink_rcv_skb+0x153/0x420 [ 898.362273][T30610] ? genl_get_cmd+0x480/0x480 [ 898.366967][T30610] ? netlink_ack+0xa60/0xa60 [ 898.371570][T30610] ? netlink_deliver_tap+0x1b1/0xc30 [ 898.376867][T30610] genl_rcv+0x24/0x40 [ 898.380858][T30610] netlink_unicast+0x539/0x7e0 [ 898.385634][T30610] ? netlink_attachskb+0x880/0x880 [ 898.390750][T30610] ? __virt_addr_valid+0x5d/0x2d0 [ 898.395789][T30610] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 898.402043][T30610] ? __phys_addr_symbol+0x2c/0x70 [ 898.407076][T30610] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 898.412808][T30610] ? __check_object_size+0x16e/0x310 [ 898.418103][T30610] netlink_sendmsg+0x904/0xe00 [ 898.422881][T30610] ? netlink_unicast+0x7e0/0x7e0 [ 898.427832][T30610] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.434085][T30610] ? netlink_unicast+0x7e0/0x7e0 [ 898.439030][T30610] sock_sendmsg+0xcf/0x120 [ 898.443461][T30610] ____sys_sendmsg+0x6e8/0x810 [ 898.448239][T30610] ? kernel_sendmsg+0x50/0x50 [ 898.452924][T30610] ? do_recvmmsg+0x6d0/0x6d0 [ 898.457527][T30610] ? lock_chain_count+0x20/0x20 [ 898.462390][T30610] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 898.468392][T30610] ___sys_sendmsg+0xf3/0x170 [ 898.472997][T30610] ? sendmsg_copy_msghdr+0x160/0x160 [ 898.478301][T30610] ? lock_downgrade+0x6e0/0x6e0 [ 898.483176][T30610] ? __fget_files+0x28c/0x470 [ 898.487873][T30610] ? __fget_light+0xea/0x280 [ 898.492475][T30610] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 898.498732][T30610] __sys_sendmsg+0xe5/0x1b0 [ 898.503255][T30610] ? __sys_sendmsg_sock+0x30/0x30 [ 898.508311][T30610] ? syscall_enter_from_user_mode+0x21/0x70 [ 898.514228][T30610] do_syscall_64+0x35/0xb0 [ 898.518656][T30610] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 898.524561][T30610] RIP: 0033:0x7ff5c0e31059 [ 898.528984][T30610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 898.548597][T30610] RSP: 002b:00007ff5bf7a6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 898.557017][T30610] RAX: ffffffffffffffda RBX: 00007ff5c0f43f60 RCX: 00007ff5c0e31059 [ 898.564995][T30610] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 898.572969][T30610] RBP: 00007ff5c0e8b08d R08: 0000000000000000 R09: 0000000000000000 [ 898.580942][T30610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 898.588914][T30610] R13: 00007ffd7465ef9f R14: 00007ff5bf7a6300 R15: 0000000000022000 [ 898.596914][T30610] [ 898.614103][T30612] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 898.633922][T30612] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 898.653475][T30612] CPU: 0 PID: 30612 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 898.664021][T30612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 898.674099][T30612] Call Trace: [ 898.677389][T30612] [ 898.680325][T30612] dump_stack_lvl+0xcd/0x134 [ 898.684931][T30612] sysfs_warn_dup.cold+0x1c/0x29 [ 898.689883][T30612] sysfs_do_create_link_sd+0x11e/0x140 [ 898.695357][T30612] sysfs_create_link+0x5f/0xc0 [ 898.700131][T30612] device_add+0x789/0x1ee0 [ 898.704569][T30612] ? wait_for_completion_io+0x270/0x270 [ 898.710132][T30612] ? asm_exc_int3+0x31/0x40 [ 898.714650][T30612] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 898.720907][T30612] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 898.727208][T30612] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.733471][T30612] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 898.739474][T30612] wiphy_register+0x1e86/0x29a0 [ 898.744346][T30612] ? wiphy_unregister+0xbf0/0xbf0 [ 898.749381][T30612] ? minstrel_ht_alloc+0x52c/0xa10 [ 898.754531][T30612] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 898.760892][T30612] ieee80211_register_hw+0x1f16/0x3ed0 [ 898.766390][T30612] ? ieee80211_restart_hw+0x290/0x290 [ 898.771795][T30612] ? debug_object_destroy+0x210/0x210 [ 898.777198][T30612] ? memset+0x20/0x40 [ 898.781197][T30612] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.787457][T30612] ? __hrtimer_init+0x136/0x280 [ 898.792322][T30612] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 898.798092][T30612] ? hwsim_virtio_rx_work+0x350/0x350 [ 898.803559][T30612] ? hwsim_new_radio_nl+0x992/0x1080 [ 898.808862][T30612] ? memcpy+0x39/0x60 [ 898.812858][T30612] hwsim_new_radio_nl+0x9bc/0x1080 [ 898.818111][T30612] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 898.824039][T30612] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.830310][T30612] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 898.837705][T30612] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 898.845042][T30612] genl_family_rcv_msg_doit+0x228/0x320 [ 898.850611][T30612] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 898.857997][T30612] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.864273][T30612] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.870528][T30612] ? ns_capable+0xd9/0x100 [ 898.874971][T30612] genl_rcv_msg+0x328/0x580 [ 898.879507][T30612] ? genl_get_cmd+0x480/0x480 [ 898.884214][T30612] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 898.890158][T30612] ? lock_release+0x720/0x720 [ 898.894876][T30612] netlink_rcv_skb+0x153/0x420 [ 898.899655][T30612] ? genl_get_cmd+0x480/0x480 [ 898.904351][T30612] ? netlink_ack+0xa60/0xa60 [ 898.908978][T30612] ? netlink_deliver_tap+0x1b1/0xc30 [ 898.914300][T30612] genl_rcv+0x24/0x40 [ 898.918314][T30612] netlink_unicast+0x539/0x7e0 [ 898.923111][T30612] ? netlink_attachskb+0x880/0x880 [ 898.928247][T30612] ? __virt_addr_valid+0x5d/0x2d0 [ 898.933319][T30612] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 898.939591][T30612] ? __phys_addr_symbol+0x2c/0x70 [ 898.944654][T30612] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 898.950406][T30612] ? __check_object_size+0x16e/0x310 [ 898.955716][T30612] netlink_sendmsg+0x904/0xe00 [ 898.960505][T30612] ? netlink_unicast+0x7e0/0x7e0 [ 898.965460][T30612] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 898.971716][T30612] ? netlink_unicast+0x7e0/0x7e0 [ 898.976664][T30612] sock_sendmsg+0xcf/0x120 [ 898.981188][T30612] ____sys_sendmsg+0x6e8/0x810 [ 898.986142][T30612] ? kernel_sendmsg+0x50/0x50 [ 898.990844][T30612] ? do_recvmmsg+0x6d0/0x6d0 [ 898.995469][T30612] ? lock_chain_count+0x20/0x20 [ 899.000346][T30612] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 899.006364][T30612] ___sys_sendmsg+0xf3/0x170 [ 899.010993][T30612] ? sendmsg_copy_msghdr+0x160/0x160 [ 899.016312][T30612] ? lock_downgrade+0x6e0/0x6e0 [ 899.021210][T30612] ? __fget_files+0x28c/0x470 [ 899.025926][T30612] ? __fget_light+0xea/0x280 [ 899.030728][T30612] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 899.037007][T30612] __sys_sendmsg+0xe5/0x1b0 [ 899.041532][T30612] ? __sys_sendmsg_sock+0x30/0x30 [ 899.046684][T30612] ? syscall_enter_from_user_mode+0x21/0x70 [ 899.052621][T30612] do_syscall_64+0x35/0xb0 [ 899.057315][T30612] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 899.063241][T30612] RIP: 0033:0x7f0982948059 [ 899.067854][T30612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 899.087571][T30612] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 899.096100][T30612] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 899.104095][T30612] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 899.112181][T30612] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 899.120190][T30612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 899.128187][T30612] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 899.136198][T30612] 20:16:08 executing program 4: unshare(0x40000400) (async) setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0) (async) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10) setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f00000005c0)=0x80000001, 0x4) r1 = socket(0x11, 0x800000003, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x208e24b) bind(r2, &(0x7f0000000080)=@generic={0x6, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0xad) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) (async) r4 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=@newqdisc={0x30, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}}, 0x0) (async) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000200)=0xbf6, 0x4) sendto$inet(r0, 0x0, 0x0, 0x20020080, &(0x7f0000000080)={0x2, 0x4e20}, 0x10) (async) r5 = socket(0x10, 0x3, 0x0) r6 = socket(0x11, 0x800000003, 0x0) bind(r6, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(0xffffffffffffffff, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x2f) sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="4001000024000b0f00e400000000f10febca0746", @ANYRES32=r7, @ANYBLOB="00000000ffffffff000000f6090001006e6574656d00000010010200ca000000b01d84dd3bb3170b"], 0x140}}, 0x0) sendto$inet(r0, &(0x7f0000000580)="8f", 0x20000581, 0x400c040, 0x0, 0x0) 20:16:08 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100035402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:08 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370300018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:08 executing program 2: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100028402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:08 executing program 0: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c10a153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:08 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69941e0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 899.281916][T30619] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 899.299480][T30619] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. [ 899.401734][T30620] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 899.442690][T30620] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 899.469882][T30620] CPU: 0 PID: 30620 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 899.480435][T30620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 899.490599][T30620] Call Trace: [ 899.493891][T30620] [ 899.496835][T30620] dump_stack_lvl+0xcd/0x134 [ 899.501459][T30620] sysfs_warn_dup.cold+0x1c/0x29 [ 899.506424][T30620] sysfs_do_create_link_sd+0x11e/0x140 [ 899.511914][T30620] sysfs_create_link+0x5f/0xc0 [ 899.516710][T30620] device_add+0x789/0x1ee0 [ 899.521155][T30620] ? ieee80211_set_bitrate_flags+0x463/0x650 [ 899.527176][T30620] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 899.533458][T30620] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 899.539728][T30620] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 899.545996][T30620] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 899.552018][T30620] wiphy_register+0x1e86/0x29a0 [ 899.556919][T30620] ? wiphy_unregister+0xbf0/0xbf0 [ 899.561971][T30620] ? minstrel_ht_alloc+0x52c/0xa10 [ 899.567125][T30620] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 899.573231][T30620] ieee80211_register_hw+0x1f16/0x3ed0 [ 899.578731][T30620] ? ieee80211_restart_hw+0x290/0x290 [ 899.584147][T30620] ? debug_object_destroy+0x210/0x210 [ 899.589556][T30620] ? memset+0x20/0x40 [ 899.593562][T30620] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 899.599831][T30620] ? __hrtimer_init+0x136/0x280 [ 899.604714][T30620] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 899.610487][T30620] ? hwsim_virtio_rx_work+0x350/0x350 [ 899.615883][T30620] ? hwsim_new_radio_nl+0x992/0x1080 [ 899.621199][T30620] ? memcpy+0x39/0x60 [ 899.625212][T30620] hwsim_new_radio_nl+0x9bc/0x1080 [ 899.630357][T30620] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 899.636291][T30620] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 899.642573][T30620] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 899.649968][T30620] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 899.657291][T30620] genl_family_rcv_msg_doit+0x228/0x320 [ 899.662868][T30620] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 899.670265][T30620] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 899.676553][T30620] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 899.682822][T30620] ? ns_capable+0xd9/0x100 [ 899.687268][T30620] genl_rcv_msg+0x328/0x580 20:16:08 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc6010003b402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 899.691803][T30620] ? genl_get_cmd+0x480/0x480 [ 899.696504][T30620] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 899.702434][T30620] ? lock_release+0x720/0x720 [ 899.707146][T30620] netlink_rcv_skb+0x153/0x420 [ 899.711946][T30620] ? genl_get_cmd+0x480/0x480 [ 899.716675][T30620] ? netlink_ack+0xa60/0xa60 [ 899.721302][T30620] ? netlink_deliver_tap+0x1b1/0xc30 [ 899.726639][T30620] genl_rcv+0x24/0x40 [ 899.730650][T30620] netlink_unicast+0x539/0x7e0 [ 899.735446][T30620] ? netlink_attachskb+0x880/0x880 [ 899.740570][T30620] ? __virt_addr_valid+0x5d/0x2d0 [ 899.745620][T30620] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 899.751896][T30620] ? __phys_addr_symbol+0x2c/0x70 [ 899.756947][T30620] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 899.762694][T30620] ? __check_object_size+0x16e/0x310 [ 899.768006][T30620] netlink_sendmsg+0x904/0xe00 [ 899.772800][T30620] ? netlink_unicast+0x7e0/0x7e0 [ 899.777772][T30620] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 899.784043][T30620] ? netlink_unicast+0x7e0/0x7e0 [ 899.789005][T30620] sock_sendmsg+0xcf/0x120 [ 899.793454][T30620] ____sys_sendmsg+0x6e8/0x810 [ 899.798245][T30620] ? kernel_sendmsg+0x50/0x50 [ 899.802938][T30620] ? do_recvmmsg+0x6d0/0x6d0 [ 899.807557][T30620] ? lock_chain_count+0x20/0x20 [ 899.812438][T30620] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 899.818445][T30620] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 899.824717][T30620] ? futex_wait+0x533/0x670 [ 899.829253][T30620] ___sys_sendmsg+0xf3/0x170 [ 899.833872][T30620] ? sendmsg_copy_msghdr+0x160/0x160 [ 899.839190][T30620] ? lock_downgrade+0x6e0/0x6e0 [ 899.844085][T30620] ? __fget_files+0x28c/0x470 [ 899.848798][T30620] ? __fget_light+0xea/0x280 [ 899.853415][T30620] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 899.859696][T30620] __sys_sendmsg+0xe5/0x1b0 [ 899.864223][T30620] ? __sys_sendmsg_sock+0x30/0x30 [ 899.869289][T30620] ? syscall_enter_from_user_mode+0x21/0x70 [ 899.875389][T30620] do_syscall_64+0x35/0xb0 [ 899.879829][T30620] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 899.885750][T30620] RIP: 0033:0x7f0982948059 [ 899.890183][T30620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 899.909816][T30620] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 899.918263][T30620] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 899.926256][T30620] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 899.934346][T30620] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 899.942344][T30620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 899.950344][T30620] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 899.958364][T30620] 20:16:09 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994210424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 899.996364][T30628] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.4'. [ 900.001067][T30615] netlink: 'syz-executor.2': attribute type 11 has an invalid length. [ 900.014157][T30615] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.2'. [ 900.173087][T30621] netlink: 147388 bytes leftover after parsing attributes in process `syz-executor.1'. [ 900.199602][T30621] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 900.212935][T30621] CPU: 1 PID: 30621 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 900.223484][T30621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 900.233577][T30621] Call Trace: [ 900.236875][T30621] [ 900.239815][T30621] dump_stack_lvl+0xcd/0x134 [ 900.244432][T30621] sysfs_warn_dup.cold+0x1c/0x29 [ 900.249394][T30621] sysfs_do_create_link_sd+0x11e/0x140 [ 900.254889][T30621] sysfs_create_link+0x5f/0xc0 [ 900.259683][T30621] device_add+0x789/0x1ee0 [ 900.264134][T30621] ? wait_for_completion_io+0x270/0x270 [ 900.269713][T30621] ? lock_downgrade+0x6e0/0x6e0 [ 900.274596][T30621] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 900.281127][T30621] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 900.287393][T30621] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 900.293669][T30621] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 900.299689][T30621] wiphy_register+0x1e86/0x29a0 [ 900.304578][T30621] ? wiphy_unregister+0xbf0/0xbf0 [ 900.309626][T30621] ? minstrel_ht_alloc+0x52c/0xa10 [ 900.314778][T30621] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 20:16:09 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69941e0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 900.320877][T30621] ieee80211_register_hw+0x1f16/0x3ed0 [ 900.326379][T30621] ? ieee80211_restart_hw+0x290/0x290 [ 900.331778][T30621] ? debug_object_destroy+0x210/0x210 [ 900.337186][T30621] ? memset+0x20/0x40 [ 900.341200][T30621] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 900.347477][T30621] ? __hrtimer_init+0x136/0x280 [ 900.352361][T30621] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 900.358118][T30621] ? hwsim_virtio_rx_work+0x350/0x350 [ 900.363486][T30621] ? hwsim_new_radio_nl+0x992/0x1080 [ 900.368772][T30621] ? memcpy+0x39/0x60 [ 900.372754][T30621] hwsim_new_radio_nl+0x9bc/0x1080 [ 900.377866][T30621] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 900.383771][T30621] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 900.390012][T30621] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 900.397377][T30621] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 900.404660][T30621] genl_family_rcv_msg_doit+0x228/0x320 [ 900.410202][T30621] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 900.417570][T30621] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 900.423838][T30621] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 900.430101][T30621] ? ns_capable+0xd9/0x100 [ 900.434514][T30621] genl_rcv_msg+0x328/0x580 [ 900.439022][T30621] ? genl_get_cmd+0x480/0x480 [ 900.443724][T30621] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 900.449620][T30621] ? lock_release+0x720/0x720 [ 900.454295][T30621] netlink_rcv_skb+0x153/0x420 [ 900.459054][T30621] ? genl_get_cmd+0x480/0x480 [ 900.463724][T30621] ? netlink_ack+0xa60/0xa60 [ 900.468312][T30621] ? netlink_deliver_tap+0x1b1/0xc30 [ 900.473594][T30621] genl_rcv+0x24/0x40 [ 900.477566][T30621] netlink_unicast+0x539/0x7e0 [ 900.482329][T30621] ? netlink_attachskb+0x880/0x880 [ 900.487452][T30621] ? __virt_addr_valid+0x5d/0x2d0 [ 900.492498][T30621] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 900.498734][T30621] ? __phys_addr_symbol+0x2c/0x70 [ 900.503755][T30621] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 900.509562][T30621] ? __check_object_size+0x16e/0x310 [ 900.514867][T30621] netlink_sendmsg+0x904/0xe00 [ 900.519631][T30621] ? netlink_unicast+0x7e0/0x7e0 [ 900.524565][T30621] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 900.530801][T30621] ? netlink_unicast+0x7e0/0x7e0 [ 900.535731][T30621] sock_sendmsg+0xcf/0x120 [ 900.540147][T30621] ____sys_sendmsg+0x6e8/0x810 [ 900.544909][T30621] ? kernel_sendmsg+0x50/0x50 [ 900.549588][T30621] ? do_recvmmsg+0x6d0/0x6d0 [ 900.554174][T30621] ? lock_chain_count+0x20/0x20 [ 900.559028][T30621] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 900.565106][T30621] ___sys_sendmsg+0xf3/0x170 [ 900.569717][T30621] ? sendmsg_copy_msghdr+0x160/0x160 [ 900.575000][T30621] ? lock_downgrade+0x6e0/0x6e0 [ 900.579854][T30621] ? __fget_files+0x28c/0x470 [ 900.584532][T30621] ? __fget_light+0xea/0x280 [ 900.589116][T30621] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 900.595364][T30621] __sys_sendmsg+0xe5/0x1b0 [ 900.599881][T30621] ? __sys_sendmsg_sock+0x30/0x30 [ 900.604911][T30621] ? syscall_enter_from_user_mode+0x21/0x70 [ 900.610813][T30621] do_syscall_64+0x35/0xb0 [ 900.615249][T30621] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 900.621150][T30621] RIP: 0033:0x7f4b423c2059 [ 900.625556][T30621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 900.645161][T30621] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 900.653607][T30621] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 900.661568][T30621] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 20:16:09 executing program 2: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100028402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 900.669539][T30621] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 900.677535][T30621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 900.685526][T30621] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 900.693522][T30621] [ 900.718572][T30622] netlink: 'syz-executor.0': attribute type 11 has an invalid length. [ 900.735112][T30622] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.0'. 20:16:09 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 900.767439][T30622] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 900.776649][T30622] CPU: 1 PID: 30622 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 900.787279][T30622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 900.797361][T30622] Call Trace: [ 900.800653][T30622] [ 900.803606][T30622] dump_stack_lvl+0xcd/0x134 [ 900.808229][T30622] sysfs_warn_dup.cold+0x1c/0x29 [ 900.813205][T30622] sysfs_do_create_link_sd+0x11e/0x140 [ 900.818698][T30622] sysfs_create_link+0x5f/0xc0 [ 900.823527][T30622] device_add+0x789/0x1ee0 [ 900.827977][T30622] ? wait_for_completion_io+0x270/0x270 [ 900.833549][T30622] ? lock_downgrade+0x6e0/0x6e0 [ 900.838412][T30622] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 900.844658][T30622] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 900.850942][T30622] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 900.857189][T30622] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 900.863181][T30622] wiphy_register+0x1e86/0x29a0 [ 900.868078][T30622] ? wiphy_unregister+0xbf0/0xbf0 [ 900.873106][T30622] ? minstrel_ht_alloc+0x52c/0xa10 [ 900.878248][T30622] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 900.884346][T30622] ieee80211_register_hw+0x1f16/0x3ed0 [ 900.889817][T30622] ? ieee80211_restart_hw+0x290/0x290 [ 900.895193][T30622] ? debug_object_destroy+0x210/0x210 [ 900.900587][T30622] ? memset+0x20/0x40 [ 900.904593][T30622] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 900.910853][T30622] ? __hrtimer_init+0x136/0x280 [ 900.915708][T30622] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 900.921450][T30622] ? hwsim_virtio_rx_work+0x350/0x350 [ 900.926818][T30622] ? hwsim_new_radio_nl+0x992/0x1080 [ 900.932110][T30622] ? memcpy+0x39/0x60 [ 900.936120][T30622] hwsim_new_radio_nl+0x9bc/0x1080 [ 900.941239][T30622] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 900.947164][T30622] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 900.953405][T30622] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 900.960805][T30622] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 900.968088][T30622] genl_family_rcv_msg_doit+0x228/0x320 [ 900.973640][T30622] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 900.981010][T30622] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 900.987272][T30622] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 900.993531][T30622] ? ns_capable+0xd9/0x100 [ 900.997959][T30622] genl_rcv_msg+0x328/0x580 [ 901.002470][T30622] ? genl_get_cmd+0x480/0x480 [ 901.007154][T30622] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 901.013060][T30622] ? lock_release+0x720/0x720 [ 901.017735][T30622] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 901.023544][T30622] netlink_rcv_skb+0x153/0x420 [ 901.028326][T30622] ? genl_get_cmd+0x480/0x480 [ 901.033007][T30622] ? netlink_ack+0xa60/0xa60 [ 901.037633][T30622] ? netlink_deliver_tap+0x1b1/0xc30 [ 901.042923][T30622] genl_rcv+0x24/0x40 [ 901.046919][T30622] netlink_unicast+0x539/0x7e0 [ 901.051684][T30622] ? netlink_attachskb+0x880/0x880 [ 901.056787][T30622] ? __virt_addr_valid+0x5d/0x2d0 [ 901.061825][T30622] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 901.068069][T30622] ? __phys_addr_symbol+0x2c/0x70 [ 901.073091][T30622] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 901.078893][T30622] ? __check_object_size+0x16e/0x310 [ 901.084285][T30622] netlink_sendmsg+0x904/0xe00 [ 901.089052][T30622] ? netlink_unicast+0x7e0/0x7e0 [ 901.093991][T30622] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 901.100286][T30622] ? netlink_unicast+0x7e0/0x7e0 [ 901.105239][T30622] sock_sendmsg+0xcf/0x120 [ 901.109653][T30622] ____sys_sendmsg+0x6e8/0x810 [ 901.114424][T30622] ? kernel_sendmsg+0x50/0x50 [ 901.119101][T30622] ? do_recvmmsg+0x6d0/0x6d0 [ 901.123723][T30622] ? lock_chain_count+0x20/0x20 [ 901.128575][T30622] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 901.134552][T30622] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 901.140792][T30622] ? futex_wait+0x533/0x670 [ 901.145297][T30622] ___sys_sendmsg+0xf3/0x170 [ 901.149944][T30622] ? sendmsg_copy_msghdr+0x160/0x160 [ 901.155258][T30622] ? lock_downgrade+0x6e0/0x6e0 [ 901.160141][T30622] ? __fget_files+0x28c/0x470 [ 901.164821][T30622] ? __fget_light+0xea/0x280 [ 901.169406][T30622] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 901.175663][T30622] __sys_sendmsg+0xe5/0x1b0 [ 901.180180][T30622] ? __sys_sendmsg_sock+0x30/0x30 [ 901.185224][T30622] ? syscall_enter_from_user_mode+0x21/0x70 [ 901.191149][T30622] do_syscall_64+0x35/0xb0 [ 901.195593][T30622] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 901.201509][T30622] RIP: 0033:0x7ff5c0e31059 [ 901.205923][T30622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 901.225549][T30622] RSP: 002b:00007ff5bf7a6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 901.233965][T30622] RAX: ffffffffffffffda RBX: 00007ff5c0f43f60 RCX: 00007ff5c0e31059 [ 901.241963][T30622] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 901.249955][T30622] RBP: 00007ff5c0e8b08d R08: 0000000000000000 R09: 0000000000000000 [ 901.257944][T30622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 901.265932][T30622] R13: 00007ffd7465ef9f R14: 00007ff5bf7a6300 R15: 0000000000022000 [ 901.273925][T30622] [ 901.301527][T30631] netlink: 'syz-executor.3': attribute type 11 has an invalid length. 20:16:10 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$l2tp6(0xa, 0x2, 0x73) close(r1) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000140)='wlan1\x00', 0x10) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r2, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r2, &(0x7f0000000400)='\t', 0x1, 0x20042041, &(0x7f0000000080)={0xa, 0x0, 0x0, @local}, 0x1c) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f00000002c0)=""/136, 0x88, 0x0, &(0x7f0000000440)=""/206, 0xce}, &(0x7f0000000100)=0x40) poll(&(0x7f0000000000)=[{r2}], 0x1, 0xef) close(r2) 20:16:10 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370348018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 901.313299][T30631] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. 20:16:10 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011022e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 901.432113][T30633] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 901.455444][T30633] CPU: 0 PID: 30633 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 901.466004][T30633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 901.476174][T30633] Call Trace: [ 901.479472][T30633] [ 901.482423][T30633] dump_stack_lvl+0xcd/0x134 [ 901.487045][T30633] sysfs_warn_dup.cold+0x1c/0x29 [ 901.492012][T30633] sysfs_do_create_link_sd+0x11e/0x140 [ 901.497503][T30633] sysfs_create_link+0x5f/0xc0 [ 901.502368][T30633] device_add+0x789/0x1ee0 [ 901.506816][T30633] ? wait_for_completion_io+0x270/0x270 [ 901.512390][T30633] ? lock_downgrade+0x6e0/0x6e0 [ 901.517266][T30633] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 901.523541][T30633] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 901.529809][T30633] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 901.536080][T30633] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 901.542099][T30633] wiphy_register+0x1e86/0x29a0 [ 901.546993][T30633] ? wiphy_unregister+0xbf0/0xbf0 [ 901.552040][T30633] ? minstrel_ht_alloc+0x52c/0xa10 [ 901.557193][T30633] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 901.563293][T30633] ieee80211_register_hw+0x1f16/0x3ed0 [ 901.568797][T30633] ? ieee80211_restart_hw+0x290/0x290 [ 901.574203][T30633] ? debug_object_destroy+0x210/0x210 [ 901.579609][T30633] ? memset+0x20/0x40 [ 901.583613][T30633] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 901.589876][T30633] ? __hrtimer_init+0x136/0x280 [ 901.594757][T30633] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 901.600533][T30633] ? hwsim_virtio_rx_work+0x350/0x350 [ 901.605929][T30633] ? hwsim_new_radio_nl+0x992/0x1080 [ 901.611245][T30633] ? memcpy+0x39/0x60 [ 901.615260][T30633] hwsim_new_radio_nl+0x9bc/0x1080 [ 901.620414][T30633] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 901.626348][T30633] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 901.632622][T30633] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 901.640017][T30633] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 901.647339][T30633] genl_family_rcv_msg_doit+0x228/0x320 [ 901.652917][T30633] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 901.660313][T30633] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 901.666597][T30633] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 901.672869][T30633] ? ns_capable+0xd9/0x100 [ 901.677317][T30633] genl_rcv_msg+0x328/0x580 [ 901.681847][T30633] ? genl_get_cmd+0x480/0x480 [ 901.686558][T30633] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 901.692485][T30633] ? lock_release+0x720/0x720 [ 901.697206][T30633] netlink_rcv_skb+0x153/0x420 [ 901.701995][T30633] ? genl_get_cmd+0x480/0x480 [ 901.706699][T30633] ? netlink_ack+0xa60/0xa60 [ 901.711335][T30633] ? netlink_deliver_tap+0x1b1/0xc30 [ 901.716648][T30633] genl_rcv+0x24/0x40 [ 901.720649][T30633] netlink_unicast+0x539/0x7e0 [ 901.725439][T30633] ? netlink_attachskb+0x880/0x880 [ 901.730567][T30633] ? __virt_addr_valid+0x5d/0x2d0 [ 901.735617][T30633] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 901.741888][T30633] ? __phys_addr_symbol+0x2c/0x70 [ 901.746938][T30633] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 901.752683][T30633] ? __check_object_size+0x16e/0x310 [ 901.757999][T30633] netlink_sendmsg+0x904/0xe00 [ 901.762796][T30633] ? netlink_unicast+0x7e0/0x7e0 [ 901.767764][T30633] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 901.774039][T30633] ? netlink_unicast+0x7e0/0x7e0 [ 901.779003][T30633] sock_sendmsg+0xcf/0x120 [ 901.783447][T30633] ____sys_sendmsg+0x6e8/0x810 [ 901.788241][T30633] ? kernel_sendmsg+0x50/0x50 [ 901.792937][T30633] ? do_recvmmsg+0x6d0/0x6d0 [ 901.797552][T30633] ? lock_chain_count+0x20/0x20 [ 901.802430][T30633] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 901.808446][T30633] ___sys_sendmsg+0xf3/0x170 [ 901.813070][T30633] ? sendmsg_copy_msghdr+0x160/0x160 [ 901.818384][T30633] ? lock_downgrade+0x6e0/0x6e0 [ 901.823277][T30633] ? __fget_files+0x28c/0x470 [ 901.827991][T30633] ? __fget_light+0xea/0x280 [ 901.832607][T30633] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 901.838883][T30633] __sys_sendmsg+0xe5/0x1b0 [ 901.843417][T30633] ? __sys_sendmsg_sock+0x30/0x30 [ 901.848480][T30633] ? syscall_enter_from_user_mode+0x21/0x70 [ 901.854417][T30633] do_syscall_64+0x35/0xb0 [ 901.858865][T30633] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 901.864787][T30633] RIP: 0033:0x7f0982948059 [ 901.869210][T30633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 901.888935][T30633] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 901.897380][T30633] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 901.905372][T30633] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 901.913360][T30633] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 901.921353][T30633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 901.929340][T30633] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 901.937351][T30633] 20:16:10 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) (async) r1 = socket$l2tp6(0xa, 0x2, 0x73) close(r1) (async) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000140)='wlan1\x00', 0x10) (async, rerun: 32) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) (rerun: 32) connect$inet(0xffffffffffffffff, 0x0, 0x0) (async) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) (async) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, 0x0, 0x0) (async) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) (async) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) (async, rerun: 32) sendto$inet6(r2, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) (rerun: 32) sendto$inet6(r2, &(0x7f0000000400)='\t', 0x1, 0x20042041, &(0x7f0000000080)={0xa, 0x0, 0x0, @local}, 0x1c) (async) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f00000002c0)=""/136, 0x88, 0x0, &(0x7f0000000440)=""/206, 0xce}, &(0x7f0000000100)=0x40) (async) poll(&(0x7f0000000000)=[{r2}], 0x1, 0xef) (async, rerun: 32) close(r2) (rerun: 32) 20:16:10 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994220424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 901.981434][T30635] debugfs: Directory '.!' with parent 'ieee80211' already present! 20:16:11 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69941e0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 902.078831][T30637] netlink: 'syz-executor.2': attribute type 11 has an invalid length. 20:16:11 executing program 2: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100028402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 902.171261][T30644] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 902.206117][T30644] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 902.214010][T30644] CPU: 1 PID: 30644 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 902.224548][T30644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 902.234631][T30644] Call Trace: [ 902.237928][T30644] [ 902.240888][T30644] dump_stack_lvl+0xcd/0x134 [ 902.245510][T30644] sysfs_warn_dup.cold+0x1c/0x29 [ 902.250481][T30644] sysfs_do_create_link_sd+0x11e/0x140 [ 902.255977][T30644] sysfs_create_link+0x5f/0xc0 [ 902.260746][T30644] device_add+0x789/0x1ee0 [ 902.265190][T30644] ? wait_for_completion_io+0x270/0x270 [ 902.270740][T30644] ? lock_downgrade+0x6e0/0x6e0 [ 902.275590][T30644] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 902.281839][T30644] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 902.288105][T30644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 902.294371][T30644] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 902.300368][T30644] wiphy_register+0x1e86/0x29a0 [ 902.305254][T30644] ? wiphy_unregister+0xbf0/0xbf0 [ 902.310291][T30644] ? minstrel_ht_alloc+0x52c/0xa10 [ 902.315439][T30644] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 902.321518][T30644] ieee80211_register_hw+0x1f16/0x3ed0 [ 902.327008][T30644] ? ieee80211_restart_hw+0x290/0x290 [ 902.332404][T30644] ? debug_object_destroy+0x210/0x210 [ 902.337784][T30644] ? memset+0x20/0x40 [ 902.341762][T30644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 902.348010][T30644] ? __hrtimer_init+0x136/0x280 [ 902.352869][T30644] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 902.358626][T30644] ? hwsim_virtio_rx_work+0x350/0x350 [ 902.364004][T30644] ? hwsim_new_radio_nl+0x992/0x1080 [ 902.369288][T30644] ? memcpy+0x39/0x60 [ 902.373282][T30644] hwsim_new_radio_nl+0x9bc/0x1080 [ 902.378404][T30644] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 902.384306][T30644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 902.390569][T30644] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 902.397967][T30644] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 902.405284][T30644] genl_family_rcv_msg_doit+0x228/0x320 [ 902.410860][T30644] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 902.418251][T30644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 902.424505][T30644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 902.430764][T30644] ? ns_capable+0xd9/0x100 [ 902.435186][T30644] genl_rcv_msg+0x328/0x580 [ 902.439708][T30644] ? genl_get_cmd+0x480/0x480 [ 902.444387][T30644] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 902.450279][T30644] ? lock_release+0x720/0x720 [ 902.454967][T30644] netlink_rcv_skb+0x153/0x420 [ 902.459742][T30644] ? genl_get_cmd+0x480/0x480 [ 902.464424][T30644] ? netlink_ack+0xa60/0xa60 [ 902.469047][T30644] ? netlink_deliver_tap+0x1b1/0xc30 [ 902.474339][T30644] genl_rcv+0x24/0x40 [ 902.478319][T30644] netlink_unicast+0x539/0x7e0 [ 902.483088][T30644] ? netlink_attachskb+0x880/0x880 [ 902.488193][T30644] ? __virt_addr_valid+0x5d/0x2d0 [ 902.493223][T30644] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 902.499490][T30644] ? __phys_addr_symbol+0x2c/0x70 [ 902.504509][T30644] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 902.510245][T30644] ? __check_object_size+0x16e/0x310 [ 902.515565][T30644] netlink_sendmsg+0x904/0xe00 [ 902.520354][T30644] ? netlink_unicast+0x7e0/0x7e0 [ 902.525301][T30644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 902.531560][T30644] ? netlink_unicast+0x7e0/0x7e0 [ 902.536494][T30644] sock_sendmsg+0xcf/0x120 [ 902.540908][T30644] ____sys_sendmsg+0x6e8/0x810 [ 902.545671][T30644] ? kernel_sendmsg+0x50/0x50 [ 902.550354][T30644] ? do_recvmmsg+0x6d0/0x6d0 [ 902.554966][T30644] ? lock_chain_count+0x20/0x20 [ 902.559837][T30644] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 902.565836][T30644] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 902.572086][T30644] ? futex_wait+0x533/0x670 [ 902.576591][T30644] ___sys_sendmsg+0xf3/0x170 [ 902.581179][T30644] ? sendmsg_copy_msghdr+0x160/0x160 [ 902.586489][T30644] ? lock_downgrade+0x6e0/0x6e0 [ 902.591363][T30644] ? __fget_files+0x28c/0x470 [ 902.596044][T30644] ? __fget_light+0xea/0x280 [ 902.600637][T30644] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 902.606890][T30644] __sys_sendmsg+0xe5/0x1b0 [ 902.611422][T30644] ? __sys_sendmsg_sock+0x30/0x30 [ 902.616488][T30644] ? syscall_enter_from_user_mode+0x21/0x70 [ 902.622408][T30644] do_syscall_64+0x35/0xb0 [ 902.626832][T30644] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 902.632920][T30644] RIP: 0033:0x7f4b423c2059 [ 902.637340][T30644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 902.656972][T30644] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 902.665410][T30644] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 902.673379][T30644] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 902.681351][T30644] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 902.689337][T30644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 902.697326][T30644] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 902.705329][T30644] 20:16:11 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) (async) r1 = socket$l2tp6(0xa, 0x2, 0x73) close(r1) (async) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000140)='wlan1\x00', 0x10) (async) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) (async) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) (async) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) (async) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) (async) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) (async) sendto$inet6(r2, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) (async) sendto$inet6(r2, &(0x7f0000000400)='\t', 0x1, 0x20042041, &(0x7f0000000080)={0xa, 0x0, 0x0, @local}, 0x1c) (async) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f00000002c0)=""/136, 0x88, 0x0, &(0x7f0000000440)=""/206, 0xce}, &(0x7f0000000100)=0x40) poll(&(0x7f0000000000)=[{r2}], 0x1, 0xef) (async) close(r2) [ 902.741162][T30647] netlink: 'syz-executor.3': attribute type 11 has an invalid length. 20:16:11 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370448018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:11 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011032e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 902.850991][T30653] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 902.875482][T30653] CPU: 0 PID: 30653 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 902.886033][T30653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 902.896111][T30653] Call Trace: [ 902.899496][T30653] [ 902.902445][T30653] dump_stack_lvl+0xcd/0x134 [ 902.907075][T30653] sysfs_warn_dup.cold+0x1c/0x29 [ 902.912091][T30653] sysfs_do_create_link_sd+0x11e/0x140 [ 902.917591][T30653] sysfs_create_link+0x5f/0xc0 [ 902.922390][T30653] device_add+0x789/0x1ee0 [ 902.926842][T30653] ? wait_for_completion_io+0x270/0x270 [ 902.932421][T30653] ? lock_downgrade+0x6e0/0x6e0 [ 902.937311][T30653] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 902.943581][T30653] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 20:16:11 executing program 0: bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) r1 = socket$packet(0x11, 0x3, 0x300) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r2, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r2, 0xffffffffffffffbc, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f21c4d3649a9bf5, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff7f, 0x0, 0x0, 0x0, 0x0}}, 0x10) r4 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r3}, 0x4) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r4, 0x4) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @multicast1}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x4000000000001a8, 0x0) [ 902.949854][T30653] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 902.956124][T30653] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 902.962149][T30653] wiphy_register+0x1e86/0x29a0 [ 902.967126][T30653] ? wiphy_unregister+0xbf0/0xbf0 [ 902.972175][T30653] ? minstrel_ht_alloc+0x52c/0xa10 [ 902.977336][T30653] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 902.983441][T30653] ieee80211_register_hw+0x1f16/0x3ed0 [ 902.988960][T30653] ? ieee80211_restart_hw+0x290/0x290 [ 902.994367][T30653] ? debug_object_destroy+0x210/0x210 [ 902.999777][T30653] ? memset+0x20/0x40 [ 903.003788][T30653] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 903.010067][T30653] ? __hrtimer_init+0x136/0x280 [ 903.014956][T30653] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 903.020731][T30653] ? hwsim_virtio_rx_work+0x350/0x350 [ 903.026131][T30653] ? hwsim_new_radio_nl+0x992/0x1080 [ 903.031447][T30653] ? memcpy+0x39/0x60 [ 903.035465][T30653] hwsim_new_radio_nl+0x9bc/0x1080 [ 903.040615][T30653] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 903.046548][T30653] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 903.052817][T30653] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 903.060218][T30653] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 903.067555][T30653] genl_family_rcv_msg_doit+0x228/0x320 [ 903.073130][T30653] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 903.080527][T30653] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 903.086809][T30653] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 903.093088][T30653] ? ns_capable+0xd9/0x100 [ 903.097536][T30653] genl_rcv_msg+0x328/0x580 [ 903.102071][T30653] ? genl_get_cmd+0x480/0x480 [ 903.106773][T30653] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 903.112695][T30653] ? lock_release+0x720/0x720 [ 903.117393][T30653] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 903.123229][T30653] netlink_rcv_skb+0x153/0x420 [ 903.128016][T30653] ? genl_get_cmd+0x480/0x480 [ 903.132716][T30653] ? netlink_ack+0xa60/0xa60 [ 903.137338][T30653] ? netlink_deliver_tap+0x1b1/0xc30 [ 903.142650][T30653] genl_rcv+0x24/0x40 [ 903.146649][T30653] netlink_unicast+0x539/0x7e0 [ 903.151441][T30653] ? netlink_attachskb+0x880/0x880 [ 903.156577][T30653] ? __virt_addr_valid+0x5d/0x2d0 [ 903.161637][T30653] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 903.167906][T30653] ? __phys_addr_symbol+0x2c/0x70 [ 903.172952][T30653] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 903.178698][T30653] ? __check_object_size+0x16e/0x310 [ 903.184011][T30653] netlink_sendmsg+0x904/0xe00 [ 903.188809][T30653] ? netlink_unicast+0x7e0/0x7e0 [ 903.193781][T30653] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 20:16:12 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011042e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 903.200093][T30653] ? netlink_unicast+0x7e0/0x7e0 [ 903.205074][T30653] sock_sendmsg+0xcf/0x120 [ 903.209523][T30653] ____sys_sendmsg+0x6e8/0x810 [ 903.214325][T30653] ? kernel_sendmsg+0x50/0x50 [ 903.219034][T30653] ? do_recvmmsg+0x6d0/0x6d0 [ 903.223658][T30653] ? lock_chain_count+0x20/0x20 [ 903.228540][T30653] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 903.234602][T30653] ___sys_sendmsg+0xf3/0x170 [ 903.239222][T30653] ? sendmsg_copy_msghdr+0x160/0x160 [ 903.244539][T30653] ? lock_downgrade+0x6e0/0x6e0 [ 903.249429][T30653] ? __fget_files+0x28c/0x470 [ 903.254148][T30653] ? __fget_light+0xea/0x280 [ 903.258763][T30653] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 903.265040][T30653] __sys_sendmsg+0xe5/0x1b0 [ 903.269570][T30653] ? __sys_sendmsg_sock+0x30/0x30 [ 903.274621][T30653] ? syscall_enter_from_user_mode+0x21/0x70 [ 903.280523][T30653] do_syscall_64+0x35/0xb0 [ 903.284957][T30653] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 903.290860][T30653] RIP: 0033:0x7f0982948059 [ 903.295296][T30653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 903.314927][T30653] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 903.323371][T30653] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 903.331366][T30653] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 903.339357][T30653] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 903.347349][T30653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 903.355338][T30653] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 903.363348][T30653] 20:16:12 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011052e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:12 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994230424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 903.405227][T30657] __nla_validate_parse: 6 callbacks suppressed [ 903.405247][T30657] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.4'. [ 903.450307][T30657] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 903.477864][T30657] CPU: 1 PID: 30657 Comm: syz-executor.4 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 903.488428][T30657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 20:16:12 executing program 0: bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) (async) r1 = socket$packet(0x11, 0x3, 0x300) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r2, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r2, 0xffffffffffffffbc, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f21c4d3649a9bf5, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff7f, 0x0, 0x0, 0x0, 0x0}}, 0x10) r4 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r3}, 0x4) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r4, 0x4) (async) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @multicast1}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x4000000000001a8, 0x0) [ 903.498505][T30657] Call Trace: [ 903.501800][T30657] [ 903.504744][T30657] dump_stack_lvl+0xcd/0x134 [ 903.509369][T30657] sysfs_warn_dup.cold+0x1c/0x29 [ 903.514339][T30657] sysfs_do_create_link_sd+0x11e/0x140 [ 903.519834][T30657] sysfs_create_link+0x5f/0xc0 [ 903.524637][T30657] device_add+0x789/0x1ee0 [ 903.529092][T30657] ? wait_for_completion_io+0x270/0x270 [ 903.534669][T30657] ? lock_downgrade+0x6e0/0x6e0 [ 903.539553][T30657] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 903.545813][T30657] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 903.552072][T30657] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 903.558325][T30657] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 903.564329][T30657] wiphy_register+0x1e86/0x29a0 [ 903.569205][T30657] ? wiphy_unregister+0xbf0/0xbf0 [ 903.574235][T30657] ? minstrel_ht_alloc+0x52c/0xa10 [ 903.579371][T30657] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 903.585458][T30657] ieee80211_register_hw+0x1f16/0x3ed0 [ 903.590946][T30657] ? ieee80211_restart_hw+0x290/0x290 [ 903.596332][T30657] ? debug_object_destroy+0x210/0x210 [ 903.601722][T30657] ? memset+0x20/0x40 [ 903.605730][T30657] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 903.611981][T30657] ? __hrtimer_init+0x136/0x280 [ 903.616853][T30657] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 903.622605][T30657] ? hwsim_virtio_rx_work+0x350/0x350 [ 903.627989][T30657] ? hwsim_new_radio_nl+0x992/0x1080 [ 903.633286][T30657] ? memcpy+0x39/0x60 [ 903.637284][T30657] hwsim_new_radio_nl+0x9bc/0x1080 [ 903.642411][T30657] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 903.648327][T30657] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 903.654578][T30657] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 903.661963][T30657] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 903.669263][T30657] genl_family_rcv_msg_doit+0x228/0x320 [ 903.674823][T30657] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 903.682207][T30657] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 903.688475][T30657] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 903.694730][T30657] ? ns_capable+0xd9/0x100 [ 903.699161][T30657] genl_rcv_msg+0x328/0x580 [ 903.703680][T30657] ? genl_get_cmd+0x480/0x480 [ 903.708370][T30657] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 903.714285][T30657] ? lock_release+0x720/0x720 [ 903.718982][T30657] netlink_rcv_skb+0x153/0x420 [ 903.723752][T30657] ? genl_get_cmd+0x480/0x480 [ 903.728444][T30657] ? netlink_ack+0xa60/0xa60 [ 903.733055][T30657] ? netlink_deliver_tap+0x1b1/0xc30 [ 903.738354][T30657] genl_rcv+0x24/0x40 [ 903.742344][T30657] netlink_unicast+0x539/0x7e0 [ 903.747126][T30657] ? netlink_attachskb+0x880/0x880 [ 903.752241][T30657] ? __virt_addr_valid+0x5d/0x2d0 [ 903.757283][T30657] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 903.763535][T30657] ? __phys_addr_symbol+0x2c/0x70 [ 903.768568][T30657] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 903.774299][T30657] ? __check_object_size+0x16e/0x310 [ 903.779598][T30657] netlink_sendmsg+0x904/0xe00 [ 903.784378][T30657] ? netlink_unicast+0x7e0/0x7e0 [ 903.789327][T30657] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 903.795585][T30657] ? netlink_unicast+0x7e0/0x7e0 [ 903.800535][T30657] sock_sendmsg+0xcf/0x120 [ 903.804963][T30657] ____sys_sendmsg+0x6e8/0x810 [ 903.809737][T30657] ? kernel_sendmsg+0x50/0x50 [ 903.814423][T30657] ? do_recvmmsg+0x6d0/0x6d0 [ 903.819026][T30657] ? lock_chain_count+0x20/0x20 [ 903.823900][T30657] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 903.829900][T30657] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 903.836159][T30657] ? futex_wait+0x533/0x670 [ 903.840678][T30657] ___sys_sendmsg+0xf3/0x170 [ 903.845285][T30657] ? sendmsg_copy_msghdr+0x160/0x160 [ 903.850589][T30657] ? lock_downgrade+0x6e0/0x6e0 [ 903.855464][T30657] ? __fget_files+0x28c/0x470 [ 903.860181][T30657] ? __fget_light+0xea/0x280 [ 903.864785][T30657] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 903.871056][T30657] __sys_sendmsg+0xe5/0x1b0 [ 903.875586][T30657] ? __sys_sendmsg_sock+0x30/0x30 [ 903.880648][T30657] ? syscall_enter_from_user_mode+0x21/0x70 [ 903.886569][T30657] do_syscall_64+0x35/0xb0 [ 903.891004][T30657] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 903.896914][T30657] RIP: 0033:0x7f840d47b059 [ 903.901340][T30657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 903.920980][T30657] RSP: 002b:00007f840bdf0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 903.929397][T30657] RAX: ffffffffffffffda RBX: 00007f840d58df60 RCX: 00007f840d47b059 [ 903.937386][T30657] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 903.945377][T30657] RBP: 00007f840d4d508d R08: 0000000000000000 R09: 0000000000000000 [ 903.953363][T30657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 903.961353][T30657] R13: 00007ffc2e2100cf R14: 00007f840bdf0300 R15: 0000000000022000 [ 903.969351][T30657] 20:16:12 executing program 0: bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) (async) r1 = socket$packet(0x11, 0x3, 0x300) (async, rerun: 64) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48) (rerun: 64) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x28011, r2, 0x0) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r2, 0xffffffffffffffbc, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f21c4d3649a9bf5, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff7f, 0x0, 0x0, 0x0, 0x0}}, 0x10) r4 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r3}, 0x4) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r4, 0x4) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @multicast1}, 0x10) (async) sendmmsg(r0, &(0x7f0000007fc0), 0x4000000000001a8, 0x0) 20:16:13 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69941e0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 904.138728][T30659] netlink: 'syz-executor.2': attribute type 11 has an invalid length. [ 904.151130][T30659] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.2'. 20:16:13 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[], 0x24}}, 0x0) getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=ANY=[@ANYBLOB="3000000024000b0f00"/20, @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00gress\x00\x00\x00'], 0x30}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0xc}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0) [ 904.258579][T30665] netlink: 'syz-executor.1': attribute type 11 has an invalid length. 20:16:13 executing program 2: unshare(0x6c060000) r0 = socket$vsock_stream(0x28, 0x1, 0x0) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c) connect$vsock_stream(r0, &(0x7f0000000180)={0x28, 0x0, 0x0, @hyper}, 0x10) connect$inet6(r1, &(0x7f0000004540)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c) getsockopt$inet6_int(r1, 0x29, 0x18, 0x0, &(0x7f00000001c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x8031, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r0, 0x28, 0x2, &(0x7f0000000200), 0x8) [ 904.303473][T30693] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 904.317655][T30665] netlink: 128952 bytes leftover after parsing attributes in process `syz-executor.1'. 20:16:13 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) (async) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[], 0x24}}, 0x0) getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) (async) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=ANY=[@ANYBLOB="3000000024000b0f00"/20, @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00gress\x00\x00\x00'], 0x30}}, 0x0) (async) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0xc}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async) r3 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0) [ 904.372309][T30694] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 904.389854][T30665] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 904.409707][T30665] CPU: 0 PID: 30665 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 904.420259][T30665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 904.430335][T30665] Call Trace: [ 904.433636][T30665] [ 904.436587][T30665] dump_stack_lvl+0xcd/0x134 [ 904.441212][T30665] sysfs_warn_dup.cold+0x1c/0x29 [ 904.446180][T30665] sysfs_do_create_link_sd+0x11e/0x140 [ 904.451673][T30665] sysfs_create_link+0x5f/0xc0 [ 904.456472][T30665] device_add+0x789/0x1ee0 [ 904.460925][T30665] ? wait_for_completion_io+0x270/0x270 [ 904.466503][T30665] ? lock_downgrade+0x6e0/0x6e0 [ 904.471392][T30665] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 904.477674][T30665] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 904.483948][T30665] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 904.490223][T30665] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 904.496248][T30665] wiphy_register+0x1e86/0x29a0 [ 904.501143][T30665] ? wiphy_unregister+0xbf0/0xbf0 [ 904.506199][T30665] ? minstrel_ht_alloc+0x52c/0xa10 [ 904.511356][T30665] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 904.517471][T30665] ieee80211_register_hw+0x1f16/0x3ed0 [ 904.522977][T30665] ? ieee80211_restart_hw+0x290/0x290 [ 904.528385][T30665] ? debug_object_destroy+0x210/0x210 [ 904.533793][T30665] ? memset+0x20/0x40 [ 904.537796][T30665] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 904.544070][T30665] ? __hrtimer_init+0x136/0x280 [ 904.548952][T30665] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 904.554722][T30665] ? hwsim_virtio_rx_work+0x350/0x350 [ 904.560141][T30665] ? hwsim_new_radio_nl+0x992/0x1080 [ 904.565454][T30665] ? memcpy+0x39/0x60 [ 904.569473][T30665] hwsim_new_radio_nl+0x9bc/0x1080 [ 904.574704][T30665] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 904.580639][T30665] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 904.586908][T30665] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 904.594304][T30665] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 904.601641][T30665] genl_family_rcv_msg_doit+0x228/0x320 [ 904.607218][T30665] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 904.614618][T30665] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 904.620899][T30665] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 904.627169][T30665] ? ns_capable+0xd9/0x100 [ 904.631618][T30665] genl_rcv_msg+0x328/0x580 [ 904.636154][T30665] ? genl_get_cmd+0x480/0x480 [ 904.640856][T30665] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 904.646779][T30665] ? lock_release+0x720/0x720 [ 904.651459][T30665] netlink_rcv_skb+0x153/0x420 [ 904.656230][T30665] ? genl_get_cmd+0x480/0x480 [ 904.660917][T30665] ? netlink_ack+0xa60/0xa60 [ 904.665520][T30665] ? netlink_deliver_tap+0x1b1/0xc30 [ 904.670832][T30665] genl_rcv+0x24/0x40 [ 904.674837][T30665] netlink_unicast+0x539/0x7e0 [ 904.679629][T30665] ? netlink_attachskb+0x880/0x880 [ 904.684760][T30665] ? __virt_addr_valid+0x5d/0x2d0 [ 904.689816][T30665] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 904.696112][T30665] ? __phys_addr_symbol+0x2c/0x70 [ 904.701165][T30665] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 904.706916][T30665] ? __check_object_size+0x16e/0x310 [ 904.712235][T30665] netlink_sendmsg+0x904/0xe00 [ 904.717037][T30665] ? netlink_unicast+0x7e0/0x7e0 [ 904.722010][T30665] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 904.728295][T30665] ? netlink_unicast+0x7e0/0x7e0 [ 904.733258][T30665] sock_sendmsg+0xcf/0x120 [ 904.737700][T30665] ____sys_sendmsg+0x6e8/0x810 [ 904.742491][T30665] ? kernel_sendmsg+0x50/0x50 [ 904.747189][T30665] ? do_recvmmsg+0x6d0/0x6d0 [ 904.751807][T30665] ? lock_chain_count+0x20/0x20 [ 904.756692][T30665] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 904.762711][T30665] ___sys_sendmsg+0xf3/0x170 [ 904.767336][T30665] ? sendmsg_copy_msghdr+0x160/0x160 [ 904.772662][T30665] ? lock_downgrade+0x6e0/0x6e0 [ 904.777565][T30665] ? __fget_files+0x28c/0x470 [ 904.782286][T30665] ? __fget_light+0xea/0x280 [ 904.786911][T30665] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 904.793194][T30665] __sys_sendmsg+0xe5/0x1b0 [ 904.797732][T30665] ? __sys_sendmsg_sock+0x30/0x30 [ 904.802800][T30665] ? syscall_enter_from_user_mode+0x21/0x70 [ 904.808728][T30665] do_syscall_64+0x35/0xb0 [ 904.813174][T30665] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 904.819109][T30665] RIP: 0033:0x7f4b423c2059 [ 904.823547][T30665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 904.843183][T30665] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 904.851625][T30665] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 904.859616][T30665] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 904.867610][T30665] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 904.875604][T30665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 904.883601][T30665] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 904.891612][T30665] [ 904.906157][T30699] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 904.939825][T30678] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 904.953490][T30678] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. 20:16:13 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370548018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:13 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) (async) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[], 0x24}}, 0x0) (async) getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) (async) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=ANY=[@ANYBLOB="3000000024000b0f00"/20, @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00gress\x00\x00\x00'], 0x30}}, 0x0) (async) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0xc}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async) r3 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0) [ 905.055805][T30707] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 905.098371][T30706] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 905.154066][T30683] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 905.167246][T30683] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 905.174914][T30683] CPU: 0 PID: 30683 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 905.185457][T30683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 905.195538][T30683] Call Trace: [ 905.198845][T30683] [ 905.201796][T30683] dump_stack_lvl+0xcd/0x134 [ 905.206421][T30683] sysfs_warn_dup.cold+0x1c/0x29 [ 905.211383][T30683] sysfs_do_create_link_sd+0x11e/0x140 [ 905.216881][T30683] sysfs_create_link+0x5f/0xc0 [ 905.221680][T30683] device_add+0x789/0x1ee0 [ 905.226132][T30683] ? wait_for_completion_io+0x270/0x270 [ 905.231695][T30683] ? minstrel_ht_alloc+0x4b/0xa10 [ 905.236732][T30683] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 905.242988][T30683] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 905.249240][T30683] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 905.255495][T30683] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 905.261514][T30683] wiphy_register+0x1e86/0x29a0 [ 905.266393][T30683] ? wiphy_unregister+0xbf0/0xbf0 [ 905.271429][T30683] ? minstrel_ht_alloc+0x52c/0xa10 [ 905.276565][T30683] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 905.282650][T30683] ieee80211_register_hw+0x1f16/0x3ed0 [ 905.288137][T30683] ? ieee80211_restart_hw+0x290/0x290 [ 905.293526][T30683] ? debug_object_destroy+0x210/0x210 [ 905.298914][T30683] ? memset+0x20/0x40 [ 905.302906][T30683] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 905.309171][T30683] ? __hrtimer_init+0x136/0x280 [ 905.314038][T30683] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 905.319792][T30683] ? hwsim_virtio_rx_work+0x350/0x350 [ 905.325174][T30683] ? hwsim_new_radio_nl+0x992/0x1080 [ 905.330473][T30683] ? memcpy+0x39/0x60 [ 905.334468][T30683] hwsim_new_radio_nl+0x9bc/0x1080 [ 905.339598][T30683] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 905.345520][T30683] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 905.351772][T30683] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 905.359157][T30683] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 905.366456][T30683] genl_family_rcv_msg_doit+0x228/0x320 [ 905.372015][T30683] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 905.379401][T30683] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 905.385664][T30683] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 905.391918][T30683] ? ns_capable+0xd9/0x100 [ 905.396348][T30683] genl_rcv_msg+0x328/0x580 [ 905.400871][T30683] ? genl_get_cmd+0x480/0x480 [ 905.405561][T30683] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 905.411475][T30683] ? lock_release+0x720/0x720 [ 905.416170][T30683] netlink_rcv_skb+0x153/0x420 [ 905.420947][T30683] ? genl_get_cmd+0x480/0x480 [ 905.425644][T30683] ? netlink_ack+0xa60/0xa60 [ 905.430248][T30683] ? netlink_deliver_tap+0x1b1/0xc30 [ 905.435550][T30683] genl_rcv+0x24/0x40 [ 905.439541][T30683] netlink_unicast+0x539/0x7e0 [ 905.444323][T30683] ? netlink_attachskb+0x880/0x880 [ 905.449447][T30683] ? __virt_addr_valid+0x5d/0x2d0 [ 905.454482][T30683] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 905.460736][T30683] ? __phys_addr_symbol+0x2c/0x70 [ 905.465770][T30683] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 905.471502][T30683] ? __check_object_size+0x16e/0x310 [ 905.476802][T30683] netlink_sendmsg+0x904/0xe00 [ 905.481591][T30683] ? netlink_unicast+0x7e0/0x7e0 [ 905.486562][T30683] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 905.492821][T30683] ? netlink_unicast+0x7e0/0x7e0 [ 905.497772][T30683] sock_sendmsg+0xcf/0x120 [ 905.502203][T30683] ____sys_sendmsg+0x6e8/0x810 [ 905.506981][T30683] ? kernel_sendmsg+0x50/0x50 [ 905.511664][T30683] ? do_recvmmsg+0x6d0/0x6d0 [ 905.516266][T30683] ? lock_chain_count+0x20/0x20 [ 905.521134][T30683] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 905.527130][T30683] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 905.533385][T30683] ? futex_wait+0x533/0x670 [ 905.537909][T30683] ___sys_sendmsg+0xf3/0x170 [ 905.542510][T30683] ? sendmsg_copy_msghdr+0x160/0x160 [ 905.547809][T30683] ? lock_downgrade+0x6e0/0x6e0 [ 905.552686][T30683] ? __fget_files+0x28c/0x470 [ 905.557393][T30683] ? __fget_light+0xea/0x280 [ 905.561998][T30683] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 905.568258][T30683] __sys_sendmsg+0xe5/0x1b0 [ 905.572773][T30683] ? __sys_sendmsg_sock+0x30/0x30 [ 905.577825][T30683] ? syscall_enter_from_user_mode+0x21/0x70 [ 905.583738][T30683] do_syscall_64+0x35/0xb0 [ 905.588165][T30683] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 905.594072][T30683] RIP: 0033:0x7f0982948059 [ 905.598490][T30683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 905.618105][T30683] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 905.626529][T30683] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 905.634507][T30683] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 905.642484][T30683] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 20:16:14 executing program 0: unshare(0x6c060000) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept4$netrom(r0, 0x0, &(0x7f0000000200), 0x80000) splice(r0, &(0x7f00000001c0)=0x8, r2, &(0x7f0000000240)=0xffffffffffff9a4d, 0x7, 0x2) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) socket(0x0, 0x0, 0x0) r4 = socket(0x11, 0x0, 0x0) bind(r4, &(0x7f0000000080)=@generic={0x2a, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r4, 0x0, &(0x7f0000000180)) sendto$inet6(r3, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'}) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x400c058}, 0xc011) accept4(r5, &(0x7f0000000100)=@ethernet, &(0x7f0000000040)=0x80, 0x800) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0xc5, 0x0, 0x0) shutdown(r3, 0x1) splice(r3, 0x0, r1, 0x0, 0x406f408, 0x0) unshare(0x4020400) 20:16:14 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011062e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 905.650458][T30683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 905.658429][T30683] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 905.666423][T30683] 20:16:14 executing program 2: unshare(0x6c060000) r0 = socket$vsock_stream(0x28, 0x1, 0x0) (async) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c) connect$vsock_stream(r0, &(0x7f0000000180)={0x28, 0x0, 0x0, @hyper}, 0x10) connect$inet6(r1, &(0x7f0000004540)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c) getsockopt$inet6_int(r1, 0x29, 0x18, 0x0, &(0x7f00000001c0)) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x8031, 0xffffffffffffffff, 0x0) (async) socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r0, 0x28, 0x2, &(0x7f0000000200), 0x8) [ 905.872373][T30691] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 905.886991][T30691] CPU: 1 PID: 30691 Comm: syz-executor.4 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 905.897539][T30691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 905.907616][T30691] Call Trace: [ 905.910916][T30691] [ 905.913847][T30691] dump_stack_lvl+0xcd/0x134 [ 905.918451][T30691] sysfs_warn_dup.cold+0x1c/0x29 [ 905.923399][T30691] sysfs_do_create_link_sd+0x11e/0x140 [ 905.928869][T30691] sysfs_create_link+0x5f/0xc0 [ 905.933644][T30691] device_add+0x789/0x1ee0 [ 905.938063][T30691] ? wait_for_completion_io+0x270/0x270 [ 905.943622][T30691] ? minstrel_ht_alloc+0x4b/0xa10 [ 905.948649][T30691] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 905.954889][T30691] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 905.961142][T30691] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 905.967388][T30691] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 905.973398][T30691] wiphy_register+0x1e86/0x29a0 [ 905.978274][T30691] ? wiphy_unregister+0xbf0/0xbf0 [ 905.983389][T30691] ? minstrel_ht_alloc+0x52c/0xa10 [ 905.988528][T30691] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 905.994606][T30691] ieee80211_register_hw+0x1f16/0x3ed0 [ 906.000079][T30691] ? ieee80211_restart_hw+0x290/0x290 [ 906.005451][T30691] ? debug_object_destroy+0x210/0x210 [ 906.010835][T30691] ? memset+0x20/0x40 [ 906.014916][T30691] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 906.021155][T30691] ? __hrtimer_init+0x136/0x280 [ 906.026019][T30691] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 906.031752][T30691] ? hwsim_virtio_rx_work+0x350/0x350 [ 906.037121][T30691] ? hwsim_new_radio_nl+0x992/0x1080 [ 906.042423][T30691] ? memcpy+0x39/0x60 [ 906.046410][T30691] hwsim_new_radio_nl+0x9bc/0x1080 [ 906.051530][T30691] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 906.057446][T30691] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 906.063690][T30691] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 906.071063][T30691] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 906.078376][T30691] genl_family_rcv_msg_doit+0x228/0x320 [ 906.083928][T30691] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 906.091294][T30691] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 906.097547][T30691] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 906.103786][T30691] ? ns_capable+0xd9/0x100 [ 906.108203][T30691] genl_rcv_msg+0x328/0x580 [ 906.112715][T30691] ? genl_get_cmd+0x480/0x480 [ 906.117389][T30691] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 906.123309][T30691] ? lock_release+0x720/0x720 [ 906.127987][T30691] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 906.133838][T30691] netlink_rcv_skb+0x153/0x420 [ 906.138605][T30691] ? genl_get_cmd+0x480/0x480 [ 906.143285][T30691] ? netlink_ack+0xa60/0xa60 [ 906.147896][T30691] ? netlink_deliver_tap+0x1b1/0xc30 [ 906.153222][T30691] genl_rcv+0x24/0x40 [ 906.157272][T30691] netlink_unicast+0x539/0x7e0 [ 906.162035][T30691] ? netlink_attachskb+0x880/0x880 [ 906.167143][T30691] ? __virt_addr_valid+0x5d/0x2d0 [ 906.172166][T30691] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 906.178415][T30691] ? __phys_addr_symbol+0x2c/0x70 [ 906.183464][T30691] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 906.189220][T30691] ? __check_object_size+0x16e/0x310 [ 906.194540][T30691] netlink_sendmsg+0x904/0xe00 [ 906.199337][T30691] ? netlink_unicast+0x7e0/0x7e0 [ 906.204316][T30691] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 906.210599][T30691] ? netlink_unicast+0x7e0/0x7e0 [ 906.215566][T30691] sock_sendmsg+0xcf/0x120 [ 906.220009][T30691] ____sys_sendmsg+0x6e8/0x810 [ 906.224804][T30691] ? kernel_sendmsg+0x50/0x50 [ 906.229501][T30691] ? do_recvmmsg+0x6d0/0x6d0 [ 906.234118][T30691] ? lock_chain_count+0x20/0x20 [ 906.239014][T30691] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 906.245054][T30691] ___sys_sendmsg+0xf3/0x170 [ 906.249674][T30691] ? sendmsg_copy_msghdr+0x160/0x160 [ 906.254993][T30691] ? lock_downgrade+0x6e0/0x6e0 [ 906.259892][T30691] ? __fget_files+0x28c/0x470 [ 906.264607][T30691] ? __fget_light+0xea/0x280 [ 906.269231][T30691] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 906.275509][T30691] __sys_sendmsg+0xe5/0x1b0 [ 906.280048][T30691] ? __sys_sendmsg_sock+0x30/0x30 [ 906.285121][T30691] ? syscall_enter_from_user_mode+0x21/0x70 [ 906.291063][T30691] do_syscall_64+0x35/0xb0 [ 906.295507][T30691] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 906.301437][T30691] RIP: 0033:0x7f840d47b059 [ 906.305875][T30691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 906.325511][T30691] RSP: 002b:00007f840bdf0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 906.333954][T30691] RAX: ffffffffffffffda RBX: 00007f840d58df60 RCX: 00007f840d47b059 [ 906.341947][T30691] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 906.349942][T30691] RBP: 00007f840d4d508d R08: 0000000000000000 R09: 0000000000000000 [ 906.357937][T30691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 906.365925][T30691] R13: 00007ffc2e2100cf R14: 00007f840bdf0300 R15: 0000000000022000 20:16:15 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994240424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 906.373904][T30691] 20:16:15 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x0, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x880}, 0x4000000) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)={0x30, 0x0, 0x103, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x6}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}]}, 0x30}}, 0x0) [ 906.440893][T30711] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 906.489993][T30711] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 906.514775][T30711] CPU: 0 PID: 30711 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 906.525343][T30711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 906.535423][T30711] Call Trace: [ 906.538807][T30711] [ 906.541760][T30711] dump_stack_lvl+0xcd/0x134 [ 906.546385][T30711] sysfs_warn_dup.cold+0x1c/0x29 [ 906.551352][T30711] sysfs_do_create_link_sd+0x11e/0x140 [ 906.556851][T30711] sysfs_create_link+0x5f/0xc0 [ 906.561655][T30711] device_add+0x789/0x1ee0 [ 906.566108][T30711] ? wait_for_completion_io+0x270/0x270 [ 906.571698][T30711] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 906.578028][T30711] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 906.584303][T30711] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 20:16:15 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32) sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x0, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x880}, 0x4000000) (async) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)={0x30, 0x0, 0x103, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x6}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}]}, 0x30}}, 0x0) [ 906.590587][T30711] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 906.596614][T30711] wiphy_register+0x1e86/0x29a0 [ 906.601512][T30711] ? wiphy_unregister+0xbf0/0xbf0 [ 906.606566][T30711] ? minstrel_ht_alloc+0x52c/0xa10 [ 906.611734][T30711] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 906.617835][T30711] ieee80211_register_hw+0x1f16/0x3ed0 [ 906.623357][T30711] ? ieee80211_restart_hw+0x290/0x290 [ 906.628767][T30711] ? debug_object_destroy+0x210/0x210 [ 906.634177][T30711] ? memset+0x20/0x40 [ 906.638185][T30711] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 906.644459][T30711] ? __hrtimer_init+0x136/0x280 [ 906.649343][T30711] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 906.655117][T30711] ? hwsim_virtio_rx_work+0x350/0x350 [ 906.660523][T30711] ? hwsim_new_radio_nl+0x992/0x1080 [ 906.665840][T30711] ? memcpy+0x39/0x60 [ 906.669872][T30711] hwsim_new_radio_nl+0x9bc/0x1080 [ 906.675023][T30711] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 906.680979][T30711] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 20:16:15 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x0, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x880}, 0x4000000) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)={0x30, 0x0, 0x103, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x6}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}]}, 0x30}}, 0x0) [ 906.687252][T30711] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 906.694652][T30711] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 906.701980][T30711] genl_family_rcv_msg_doit+0x228/0x320 [ 906.707558][T30711] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 906.715017][T30711] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 906.721306][T30711] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 906.727669][T30711] ? ns_capable+0xd9/0x100 [ 906.732132][T30711] genl_rcv_msg+0x328/0x580 [ 906.736669][T30711] ? genl_get_cmd+0x480/0x480 [ 906.741378][T30711] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 906.747315][T30711] ? lock_release+0x720/0x720 [ 906.752033][T30711] netlink_rcv_skb+0x153/0x420 [ 906.756823][T30711] ? genl_get_cmd+0x480/0x480 [ 906.761535][T30711] ? netlink_ack+0xa60/0xa60 [ 906.766158][T30711] ? netlink_deliver_tap+0x1b1/0xc30 [ 906.771471][T30711] genl_rcv+0x24/0x40 [ 906.775483][T30711] netlink_unicast+0x539/0x7e0 [ 906.780275][T30711] ? netlink_attachskb+0x880/0x880 [ 906.785586][T30711] ? __virt_addr_valid+0x5d/0x2d0 [ 906.790638][T30711] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 906.797025][T30711] ? __phys_addr_symbol+0x2c/0x70 [ 906.802078][T30711] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 906.807828][T30711] ? __check_object_size+0x16e/0x310 [ 906.813151][T30711] netlink_sendmsg+0x904/0xe00 [ 906.817952][T30711] ? netlink_unicast+0x7e0/0x7e0 [ 906.822926][T30711] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 906.829224][T30711] ? netlink_unicast+0x7e0/0x7e0 [ 906.834190][T30711] sock_sendmsg+0xcf/0x120 20:16:15 executing program 4: unshare(0x6c060000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x3, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000080)=@generic={0x0, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, 0x0, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), r1) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000002c0)={&(0x7f00000003c0)={0x80, r3, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0x6c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x3}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_team\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'tunl0\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6gre0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x40084}, 0x8081) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000280)) sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4001000024000b0f00e40000a0cfffff01f10feb", @ANYRES32=r2, @ANYBLOB="00000000ffffffff000000f6090001006e6574656d00000010010200ca000000b0"], 0x140}}, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x14e24, 0x0, @empty}, 0x1c) connect$inet6(r4, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, 0x0, 0x0) sendmmsg(r4, &(0x7f00000092c0), 0x4ff, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0) sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000340)={&(0x7f0000000100), 0xc, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x1}, 0x4800) [ 906.838636][T30711] ____sys_sendmsg+0x6e8/0x810 [ 906.843435][T30711] ? kernel_sendmsg+0x50/0x50 [ 906.848132][T30711] ? do_recvmmsg+0x6d0/0x6d0 [ 906.852747][T30711] ? lock_chain_count+0x20/0x20 [ 906.857633][T30711] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 906.863660][T30711] ___sys_sendmsg+0xf3/0x170 [ 906.868285][T30711] ? sendmsg_copy_msghdr+0x160/0x160 [ 906.873688][T30711] ? lock_downgrade+0x6e0/0x6e0 [ 906.878579][T30711] ? __fget_files+0x28c/0x470 [ 906.883298][T30711] ? __fget_light+0xea/0x280 [ 906.887921][T30711] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 906.894205][T30711] __sys_sendmsg+0xe5/0x1b0 [ 906.898741][T30711] ? __sys_sendmsg_sock+0x30/0x30 [ 906.903812][T30711] ? syscall_enter_from_user_mode+0x21/0x70 [ 906.909750][T30711] do_syscall_64+0x35/0xb0 [ 906.914199][T30711] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 906.920128][T30711] RIP: 0033:0x7f4b423c2059 [ 906.924568][T30711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 906.944203][T30711] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 906.952646][T30711] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 906.960626][T30711] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 906.968627][T30711] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 906.976621][T30711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 906.984607][T30711] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 906.992736][T30711] 20:16:16 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370648018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 907.031438][T30714] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 907.159611][T30724] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 907.175964][T30724] CPU: 0 PID: 30724 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 907.186524][T30724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 907.196611][T30724] Call Trace: [ 907.199915][T30724] [ 907.202869][T30724] dump_stack_lvl+0xcd/0x134 [ 907.207497][T30724] sysfs_warn_dup.cold+0x1c/0x29 [ 907.212467][T30724] sysfs_do_create_link_sd+0x11e/0x140 [ 907.217975][T30724] sysfs_create_link+0x5f/0xc0 [ 907.222779][T30724] device_add+0x789/0x1ee0 [ 907.227231][T30724] ? wait_for_completion_io+0x270/0x270 [ 907.232815][T30724] ? lock_downgrade+0x6e0/0x6e0 [ 907.237694][T30724] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 907.243969][T30724] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 907.250248][T30724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.256527][T30724] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 907.262551][T30724] wiphy_register+0x1e86/0x29a0 [ 907.267450][T30724] ? wiphy_unregister+0xbf0/0xbf0 [ 907.272508][T30724] ? minstrel_ht_alloc+0x52c/0xa10 [ 907.277666][T30724] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 907.283772][T30724] ieee80211_register_hw+0x1f16/0x3ed0 [ 907.289289][T30724] ? ieee80211_restart_hw+0x290/0x290 [ 907.294697][T30724] ? debug_object_destroy+0x210/0x210 [ 907.300106][T30724] ? memset+0x20/0x40 [ 907.304115][T30724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.310390][T30724] ? __hrtimer_init+0x136/0x280 [ 907.315342][T30724] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 907.321115][T30724] ? hwsim_virtio_rx_work+0x350/0x350 [ 907.326517][T30724] ? hwsim_new_radio_nl+0x992/0x1080 [ 907.331836][T30724] ? memcpy+0x39/0x60 [ 907.335869][T30724] hwsim_new_radio_nl+0x9bc/0x1080 [ 907.341029][T30724] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 907.346974][T30724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.353247][T30724] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 907.360653][T30724] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 907.367986][T30724] genl_family_rcv_msg_doit+0x228/0x320 [ 907.373565][T30724] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 907.380968][T30724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.387259][T30724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.393530][T30724] ? ns_capable+0xd9/0x100 [ 907.397983][T30724] genl_rcv_msg+0x328/0x580 [ 907.402521][T30724] ? genl_get_cmd+0x480/0x480 [ 907.407231][T30724] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 907.413167][T30724] ? lock_release+0x720/0x720 [ 907.417882][T30724] netlink_rcv_skb+0x153/0x420 [ 907.422673][T30724] ? genl_get_cmd+0x480/0x480 [ 907.427384][T30724] ? netlink_ack+0xa60/0xa60 [ 907.432018][T30724] ? netlink_deliver_tap+0x1b1/0xc30 [ 907.437351][T30724] genl_rcv+0x24/0x40 [ 907.441370][T30724] netlink_unicast+0x539/0x7e0 [ 907.446179][T30724] ? netlink_attachskb+0x880/0x880 [ 907.451318][T30724] ? __virt_addr_valid+0x5d/0x2d0 [ 907.456372][T30724] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 907.462645][T30724] ? __phys_addr_symbol+0x2c/0x70 [ 907.467700][T30724] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 907.473449][T30724] ? __check_object_size+0x16e/0x310 [ 907.478773][T30724] netlink_sendmsg+0x904/0xe00 [ 907.483577][T30724] ? netlink_unicast+0x7e0/0x7e0 [ 907.488551][T30724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.494830][T30724] ? netlink_unicast+0x7e0/0x7e0 [ 907.499799][T30724] sock_sendmsg+0xcf/0x120 [ 907.504250][T30724] ____sys_sendmsg+0x6e8/0x810 [ 907.509043][T30724] ? kernel_sendmsg+0x50/0x50 [ 907.513751][T30724] ? do_recvmmsg+0x6d0/0x6d0 [ 907.518374][T30724] ? lock_chain_count+0x20/0x20 [ 907.523255][T30724] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 907.529261][T30724] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.535536][T30724] ? futex_wait+0x533/0x670 [ 907.540075][T30724] ___sys_sendmsg+0xf3/0x170 [ 907.544694][T30724] ? sendmsg_copy_msghdr+0x160/0x160 [ 907.550014][T30724] ? lock_downgrade+0x6e0/0x6e0 [ 907.554911][T30724] ? __fget_files+0x28c/0x470 [ 907.559628][T30724] ? __fget_light+0xea/0x280 [ 907.564246][T30724] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 907.570522][T30724] __sys_sendmsg+0xe5/0x1b0 [ 907.575062][T30724] ? __sys_sendmsg_sock+0x30/0x30 [ 907.580131][T30724] ? syscall_enter_from_user_mode+0x21/0x70 [ 907.586063][T30724] do_syscall_64+0x35/0xb0 [ 907.590506][T30724] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 907.596427][T30724] RIP: 0033:0x7f0982948059 [ 907.600862][T30724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 907.620514][T30724] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 907.628960][T30724] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 907.636954][T30724] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 907.644951][T30724] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 907.652947][T30724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 20:16:16 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011072e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 907.661026][T30724] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 907.669050][T30724] 20:16:16 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994250424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 907.724710][T30739] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 907.763846][T30739] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 907.779231][T30739] CPU: 0 PID: 30739 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 907.789796][T30739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 907.799880][T30739] Call Trace: [ 907.803179][T30739] [ 907.806142][T30739] dump_stack_lvl+0xcd/0x134 [ 907.810771][T30739] sysfs_warn_dup.cold+0x1c/0x29 [ 907.815744][T30739] sysfs_do_create_link_sd+0x11e/0x140 [ 907.821243][T30739] sysfs_create_link+0x5f/0xc0 [ 907.826041][T30739] device_add+0x789/0x1ee0 [ 907.830493][T30739] ? wait_for_completion_io+0x270/0x270 [ 907.836073][T30739] ? lock_downgrade+0x6e0/0x6e0 [ 907.840961][T30739] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 907.847248][T30739] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 907.853530][T30739] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.859812][T30739] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 907.865845][T30739] wiphy_register+0x1e86/0x29a0 [ 907.870752][T30739] ? wiphy_unregister+0xbf0/0xbf0 [ 907.875805][T30739] ? minstrel_ht_alloc+0x52c/0xa10 [ 907.880968][T30739] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 907.887072][T30739] ieee80211_register_hw+0x1f16/0x3ed0 [ 907.892574][T30739] ? ieee80211_restart_hw+0x290/0x290 [ 907.897973][T30739] ? debug_object_destroy+0x210/0x210 [ 907.903382][T30739] ? memset+0x20/0x40 [ 907.907402][T30739] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.913673][T30739] ? __hrtimer_init+0x136/0x280 [ 907.918571][T30739] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 907.924347][T30739] ? hwsim_virtio_rx_work+0x350/0x350 [ 907.929732][T30739] ? hwsim_new_radio_nl+0x992/0x1080 [ 907.935045][T30739] ? memcpy+0x39/0x60 [ 907.939043][T30739] hwsim_new_radio_nl+0x9bc/0x1080 [ 907.944179][T30739] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 907.950097][T30739] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.956356][T30739] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 907.963741][T30739] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 907.971047][T30739] genl_family_rcv_msg_doit+0x228/0x320 [ 907.976607][T30739] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 907.983998][T30739] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.990272][T30739] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 907.996529][T30739] ? ns_capable+0xd9/0x100 [ 908.000965][T30739] genl_rcv_msg+0x328/0x580 [ 908.005484][T30739] ? genl_get_cmd+0x480/0x480 [ 908.010179][T30739] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 908.016095][T30739] ? lock_release+0x720/0x720 [ 908.020796][T30739] netlink_rcv_skb+0x153/0x420 [ 908.025584][T30739] ? genl_get_cmd+0x480/0x480 [ 908.030278][T30739] ? netlink_ack+0xa60/0xa60 [ 908.034889][T30739] ? netlink_deliver_tap+0x1b1/0xc30 [ 908.040206][T30739] genl_rcv+0x24/0x40 [ 908.044205][T30739] netlink_unicast+0x539/0x7e0 [ 908.048983][T30739] ? netlink_attachskb+0x880/0x880 [ 908.054104][T30739] ? __virt_addr_valid+0x5d/0x2d0 [ 908.059145][T30739] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 908.065404][T30739] ? __phys_addr_symbol+0x2c/0x70 [ 908.070440][T30739] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 908.076175][T30739] ? __check_object_size+0x16e/0x310 [ 908.081475][T30739] netlink_sendmsg+0x904/0xe00 [ 908.086256][T30739] ? netlink_unicast+0x7e0/0x7e0 [ 908.091231][T30739] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 908.097491][T30739] ? netlink_unicast+0x7e0/0x7e0 [ 908.102440][T30739] sock_sendmsg+0xcf/0x120 [ 908.106882][T30739] ____sys_sendmsg+0x6e8/0x810 [ 908.111772][T30739] ? kernel_sendmsg+0x50/0x50 [ 908.116466][T30739] ? do_recvmmsg+0x6d0/0x6d0 [ 908.121082][T30739] ? lock_chain_count+0x20/0x20 [ 908.126042][T30739] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 908.132092][T30739] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 908.138376][T30739] ? futex_wait+0x533/0x670 [ 908.142925][T30739] ___sys_sendmsg+0xf3/0x170 [ 908.147545][T30739] ? sendmsg_copy_msghdr+0x160/0x160 [ 908.152881][T30739] ? lock_downgrade+0x6e0/0x6e0 [ 908.157773][T30739] ? __fget_files+0x28c/0x470 [ 908.162492][T30739] ? __fget_light+0xea/0x280 [ 908.167116][T30739] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 908.173401][T30739] __sys_sendmsg+0xe5/0x1b0 [ 908.177962][T30739] ? __sys_sendmsg_sock+0x30/0x30 [ 908.183020][T30739] ? syscall_enter_from_user_mode+0x21/0x70 [ 908.188955][T30739] do_syscall_64+0x35/0xb0 [ 908.193389][T30739] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 908.199318][T30739] RIP: 0033:0x7f4b423c2059 [ 908.203756][T30739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 908.223383][T30739] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 908.231814][T30739] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 908.239790][T30739] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 908.247791][T30739] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 908.255766][T30739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 908.263745][T30739] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 908.271751][T30739] 20:16:17 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370748018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 908.352503][T30741] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 908.450249][T30743] __nla_validate_parse: 6 callbacks suppressed [ 908.450275][T30743] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 908.486311][T30743] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 908.502597][T30743] CPU: 0 PID: 30743 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 908.513158][T30743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 908.523238][T30743] Call Trace: [ 908.526543][T30743] [ 908.529490][T30743] dump_stack_lvl+0xcd/0x134 [ 908.534112][T30743] sysfs_warn_dup.cold+0x1c/0x29 [ 908.539078][T30743] sysfs_do_create_link_sd+0x11e/0x140 [ 908.544571][T30743] sysfs_create_link+0x5f/0xc0 [ 908.549366][T30743] device_add+0x789/0x1ee0 [ 908.553805][T30743] ? wait_for_completion_io+0x270/0x270 [ 908.559386][T30743] ? minstrel_ht_alloc+0x4b/0xa10 [ 908.564433][T30743] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 908.570694][T30743] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 908.576949][T30743] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 908.583200][T30743] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 908.589211][T30743] wiphy_register+0x1e86/0x29a0 [ 908.594120][T30743] ? wiphy_unregister+0xbf0/0xbf0 [ 908.599156][T30743] ? minstrel_ht_alloc+0x52c/0xa10 [ 908.604301][T30743] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 908.610389][T30743] ieee80211_register_hw+0x1f16/0x3ed0 [ 908.615886][T30743] ? ieee80211_restart_hw+0x290/0x290 [ 908.621275][T30743] ? debug_object_destroy+0x210/0x210 [ 908.626668][T30743] ? memset+0x20/0x40 [ 908.630666][T30743] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 908.636925][T30743] ? __hrtimer_init+0x136/0x280 [ 908.641791][T30743] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 908.647543][T30743] ? hwsim_virtio_rx_work+0x350/0x350 [ 908.652935][T30743] ? hwsim_new_radio_nl+0x992/0x1080 [ 908.658238][T30743] ? memcpy+0x39/0x60 [ 908.662330][T30743] hwsim_new_radio_nl+0x9bc/0x1080 [ 908.667457][T30743] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 908.673387][T30743] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 908.679665][T30743] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 908.687066][T30743] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 908.694376][T30743] genl_family_rcv_msg_doit+0x228/0x320 [ 908.699941][T30743] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 908.707325][T30743] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 908.713595][T30743] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 908.719878][T30743] ? ns_capable+0xd9/0x100 [ 908.724398][T30743] genl_rcv_msg+0x328/0x580 [ 908.728915][T30743] ? genl_get_cmd+0x480/0x480 [ 908.733615][T30743] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 908.739552][T30743] ? lock_release+0x720/0x720 [ 908.744275][T30743] netlink_rcv_skb+0x153/0x420 [ 908.749055][T30743] ? genl_get_cmd+0x480/0x480 [ 908.753774][T30743] ? netlink_ack+0xa60/0xa60 [ 908.758382][T30743] ? netlink_deliver_tap+0x1b1/0xc30 [ 908.763687][T30743] genl_rcv+0x24/0x40 [ 908.767675][T30743] netlink_unicast+0x539/0x7e0 [ 908.772454][T30743] ? netlink_attachskb+0x880/0x880 [ 908.777572][T30743] ? __virt_addr_valid+0x5d/0x2d0 [ 908.782608][T30743] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 908.788950][T30743] ? __phys_addr_symbol+0x2c/0x70 [ 908.794009][T30743] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 908.799751][T30743] ? __check_object_size+0x16e/0x310 [ 908.805054][T30743] netlink_sendmsg+0x904/0xe00 [ 908.809839][T30743] ? netlink_unicast+0x7e0/0x7e0 [ 908.814791][T30743] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 908.821062][T30743] ? netlink_unicast+0x7e0/0x7e0 [ 908.826008][T30743] sock_sendmsg+0xcf/0x120 [ 908.830459][T30743] ____sys_sendmsg+0x6e8/0x810 [ 908.835237][T30743] ? kernel_sendmsg+0x50/0x50 [ 908.839925][T30743] ? do_recvmmsg+0x6d0/0x6d0 [ 908.844527][T30743] ? lock_chain_count+0x20/0x20 [ 908.849391][T30743] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 908.855386][T30743] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 908.861655][T30743] ? futex_wait+0x533/0x670 [ 908.866202][T30743] ___sys_sendmsg+0xf3/0x170 [ 908.870839][T30743] ? sendmsg_copy_msghdr+0x160/0x160 [ 908.876160][T30743] ? lock_downgrade+0x6e0/0x6e0 [ 908.881055][T30743] ? __fget_files+0x28c/0x470 [ 908.885762][T30743] ? __fget_light+0xea/0x280 [ 908.890364][T30743] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 908.896623][T30743] __sys_sendmsg+0xe5/0x1b0 [ 908.901142][T30743] ? __sys_sendmsg_sock+0x30/0x30 [ 908.906196][T30743] ? syscall_enter_from_user_mode+0x21/0x70 [ 908.912118][T30743] do_syscall_64+0x35/0xb0 [ 908.916545][T30743] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 908.922628][T30743] RIP: 0033:0x7f0982948059 [ 908.927113][T30743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 908.946749][T30743] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 908.955205][T30743] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 908.963179][T30743] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 908.971155][T30743] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 908.979149][T30743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 908.987136][T30743] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 908.995155][T30743] [ 909.033533][T30745] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 909.076141][T30745] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 909.114463][T30745] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 909.144252][T30745] CPU: 1 PID: 30745 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 909.154829][T30745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 909.164890][T30745] Call Trace: [ 909.168168][T30745] [ 909.171103][T30745] dump_stack_lvl+0xcd/0x134 [ 909.175727][T30745] sysfs_warn_dup.cold+0x1c/0x29 [ 909.180663][T30745] sysfs_do_create_link_sd+0x11e/0x140 [ 909.186147][T30745] sysfs_create_link+0x5f/0xc0 [ 909.190920][T30745] device_add+0x789/0x1ee0 [ 909.195348][T30745] ? wait_for_completion_io+0x270/0x270 [ 909.200899][T30745] ? lock_downgrade+0x6e0/0x6e0 [ 909.205757][T30745] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 909.212002][T30745] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 909.218247][T30745] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 909.224493][T30745] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 909.230504][T30745] wiphy_register+0x1e86/0x29a0 [ 909.235370][T30745] ? wiphy_unregister+0xbf0/0xbf0 [ 909.240392][T30745] ? minstrel_ht_alloc+0x52c/0xa10 [ 909.245534][T30745] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 909.251637][T30745] ieee80211_register_hw+0x1f16/0x3ed0 [ 909.257108][T30745] ? ieee80211_restart_hw+0x290/0x290 [ 909.262497][T30745] ? debug_object_destroy+0x210/0x210 [ 909.267888][T30745] ? memset+0x20/0x40 [ 909.272324][T30745] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 909.278648][T30745] ? __hrtimer_init+0x136/0x280 [ 909.283537][T30745] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 909.289280][T30745] ? hwsim_virtio_rx_work+0x350/0x350 [ 909.294660][T30745] ? hwsim_new_radio_nl+0x992/0x1080 [ 909.299973][T30745] ? memcpy+0x39/0x60 [ 909.303987][T30745] hwsim_new_radio_nl+0x9bc/0x1080 [ 909.309124][T30745] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 909.315029][T30745] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 909.321269][T30745] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 909.328633][T30745] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 909.335919][T30745] genl_family_rcv_msg_doit+0x228/0x320 [ 909.341482][T30745] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 909.348864][T30745] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 909.355131][T30745] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 909.361390][T30745] ? ns_capable+0xd9/0x100 [ 909.365814][T30745] genl_rcv_msg+0x328/0x580 [ 909.370317][T30745] ? genl_get_cmd+0x480/0x480 [ 909.374988][T30745] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 909.380888][T30745] ? lock_release+0x720/0x720 [ 909.385575][T30745] netlink_rcv_skb+0x153/0x420 [ 909.390338][T30745] ? genl_get_cmd+0x480/0x480 [ 909.395076][T30745] ? netlink_ack+0xa60/0xa60 [ 909.399666][T30745] ? netlink_deliver_tap+0x1b1/0xc30 [ 909.404956][T30745] genl_rcv+0x24/0x40 [ 909.408933][T30745] netlink_unicast+0x539/0x7e0 [ 909.413700][T30745] ? netlink_attachskb+0x880/0x880 [ 909.418815][T30745] ? __virt_addr_valid+0x5d/0x2d0 [ 909.423905][T30745] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 909.430155][T30745] ? __phys_addr_symbol+0x2c/0x70 [ 909.435214][T30745] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 909.440938][T30745] ? __check_object_size+0x16e/0x310 [ 909.446231][T30745] netlink_sendmsg+0x904/0xe00 [ 909.451002][T30745] ? netlink_unicast+0x7e0/0x7e0 [ 909.455977][T30745] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 909.462244][T30745] ? netlink_unicast+0x7e0/0x7e0 [ 909.467187][T30745] sock_sendmsg+0xcf/0x120 [ 909.471604][T30745] ____sys_sendmsg+0x6e8/0x810 [ 909.476377][T30745] ? kernel_sendmsg+0x50/0x50 [ 909.481078][T30745] ? do_recvmmsg+0x6d0/0x6d0 [ 909.485669][T30745] ? lock_chain_count+0x20/0x20 [ 909.490544][T30745] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 909.496523][T30745] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 909.502779][T30745] ? futex_wait+0x533/0x670 [ 909.507299][T30745] ___sys_sendmsg+0xf3/0x170 [ 909.511931][T30745] ? sendmsg_copy_msghdr+0x160/0x160 [ 909.517244][T30745] ? lock_downgrade+0x6e0/0x6e0 [ 909.522137][T30745] ? __fget_files+0x28c/0x470 [ 909.526888][T30745] ? __fget_light+0xea/0x280 [ 909.531536][T30745] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 909.537781][T30745] __sys_sendmsg+0xe5/0x1b0 [ 909.542293][T30745] ? __sys_sendmsg_sock+0x30/0x30 [ 909.547391][T30745] ? syscall_enter_from_user_mode+0x21/0x70 [ 909.553303][T30745] do_syscall_64+0x35/0xb0 [ 909.557730][T30745] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 909.563631][T30745] RIP: 0033:0x7f4b423c2059 [ 909.568093][T30745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 909.587733][T30745] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 909.596166][T30745] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 909.604173][T30745] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 909.612150][T30745] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 909.620446][T30745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 909.628431][T30745] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 909.636416][T30745] 20:16:18 executing program 0: unshare(0x6c060000) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept4$netrom(r0, 0x0, &(0x7f0000000200), 0x80000) splice(r0, &(0x7f00000001c0)=0x8, r2, &(0x7f0000000240)=0xffffffffffff9a4d, 0x7, 0x2) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) (async) socket(0x0, 0x0, 0x0) (async) r4 = socket(0x11, 0x0, 0x0) bind(r4, &(0x7f0000000080)=@generic={0x2a, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r4, 0x0, &(0x7f0000000180)) (async) sendto$inet6(r3, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) (async) socket$inet_udplite(0x2, 0x2, 0x88) (async) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'}) (async) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x400c058}, 0xc011) (async) accept4(r5, &(0x7f0000000100)=@ethernet, &(0x7f0000000040)=0x80, 0x800) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0xc5, 0x0, 0x0) (async) shutdown(r3, 0x1) (async) splice(r3, 0x0, r1, 0x0, 0x406f408, 0x0) (async) unshare(0x4020400) 20:16:18 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011082e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 909.899615][T30747] netlink: 'syz-executor.3': attribute type 11 has an invalid length. 20:16:18 executing program 2: unshare(0x6c060000) (async) r0 = socket$vsock_stream(0x28, 0x1, 0x0) (async) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) (async) connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c) connect$vsock_stream(r0, &(0x7f0000000180)={0x28, 0x0, 0x0, @hyper}, 0x10) (async) connect$inet6(r1, &(0x7f0000004540)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c) (async, rerun: 32) getsockopt$inet6_int(r1, 0x29, 0x18, 0x0, &(0x7f00000001c0)) (async, rerun: 32) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x8031, 0xffffffffffffffff, 0x0) (async, rerun: 32) socket$inet_tcp(0x2, 0x1, 0x0) (async, rerun: 32) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r0, 0x28, 0x2, &(0x7f0000000200), 0x8) 20:16:18 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994260424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:18 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370b48018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 909.953985][T30747] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. 20:16:19 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011092e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 910.153247][T30754] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 910.180006][T30754] netlink: 128944 bytes leftover after parsing attributes in process `syz-executor.1'. [ 910.258788][T30754] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 910.283872][T30754] CPU: 0 PID: 30754 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 910.294433][T30754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 910.304517][T30754] Call Trace: [ 910.307823][T30754] [ 910.310769][T30754] dump_stack_lvl+0xcd/0x134 [ 910.315393][T30754] sysfs_warn_dup.cold+0x1c/0x29 [ 910.320366][T30754] sysfs_do_create_link_sd+0x11e/0x140 [ 910.325868][T30754] sysfs_create_link+0x5f/0xc0 [ 910.330677][T30754] device_add+0x789/0x1ee0 [ 910.335138][T30754] ? wait_for_completion_io+0x270/0x270 [ 910.340744][T30754] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 910.347029][T30754] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 910.353310][T30754] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 910.359595][T30754] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 910.365630][T30754] wiphy_register+0x1e86/0x29a0 [ 910.370538][T30754] ? wiphy_unregister+0xbf0/0xbf0 [ 910.375594][T30754] ? minstrel_ht_alloc+0x52c/0xa10 [ 910.380761][T30754] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 910.386872][T30754] ieee80211_register_hw+0x1f16/0x3ed0 [ 910.392389][T30754] ? ieee80211_restart_hw+0x290/0x290 [ 910.397793][T30754] ? debug_object_destroy+0x210/0x210 [ 910.403202][T30754] ? memset+0x20/0x40 [ 910.407214][T30754] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 910.413490][T30754] ? __hrtimer_init+0x136/0x280 [ 910.418376][T30754] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 910.424151][T30754] ? hwsim_virtio_rx_work+0x350/0x350 [ 910.429550][T30754] ? hwsim_new_radio_nl+0x992/0x1080 [ 910.434879][T30754] ? memcpy+0x39/0x60 [ 910.438896][T30754] hwsim_new_radio_nl+0x9bc/0x1080 [ 910.444040][T30754] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 910.449977][T30754] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 20:16:19 executing program 4: unshare(0x6c060000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x3, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, 0x0) (async) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000080)=@generic={0x0, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) (async) getsockname$packet(r1, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) (async) sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, 0x0, 0x0) (async) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), r1) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000002c0)={&(0x7f00000003c0)={0x80, r3, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0x6c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x3}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_team\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'tunl0\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6gre0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x40084}, 0x8081) (async) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000280)) (async) sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4001000024000b0f00e40000a0cfffff01f10feb", @ANYRES32=r2, @ANYBLOB="00000000ffffffff000000f6090001006e6574656d00000010010200ca000000b0"], 0x140}}, 0x0) (async) r4 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x14e24, 0x0, @empty}, 0x1c) (async) connect$inet6(r4, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) (async) setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, 0x0, 0x0) (async) sendmmsg(r4, &(0x7f00000092c0), 0x4ff, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0) (async) sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000340)={&(0x7f0000000100), 0xc, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x1}, 0x4800) [ 910.456259][T30754] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 910.463658][T30754] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 910.470995][T30754] genl_family_rcv_msg_doit+0x228/0x320 [ 910.476581][T30754] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 910.483989][T30754] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 910.490282][T30754] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 910.496558][T30754] ? ns_capable+0xd9/0x100 [ 910.501010][T30754] genl_rcv_msg+0x328/0x580 [ 910.505547][T30754] ? genl_get_cmd+0x480/0x480 [ 910.510251][T30754] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 910.516182][T30754] ? lock_release+0x720/0x720 [ 910.520895][T30754] netlink_rcv_skb+0x153/0x420 [ 910.525696][T30754] ? genl_get_cmd+0x480/0x480 [ 910.530405][T30754] ? netlink_ack+0xa60/0xa60 [ 910.535037][T30754] ? netlink_deliver_tap+0x1b1/0xc30 [ 910.540358][T30754] genl_rcv+0x24/0x40 [ 910.544363][T30754] netlink_unicast+0x539/0x7e0 [ 910.549690][T30754] ? netlink_attachskb+0x880/0x880 [ 910.554828][T30754] ? __virt_addr_valid+0x5d/0x2d0 [ 910.559967][T30754] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 910.566248][T30754] ? __phys_addr_symbol+0x2c/0x70 [ 910.571301][T30754] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 910.577053][T30754] ? __check_object_size+0x16e/0x310 [ 910.582380][T30754] netlink_sendmsg+0x904/0xe00 [ 910.587181][T30754] ? netlink_unicast+0x7e0/0x7e0 [ 910.592157][T30754] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 910.598436][T30754] ? netlink_unicast+0x7e0/0x7e0 [ 910.603402][T30754] sock_sendmsg+0xcf/0x120 [ 910.607852][T30754] ____sys_sendmsg+0x6e8/0x810 [ 910.612655][T30754] ? kernel_sendmsg+0x50/0x50 [ 910.617358][T30754] ? do_recvmmsg+0x6d0/0x6d0 [ 910.621979][T30754] ? lock_chain_count+0x20/0x20 [ 910.626858][T30754] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 910.632886][T30754] ___sys_sendmsg+0xf3/0x170 [ 910.637508][T30754] ? sendmsg_copy_msghdr+0x160/0x160 [ 910.642835][T30754] ? lock_downgrade+0x6e0/0x6e0 [ 910.647745][T30754] ? __fget_files+0x28c/0x470 [ 910.652462][T30754] ? __fget_light+0xea/0x280 [ 910.657085][T30754] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 910.663718][T30754] __sys_sendmsg+0xe5/0x1b0 [ 910.668254][T30754] ? __sys_sendmsg_sock+0x30/0x30 [ 910.673328][T30754] ? syscall_enter_from_user_mode+0x21/0x70 [ 910.679267][T30754] do_syscall_64+0x35/0xb0 [ 910.683719][T30754] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 910.689692][T30754] RIP: 0033:0x7f4b423c2059 [ 910.694129][T30754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 910.713765][T30754] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 910.722210][T30754] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 910.730206][T30754] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 910.738202][T30754] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 910.746200][T30754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 910.754202][T30754] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 910.762221][T30754] 20:16:19 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370c48018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 910.815550][T30752] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 910.893997][T30752] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 910.905686][T30752] CPU: 0 PID: 30752 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 910.916247][T30752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 910.926339][T30752] Call Trace: [ 910.929639][T30752] [ 910.932587][T30752] dump_stack_lvl+0xcd/0x134 [ 910.937217][T30752] sysfs_warn_dup.cold+0x1c/0x29 [ 910.942277][T30752] sysfs_do_create_link_sd+0x11e/0x140 [ 910.947825][T30752] sysfs_create_link+0x5f/0xc0 [ 910.952629][T30752] device_add+0x789/0x1ee0 [ 910.957084][T30752] ? wait_for_completion_io+0x270/0x270 [ 910.962658][T30752] ? lock_downgrade+0x6e0/0x6e0 [ 910.967536][T30752] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 910.973898][T30752] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 910.980180][T30752] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 910.986457][T30752] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 910.992482][T30752] wiphy_register+0x1e86/0x29a0 [ 910.997386][T30752] ? wiphy_unregister+0xbf0/0xbf0 [ 911.002438][T30752] ? minstrel_ht_alloc+0x52c/0xa10 [ 911.007599][T30752] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 911.013711][T30752] ieee80211_register_hw+0x1f16/0x3ed0 [ 911.019304][T30752] ? ieee80211_restart_hw+0x290/0x290 [ 911.024711][T30752] ? debug_object_destroy+0x210/0x210 [ 911.030119][T30752] ? memset+0x20/0x40 [ 911.034129][T30752] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 911.040400][T30752] ? __hrtimer_init+0x136/0x280 [ 911.045283][T30752] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 911.051053][T30752] ? hwsim_virtio_rx_work+0x350/0x350 [ 911.056447][T30752] ? hwsim_new_radio_nl+0x992/0x1080 [ 911.061762][T30752] ? memcpy+0x39/0x60 [ 911.065776][T30752] hwsim_new_radio_nl+0x9bc/0x1080 [ 911.070917][T30752] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 911.076862][T30752] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 911.083136][T30752] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 911.090534][T30752] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 911.097857][T30752] genl_family_rcv_msg_doit+0x228/0x320 [ 911.103433][T30752] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 911.110835][T30752] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 911.117122][T30752] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 911.123396][T30752] ? ns_capable+0xd9/0x100 [ 911.127850][T30752] genl_rcv_msg+0x328/0x580 [ 911.132414][T30752] ? genl_get_cmd+0x480/0x480 [ 911.137120][T30752] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 911.143049][T30752] ? lock_release+0x720/0x720 [ 911.147751][T30752] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 911.153591][T30752] netlink_rcv_skb+0x153/0x420 [ 911.158383][T30752] ? genl_get_cmd+0x480/0x480 [ 911.163089][T30752] ? netlink_ack+0xa60/0xa60 [ 911.167708][T30752] ? netlink_deliver_tap+0x1b1/0xc30 [ 911.173028][T30752] genl_rcv+0x24/0x40 [ 911.177035][T30752] netlink_unicast+0x539/0x7e0 [ 911.181833][T30752] ? netlink_attachskb+0x880/0x880 [ 911.186971][T30752] ? __virt_addr_valid+0x5d/0x2d0 [ 911.192031][T30752] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 911.198310][T30752] ? __phys_addr_symbol+0x2c/0x70 [ 911.203361][T30752] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 911.209114][T30752] ? __check_object_size+0x16e/0x310 [ 911.214719][T30752] netlink_sendmsg+0x904/0xe00 [ 911.219518][T30752] ? netlink_unicast+0x7e0/0x7e0 [ 911.224490][T30752] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 911.230767][T30752] ? netlink_unicast+0x7e0/0x7e0 [ 911.235731][T30752] sock_sendmsg+0xcf/0x120 [ 911.240176][T30752] ____sys_sendmsg+0x6e8/0x810 [ 911.244981][T30752] ? kernel_sendmsg+0x50/0x50 [ 911.249682][T30752] ? do_recvmmsg+0x6d0/0x6d0 [ 911.254301][T30752] ? lock_chain_count+0x20/0x20 [ 911.259182][T30752] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 911.265207][T30752] ___sys_sendmsg+0xf3/0x170 [ 911.269831][T30752] ? sendmsg_copy_msghdr+0x160/0x160 [ 911.275152][T30752] ? lock_downgrade+0x6e0/0x6e0 [ 911.280049][T30752] ? __fget_files+0x28c/0x470 [ 911.284767][T30752] ? __fget_light+0xea/0x280 [ 911.289385][T30752] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 911.295667][T30752] __sys_sendmsg+0xe5/0x1b0 [ 911.300202][T30752] ? __sys_sendmsg_sock+0x30/0x30 [ 911.305276][T30752] ? syscall_enter_from_user_mode+0x21/0x70 [ 911.311206][T30752] do_syscall_64+0x35/0xb0 [ 911.315650][T30752] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 911.321574][T30752] RIP: 0033:0x7f0982948059 [ 911.326010][T30752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 911.345644][T30752] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 911.354094][T30752] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 911.362086][T30752] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 911.370076][T30752] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 911.378068][T30752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 911.386063][T30752] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 911.394078][T30752] 20:16:20 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994270424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 911.434745][T30768] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 911.446593][T30768] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. 20:16:20 executing program 2: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370b48018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:20 executing program 4: unshare(0x6c060000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) (async) r0 = socket(0x10, 0x3, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, 0x0) (async) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000080)=@generic={0x0, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) (async) sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, 0x0, 0x0) (async) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), r1) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000002c0)={&(0x7f00000003c0)={0x80, r3, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0x6c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x3}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_team\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'tunl0\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6gre0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x40084}, 0x8081) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000280)) sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4001000024000b0f00e40000a0cfffff01f10feb", @ANYRES32=r2, @ANYBLOB="00000000ffffffff000000f6090001006e6574656d00000010010200ca000000b0"], 0x140}}, 0x0) (async) r4 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x14e24, 0x0, @empty}, 0x1c) (async) connect$inet6(r4, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) (async) setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, 0x0, 0x0) (async) sendmmsg(r4, &(0x7f00000092c0), 0x4ff, 0x0) (async) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0) (async) sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000340)={&(0x7f0000000100), 0xc, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x1}, 0x4800) 20:16:20 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc601000110a2e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 911.624687][T30777] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 911.637980][T30777] netlink: 128944 bytes leftover after parsing attributes in process `syz-executor.1'. [ 911.671935][T30777] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 911.697432][T30777] CPU: 0 PID: 30777 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 911.707987][T30777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 911.718068][T30777] Call Trace: [ 911.721376][T30777] [ 911.724321][T30777] dump_stack_lvl+0xcd/0x134 [ 911.728968][T30777] sysfs_warn_dup.cold+0x1c/0x29 [ 911.733933][T30777] sysfs_do_create_link_sd+0x11e/0x140 [ 911.739405][T30777] sysfs_create_link+0x5f/0xc0 [ 911.744457][T30777] device_add+0x789/0x1ee0 [ 911.748910][T30777] ? wait_for_completion_io+0x270/0x270 [ 911.754482][T30777] ? minstrel_ht_alloc+0x4b/0xa10 [ 911.759541][T30777] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 911.765805][T30777] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 911.772062][T30777] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 911.778317][T30777] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 911.784320][T30777] wiphy_register+0x1e86/0x29a0 [ 911.789197][T30777] ? wiphy_unregister+0xbf0/0xbf0 [ 911.794259][T30777] ? minstrel_ht_alloc+0x52c/0xa10 [ 911.799400][T30777] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 911.805488][T30777] ieee80211_register_hw+0x1f16/0x3ed0 [ 911.810973][T30777] ? ieee80211_restart_hw+0x290/0x290 [ 911.816358][T30777] ? debug_object_destroy+0x210/0x210 [ 911.821834][T30777] ? memset+0x20/0x40 [ 911.825821][T30777] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 911.832074][T30777] ? __hrtimer_init+0x136/0x280 [ 911.836938][T30777] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 911.842687][T30777] ? hwsim_virtio_rx_work+0x350/0x350 [ 911.848068][T30777] ? hwsim_new_radio_nl+0x992/0x1080 [ 911.853364][T30777] ? memcpy+0x39/0x60 [ 911.857369][T30777] hwsim_new_radio_nl+0x9bc/0x1080 [ 911.862503][T30777] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 911.868420][T30777] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 911.874817][T30777] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 911.882216][T30777] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 911.889523][T30777] genl_family_rcv_msg_doit+0x228/0x320 [ 911.895084][T30777] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 911.902473][T30777] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 911.908739][T30777] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 911.914987][T30777] ? ns_capable+0xd9/0x100 [ 911.919423][T30777] genl_rcv_msg+0x328/0x580 [ 911.923936][T30777] ? genl_get_cmd+0x480/0x480 [ 911.928620][T30777] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 911.934529][T30777] ? lock_release+0x720/0x720 [ 911.939220][T30777] netlink_rcv_skb+0x153/0x420 [ 911.943989][T30777] ? genl_get_cmd+0x480/0x480 [ 911.948679][T30777] ? netlink_ack+0xa60/0xa60 [ 911.953285][T30777] ? netlink_deliver_tap+0x1b1/0xc30 [ 911.958585][T30777] genl_rcv+0x24/0x40 [ 911.962571][T30777] netlink_unicast+0x539/0x7e0 [ 911.967347][T30777] ? netlink_attachskb+0x880/0x880 [ 911.972465][T30777] ? __virt_addr_valid+0x5d/0x2d0 [ 911.977500][T30777] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 911.983752][T30777] ? __phys_addr_symbol+0x2c/0x70 [ 911.988809][T30777] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 911.994556][T30777] ? __check_object_size+0x16e/0x310 [ 911.999874][T30777] netlink_sendmsg+0x904/0xe00 [ 912.004667][T30777] ? netlink_unicast+0x7e0/0x7e0 [ 912.009617][T30777] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 912.015872][T30777] ? netlink_unicast+0x7e0/0x7e0 [ 912.020819][T30777] sock_sendmsg+0xcf/0x120 [ 912.025247][T30777] ____sys_sendmsg+0x6e8/0x810 [ 912.030027][T30777] ? kernel_sendmsg+0x50/0x50 [ 912.034718][T30777] ? do_recvmmsg+0x6d0/0x6d0 [ 912.039319][T30777] ? lock_chain_count+0x20/0x20 [ 912.044185][T30777] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 912.050187][T30777] ___sys_sendmsg+0xf3/0x170 [ 912.054789][T30777] ? sendmsg_copy_msghdr+0x160/0x160 [ 912.060089][T30777] ? lock_downgrade+0x6e0/0x6e0 [ 912.064967][T30777] ? __fget_files+0x28c/0x470 [ 912.069666][T30777] ? __fget_light+0xea/0x280 [ 912.074271][T30777] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 912.080530][T30777] __sys_sendmsg+0xe5/0x1b0 [ 912.085056][T30777] ? __sys_sendmsg_sock+0x30/0x30 [ 912.090107][T30777] ? syscall_enter_from_user_mode+0x21/0x70 [ 912.096018][T30777] do_syscall_64+0x35/0xb0 [ 912.100449][T30777] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 912.106523][T30777] RIP: 0033:0x7f4b423c2059 [ 912.110940][T30777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 912.130639][T30777] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 912.139058][T30777] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 912.147048][T30777] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 912.155033][T30777] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 912.163266][T30777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 912.171238][T30777] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 912.179230][T30777] [ 912.219631][T30779] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 912.271412][T30779] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 912.284730][T30779] CPU: 0 PID: 30779 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 912.295279][T30779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 912.305350][T30779] Call Trace: [ 912.308633][T30779] [ 912.311565][T30779] dump_stack_lvl+0xcd/0x134 [ 912.316169][T30779] sysfs_warn_dup.cold+0x1c/0x29 [ 912.321114][T30779] sysfs_do_create_link_sd+0x11e/0x140 [ 912.326588][T30779] sysfs_create_link+0x5f/0xc0 [ 912.331368][T30779] device_add+0x789/0x1ee0 [ 912.335799][T30779] ? wait_for_completion_io+0x270/0x270 [ 912.341353][T30779] ? minstrel_ht_alloc+0x4b/0xa10 [ 912.346482][T30779] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 912.352743][T30779] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 912.358997][T30779] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 912.365251][T30779] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 912.371255][T30779] wiphy_register+0x1e86/0x29a0 [ 912.376130][T30779] ? wiphy_unregister+0xbf0/0xbf0 [ 912.381158][T30779] ? minstrel_ht_alloc+0x52c/0xa10 [ 912.386293][T30779] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 912.392375][T30779] ieee80211_register_hw+0x1f16/0x3ed0 [ 912.397860][T30779] ? ieee80211_restart_hw+0x290/0x290 [ 912.403243][T30779] ? debug_object_destroy+0x210/0x210 [ 912.408631][T30779] ? memset+0x20/0x40 [ 912.412619][T30779] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 912.418872][T30779] ? __hrtimer_init+0x136/0x280 [ 912.423739][T30779] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 912.429485][T30779] ? hwsim_virtio_rx_work+0x350/0x350 [ 912.434868][T30779] ? hwsim_new_radio_nl+0x992/0x1080 [ 912.440161][T30779] ? memcpy+0x39/0x60 [ 912.444154][T30779] hwsim_new_radio_nl+0x9bc/0x1080 [ 912.449277][T30779] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 912.455190][T30779] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 912.461614][T30779] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 912.469007][T30779] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 912.476308][T30779] genl_family_rcv_msg_doit+0x228/0x320 [ 912.481954][T30779] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 912.489342][T30779] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 912.495606][T30779] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 912.501855][T30779] ? ns_capable+0xd9/0x100 [ 912.506283][T30779] genl_rcv_msg+0x328/0x580 [ 912.510802][T30779] ? genl_get_cmd+0x480/0x480 [ 912.515485][T30779] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 912.521399][T30779] ? lock_release+0x720/0x720 [ 912.526209][T30779] netlink_rcv_skb+0x153/0x420 [ 912.530983][T30779] ? genl_get_cmd+0x480/0x480 [ 912.535675][T30779] ? netlink_ack+0xa60/0xa60 [ 912.540279][T30779] ? netlink_deliver_tap+0x1b1/0xc30 [ 912.545575][T30779] genl_rcv+0x24/0x40 [ 912.549562][T30779] netlink_unicast+0x539/0x7e0 [ 912.554339][T30779] ? netlink_attachskb+0x880/0x880 [ 912.559455][T30779] ? __virt_addr_valid+0x5d/0x2d0 [ 912.564490][T30779] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 912.570748][T30779] ? __phys_addr_symbol+0x2c/0x70 [ 912.575777][T30779] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 912.581512][T30779] ? __check_object_size+0x16e/0x310 [ 912.586808][T30779] netlink_sendmsg+0x904/0xe00 [ 912.591589][T30779] ? netlink_unicast+0x7e0/0x7e0 [ 912.596628][T30779] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 912.602884][T30779] ? netlink_unicast+0x7e0/0x7e0 [ 912.607858][T30779] sock_sendmsg+0xcf/0x120 [ 912.612285][T30779] ____sys_sendmsg+0x6e8/0x810 [ 912.617062][T30779] ? kernel_sendmsg+0x50/0x50 [ 912.621744][T30779] ? do_recvmmsg+0x6d0/0x6d0 [ 912.626343][T30779] ? lock_chain_count+0x20/0x20 [ 912.631205][T30779] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 912.637194][T30779] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 912.643446][T30779] ? futex_wait+0x533/0x670 [ 912.647965][T30779] ___sys_sendmsg+0xf3/0x170 [ 912.652595][T30779] ? sendmsg_copy_msghdr+0x160/0x160 [ 912.657920][T30779] ? lock_downgrade+0x6e0/0x6e0 [ 912.663229][T30779] ? __fget_files+0x28c/0x470 [ 912.667924][T30779] ? __fget_light+0xea/0x280 [ 912.672525][T30779] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 912.678780][T30779] __sys_sendmsg+0xe5/0x1b0 [ 912.683293][T30779] ? __sys_sendmsg_sock+0x30/0x30 [ 912.688345][T30779] ? syscall_enter_from_user_mode+0x21/0x70 [ 912.694294][T30779] do_syscall_64+0x35/0xb0 [ 912.698717][T30779] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 912.704634][T30779] RIP: 0033:0x7f0982948059 [ 912.709064][T30779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 912.729651][T30779] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 912.738339][T30779] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 912.746310][T30779] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 912.754282][T30779] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 912.762252][T30779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 912.770225][T30779] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 912.778216][T30779] [ 912.816217][T30781] netlink: 'syz-executor.2': attribute type 11 has an invalid length. [ 912.840244][T30781] netlink: 128944 bytes leftover after parsing attributes in process `syz-executor.2'. [ 912.866002][T30781] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 912.873762][T30781] CPU: 0 PID: 30781 Comm: syz-executor.2 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 912.884389][T30781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 912.894480][T30781] Call Trace: [ 912.897782][T30781] [ 912.900742][T30781] dump_stack_lvl+0xcd/0x134 [ 912.905362][T30781] sysfs_warn_dup.cold+0x1c/0x29 [ 912.910332][T30781] sysfs_do_create_link_sd+0x11e/0x140 [ 912.915824][T30781] sysfs_create_link+0x5f/0xc0 [ 912.920620][T30781] device_add+0x789/0x1ee0 [ 912.925068][T30781] ? wait_for_completion_io+0x270/0x270 [ 912.930642][T30781] ? lock_downgrade+0x6e0/0x6e0 [ 912.935519][T30781] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 912.941793][T30781] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 912.948049][T30781] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 912.954298][T30781] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 912.960297][T30781] wiphy_register+0x1e86/0x29a0 [ 912.965181][T30781] ? wiphy_unregister+0xbf0/0xbf0 [ 912.970230][T30781] ? minstrel_ht_alloc+0x52c/0xa10 [ 912.975372][T30781] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 912.981473][T30781] ieee80211_register_hw+0x1f16/0x3ed0 [ 912.986952][T30781] ? ieee80211_restart_hw+0x290/0x290 [ 912.992329][T30781] ? debug_object_destroy+0x210/0x210 [ 912.997713][T30781] ? memset+0x20/0x40 [ 913.001701][T30781] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 913.007945][T30781] ? __hrtimer_init+0x136/0x280 [ 913.012808][T30781] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 913.018547][T30781] ? hwsim_virtio_rx_work+0x350/0x350 [ 913.023933][T30781] ? hwsim_new_radio_nl+0x992/0x1080 [ 913.029240][T30781] ? memcpy+0x39/0x60 [ 913.033246][T30781] hwsim_new_radio_nl+0x9bc/0x1080 [ 913.038376][T30781] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 913.044291][T30781] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 913.050541][T30781] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 913.057920][T30781] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 913.065219][T30781] genl_family_rcv_msg_doit+0x228/0x320 [ 913.070777][T30781] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 913.078154][T30781] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 913.084411][T30781] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 913.090659][T30781] ? ns_capable+0xd9/0x100 [ 913.095083][T30781] genl_rcv_msg+0x328/0x580 [ 913.099596][T30781] ? genl_get_cmd+0x480/0x480 [ 913.104277][T30781] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 913.110183][T30781] ? lock_release+0x720/0x720 [ 913.114875][T30781] netlink_rcv_skb+0x153/0x420 [ 913.119647][T30781] ? genl_get_cmd+0x480/0x480 [ 913.124327][T30781] ? netlink_ack+0xa60/0xa60 [ 913.128933][T30781] ? netlink_deliver_tap+0x1b1/0xc30 [ 913.134224][T30781] genl_rcv+0x24/0x40 [ 913.138209][T30781] netlink_unicast+0x539/0x7e0 [ 913.142984][T30781] ? netlink_attachskb+0x880/0x880 [ 913.148092][T30781] ? __virt_addr_valid+0x5d/0x2d0 [ 913.153120][T30781] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 913.159365][T30781] ? __phys_addr_symbol+0x2c/0x70 [ 913.164392][T30781] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 913.170113][T30781] ? __check_object_size+0x16e/0x310 [ 913.175403][T30781] netlink_sendmsg+0x904/0xe00 [ 913.180182][T30781] ? netlink_unicast+0x7e0/0x7e0 [ 913.185130][T30781] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 913.191381][T30781] ? netlink_unicast+0x7e0/0x7e0 [ 913.196322][T30781] sock_sendmsg+0xcf/0x120 [ 913.200741][T30781] ____sys_sendmsg+0x6e8/0x810 [ 913.205512][T30781] ? kernel_sendmsg+0x50/0x50 [ 913.210191][T30781] ? do_recvmmsg+0x6d0/0x6d0 [ 913.214802][T30781] ? lock_chain_count+0x20/0x20 [ 913.219664][T30781] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 913.225648][T30781] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 913.231892][T30781] ? futex_wait+0x533/0x670 [ 913.236418][T30781] ___sys_sendmsg+0xf3/0x170 [ 913.241020][T30781] ? sendmsg_copy_msghdr+0x160/0x160 [ 913.246314][T30781] ? lock_downgrade+0x6e0/0x6e0 [ 913.251179][T30781] ? __fget_files+0x28c/0x470 [ 913.255866][T30781] ? __fget_light+0xea/0x280 [ 913.260461][T30781] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 913.266723][T30781] __sys_sendmsg+0xe5/0x1b0 [ 913.271231][T30781] ? __sys_sendmsg_sock+0x30/0x30 [ 913.276272][T30781] ? syscall_enter_from_user_mode+0x21/0x70 [ 913.282178][T30781] do_syscall_64+0x35/0xb0 [ 913.286604][T30781] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 913.292501][T30781] RIP: 0033:0x7fbfd5013059 [ 913.296936][T30781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 913.316548][T30781] RSP: 002b:00007fbfd3988168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 913.324962][T30781] RAX: ffffffffffffffda RBX: 00007fbfd5125f60 RCX: 00007fbfd5013059 [ 913.332934][T30781] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 913.340910][T30781] RBP: 00007fbfd506d08d R08: 0000000000000000 R09: 0000000000000000 [ 913.348884][T30781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 913.356860][T30781] R13: 00007ffec3a9244f R14: 00007fbfd3988300 R15: 0000000000022000 [ 913.364852][T30781] [ 913.397214][T30785] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 913.418576][T30785] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. 20:16:22 executing program 0: unshare(0x6c060000) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept4$netrom(r0, 0x0, &(0x7f0000000200), 0x80000) splice(r0, &(0x7f00000001c0)=0x8, r2, &(0x7f0000000240)=0xffffffffffff9a4d, 0x7, 0x2) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) socket(0x0, 0x0, 0x0) r4 = socket(0x11, 0x0, 0x0) bind(r4, &(0x7f0000000080)=@generic={0x2a, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r4, 0x0, &(0x7f0000000180)) sendto$inet6(r3, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'}) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x400c058}, 0xc011) accept4(r5, &(0x7f0000000100)=@ethernet, &(0x7f0000000040)=0x80, 0x800) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0xc5, 0x0, 0x0) shutdown(r3, 0x1) splice(r3, 0x0, r1, 0x0, 0x406f408, 0x0) unshare(0x4020400) unshare(0x6c060000) (async) pipe(&(0x7f00000002c0)) (async) accept4$netrom(r0, 0x0, &(0x7f0000000200), 0x80000) (async) splice(r0, &(0x7f00000001c0)=0x8, r2, &(0x7f0000000240)=0xffffffffffff9a4d, 0x7, 0x2) (async) socket$inet6_tcp(0xa, 0x1, 0x0) (async) bind$inet6(r3, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) (async) socket(0x0, 0x0, 0x0) (async) socket(0x11, 0x0, 0x0) (async) bind(r4, &(0x7f0000000080)=@generic={0x2a, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) (async) getsockname$packet(r4, 0x0, &(0x7f0000000180)) (async) sendto$inet6(r3, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) (async) socket$inet_udplite(0x2, 0x2, 0x88) (async) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'}) (async) socket$netlink(0x10, 0x3, 0x0) (async) sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x400c058}, 0xc011) (async) accept4(r5, &(0x7f0000000100)=@ethernet, &(0x7f0000000040)=0x80, 0x800) (async) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0xc5, 0x0, 0x0) (async) shutdown(r3, 0x1) (async) splice(r3, 0x0, r1, 0x0, 0x406f408, 0x0) (async) unshare(0x4020400) (async) 20:16:22 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e371048018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:22 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994280424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:22 executing program 2: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370b48018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:22 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc601000110b2e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 913.618515][T30796] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 913.655534][T30796] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. [ 913.788403][T30798] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 913.807362][T30798] netlink: 128940 bytes leftover after parsing attributes in process `syz-executor.1'. [ 913.822403][T30799] syz-executor.0: vmalloc error: size 4096, page order 0, failed to allocate pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1 20:16:22 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc601000110c2e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 913.868076][T30798] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 913.870442][T30799] CPU: 0 PID: 30799 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 913.886336][T30799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 913.896410][T30799] Call Trace: [ 913.899712][T30799] [ 913.902651][T30799] dump_stack_lvl+0xcd/0x134 [ 913.907255][T30799] warn_alloc.cold+0x9b/0x189 [ 913.911951][T30799] ? zone_watermark_ok_safe+0x290/0x290 [ 913.917527][T30799] ? __kmalloc_node+0x62/0x390 [ 913.922334][T30799] ? __vmalloc_node_range+0x7bf/0x1060 [ 913.927822][T30799] __vmalloc_node_range+0xe1e/0x1060 [ 913.933139][T30799] ? vfree_atomic+0xe0/0xe0 [ 913.937655][T30799] ? rcu_read_lock_sched_held+0x3a/0x70 [ 913.943226][T30799] ? kernel_clone+0xe7/0xab0 [ 913.947835][T30799] copy_process+0x926/0x7300 [ 913.952435][T30799] ? kernel_clone+0xe7/0xab0 [ 913.957036][T30799] ? lock_chain_count+0x20/0x20 [ 913.961899][T30799] ? lock_chain_count+0x20/0x20 [ 913.966765][T30799] ? find_held_lock+0x2d/0x110 [ 913.971547][T30799] ? __cleanup_sighand+0xb0/0xb0 [ 913.976493][T30799] ? lock_downgrade+0x6e0/0x6e0 [ 913.981355][T30799] ? __lock_acquire+0x1655/0x5470 [ 913.986385][T30799] ? kernel_clone+0x314/0xab0 [ 913.991069][T30799] kernel_clone+0xe7/0xab0 [ 913.995489][T30799] ? create_io_thread+0xf0/0xf0 [ 914.000338][T30799] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 914.006327][T30799] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 914.012330][T30799] ? find_held_lock+0x2d/0x110 [ 914.017104][T30799] __do_sys_clone+0xc8/0x110 [ 914.021696][T30799] ? kernel_clone+0xab0/0xab0 [ 914.026372][T30799] ? lock_downgrade+0x6e0/0x6e0 [ 914.031239][T30799] ? syscall_enter_from_user_mode+0x21/0x70 [ 914.037144][T30799] do_syscall_64+0x35/0xb0 [ 914.041562][T30799] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 914.047465][T30799] RIP: 0033:0x7ff5c0e32481 [ 914.051881][T30799] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00 [ 914.071491][T30799] RSP: 002b:00007ffd7465eee8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 914.079910][T30799] RAX: ffffffffffffffda RBX: 00007ff5bf5f9700 RCX: 00007ff5c0e32481 [ 914.087884][T30799] RDX: 00007ff5bf5f99d0 RSI: 00007ff5bf5f92f0 RDI: 00000000003d0f00 [ 914.095855][T30799] RBP: 00007ffd7465f130 R08: 00007ff5bf5f9700 R09: 00007ff5bf5f9700 [ 914.103824][T30799] R10: 00007ff5bf5f99d0 R11: 0000000000000206 R12: 00007ffd7465ef9e [ 914.111797][T30799] R13: 00007ffd7465ef9f R14: 00007ff5bf5f9300 R15: 0000000000022000 [ 914.119789][T30799] [ 914.129270][T30798] CPU: 0 PID: 30798 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 914.137291][T30799] Mem-Info: [ 914.139802][T30798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 914.139820][T30798] Call Trace: [ 914.139829][T30798] [ 914.139840][T30798] dump_stack_lvl+0xcd/0x134 [ 914.143086][T30799] active_anon:1114 inactive_anon:90062 isolated_anon:0 [ 914.143086][T30799] active_file:4835 inactive_file:35428 isolated_file:0 [ 914.143086][T30799] unevictable:768 dirty:13 writeback:0 [ 914.143086][T30799] slab_reclaimable:22320 slab_unreclaimable:118471 [ 914.143086][T30799] mapped:28214 shmem:2854 pagetables:727 bounce:0 [ 914.143086][T30799] kernel_misc_reclaimable:0 [ 914.143086][T30799] free:1328289 free_pcp:11166 free_cma:0 [ 914.153010][T30798] sysfs_warn_dup.cold+0x1c/0x29 [ 914.153042][T30798] sysfs_do_create_link_sd+0x11e/0x140 [ 914.153072][T30798] sysfs_create_link+0x5f/0xc0 [ 914.153100][T30798] device_add+0x789/0x1ee0 [ 914.153132][T30798] ? wait_for_completion_io+0x270/0x270 [ 914.153161][T30798] ? minstrel_ht_alloc+0x4b/0xa10 [ 914.153190][T30798] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 914.153220][T30798] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 914.153254][T30798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.254591][T30798] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 914.260597][T30798] wiphy_register+0x1e86/0x29a0 [ 914.265464][T30798] ? wiphy_unregister+0xbf0/0xbf0 [ 914.270541][T30798] ? minstrel_ht_alloc+0x52c/0xa10 [ 914.275670][T30798] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 914.281745][T30798] ieee80211_register_hw+0x1f16/0x3ed0 [ 914.287237][T30798] ? ieee80211_restart_hw+0x290/0x290 [ 914.292611][T30798] ? debug_object_destroy+0x210/0x210 [ 914.297993][T30798] ? memset+0x20/0x40 [ 914.301986][T30798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.308240][T30798] ? __hrtimer_init+0x136/0x280 [ 914.313098][T30798] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 914.318836][T30798] ? hwsim_virtio_rx_work+0x350/0x350 [ 914.324211][T30798] ? hwsim_new_radio_nl+0x992/0x1080 [ 914.329501][T30798] ? memcpy+0x39/0x60 [ 914.333491][T30798] hwsim_new_radio_nl+0x9bc/0x1080 [ 914.338611][T30798] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 914.344541][T30798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.350787][T30798] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 914.358183][T30798] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 914.365477][T30798] genl_family_rcv_msg_doit+0x228/0x320 [ 914.371032][T30798] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 914.378412][T30798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.384671][T30798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.390918][T30798] ? ns_capable+0xd9/0x100 [ 914.395342][T30798] genl_rcv_msg+0x328/0x580 [ 914.399850][T30798] ? genl_get_cmd+0x480/0x480 [ 914.404533][T30798] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 914.410432][T30798] ? lock_release+0x720/0x720 [ 914.415119][T30798] netlink_rcv_skb+0x153/0x420 [ 914.419884][T30798] ? genl_get_cmd+0x480/0x480 [ 914.424564][T30798] ? netlink_ack+0xa60/0xa60 [ 914.429162][T30798] ? netlink_deliver_tap+0x1b1/0xc30 [ 914.434454][T30798] genl_rcv+0x24/0x40 [ 914.438438][T30798] netlink_unicast+0x539/0x7e0 [ 914.443211][T30798] ? netlink_attachskb+0x880/0x880 [ 914.448336][T30798] ? __virt_addr_valid+0x5d/0x2d0 [ 914.453365][T30798] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 914.459617][T30798] ? __phys_addr_symbol+0x2c/0x70 [ 914.464645][T30798] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 914.470372][T30798] ? __check_object_size+0x16e/0x310 [ 914.475665][T30798] netlink_sendmsg+0x904/0xe00 [ 914.480450][T30798] ? netlink_unicast+0x7e0/0x7e0 [ 914.485394][T30798] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.491643][T30798] ? netlink_unicast+0x7e0/0x7e0 [ 914.496583][T30798] sock_sendmsg+0xcf/0x120 [ 914.501009][T30798] ____sys_sendmsg+0x6e8/0x810 [ 914.505783][T30798] ? kernel_sendmsg+0x50/0x50 [ 914.510461][T30798] ? do_recvmmsg+0x6d0/0x6d0 [ 914.515060][T30798] ? lock_chain_count+0x20/0x20 [ 914.519917][T30798] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 914.525910][T30798] ___sys_sendmsg+0xf3/0x170 [ 914.530508][T30798] ? sendmsg_copy_msghdr+0x160/0x160 [ 914.535806][T30798] ? lock_downgrade+0x6e0/0x6e0 [ 914.540674][T30798] ? __fget_files+0x28c/0x470 [ 914.545364][T30798] ? __fget_light+0xea/0x280 [ 914.549956][T30798] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 914.556207][T30798] __sys_sendmsg+0xe5/0x1b0 [ 914.560716][T30798] ? __sys_sendmsg_sock+0x30/0x30 [ 914.565767][T30798] ? syscall_enter_from_user_mode+0x21/0x70 [ 914.571675][T30798] do_syscall_64+0x35/0xb0 [ 914.576092][T30798] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 914.581992][T30798] RIP: 0033:0x7f4b423c2059 [ 914.586410][T30798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 914.606017][T30798] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 914.614435][T30798] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 914.622405][T30798] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 914.630378][T30798] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 914.638349][T30798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 914.646321][T30798] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 914.654326][T30798] [ 914.673000][T30802] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 914.702602][T30802] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 914.723873][T30802] CPU: 0 PID: 30802 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 914.734420][T30802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 914.744503][T30802] Call Trace: [ 914.747795][T30802] [ 914.750790][T30802] dump_stack_lvl+0xcd/0x134 [ 914.755411][T30802] sysfs_warn_dup.cold+0x1c/0x29 [ 914.759202][T30799] Node 0 active_anon:4444kB inactive_anon:357176kB active_file:19264kB inactive_file:141712kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:112856kB dirty:52kB writeback:0kB shmem:8940kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 348160kB writeback_tmp:0kB kernel_stack:11008kB pagetables:2968kB all_unreclaimable? no [ 914.760369][T30802] sysfs_do_create_link_sd+0x11e/0x140 [ 914.760410][T30802] sysfs_create_link+0x5f/0xc0 [ 914.793726][T30799] Node 1 active_anon:12kB inactive_anon:936kB active_file:76kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:2484kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:4kB all_unreclaimable? no [ 914.797478][T30802] device_add+0x789/0x1ee0 [ 914.797521][T30802] ? wait_for_completion_io+0x270/0x270 [ 914.797553][T30802] ? lock_downgrade+0x6e0/0x6e0 [ 914.797583][T30802] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 914.802588][T30799] Node 0 [ 914.831248][T30802] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 914.831288][T30802] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.831321][T30802] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 914.831361][T30802] wiphy_register+0x1e86/0x29a0 [ 914.831398][T30802] ? wiphy_unregister+0xbf0/0xbf0 [ 914.831423][T30802] ? minstrel_ht_alloc+0x52c/0xa10 [ 914.831465][T30802] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 914.836186][T30799] DMA free:15360kB boost:0kB min:200kB low:248kB high:296kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 914.841450][T30802] ieee80211_register_hw+0x1f16/0x3ed0 [ 914.841501][T30802] ? ieee80211_restart_hw+0x290/0x290 [ 914.841533][T30802] ? debug_object_destroy+0x210/0x210 [ 914.856311][T30799] lowmem_reserve[]: [ 914.861796][T30802] ? memset+0x20/0x40 [ 914.861832][T30802] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.861872][T30802] ? __hrtimer_init+0x136/0x280 [ 914.861905][T30802] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 914.870186][T30799] 0 [ 914.874136][T30802] ? hwsim_virtio_rx_work+0x350/0x350 20:16:23 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e372f48018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 914.874173][T30802] ? hwsim_new_radio_nl+0x992/0x1080 [ 914.874204][T30802] ? memcpy+0x39/0x60 [ 914.880945][T30799] 2645 [ 914.884082][T30802] hwsim_new_radio_nl+0x9bc/0x1080 [ 914.884126][T30802] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 914.884170][T30802] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.890146][T30799] 2645 [ 914.895339][T30802] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 914.895381][T30802] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 914.895423][T30802] genl_family_rcv_msg_doit+0x228/0x320 [ 914.895453][T30802] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 914.895485][T30802] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.895529][T30802] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.924084][T30799] 2645 [ 914.927372][T30802] ? ns_capable+0xd9/0x100 [ 914.927415][T30802] genl_rcv_msg+0x328/0x580 [ 914.927452][T30802] ? genl_get_cmd+0x480/0x480 [ 914.927478][T30802] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 914.927514][T30802] ? lock_release+0x720/0x720 [ 914.927542][T30802] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 914.927582][T30802] netlink_rcv_skb+0x153/0x420 [ 914.927610][T30802] ? genl_get_cmd+0x480/0x480 [ 914.927639][T30802] ? netlink_ack+0xa60/0xa60 [ 914.934430][T30799] 2645 [ 914.938368][T30802] ? netlink_deliver_tap+0x1b1/0xc30 [ 914.938407][T30802] genl_rcv+0x24/0x40 [ 914.938432][T30802] netlink_unicast+0x539/0x7e0 [ 914.938467][T30802] ? netlink_attachskb+0x880/0x880 [ 914.938491][T30802] ? __virt_addr_valid+0x5d/0x2d0 [ 914.938521][T30802] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 20:16:24 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994290424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 914.938552][T30802] ? __phys_addr_symbol+0x2c/0x70 [ 914.943386][T30799] [ 914.946319][T30802] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 914.946356][T30802] ? __check_object_size+0x16e/0x310 [ 914.946392][T30802] netlink_sendmsg+0x904/0xe00 [ 914.946427][T30802] ? netlink_unicast+0x7e0/0x7e0 [ 914.946460][T30802] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 914.953666][T30799] Node 0 [ 914.957546][T30802] ? netlink_unicast+0x7e0/0x7e0 [ 914.957580][T30802] sock_sendmsg+0xcf/0x120 [ 914.957612][T30802] ____sys_sendmsg+0x6e8/0x810 [ 914.957643][T30802] ? kernel_sendmsg+0x50/0x50 [ 914.957668][T30802] ? do_recvmmsg+0x6d0/0x6d0 [ 914.957696][T30802] ? lock_chain_count+0x20/0x20 [ 914.957725][T30802] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 914.957773][T30802] ___sys_sendmsg+0xf3/0x170 [ 914.957805][T30802] ? sendmsg_copy_msghdr+0x160/0x160 [ 914.957841][T30802] ? lock_downgrade+0x6e0/0x6e0 20:16:24 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e373548018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 914.965160][T30799] DMA32 free:1352812kB boost:0kB min:35676kB low:44592kB high:53508kB reserved_highatomic:0KB active_anon:4444kB inactive_anon:357176kB active_file:19264kB inactive_file:141712kB unevictable:1536kB writepending:52kB present:3129332kB managed:2716664kB mlocked:0kB bounce:0kB free_pcp:41684kB local_pcp:21248kB free_cma:0kB [ 914.966060][T30802] ? __fget_files+0x28c/0x470 [ 914.966104][T30802] ? __fget_light+0xea/0x280 [ 914.966134][T30802] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 914.966173][T30802] __sys_sendmsg+0xe5/0x1b0 [ 914.966205][T30802] ? __sys_sendmsg_sock+0x30/0x30 [ 914.972569][T30799] lowmem_reserve[]: [ 914.976869][T30802] ? syscall_enter_from_user_mode+0x21/0x70 [ 914.976915][T30802] do_syscall_64+0x35/0xb0 [ 914.976941][T30802] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 914.976972][T30802] RIP: 0033:0x7f0982948059 [ 914.976995][T30802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 914.977019][T30802] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 914.983157][T30799] 0 [ 914.983763][T30802] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 914.983785][T30802] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 914.983802][T30802] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 914.983820][T30802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 914.989731][T30799] 0 [ 914.994808][T30802] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 914.994851][T30802] [ 915.040938][T30803] netlink: 'syz-executor.2': attribute type 11 has an invalid length. [ 915.355541][T30799] 0 [ 915.360467][T30803] netlink: 128944 bytes leftover after parsing attributes in process `syz-executor.2'. [ 915.388379][T30799] 0 0 [ 915.391814][T30799] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:400kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 915.420550][T30803] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 915.429090][T30799] lowmem_reserve[]: 0 0 0 0 0 [ 915.434014][T30803] CPU: 0 PID: 30803 Comm: syz-executor.2 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 915.444538][T30803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 915.454611][T30803] Call Trace: [ 915.457906][T30803] [ 915.460863][T30803] dump_stack_lvl+0xcd/0x134 [ 915.465485][T30803] sysfs_warn_dup.cold+0x1c/0x29 [ 915.470447][T30803] sysfs_do_create_link_sd+0x11e/0x140 [ 915.475936][T30803] sysfs_create_link+0x5f/0xc0 [ 915.480725][T30803] device_add+0x789/0x1ee0 [ 915.485175][T30803] ? wait_for_completion_io+0x270/0x270 [ 915.490747][T30803] ? lock_downgrade+0x6e0/0x6e0 [ 915.495627][T30803] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 915.501910][T30803] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 915.508181][T30803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 915.514470][T30803] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 915.520489][T30803] wiphy_register+0x1e86/0x29a0 [ 915.525376][T30803] ? wiphy_unregister+0xbf0/0xbf0 [ 915.530431][T30803] ? minstrel_ht_alloc+0x52c/0xa10 [ 915.535586][T30803] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 915.541690][T30803] ieee80211_register_hw+0x1f16/0x3ed0 [ 915.547189][T30803] ? ieee80211_restart_hw+0x290/0x290 [ 915.552587][T30803] ? debug_object_destroy+0x210/0x210 [ 915.557993][T30803] ? memset+0x20/0x40 [ 915.562347][T30803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 915.568618][T30803] ? __hrtimer_init+0x136/0x280 [ 915.573497][T30803] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 915.579267][T30803] ? hwsim_virtio_rx_work+0x350/0x350 [ 915.584670][T30803] ? hwsim_new_radio_nl+0x992/0x1080 [ 915.589981][T30803] ? memcpy+0x39/0x60 [ 915.593992][T30803] hwsim_new_radio_nl+0x9bc/0x1080 [ 915.599136][T30803] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 915.605072][T30803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 915.611342][T30803] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 915.618741][T30803] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 915.626061][T30803] genl_family_rcv_msg_doit+0x228/0x320 [ 915.631638][T30803] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 915.639039][T30803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 915.645326][T30803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 915.651593][T30803] ? ns_capable+0xd9/0x100 [ 915.656042][T30803] genl_rcv_msg+0x328/0x580 [ 915.660574][T30803] ? genl_get_cmd+0x480/0x480 [ 915.665273][T30803] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 915.671202][T30803] ? lock_release+0x720/0x720 [ 915.675906][T30803] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 915.681748][T30803] netlink_rcv_skb+0x153/0x420 [ 915.686539][T30803] ? genl_get_cmd+0x480/0x480 [ 915.691238][T30803] ? netlink_ack+0xa60/0xa60 [ 915.695861][T30803] ? netlink_deliver_tap+0x1b1/0xc30 [ 915.701180][T30803] genl_rcv+0x24/0x40 [ 915.705185][T30803] netlink_unicast+0x539/0x7e0 [ 915.709979][T30803] ? netlink_attachskb+0x880/0x880 [ 915.715109][T30803] ? __virt_addr_valid+0x5d/0x2d0 [ 915.720158][T30803] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 915.726428][T30803] ? __phys_addr_symbol+0x2c/0x70 [ 915.731479][T30803] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 915.737228][T30803] ? __check_object_size+0x16e/0x310 [ 915.742544][T30803] netlink_sendmsg+0x904/0xe00 [ 915.747343][T30803] ? netlink_unicast+0x7e0/0x7e0 [ 915.752317][T30803] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 915.758587][T30803] ? netlink_unicast+0x7e0/0x7e0 [ 915.763550][T30803] sock_sendmsg+0xcf/0x120 [ 915.767992][T30803] ____sys_sendmsg+0x6e8/0x810 [ 915.772788][T30803] ? kernel_sendmsg+0x50/0x50 [ 915.777487][T30803] ? do_recvmmsg+0x6d0/0x6d0 [ 915.782103][T30803] ? lock_chain_count+0x20/0x20 [ 915.786979][T30803] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 915.792999][T30803] ___sys_sendmsg+0xf3/0x170 [ 915.797885][T30803] ? sendmsg_copy_msghdr+0x160/0x160 [ 915.803214][T30803] ? lock_downgrade+0x6e0/0x6e0 [ 915.808129][T30803] ? __fget_files+0x28c/0x470 [ 915.812846][T30803] ? __fget_light+0xea/0x280 [ 915.817469][T30803] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 915.823744][T30803] __sys_sendmsg+0xe5/0x1b0 [ 915.828276][T30803] ? __sys_sendmsg_sock+0x30/0x30 [ 915.833359][T30803] ? syscall_enter_from_user_mode+0x21/0x70 [ 915.835862][T30799] Node 1 [ 915.839289][T30803] do_syscall_64+0x35/0xb0 [ 915.839324][T30803] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 915.839359][T30803] RIP: 0033:0x7fbfd5013059 [ 915.839383][T30803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 915.842504][T30799] Normal free:3948832kB boost:0kB min:54224kB low:67780kB high:81336kB reserved_highatomic:0KB active_anon:12kB inactive_anon:936kB active_file:76kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:1448kB local_pcp:0kB free_cma:0kB [ 915.846713][T30803] RSP: 002b:00007fbfd3988168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 915.846743][T30803] RAX: ffffffffffffffda RBX: 00007fbfd5125f60 RCX: 00007fbfd5013059 [ 915.846763][T30803] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 915.846780][T30803] RBP: 00007fbfd506d08d R08: 0000000000000000 R09: 0000000000000000 [ 915.846796][T30803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 915.846811][T30803] R13: 00007ffec3a9244f R14: 00007fbfd3988300 R15: 0000000000022000 [ 915.846846][T30803] [ 915.929048][T30817] netlink: 'syz-executor.3': attribute type 11 has an invalid length. 20:16:24 executing program 2: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370b48018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 915.985209][T30817] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. 20:16:25 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e371048018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 916.029827][T30799] lowmem_reserve[]: 0 0 0 0 0 [ 916.078625][T30799] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 916.113557][T30822] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. 20:16:25 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc601000110d2e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 916.124357][T30799] Node 0 DMA32: 1713*4kB (UME) 1740*8kB (UME) 1077*16kB (UME) 447*32kB (UM) 99*64kB (UME) 27*128kB (UM) 8*256kB (UM) 54*512kB (UME) 35*1024kB (U) 25*2048kB (UM) 286*4096kB (UM) = 1350292kB [ 916.153212][T30799] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 916.172917][T30822] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 916.188313][T30799] Node 1 Normal: 152*4kB (UME) 54*8kB (UME) 35*16kB (UME) 153*32kB (UE) 75*64kB (UME) 30*128kB (UME) 12*256kB (UME) 5*512kB (UME) 2*1024kB (ME) 3*2048kB (UME) 957*4096kB (M) = 3948832kB [ 916.192378][T30822] CPU: 0 PID: 30822 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 916.217409][T30822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 916.227493][T30822] Call Trace: [ 916.228909][T30799] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 916.230787][T30822] [ 916.230801][T30822] dump_stack_lvl+0xcd/0x134 [ 916.230838][T30822] sysfs_warn_dup.cold+0x1c/0x29 [ 916.230868][T30822] sysfs_do_create_link_sd+0x11e/0x140 [ 916.254395][T30799] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 916.258310][T30822] sysfs_create_link+0x5f/0xc0 [ 916.258346][T30822] device_add+0x789/0x1ee0 [ 916.258383][T30822] ? wait_for_completion_io+0x270/0x270 [ 916.258417][T30822] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 916.258448][T30822] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 916.258481][T30822] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 916.258510][T30822] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 916.284082][T30799] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 916.288714][T30822] wiphy_register+0x1e86/0x29a0 [ 916.288766][T30822] ? wiphy_unregister+0xbf0/0xbf0 [ 916.288791][T30822] ? minstrel_ht_alloc+0x52c/0xa10 [ 916.288832][T30822] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 916.288869][T30822] ieee80211_register_hw+0x1f16/0x3ed0 [ 916.288911][T30822] ? ieee80211_restart_hw+0x290/0x290 [ 916.300970][T30799] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 916.301396][T30822] ? debug_object_destroy+0x210/0x210 [ 916.315744][T30799] 15390 total pagecache pages [ 916.316903][T30822] ? memset+0x20/0x40 [ 916.316937][T30822] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 916.316972][T30822] ? __hrtimer_init+0x136/0x280 [ 916.324248][T30799] 0 pages in swap cache [ 916.326827][T30822] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 916.326888][T30822] ? hwsim_virtio_rx_work+0x350/0x350 [ 916.326914][T30822] ? hwsim_new_radio_nl+0x992/0x1080 [ 916.326942][T30822] ? memcpy+0x39/0x60 [ 916.326975][T30822] hwsim_new_radio_nl+0x9bc/0x1080 [ 916.327010][T30822] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 916.334533][T30799] Swap cache stats: add 0, delete 0, find 0/0 [ 916.338202][T30822] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 916.338239][T30822] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 916.338274][T30822] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 916.338311][T30822] genl_family_rcv_msg_doit+0x228/0x320 [ 916.338342][T30822] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 916.348623][T30799] Free swap = 0kB [ 916.349182][T30822] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 916.370313][T30799] Total swap = 0kB [ 916.372808][T30822] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 20:16:25 executing program 0: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011082e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 916.372848][T30822] ? ns_capable+0xd9/0x100 [ 916.390976][T30799] 2097051 pages RAM [ 916.393790][T30822] genl_rcv_msg+0x328/0x580 [ 916.393833][T30822] ? genl_get_cmd+0x480/0x480 [ 916.393860][T30822] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 916.408734][T30799] 0 pages HighMem/MovableOnly [ 916.413559][T30822] ? lock_release+0x720/0x720 [ 916.413604][T30822] netlink_rcv_skb+0x153/0x420 [ 916.413632][T30822] ? genl_get_cmd+0x480/0x480 [ 916.413658][T30822] ? netlink_ack+0xa60/0xa60 [ 916.413690][T30822] ? netlink_deliver_tap+0x1b1/0xc30 [ 916.413717][T30822] genl_rcv+0x24/0x40 [ 916.413741][T30822] netlink_unicast+0x539/0x7e0 [ 916.413773][T30822] ? netlink_attachskb+0x880/0x880 [ 916.413798][T30822] ? __virt_addr_valid+0x5d/0x2d0 [ 916.413828][T30822] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 916.413861][T30822] ? __phys_addr_symbol+0x2c/0x70 [ 916.413889][T30822] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 916.413920][T30822] ? __check_object_size+0x16e/0x310 [ 916.413953][T30822] netlink_sendmsg+0x904/0xe00 [ 916.413986][T30822] ? netlink_unicast+0x7e0/0x7e0 [ 916.432589][T30799] 384540 pages reserved [ 916.439520][T30822] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 916.439565][T30822] ? netlink_unicast+0x7e0/0x7e0 [ 916.439592][T30822] sock_sendmsg+0xcf/0x120 [ 916.439623][T30822] ____sys_sendmsg+0x6e8/0x810 [ 916.439654][T30822] ? kernel_sendmsg+0x50/0x50 [ 916.439679][T30822] ? do_recvmmsg+0x6d0/0x6d0 [ 916.463806][T30799] 0 pages cma reserved [ 916.469800][T30822] ? lock_chain_count+0x20/0x20 [ 916.469839][T30822] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 916.469882][T30822] ___sys_sendmsg+0xf3/0x170 [ 916.469914][T30822] ? sendmsg_copy_msghdr+0x160/0x160 [ 916.469949][T30822] ? lock_downgrade+0x6e0/0x6e0 [ 916.469996][T30822] ? __fget_files+0x28c/0x470 [ 916.470036][T30822] ? __fget_light+0xea/0x280 [ 916.655101][T30822] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 916.661388][T30822] __sys_sendmsg+0xe5/0x1b0 [ 916.665919][T30822] ? __sys_sendmsg_sock+0x30/0x30 [ 916.670985][T30822] ? syscall_enter_from_user_mode+0x21/0x70 [ 916.676914][T30822] do_syscall_64+0x35/0xb0 [ 916.681350][T30822] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 916.687274][T30822] RIP: 0033:0x7f0982948059 [ 916.691706][T30822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 916.711359][T30822] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 916.719804][T30822] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 916.727795][T30822] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 916.735789][T30822] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 916.743786][T30822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 916.751779][T30822] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 916.759797][T30822] 20:16:25 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69942a0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 916.794293][T30824] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 916.812182][T30824] netlink: 128900 bytes leftover after parsing attributes in process `syz-executor.1'. [ 916.853177][T30824] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 916.861707][T30824] CPU: 1 PID: 30824 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 916.872243][T30824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 916.882337][T30824] Call Trace: [ 916.885614][T30824] [ 916.888545][T30824] dump_stack_lvl+0xcd/0x134 [ 916.893157][T30824] sysfs_warn_dup.cold+0x1c/0x29 [ 916.898116][T30824] sysfs_do_create_link_sd+0x11e/0x140 [ 916.903576][T30824] sysfs_create_link+0x5f/0xc0 [ 916.908365][T30824] device_add+0x789/0x1ee0 [ 916.912785][T30824] ? wait_for_completion_io+0x270/0x270 [ 916.918333][T30824] ? lock_downgrade+0x6e0/0x6e0 [ 916.923205][T30824] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 916.929471][T30824] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 916.935747][T30824] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 916.942010][T30824] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 916.947998][T30824] wiphy_register+0x1e86/0x29a0 [ 916.952865][T30824] ? wiphy_unregister+0xbf0/0xbf0 [ 916.957910][T30824] ? minstrel_ht_alloc+0x52c/0xa10 [ 916.963038][T30824] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 916.969137][T30824] ieee80211_register_hw+0x1f16/0x3ed0 [ 916.974623][T30824] ? ieee80211_restart_hw+0x290/0x290 [ 916.980023][T30824] ? debug_object_destroy+0x210/0x210 [ 916.985420][T30824] ? memset+0x20/0x40 [ 916.989404][T30824] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 916.995645][T30824] ? __hrtimer_init+0x136/0x280 [ 917.000500][T30824] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 917.006270][T30824] ? hwsim_virtio_rx_work+0x350/0x350 [ 917.011659][T30824] ? hwsim_new_radio_nl+0x992/0x1080 [ 917.016963][T30824] ? memcpy+0x39/0x60 [ 917.020954][T30824] hwsim_new_radio_nl+0x9bc/0x1080 [ 917.026071][T30824] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 917.032055][T30824] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 917.038327][T30824] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 917.045722][T30824] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 917.053020][T30824] genl_family_rcv_msg_doit+0x228/0x320 [ 917.058576][T30824] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 917.066319][T30824] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 917.072584][T30824] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 917.078828][T30824] ? ns_capable+0xd9/0x100 [ 917.083276][T30824] genl_rcv_msg+0x328/0x580 [ 917.087812][T30824] ? genl_get_cmd+0x480/0x480 [ 917.092499][T30824] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 917.098391][T30824] ? lock_release+0x720/0x720 [ 917.103071][T30824] netlink_rcv_skb+0x153/0x420 [ 917.107834][T30824] ? genl_get_cmd+0x480/0x480 [ 917.112519][T30824] ? netlink_ack+0xa60/0xa60 [ 917.117129][T30824] ? netlink_deliver_tap+0x1b1/0xc30 [ 917.122419][T30824] genl_rcv+0x24/0x40 [ 917.126417][T30824] netlink_unicast+0x539/0x7e0 [ 917.131191][T30824] ? netlink_attachskb+0x880/0x880 [ 917.136329][T30824] ? __virt_addr_valid+0x5d/0x2d0 [ 917.141378][T30824] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 917.147616][T30824] ? __phys_addr_symbol+0x2c/0x70 [ 917.152636][T30824] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 917.158353][T30824] ? __check_object_size+0x16e/0x310 [ 917.163642][T30824] netlink_sendmsg+0x904/0xe00 [ 917.168447][T30824] ? netlink_unicast+0x7e0/0x7e0 [ 917.173386][T30824] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 917.179625][T30824] ? netlink_unicast+0x7e0/0x7e0 [ 917.184555][T30824] sock_sendmsg+0xcf/0x120 [ 917.188968][T30824] ____sys_sendmsg+0x6e8/0x810 [ 917.193732][T30824] ? kernel_sendmsg+0x50/0x50 [ 917.198416][T30824] ? do_recvmmsg+0x6d0/0x6d0 [ 917.203030][T30824] ? lock_chain_count+0x20/0x20 [ 917.207883][T30824] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 917.213866][T30824] ___sys_sendmsg+0xf3/0x170 [ 917.218457][T30824] ? sendmsg_copy_msghdr+0x160/0x160 [ 917.223768][T30824] ? lock_downgrade+0x6e0/0x6e0 [ 917.228623][T30824] ? __fget_files+0x28c/0x470 [ 917.233310][T30824] ? __fget_light+0xea/0x280 [ 917.237897][T30824] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 917.244153][T30824] __sys_sendmsg+0xe5/0x1b0 [ 917.248675][T30824] ? __sys_sendmsg_sock+0x30/0x30 [ 917.253709][T30824] ? syscall_enter_from_user_mode+0x21/0x70 [ 917.259608][T30824] do_syscall_64+0x35/0xb0 [ 917.264045][T30824] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 917.269969][T30824] RIP: 0033:0x7f4b423c2059 [ 917.274382][T30824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 917.294018][T30824] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 917.302540][T30824] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 917.310506][T30824] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 917.318471][T30824] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 917.326443][T30824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 917.334449][T30824] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 917.342439][T30824] [ 917.370076][T30828] netlink: 'syz-executor.4': attribute type 11 has an invalid length. [ 917.385179][T30828] netlink: 128940 bytes leftover after parsing attributes in process `syz-executor.4'. 20:16:26 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370843018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 917.411506][T30828] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 917.421943][T30828] CPU: 1 PID: 30828 Comm: syz-executor.4 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 917.432502][T30828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 917.442667][T30828] Call Trace: [ 917.445961][T30828] [ 917.448910][T30828] dump_stack_lvl+0xcd/0x134 [ 917.453528][T30828] sysfs_warn_dup.cold+0x1c/0x29 [ 917.458493][T30828] sysfs_do_create_link_sd+0x11e/0x140 [ 917.463983][T30828] sysfs_create_link+0x5f/0xc0 [ 917.468772][T30828] device_add+0x789/0x1ee0 [ 917.473210][T30828] ? wait_for_completion_io+0x270/0x270 [ 917.478779][T30828] ? lock_downgrade+0x6e0/0x6e0 [ 917.483650][T30828] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 917.489889][T30828] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 917.496138][T30828] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 917.502425][T30828] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 917.508438][T30828] wiphy_register+0x1e86/0x29a0 [ 917.513318][T30828] ? wiphy_unregister+0xbf0/0xbf0 [ 917.518347][T30828] ? minstrel_ht_alloc+0x52c/0xa10 [ 917.523495][T30828] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 917.529599][T30828] ieee80211_register_hw+0x1f16/0x3ed0 [ 917.535134][T30828] ? ieee80211_restart_hw+0x290/0x290 [ 917.540522][T30828] ? debug_object_destroy+0x210/0x210 [ 917.545988][T30828] ? memset+0x20/0x40 [ 917.549990][T30828] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 917.556231][T30828] ? __hrtimer_init+0x136/0x280 [ 917.561109][T30828] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 917.566850][T30828] ? hwsim_virtio_rx_work+0x350/0x350 [ 917.572220][T30828] ? hwsim_new_radio_nl+0x992/0x1080 [ 917.577524][T30828] ? memcpy+0x39/0x60 [ 917.581523][T30828] hwsim_new_radio_nl+0x9bc/0x1080 [ 917.586640][T30828] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 917.592551][T30828] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 917.598839][T30828] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 917.606213][T30828] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 917.613498][T30828] genl_family_rcv_msg_doit+0x228/0x320 [ 917.619044][T30828] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 917.626423][T30828] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 917.632695][T30828] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 917.638961][T30828] ? ns_capable+0xd9/0x100 [ 917.643386][T30828] genl_rcv_msg+0x328/0x580 [ 917.647898][T30828] ? genl_get_cmd+0x480/0x480 [ 917.652582][T30828] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 917.658491][T30828] ? lock_release+0x720/0x720 [ 917.663190][T30828] netlink_rcv_skb+0x153/0x420 [ 917.667970][T30828] ? genl_get_cmd+0x480/0x480 [ 917.672653][T30828] ? netlink_ack+0xa60/0xa60 [ 917.677266][T30828] ? netlink_deliver_tap+0x1b1/0xc30 [ 917.682554][T30828] genl_rcv+0x24/0x40 [ 917.686537][T30828] netlink_unicast+0x539/0x7e0 [ 917.691314][T30828] ? netlink_attachskb+0x880/0x880 [ 917.696422][T30828] ? __virt_addr_valid+0x5d/0x2d0 [ 917.701482][T30828] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 917.707751][T30828] ? __phys_addr_symbol+0x2c/0x70 [ 917.712784][T30828] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 917.718530][T30828] ? __check_object_size+0x16e/0x310 [ 917.723843][T30828] netlink_sendmsg+0x904/0xe00 [ 917.728645][T30828] ? netlink_unicast+0x7e0/0x7e0 [ 917.733584][T30828] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 917.739830][T30828] ? netlink_unicast+0x7e0/0x7e0 [ 917.744769][T30828] sock_sendmsg+0xcf/0x120 [ 917.749208][T30828] ____sys_sendmsg+0x6e8/0x810 [ 917.754004][T30828] ? kernel_sendmsg+0x50/0x50 [ 917.758701][T30828] ? do_recvmmsg+0x6d0/0x6d0 [ 917.763287][T30828] ? lock_chain_count+0x20/0x20 [ 917.768133][T30828] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 917.774126][T30828] ___sys_sendmsg+0xf3/0x170 [ 917.778746][T30828] ? sendmsg_copy_msghdr+0x160/0x160 [ 917.784047][T30828] ? lock_downgrade+0x6e0/0x6e0 [ 917.788904][T30828] ? __fget_files+0x28c/0x470 [ 917.793582][T30828] ? __fget_light+0xea/0x280 [ 917.798170][T30828] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 917.804420][T30828] __sys_sendmsg+0xe5/0x1b0 [ 917.808953][T30828] ? __sys_sendmsg_sock+0x30/0x30 [ 917.814009][T30828] ? syscall_enter_from_user_mode+0x21/0x70 [ 917.819908][T30828] do_syscall_64+0x35/0xb0 [ 917.824323][T30828] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 917.830216][T30828] RIP: 0033:0x7f840d47b059 [ 917.834644][T30828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 917.854252][T30828] RSP: 002b:00007f840bdf0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 917.862705][T30828] RAX: ffffffffffffffda RBX: 00007f840d58df60 RCX: 00007f840d47b059 [ 917.870688][T30828] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 917.878661][T30828] RBP: 00007f840d4d508d R08: 0000000000000000 R09: 0000000000000000 [ 917.886656][T30828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 917.894637][T30828] R13: 00007ffc2e2100cf R14: 00007f840bdf0300 R15: 0000000000022000 [ 917.902639][T30828] 20:16:26 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e371048018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 917.929169][T30826] netlink: 'syz-executor.2': attribute type 11 has an invalid length. [ 917.947671][T30826] netlink: 128944 bytes leftover after parsing attributes in process `syz-executor.2'. [ 917.988233][T30826] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 918.005955][T30826] CPU: 0 PID: 30826 Comm: syz-executor.2 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 918.016514][T30826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 918.026603][T30826] Call Trace: [ 918.029902][T30826] [ 918.032846][T30826] dump_stack_lvl+0xcd/0x134 [ 918.037549][T30826] sysfs_warn_dup.cold+0x1c/0x29 [ 918.042510][T30826] sysfs_do_create_link_sd+0x11e/0x140 [ 918.048001][T30826] sysfs_create_link+0x5f/0xc0 [ 918.052812][T30826] device_add+0x789/0x1ee0 [ 918.057244][T30826] ? wait_for_completion_io+0x270/0x270 [ 918.062816][T30826] ? lock_downgrade+0x6e0/0x6e0 [ 918.067691][T30826] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 918.073959][T30826] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 918.080231][T30826] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 918.086505][T30826] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 918.092518][T30826] wiphy_register+0x1e86/0x29a0 [ 918.097393][T30826] ? wiphy_unregister+0xbf0/0xbf0 [ 918.102443][T30826] ? minstrel_ht_alloc+0x52c/0xa10 [ 918.107596][T30826] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 918.113688][T30826] ieee80211_register_hw+0x1f16/0x3ed0 [ 918.119168][T30826] ? ieee80211_restart_hw+0x290/0x290 [ 918.124569][T30826] ? debug_object_destroy+0x210/0x210 [ 918.129982][T30826] ? memset+0x20/0x40 [ 918.133994][T30826] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 918.140249][T30826] ? __hrtimer_init+0x136/0x280 [ 918.145128][T30826] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 918.150891][T30826] ? hwsim_virtio_rx_work+0x350/0x350 [ 918.156309][T30826] ? hwsim_new_radio_nl+0x992/0x1080 [ 918.161622][T30826] ? memcpy+0x39/0x60 [ 918.165638][T30826] hwsim_new_radio_nl+0x9bc/0x1080 [ 918.170784][T30826] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 918.176713][T30826] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 918.182986][T30826] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 918.190382][T30826] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 918.197707][T30826] genl_family_rcv_msg_doit+0x228/0x320 [ 918.203276][T30826] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 918.210652][T30826] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 918.216939][T30826] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 918.223212][T30826] ? ns_capable+0xd9/0x100 [ 918.227662][T30826] genl_rcv_msg+0x328/0x580 [ 918.232195][T30826] ? genl_get_cmd+0x480/0x480 [ 918.236897][T30826] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 918.242825][T30826] ? lock_release+0x720/0x720 [ 918.247535][T30826] netlink_rcv_skb+0x153/0x420 [ 918.252324][T30826] ? genl_get_cmd+0x480/0x480 [ 918.257027][T30826] ? netlink_ack+0xa60/0xa60 [ 918.261649][T30826] ? netlink_deliver_tap+0x1b1/0xc30 [ 918.266967][T30826] genl_rcv+0x24/0x40 [ 918.270971][T30826] netlink_unicast+0x539/0x7e0 [ 918.275765][T30826] ? netlink_attachskb+0x880/0x880 [ 918.280894][T30826] ? __virt_addr_valid+0x5d/0x2d0 [ 918.285947][T30826] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 918.292216][T30826] ? __phys_addr_symbol+0x2c/0x70 [ 918.297266][T30826] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 918.303014][T30826] ? __check_object_size+0x16e/0x310 [ 918.308332][T30826] netlink_sendmsg+0x904/0xe00 [ 918.313136][T30826] ? netlink_unicast+0x7e0/0x7e0 [ 918.318108][T30826] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 918.324372][T30826] ? netlink_unicast+0x7e0/0x7e0 [ 918.329319][T30826] sock_sendmsg+0xcf/0x120 [ 918.333756][T30826] ____sys_sendmsg+0x6e8/0x810 [ 918.338526][T30826] ? kernel_sendmsg+0x50/0x50 [ 918.343230][T30826] ? do_recvmmsg+0x6d0/0x6d0 [ 918.347846][T30826] ? lock_chain_count+0x20/0x20 [ 918.352729][T30826] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 918.358834][T30826] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 918.365106][T30826] ? futex_wait+0x533/0x670 [ 918.369641][T30826] ___sys_sendmsg+0xf3/0x170 [ 918.374281][T30826] ? sendmsg_copy_msghdr+0x160/0x160 [ 918.379604][T30826] ? lock_downgrade+0x6e0/0x6e0 [ 918.384487][T30826] ? __fget_files+0x28c/0x470 [ 918.389179][T30826] ? __fget_light+0xea/0x280 [ 918.393791][T30826] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 918.400066][T30826] __sys_sendmsg+0xe5/0x1b0 [ 918.404622][T30826] ? __sys_sendmsg_sock+0x30/0x30 [ 918.409669][T30826] ? syscall_enter_from_user_mode+0x21/0x70 [ 918.415600][T30826] do_syscall_64+0x35/0xb0 [ 918.420047][T30826] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 918.425974][T30826] RIP: 0033:0x7fbfd5013059 [ 918.430406][T30826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 918.450039][T30826] RSP: 002b:00007fbfd3988168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 918.458482][T30826] RAX: ffffffffffffffda RBX: 00007fbfd5125f60 RCX: 00007fbfd5013059 [ 918.466476][T30826] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 918.474462][T30826] RBP: 00007fbfd506d08d R08: 0000000000000000 R09: 0000000000000000 [ 918.482434][T30826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 918.490426][T30826] R13: 00007ffec3a9244f R14: 00007fbfd3988300 R15: 0000000000022000 [ 918.498447][T30826] [ 918.526546][T30830] netlink: 'syz-executor.3': attribute type 11 has an invalid length. 20:16:27 executing program 2: syz_open_procfs$namespace(0x0, &(0x7f0000002980)='ns/mnt\x00') [ 918.539335][T30830] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. 20:16:27 executing program 2: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000003040)={&(0x7f0000001fc0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4}]}}, &(0x7f0000002040)=""/4096, 0x2a, 0x1000, 0x1}, 0x20) 20:16:27 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001200), 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x0, 0x3, &(0x7f0000000000)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) ioctl$TUNSETLINK(r0, 0x400454ca, 0x20000000) ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000080)) 20:16:27 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc601000110e2e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 918.637485][T30832] netlink: 'syz-executor.0': attribute type 11 has an invalid length. [ 918.773079][T30834] __nla_validate_parse: 1 callbacks suppressed [ 918.773099][T30834] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 918.797484][T30834] sysfs: cannot create duplicate filename '/class/ieee80211/.!' 20:16:27 executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x1, 0x2, 0x1ff, 0x301}, 0x48) close(r0) 20:16:27 executing program 2: socketpair(0x18, 0x0, 0x8a, &(0x7f0000000000)) [ 918.817440][T30834] CPU: 1 PID: 30834 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 918.827997][T30834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 918.838085][T30834] Call Trace: [ 918.841385][T30834] [ 918.844338][T30834] dump_stack_lvl+0xcd/0x134 [ 918.848973][T30834] sysfs_warn_dup.cold+0x1c/0x29 [ 918.853951][T30834] sysfs_do_create_link_sd+0x11e/0x140 [ 918.859452][T30834] sysfs_create_link+0x5f/0xc0 [ 918.864260][T30834] device_add+0x789/0x1ee0 [ 918.868714][T30834] ? wait_for_completion_io+0x270/0x270 [ 918.874305][T30834] ? lock_downgrade+0x6e0/0x6e0 [ 918.879196][T30834] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 918.885477][T30834] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 918.891751][T30834] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 918.898030][T30834] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 918.904064][T30834] wiphy_register+0x1e86/0x29a0 [ 918.908961][T30834] ? wiphy_unregister+0xbf0/0xbf0 [ 918.914012][T30834] ? minstrel_ht_alloc+0x52c/0xa10 20:16:27 executing program 2: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000003040)={&(0x7f0000001fc0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x2}]}}, &(0x7f0000002040)=""/4096, 0x2a, 0x1000, 0x1}, 0x20) [ 918.919189][T30834] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 918.925383][T30834] ieee80211_register_hw+0x1f16/0x3ed0 [ 918.930892][T30834] ? ieee80211_restart_hw+0x290/0x290 [ 918.936298][T30834] ? debug_object_destroy+0x210/0x210 [ 918.941712][T30834] ? memset+0x20/0x40 [ 918.945818][T30834] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 918.952096][T30834] ? __hrtimer_init+0x136/0x280 [ 918.956964][T30834] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 918.962719][T30834] ? hwsim_virtio_rx_work+0x350/0x350 [ 918.968123][T30834] ? hwsim_new_radio_nl+0x992/0x1080 20:16:27 executing program 2: setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0xffffffffffffff66) [ 918.973443][T30834] ? memcpy+0x39/0x60 [ 918.977462][T30834] hwsim_new_radio_nl+0x9bc/0x1080 [ 918.982617][T30834] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 918.988586][T30834] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 918.994867][T30834] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 919.002240][T30834] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 919.009529][T30834] genl_family_rcv_msg_doit+0x228/0x320 [ 919.015084][T30834] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 919.022453][T30834] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 919.028716][T30834] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 919.034959][T30834] ? ns_capable+0xd9/0x100 [ 919.039390][T30834] genl_rcv_msg+0x328/0x580 [ 919.043893][T30834] ? genl_get_cmd+0x480/0x480 [ 919.048565][T30834] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 919.054459][T30834] ? lock_release+0x720/0x720 [ 919.059135][T30834] netlink_rcv_skb+0x153/0x420 [ 919.063901][T30834] ? genl_get_cmd+0x480/0x480 [ 919.068578][T30834] ? netlink_ack+0xa60/0xa60 [ 919.073170][T30834] ? netlink_deliver_tap+0x1b1/0xc30 [ 919.078476][T30834] genl_rcv+0x24/0x40 [ 919.082484][T30834] netlink_unicast+0x539/0x7e0 [ 919.087247][T30834] ? netlink_attachskb+0x880/0x880 [ 919.092350][T30834] ? __virt_addr_valid+0x5d/0x2d0 [ 919.097370][T30834] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 919.103606][T30834] ? __phys_addr_symbol+0x2c/0x70 [ 919.108629][T30834] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 919.114373][T30834] ? __check_object_size+0x16e/0x310 [ 919.119658][T30834] netlink_sendmsg+0x904/0xe00 [ 919.124427][T30834] ? netlink_unicast+0x7e0/0x7e0 [ 919.129361][T30834] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 919.135614][T30834] ? netlink_unicast+0x7e0/0x7e0 [ 919.140548][T30834] sock_sendmsg+0xcf/0x120 [ 919.144976][T30834] ____sys_sendmsg+0x6e8/0x810 [ 919.149784][T30834] ? kernel_sendmsg+0x50/0x50 [ 919.154486][T30834] ? do_recvmmsg+0x6d0/0x6d0 [ 919.159110][T30834] ? lock_chain_count+0x20/0x20 [ 919.163991][T30834] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 919.170010][T30834] ___sys_sendmsg+0xf3/0x170 [ 919.174613][T30834] ? sendmsg_copy_msghdr+0x160/0x160 [ 919.179901][T30834] ? lock_downgrade+0x6e0/0x6e0 [ 919.184758][T30834] ? __fget_files+0x28c/0x470 [ 919.189436][T30834] ? __fget_light+0xea/0x280 [ 919.194034][T30834] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 919.200278][T30834] __sys_sendmsg+0xe5/0x1b0 [ 919.204779][T30834] ? __sys_sendmsg_sock+0x30/0x30 [ 919.209808][T30834] ? syscall_enter_from_user_mode+0x21/0x70 [ 919.215712][T30834] do_syscall_64+0x35/0xb0 [ 919.220130][T30834] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 919.226063][T30834] RIP: 0033:0x7f0982948059 [ 919.230485][T30834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 919.250089][T30834] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 919.258500][T30834] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 919.266465][T30834] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 20:16:28 executing program 0: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011082e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 919.274429][T30834] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 919.282404][T30834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 919.290394][T30834] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 919.298376][T30834] 20:16:28 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69942b0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 919.330791][T30836] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 919.355691][T30836] netlink: 130228 bytes leftover after parsing attributes in process `syz-executor.1'. [ 919.377504][T30836] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 919.401304][T30836] CPU: 1 PID: 30836 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 919.411861][T30836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 919.421938][T30836] Call Trace: [ 919.425216][T30836] [ 919.428145][T30836] dump_stack_lvl+0xcd/0x134 [ 919.432737][T30836] sysfs_warn_dup.cold+0x1c/0x29 [ 919.437698][T30836] sysfs_do_create_link_sd+0x11e/0x140 [ 919.443162][T30836] sysfs_create_link+0x5f/0xc0 [ 919.447927][T30836] device_add+0x789/0x1ee0 [ 919.452357][T30836] ? wait_for_completion_io+0x270/0x270 [ 919.457931][T30836] ? lock_downgrade+0x6e0/0x6e0 [ 919.462785][T30836] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 919.469035][T30836] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 919.475289][T30836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 919.481560][T30836] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 919.487549][T30836] wiphy_register+0x1e86/0x29a0 [ 919.492426][T30836] ? wiphy_unregister+0xbf0/0xbf0 [ 919.497463][T30836] ? minstrel_ht_alloc+0x52c/0xa10 [ 919.502590][T30836] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 919.508686][T30836] ieee80211_register_hw+0x1f16/0x3ed0 [ 919.514152][T30836] ? ieee80211_restart_hw+0x290/0x290 [ 919.519528][T30836] ? debug_object_destroy+0x210/0x210 [ 919.524932][T30836] ? memset+0x20/0x40 [ 919.528919][T30836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 919.535158][T30836] ? __hrtimer_init+0x136/0x280 [ 919.540007][T30836] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 919.545752][T30836] ? hwsim_virtio_rx_work+0x350/0x350 [ 919.551127][T30836] ? hwsim_new_radio_nl+0x992/0x1080 [ 919.556411][T30836] ? memcpy+0x39/0x60 [ 919.560412][T30836] hwsim_new_radio_nl+0x9bc/0x1080 [ 919.565547][T30836] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 919.571443][T30836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 919.577702][T30836] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 919.585072][T30836] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 919.592369][T30836] genl_family_rcv_msg_doit+0x228/0x320 [ 919.597921][T30836] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 919.605325][T30836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 919.611630][T30836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 919.617895][T30836] ? ns_capable+0xd9/0x100 [ 919.622310][T30836] genl_rcv_msg+0x328/0x580 [ 919.626816][T30836] ? genl_get_cmd+0x480/0x480 [ 919.631503][T30836] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 919.637409][T30836] ? lock_release+0x720/0x720 [ 919.642095][T30836] netlink_rcv_skb+0x153/0x420 [ 919.646855][T30836] ? genl_get_cmd+0x480/0x480 [ 919.651526][T30836] ? netlink_ack+0xa60/0xa60 [ 919.656206][T30836] ? netlink_deliver_tap+0x1b1/0xc30 [ 919.661486][T30836] genl_rcv+0x24/0x40 [ 919.665460][T30836] netlink_unicast+0x539/0x7e0 [ 919.670219][T30836] ? netlink_attachskb+0x880/0x880 [ 919.675323][T30836] ? __virt_addr_valid+0x5d/0x2d0 [ 919.680391][T30836] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 919.686634][T30836] ? __phys_addr_symbol+0x2c/0x70 [ 919.691750][T30836] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 919.697469][T30836] ? __check_object_size+0x16e/0x310 [ 919.702753][T30836] netlink_sendmsg+0x904/0xe00 [ 919.707522][T30836] ? netlink_unicast+0x7e0/0x7e0 [ 919.712466][T30836] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 919.718707][T30836] ? netlink_unicast+0x7e0/0x7e0 [ 919.723639][T30836] sock_sendmsg+0xcf/0x120 [ 919.728051][T30836] ____sys_sendmsg+0x6e8/0x810 [ 919.732812][T30836] ? kernel_sendmsg+0x50/0x50 [ 919.737483][T30836] ? do_recvmmsg+0x6d0/0x6d0 [ 919.742067][T30836] ? lock_chain_count+0x20/0x20 [ 919.746932][T30836] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 919.752916][T30836] ___sys_sendmsg+0xf3/0x170 [ 919.757504][T30836] ? sendmsg_copy_msghdr+0x160/0x160 [ 919.763226][T30836] ? lock_downgrade+0x6e0/0x6e0 [ 919.768080][T30836] ? __fget_files+0x28c/0x470 [ 919.772761][T30836] ? __fget_light+0xea/0x280 [ 919.777343][T30836] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 919.783586][T30836] __sys_sendmsg+0xe5/0x1b0 [ 919.788085][T30836] ? __sys_sendmsg_sock+0x30/0x30 [ 919.793121][T30836] ? syscall_enter_from_user_mode+0x21/0x70 [ 919.799041][T30836] do_syscall_64+0x35/0xb0 [ 919.803457][T30836] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 919.809368][T30836] RIP: 0033:0x7f4b423c2059 [ 919.813776][T30836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 919.833379][T30836] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 919.841790][T30836] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 919.849772][T30836] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 919.857737][T30836] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 919.865701][T30836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 919.873671][T30836] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 919.881671][T30836] 20:16:28 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370848028000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 919.914469][T30838] netlink: 'syz-executor.4': attribute type 11 has an invalid length. [ 919.930205][T30838] netlink: 128940 bytes leftover after parsing attributes in process `syz-executor.4'. [ 919.960144][T30838] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 919.969208][T30838] CPU: 1 PID: 30838 Comm: syz-executor.4 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 919.979747][T30838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 919.989826][T30838] Call Trace: [ 919.993124][T30838] [ 919.996078][T30838] dump_stack_lvl+0xcd/0x134 [ 920.000700][T30838] sysfs_warn_dup.cold+0x1c/0x29 [ 920.005664][T30838] sysfs_do_create_link_sd+0x11e/0x140 [ 920.011159][T30838] sysfs_create_link+0x5f/0xc0 [ 920.015957][T30838] device_add+0x789/0x1ee0 [ 920.020494][T30838] ? wait_for_completion_io+0x270/0x270 [ 920.026067][T30838] ? lock_downgrade+0x6e0/0x6e0 [ 920.030963][T30838] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 920.037257][T30838] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 920.043515][T30838] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 920.049782][T30838] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 920.055783][T30838] wiphy_register+0x1e86/0x29a0 [ 920.060663][T30838] ? wiphy_unregister+0xbf0/0xbf0 [ 920.065695][T30838] ? minstrel_ht_alloc+0x52c/0xa10 [ 920.070817][T30838] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 920.076890][T30838] ieee80211_register_hw+0x1f16/0x3ed0 [ 920.082392][T30838] ? ieee80211_restart_hw+0x290/0x290 [ 920.087773][T30838] ? debug_object_destroy+0x210/0x210 [ 920.093155][T30838] ? memset+0x20/0x40 [ 920.097144][T30838] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 920.103384][T30838] ? __hrtimer_init+0x136/0x280 [ 920.108268][T30838] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 920.113996][T30838] ? hwsim_virtio_rx_work+0x350/0x350 [ 920.119362][T30838] ? hwsim_new_radio_nl+0x992/0x1080 [ 920.124652][T30838] ? memcpy+0x39/0x60 [ 920.128659][T30838] hwsim_new_radio_nl+0x9bc/0x1080 [ 920.133778][T30838] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 920.139697][T30838] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 920.145937][T30838] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 920.153306][T30838] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 920.160590][T30838] genl_family_rcv_msg_doit+0x228/0x320 [ 920.166134][T30838] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 920.173511][T30838] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 920.179778][T30838] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 920.186021][T30838] ? ns_capable+0xd9/0x100 [ 920.190447][T30838] genl_rcv_msg+0x328/0x580 [ 920.194981][T30838] ? genl_get_cmd+0x480/0x480 [ 920.199674][T30838] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 920.205569][T30838] ? lock_release+0x720/0x720 [ 920.210252][T30838] netlink_rcv_skb+0x153/0x420 [ 920.215037][T30838] ? genl_get_cmd+0x480/0x480 [ 920.219709][T30838] ? netlink_ack+0xa60/0xa60 [ 920.224384][T30838] ? netlink_deliver_tap+0x1b1/0xc30 [ 920.229664][T30838] genl_rcv+0x24/0x40 [ 920.233645][T30838] netlink_unicast+0x539/0x7e0 [ 920.238414][T30838] ? netlink_attachskb+0x880/0x880 [ 920.243531][T30838] ? __virt_addr_valid+0x5d/0x2d0 [ 920.248550][T30838] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 920.254787][T30838] ? __phys_addr_symbol+0x2c/0x70 [ 920.259891][T30838] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 920.265605][T30838] ? __check_object_size+0x16e/0x310 [ 920.270891][T30838] netlink_sendmsg+0x904/0xe00 [ 920.275665][T30838] ? netlink_unicast+0x7e0/0x7e0 [ 920.280606][T30838] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 920.286854][T30838] ? netlink_unicast+0x7e0/0x7e0 [ 920.291810][T30838] sock_sendmsg+0xcf/0x120 [ 920.296240][T30838] ____sys_sendmsg+0x6e8/0x810 [ 920.301007][T30838] ? kernel_sendmsg+0x50/0x50 [ 920.305680][T30838] ? do_recvmmsg+0x6d0/0x6d0 [ 920.310267][T30838] ? lock_chain_count+0x20/0x20 [ 920.315117][T30838] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 920.321122][T30838] ___sys_sendmsg+0xf3/0x170 [ 920.325712][T30838] ? sendmsg_copy_msghdr+0x160/0x160 [ 920.331000][T30838] ? lock_downgrade+0x6e0/0x6e0 [ 920.335857][T30838] ? __fget_files+0x28c/0x470 [ 920.340539][T30838] ? __fget_light+0xea/0x280 [ 920.345131][T30838] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 920.351372][T30838] __sys_sendmsg+0xe5/0x1b0 [ 920.355874][T30838] ? __sys_sendmsg_sock+0x30/0x30 [ 920.360901][T30838] ? syscall_enter_from_user_mode+0x21/0x70 [ 920.366798][T30838] do_syscall_64+0x35/0xb0 [ 920.371207][T30838] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 920.377099][T30838] RIP: 0033:0x7f840d47b059 [ 920.381503][T30838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 920.401107][T30838] RSP: 002b:00007f840bdf0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 920.409517][T30838] RAX: ffffffffffffffda RBX: 00007f840d58df60 RCX: 00007f840d47b059 [ 920.417505][T30838] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 920.425492][T30838] RBP: 00007f840d4d508d R08: 0000000000000000 R09: 0000000000000000 [ 920.433462][T30838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 920.441428][T30838] R13: 00007ffc2e2100cf R14: 00007f840bdf0300 R15: 0000000000022000 [ 920.449408][T30838] 20:16:29 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e371048018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:29 executing program 2: socketpair(0x28, 0x0, 0x0, &(0x7f00000000c0)) 20:16:29 executing program 2: bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={0xffffffffffffffff, 0x11, 0x1, 0x0, 0x0}, 0x20) [ 920.479691][T30846] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 920.495535][T30846] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. 20:16:29 executing program 2: r0 = socket$kcm(0x29, 0x5, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000002580)={0xffffffffffffffff}) close(r1) 20:16:29 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc601000110f2e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 920.595727][T30856] netlink: 'syz-executor.0': attribute type 11 has an invalid length. [ 920.607741][T30856] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.0'. 20:16:29 executing program 2: openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)) socket$kcm(0x29, 0x0, 0x0) 20:16:29 executing program 2: socketpair(0x1d, 0x0, 0x648fd042, &(0x7f0000000080)) [ 920.721325][T30858] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 920.733327][T30858] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 920.755629][T30858] CPU: 1 PID: 30858 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 20:16:29 executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x1, 0x2, 0x1ff, 0x301}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r0, 0x0, 0x0, 0x4}, 0x20) [ 920.766180][T30858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 920.776260][T30858] Call Trace: [ 920.779560][T30858] [ 920.782526][T30858] dump_stack_lvl+0xcd/0x134 [ 920.787182][T30858] sysfs_warn_dup.cold+0x1c/0x29 [ 920.792154][T30858] sysfs_do_create_link_sd+0x11e/0x140 [ 920.797649][T30858] sysfs_create_link+0x5f/0xc0 [ 920.802454][T30858] device_add+0x789/0x1ee0 [ 920.806914][T30858] ? wait_for_completion_io+0x270/0x270 [ 920.812497][T30858] ? lock_downgrade+0x6e0/0x6e0 [ 920.817383][T30858] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 920.823671][T30858] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 920.829950][T30858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 920.836214][T30858] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 920.842213][T30858] wiphy_register+0x1e86/0x29a0 [ 920.847103][T30858] ? wiphy_unregister+0xbf0/0xbf0 [ 920.852155][T30858] ? minstrel_ht_alloc+0x52c/0xa10 [ 920.857291][T30858] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 920.863369][T30858] ieee80211_register_hw+0x1f16/0x3ed0 [ 920.868847][T30858] ? ieee80211_restart_hw+0x290/0x290 [ 920.874227][T30858] ? debug_object_destroy+0x210/0x210 [ 920.879612][T30858] ? memset+0x20/0x40 [ 920.883601][T30858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 920.889847][T30858] ? __hrtimer_init+0x136/0x280 [ 920.894715][T30858] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 920.900474][T30858] ? hwsim_virtio_rx_work+0x350/0x350 [ 920.905881][T30858] ? hwsim_new_radio_nl+0x992/0x1080 [ 920.911188][T30858] ? memcpy+0x39/0x60 [ 920.915183][T30858] hwsim_new_radio_nl+0x9bc/0x1080 [ 920.920303][T30858] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 920.926215][T30858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 920.932464][T30858] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 920.939844][T30858] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 920.947138][T30858] genl_family_rcv_msg_doit+0x228/0x320 [ 920.952691][T30858] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 920.960067][T30858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 920.966324][T30858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 920.972568][T30858] ? ns_capable+0xd9/0x100 [ 920.976991][T30858] genl_rcv_msg+0x328/0x580 [ 920.981504][T30858] ? genl_get_cmd+0x480/0x480 [ 920.986185][T30858] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 920.992087][T30858] ? lock_release+0x720/0x720 [ 920.996772][T30858] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 921.002591][T30858] netlink_rcv_skb+0x153/0x420 [ 921.007361][T30858] ? genl_get_cmd+0x480/0x480 [ 921.012049][T30858] ? netlink_ack+0xa60/0xa60 [ 921.016647][T30858] ? netlink_deliver_tap+0x1b1/0xc30 [ 921.021944][T30858] genl_rcv+0x24/0x40 [ 921.025930][T30858] netlink_unicast+0x539/0x7e0 [ 921.030707][T30858] ? netlink_attachskb+0x880/0x880 [ 921.035817][T30858] ? __virt_addr_valid+0x5d/0x2d0 [ 921.040848][T30858] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 921.047096][T30858] ? __phys_addr_symbol+0x2c/0x70 [ 921.052123][T30858] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 921.057852][T30858] ? __check_object_size+0x16e/0x310 [ 921.063147][T30858] netlink_sendmsg+0x904/0xe00 [ 921.067919][T30858] ? netlink_unicast+0x7e0/0x7e0 [ 921.072866][T30858] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 921.079119][T30858] ? netlink_unicast+0x7e0/0x7e0 [ 921.084095][T30858] sock_sendmsg+0xcf/0x120 [ 921.088519][T30858] ____sys_sendmsg+0x6e8/0x810 [ 921.093289][T30858] ? kernel_sendmsg+0x50/0x50 [ 921.097966][T30858] ? do_recvmmsg+0x6d0/0x6d0 [ 921.102653][T30858] ? lock_chain_count+0x20/0x20 [ 921.107510][T30858] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 921.113504][T30858] ___sys_sendmsg+0xf3/0x170 [ 921.118099][T30858] ? sendmsg_copy_msghdr+0x160/0x160 [ 921.123392][T30858] ? lock_downgrade+0x6e0/0x6e0 [ 921.128268][T30858] ? __fget_files+0x28c/0x470 [ 921.132960][T30858] ? __fget_light+0xea/0x280 [ 921.137553][T30858] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 921.143804][T30858] __sys_sendmsg+0xe5/0x1b0 [ 921.148315][T30858] ? __sys_sendmsg_sock+0x30/0x30 [ 921.153355][T30858] ? syscall_enter_from_user_mode+0x21/0x70 [ 921.159266][T30858] do_syscall_64+0x35/0xb0 [ 921.163685][T30858] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 921.169585][T30858] RIP: 0033:0x7f0982948059 [ 921.174007][T30858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 921.193614][T30858] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 921.202069][T30858] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 921.210041][T30858] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 20:16:30 executing program 0: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011082e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 921.218017][T30858] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 921.225989][T30858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 921.233961][T30858] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 921.241955][T30858] 20:16:30 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r0) sendmsg$NLBL_UNLABEL_C_ACCEPT(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r1, 0x1}, 0x14}}, 0x0) [ 921.275137][T30860] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 921.286350][T30860] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. 20:16:30 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69942c0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 921.421594][T30860] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 921.438999][T30860] CPU: 0 PID: 30860 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 921.449528][T30860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 921.459615][T30860] Call Trace: [ 921.462924][T30860] [ 921.465859][T30860] dump_stack_lvl+0xcd/0x134 [ 921.470486][T30860] sysfs_warn_dup.cold+0x1c/0x29 [ 921.475431][T30860] sysfs_do_create_link_sd+0x11e/0x140 [ 921.480927][T30860] sysfs_create_link+0x5f/0xc0 [ 921.485713][T30860] device_add+0x789/0x1ee0 [ 921.490152][T30860] ? wait_for_completion_io+0x270/0x270 [ 921.495709][T30860] ? lock_downgrade+0x6e0/0x6e0 [ 921.500579][T30860] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 921.506831][T30860] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 921.513097][T30860] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 921.519354][T30860] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 921.525360][T30860] wiphy_register+0x1e86/0x29a0 [ 921.530239][T30860] ? wiphy_unregister+0xbf0/0xbf0 [ 921.535274][T30860] ? minstrel_ht_alloc+0x52c/0xa10 [ 921.540414][T30860] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 921.546501][T30860] ieee80211_register_hw+0x1f16/0x3ed0 [ 921.551986][T30860] ? ieee80211_restart_hw+0x290/0x290 [ 921.557369][T30860] ? debug_object_destroy+0x210/0x210 [ 921.562761][T30860] ? memset+0x20/0x40 [ 921.566756][T30860] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 921.573026][T30860] ? __hrtimer_init+0x136/0x280 [ 921.577893][T30860] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 921.583654][T30860] ? hwsim_virtio_rx_work+0x350/0x350 [ 921.589035][T30860] ? hwsim_new_radio_nl+0x992/0x1080 [ 921.594336][T30860] ? memcpy+0x39/0x60 [ 921.598334][T30860] hwsim_new_radio_nl+0x9bc/0x1080 [ 921.603462][T30860] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 921.609382][T30860] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 921.615639][T30860] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 921.623026][T30860] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 921.630329][T30860] genl_family_rcv_msg_doit+0x228/0x320 [ 921.635890][T30860] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 921.643280][T30860] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 921.649547][T30860] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 921.655798][T30860] ? ns_capable+0xd9/0x100 [ 921.660226][T30860] genl_rcv_msg+0x328/0x580 [ 921.664761][T30860] ? genl_get_cmd+0x480/0x480 [ 921.669469][T30860] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 921.675389][T30860] ? lock_release+0x720/0x720 [ 921.680092][T30860] netlink_rcv_skb+0x153/0x420 [ 921.684868][T30860] ? genl_get_cmd+0x480/0x480 [ 921.689555][T30860] ? netlink_ack+0xa60/0xa60 [ 921.694158][T30860] ? netlink_deliver_tap+0x1b1/0xc30 [ 921.699454][T30860] genl_rcv+0x24/0x40 [ 921.703448][T30860] netlink_unicast+0x539/0x7e0 [ 921.708227][T30860] ? netlink_attachskb+0x880/0x880 [ 921.713353][T30860] ? __virt_addr_valid+0x5d/0x2d0 [ 921.718389][T30860] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 921.724642][T30860] ? __phys_addr_symbol+0x2c/0x70 [ 921.729676][T30860] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 921.735406][T30860] ? __check_object_size+0x16e/0x310 [ 921.740732][T30860] netlink_sendmsg+0x904/0xe00 [ 921.745510][T30860] ? netlink_unicast+0x7e0/0x7e0 [ 921.750549][T30860] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 921.756808][T30860] ? netlink_unicast+0x7e0/0x7e0 [ 921.761753][T30860] sock_sendmsg+0xcf/0x120 [ 921.766181][T30860] ____sys_sendmsg+0x6e8/0x810 [ 921.770959][T30860] ? kernel_sendmsg+0x50/0x50 [ 921.775644][T30860] ? do_recvmmsg+0x6d0/0x6d0 [ 921.780254][T30860] ? lock_chain_count+0x20/0x20 [ 921.785124][T30860] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 921.791131][T30860] ___sys_sendmsg+0xf3/0x170 [ 921.795872][T30860] ? sendmsg_copy_msghdr+0x160/0x160 [ 921.801216][T30860] ? lock_downgrade+0x6e0/0x6e0 [ 921.806114][T30860] ? __fget_files+0x28c/0x470 [ 921.810828][T30860] ? __fget_light+0xea/0x280 [ 921.815444][T30860] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 921.821712][T30860] __sys_sendmsg+0xe5/0x1b0 [ 921.826235][T30860] ? __sys_sendmsg_sock+0x30/0x30 [ 921.831335][T30860] ? syscall_enter_from_user_mode+0x21/0x70 [ 921.837274][T30860] do_syscall_64+0x35/0xb0 [ 921.841738][T30860] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 921.847653][T30860] RIP: 0033:0x7f4b423c2059 [ 921.852088][T30860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 921.871716][T30860] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 921.880158][T30860] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 921.888160][T30860] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 921.896149][T30860] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 921.904130][T30860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 921.912114][T30860] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 921.920111][T30860] 20:16:30 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370848038000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 921.947550][T30864] netlink: 'syz-executor.4': attribute type 11 has an invalid length. [ 921.971706][T30864] netlink: 128940 bytes leftover after parsing attributes in process `syz-executor.4'. [ 922.006560][T30864] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 922.017945][T30864] CPU: 1 PID: 30864 Comm: syz-executor.4 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 922.028577][T30864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 922.038671][T30864] Call Trace: [ 922.041971][T30864] [ 922.044923][T30864] dump_stack_lvl+0xcd/0x134 [ 922.049567][T30864] sysfs_warn_dup.cold+0x1c/0x29 [ 922.054519][T30864] sysfs_do_create_link_sd+0x11e/0x140 [ 922.060024][T30864] sysfs_create_link+0x5f/0xc0 [ 922.064796][T30864] device_add+0x789/0x1ee0 [ 922.069249][T30864] ? wait_for_completion_io+0x270/0x270 [ 922.074818][T30864] ? lock_downgrade+0x6e0/0x6e0 [ 922.079703][T30864] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 922.085955][T30864] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 922.092229][T30864] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 922.098474][T30864] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 922.104478][T30864] wiphy_register+0x1e86/0x29a0 [ 922.109351][T30864] ? wiphy_unregister+0xbf0/0xbf0 [ 922.114372][T30864] ? minstrel_ht_alloc+0x52c/0xa10 [ 922.119518][T30864] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 922.125681][T30864] ieee80211_register_hw+0x1f16/0x3ed0 [ 922.131173][T30864] ? ieee80211_restart_hw+0x290/0x290 [ 922.136566][T30864] ? debug_object_destroy+0x210/0x210 [ 922.141970][T30864] ? memset+0x20/0x40 [ 922.145963][T30864] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 922.152208][T30864] ? __hrtimer_init+0x136/0x280 [ 922.157063][T30864] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 922.162913][T30864] ? hwsim_virtio_rx_work+0x350/0x350 [ 922.168318][T30864] ? hwsim_new_radio_nl+0x992/0x1080 [ 922.173615][T30864] ? memcpy+0x39/0x60 [ 922.177599][T30864] hwsim_new_radio_nl+0x9bc/0x1080 [ 922.182712][T30864] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 922.188623][T30864] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 922.194890][T30864] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 922.202265][T30864] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 922.209577][T30864] genl_family_rcv_msg_doit+0x228/0x320 [ 922.215160][T30864] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 922.222539][T30864] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 922.228802][T30864] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 922.235069][T30864] ? ns_capable+0xd9/0x100 [ 922.239487][T30864] genl_rcv_msg+0x328/0x580 [ 922.244105][T30864] ? genl_get_cmd+0x480/0x480 [ 922.248802][T30864] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 922.254706][T30864] ? lock_release+0x720/0x720 [ 922.259392][T30864] netlink_rcv_skb+0x153/0x420 [ 922.264159][T30864] ? genl_get_cmd+0x480/0x480 [ 922.268856][T30864] ? netlink_ack+0xa60/0xa60 [ 922.273455][T30864] ? netlink_deliver_tap+0x1b1/0xc30 [ 922.278739][T30864] genl_rcv+0x24/0x40 [ 922.282715][T30864] netlink_unicast+0x539/0x7e0 [ 922.287476][T30864] ? netlink_attachskb+0x880/0x880 [ 922.292589][T30864] ? __virt_addr_valid+0x5d/0x2d0 [ 922.297611][T30864] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 922.303856][T30864] ? __phys_addr_symbol+0x2c/0x70 [ 922.308909][T30864] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 922.314630][T30864] ? __check_object_size+0x16e/0x310 [ 922.319933][T30864] netlink_sendmsg+0x904/0xe00 [ 922.324716][T30864] ? netlink_unicast+0x7e0/0x7e0 [ 922.329676][T30864] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 922.335923][T30864] ? netlink_unicast+0x7e0/0x7e0 [ 922.340879][T30864] sock_sendmsg+0xcf/0x120 [ 922.345300][T30864] ____sys_sendmsg+0x6e8/0x810 [ 922.350078][T30864] ? kernel_sendmsg+0x50/0x50 [ 922.354747][T30864] ? do_recvmmsg+0x6d0/0x6d0 [ 922.359334][T30864] ? lock_chain_count+0x20/0x20 [ 922.364206][T30864] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 922.370207][T30864] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 922.376447][T30864] ? futex_wait+0x533/0x670 [ 922.381030][T30864] ___sys_sendmsg+0xf3/0x170 [ 922.385643][T30864] ? sendmsg_copy_msghdr+0x160/0x160 [ 922.390926][T30864] ? lock_downgrade+0x6e0/0x6e0 [ 922.395794][T30864] ? __fget_files+0x28c/0x470 [ 922.400473][T30864] ? __fget_light+0xea/0x280 [ 922.405066][T30864] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 922.411355][T30864] __sys_sendmsg+0xe5/0x1b0 [ 922.415884][T30864] ? __sys_sendmsg_sock+0x30/0x30 [ 922.420935][T30864] ? syscall_enter_from_user_mode+0x21/0x70 [ 922.426871][T30864] do_syscall_64+0x35/0xb0 [ 922.431287][T30864] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 922.437188][T30864] RIP: 0033:0x7f840d47b059 [ 922.441623][T30864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 922.461253][T30864] RSP: 002b:00007f840bdf0168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 922.469660][T30864] RAX: ffffffffffffffda RBX: 00007f840d58df60 RCX: 00007f840d47b059 [ 922.477630][T30864] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 922.485616][T30864] RBP: 00007f840d4d508d R08: 0000000000000000 R09: 0000000000000000 [ 922.493610][T30864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 922.501574][T30864] R13: 00007ffc2e2100cf R14: 00007f840bdf0300 R15: 0000000000022000 [ 922.509586][T30864] 20:16:31 executing program 4: bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000001c0), 0x10) [ 922.532636][T30870] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 922.548873][T30870] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. 20:16:31 executing program 4: openat$cgroup_root(0xffffff9c, &(0x7f0000000200)='./cgroup/syz1\x00', 0x200002, 0x0) 20:16:31 executing program 4: socketpair(0x1d, 0x0, 0x0, &(0x7f0000000480)) 20:16:31 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011102e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:31 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x0, 0x0, 0x0, 0x0, 0x7c5, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x3}, 0x48) [ 922.715033][T30878] netlink: 'syz-executor.0': attribute type 11 has an invalid length. [ 922.737064][T30878] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.0'. [ 922.750634][T30891] can: request_module (can-proto-0) failed. 20:16:31 executing program 4: socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x0, 0x0, 0x4, 0x0, 0x1, 0x40, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2}, 0x48) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) 20:16:31 executing program 4: socketpair(0x0, 0x863658292f6a81c, 0x0, 0x0) [ 922.906977][T30882] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 922.914657][T30882] CPU: 1 PID: 30882 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 922.925189][T30882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 922.935266][T30882] Call Trace: [ 922.938561][T30882] [ 922.941510][T30882] dump_stack_lvl+0xcd/0x134 [ 922.946136][T30882] sysfs_warn_dup.cold+0x1c/0x29 [ 922.951108][T30882] sysfs_do_create_link_sd+0x11e/0x140 20:16:31 executing program 4: socketpair(0x0, 0x0, 0x0, &(0x7f0000000340)) socketpair(0x11, 0x2, 0x1000, &(0x7f0000000500)) [ 922.956603][T30882] sysfs_create_link+0x5f/0xc0 [ 922.961405][T30882] device_add+0x789/0x1ee0 [ 922.965858][T30882] ? wait_for_completion_io+0x270/0x270 [ 922.971436][T30882] ? lock_downgrade+0x6e0/0x6e0 [ 922.976320][T30882] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 922.982603][T30882] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 922.988881][T30882] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 922.995160][T30882] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 923.001179][T30882] wiphy_register+0x1e86/0x29a0 20:16:32 executing program 0: r0 = socket$unix(0x1, 0x1, 0x0) getsockname(r0, &(0x7f00000006c0), &(0x7f0000000700)=0xe) 20:16:32 executing program 2: poll(&(0x7f0000000680)=[{}, {}], 0x2, 0x0) [ 923.006057][T30882] ? wiphy_unregister+0xbf0/0xbf0 [ 923.011112][T30882] ? minstrel_ht_alloc+0x52c/0xa10 [ 923.016274][T30882] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 923.022381][T30882] ieee80211_register_hw+0x1f16/0x3ed0 [ 923.027896][T30882] ? ieee80211_restart_hw+0x290/0x290 [ 923.033406][T30882] ? debug_object_destroy+0x210/0x210 [ 923.038831][T30882] ? memset+0x20/0x40 [ 923.042851][T30882] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 923.049133][T30882] ? __hrtimer_init+0x136/0x280 [ 923.054033][T30882] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 923.059819][T30882] ? hwsim_virtio_rx_work+0x350/0x350 [ 923.065253][T30882] ? hwsim_new_radio_nl+0x992/0x1080 [ 923.070582][T30882] ? memcpy+0x39/0x60 [ 923.074609][T30882] hwsim_new_radio_nl+0x9bc/0x1080 [ 923.079766][T30882] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 923.085713][T30882] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 923.091996][T30882] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 923.099409][T30882] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 923.106739][T30882] genl_family_rcv_msg_doit+0x228/0x320 [ 923.112322][T30882] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 923.119740][T30882] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 923.126059][T30882] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 923.132337][T30882] ? ns_capable+0xd9/0x100 [ 923.136791][T30882] genl_rcv_msg+0x328/0x580 [ 923.141329][T30882] ? genl_get_cmd+0x480/0x480 [ 923.146034][T30882] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 923.151977][T30882] ? lock_release+0x720/0x720 [ 923.156689][T30882] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 923.162535][T30882] netlink_rcv_skb+0x153/0x420 [ 923.167334][T30882] ? genl_get_cmd+0x480/0x480 [ 923.172039][T30882] ? netlink_ack+0xa60/0xa60 [ 923.176671][T30882] ? netlink_deliver_tap+0x1b1/0xc30 [ 923.181991][T30882] genl_rcv+0x24/0x40 [ 923.185999][T30882] netlink_unicast+0x539/0x7e0 [ 923.190800][T30882] ? netlink_attachskb+0x880/0x880 [ 923.196021][T30882] ? __virt_addr_valid+0x5d/0x2d0 [ 923.201081][T30882] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 923.207360][T30882] ? __phys_addr_symbol+0x2c/0x70 [ 923.212415][T30882] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 923.218161][T30882] ? __check_object_size+0x16e/0x310 [ 923.223450][T30882] netlink_sendmsg+0x904/0xe00 [ 923.228222][T30882] ? netlink_unicast+0x7e0/0x7e0 [ 923.233177][T30882] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 923.239440][T30882] ? netlink_unicast+0x7e0/0x7e0 [ 923.244380][T30882] sock_sendmsg+0xcf/0x120 [ 923.248797][T30882] ____sys_sendmsg+0x6e8/0x810 [ 923.253578][T30882] ? kernel_sendmsg+0x50/0x50 [ 923.258273][T30882] ? do_recvmmsg+0x6d0/0x6d0 [ 923.262863][T30882] ? lock_chain_count+0x20/0x20 [ 923.267766][T30882] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 923.273773][T30882] ___sys_sendmsg+0xf3/0x170 [ 923.278388][T30882] ? sendmsg_copy_msghdr+0x160/0x160 [ 923.283694][T30882] ? lock_downgrade+0x6e0/0x6e0 [ 923.288580][T30882] ? __fget_files+0x28c/0x470 [ 923.293265][T30882] ? __fget_light+0xea/0x280 [ 923.297862][T30882] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 923.304122][T30882] __sys_sendmsg+0xe5/0x1b0 [ 923.308662][T30882] ? __sys_sendmsg_sock+0x30/0x30 [ 923.313762][T30882] ? syscall_enter_from_user_mode+0x21/0x70 [ 923.319671][T30882] do_syscall_64+0x35/0xb0 [ 923.324109][T30882] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 923.330028][T30882] RIP: 0033:0x7f0982948059 [ 923.334465][T30882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 923.354366][T30882] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 923.362814][T30882] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 923.370809][T30882] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 923.378816][T30882] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 923.386810][T30882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 923.394804][T30882] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 923.402825][T30882] [ 923.473046][T30896] netlink: 'syz-executor.3': attribute type 11 has an invalid length. 20:16:32 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69942d0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:32 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) readv(r0, &(0x7f0000000300)=[{0x0}], 0x1) 20:16:32 executing program 2: r0 = socket$inet6(0x18, 0x3, 0x0) connect$inet6(r0, &(0x7f0000000000)={0x18}, 0xc) 20:16:32 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)) 20:16:32 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370848048000f01700d1bd", 0x33fe0}], 0x1}, 0x0) [ 923.613968][T30913] netlink: 'syz-executor.1': attribute type 4 has an invalid length. [ 923.632636][T30913] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 923.660162][T30913] CPU: 1 PID: 30913 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 923.670726][T30913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 923.680810][T30913] Call Trace: [ 923.684112][T30913] [ 923.687244][T30913] dump_stack_lvl+0xcd/0x134 [ 923.691870][T30913] sysfs_warn_dup.cold+0x1c/0x29 [ 923.696841][T30913] sysfs_do_create_link_sd+0x11e/0x140 [ 923.702339][T30913] sysfs_create_link+0x5f/0xc0 [ 923.707140][T30913] device_add+0x789/0x1ee0 [ 923.711771][T30913] ? wait_for_completion_io+0x270/0x270 [ 923.717358][T30913] ? lock_downgrade+0x6e0/0x6e0 [ 923.722240][T30913] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 923.728516][T30913] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 923.734791][T30913] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 923.741063][T30913] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 923.747089][T30913] wiphy_register+0x1e86/0x29a0 [ 923.751989][T30913] ? wiphy_unregister+0xbf0/0xbf0 [ 923.757041][T30913] ? minstrel_ht_alloc+0x52c/0xa10 [ 923.762202][T30913] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 923.768282][T30913] ieee80211_register_hw+0x1f16/0x3ed0 [ 923.773747][T30913] ? ieee80211_restart_hw+0x290/0x290 [ 923.779114][T30913] ? debug_object_destroy+0x210/0x210 [ 923.784523][T30913] ? memset+0x20/0x40 [ 923.788508][T30913] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 923.794746][T30913] ? __hrtimer_init+0x136/0x280 [ 923.799594][T30913] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 923.805333][T30913] ? hwsim_virtio_rx_work+0x350/0x350 [ 923.810709][T30913] ? hwsim_new_radio_nl+0x992/0x1080 [ 923.815992][T30913] ? memcpy+0x39/0x60 [ 923.820086][T30913] hwsim_new_radio_nl+0x9bc/0x1080 [ 923.825230][T30913] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 923.831125][T30913] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 923.837364][T30913] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 923.844731][T30913] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 923.852037][T30913] genl_family_rcv_msg_doit+0x228/0x320 [ 923.857582][T30913] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 923.864948][T30913] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 923.871201][T30913] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 923.877442][T30913] ? ns_capable+0xd9/0x100 [ 923.881877][T30913] genl_rcv_msg+0x328/0x580 [ 923.886377][T30913] ? genl_get_cmd+0x480/0x480 [ 923.891073][T30913] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 923.897001][T30913] ? lock_release+0x720/0x720 [ 923.901680][T30913] netlink_rcv_skb+0x153/0x420 [ 923.906439][T30913] ? genl_get_cmd+0x480/0x480 [ 923.911116][T30913] ? netlink_ack+0xa60/0xa60 [ 923.915705][T30913] ? netlink_deliver_tap+0x1b1/0xc30 [ 923.920988][T30913] genl_rcv+0x24/0x40 [ 923.924967][T30913] netlink_unicast+0x539/0x7e0 [ 923.929732][T30913] ? netlink_attachskb+0x880/0x880 [ 923.934839][T30913] ? __virt_addr_valid+0x5d/0x2d0 [ 923.939875][T30913] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 923.946110][T30913] ? __phys_addr_symbol+0x2c/0x70 [ 923.951126][T30913] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 923.956841][T30913] ? __check_object_size+0x16e/0x310 [ 923.962124][T30913] netlink_sendmsg+0x904/0xe00 [ 923.966885][T30913] ? netlink_unicast+0x7e0/0x7e0 [ 923.971902][T30913] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 923.978157][T30913] ? netlink_unicast+0x7e0/0x7e0 [ 923.983104][T30913] sock_sendmsg+0xcf/0x120 [ 923.987519][T30913] ____sys_sendmsg+0x6e8/0x810 [ 923.992303][T30913] ? kernel_sendmsg+0x50/0x50 [ 923.996986][T30913] ? do_recvmmsg+0x6d0/0x6d0 [ 924.001575][T30913] ? lock_chain_count+0x20/0x20 [ 924.006424][T30913] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 924.012409][T30913] ___sys_sendmsg+0xf3/0x170 [ 924.016999][T30913] ? sendmsg_copy_msghdr+0x160/0x160 [ 924.022284][T30913] ? lock_downgrade+0x6e0/0x6e0 [ 924.027230][T30913] ? __fget_files+0x28c/0x470 [ 924.031937][T30913] ? __fget_light+0xea/0x280 [ 924.036558][T30913] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 924.042810][T30913] __sys_sendmsg+0xe5/0x1b0 [ 924.047325][T30913] ? __sys_sendmsg_sock+0x30/0x30 [ 924.052360][T30913] ? syscall_enter_from_user_mode+0x21/0x70 [ 924.058260][T30913] do_syscall_64+0x35/0xb0 [ 924.062673][T30913] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 924.068563][T30913] RIP: 0033:0x7f4b423c2059 [ 924.072991][T30913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 924.092683][T30913] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 924.101124][T30913] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 20:16:33 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011112e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:33 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000300)=0x14, 0x4) 20:16:33 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)={0x18, r1, 0x9, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_HEADER={0x4}]}, 0x18}}, 0x0) 20:16:33 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) getsockname$netlink(r0, &(0x7f0000000000), &(0x7f0000000040)=0xc) [ 924.109113][T30913] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 924.117080][T30913] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 924.125057][T30913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 924.133020][T30913] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 924.140996][T30913] 20:16:33 executing program 4: r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000002180)=@file={0x1, './file0/file0\x00'}, 0x6e) 20:16:33 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370848058000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:33 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x34, r1, 0x1, 0x0, 0x0, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x34}}, 0x0) [ 924.192928][T30918] __nla_validate_parse: 3 callbacks suppressed [ 924.192948][T30918] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 924.252391][T30918] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 924.279172][T30918] CPU: 0 PID: 30918 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 924.289732][T30918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 924.299808][T30918] Call Trace: [ 924.303128][T30918] [ 924.306073][T30918] dump_stack_lvl+0xcd/0x134 [ 924.310697][T30918] sysfs_warn_dup.cold+0x1c/0x29 [ 924.315668][T30918] sysfs_do_create_link_sd+0x11e/0x140 [ 924.321160][T30918] sysfs_create_link+0x5f/0xc0 [ 924.325954][T30918] device_add+0x789/0x1ee0 [ 924.330404][T30918] ? wait_for_completion_io+0x270/0x270 [ 924.335981][T30918] ? lock_downgrade+0x6e0/0x6e0 [ 924.340882][T30918] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 924.347156][T30918] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 924.353436][T30918] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 924.359706][T30918] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 924.365730][T30918] wiphy_register+0x1e86/0x29a0 [ 924.370629][T30918] ? wiphy_unregister+0xbf0/0xbf0 [ 924.375681][T30918] ? minstrel_ht_alloc+0x52c/0xa10 [ 924.380858][T30918] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 924.386968][T30918] ieee80211_register_hw+0x1f16/0x3ed0 [ 924.392480][T30918] ? ieee80211_restart_hw+0x290/0x290 [ 924.397910][T30918] ? debug_object_destroy+0x210/0x210 [ 924.403328][T30918] ? memset+0x20/0x40 [ 924.407337][T30918] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 924.413604][T30918] ? __hrtimer_init+0x136/0x280 [ 924.418482][T30918] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 924.424253][T30918] ? hwsim_virtio_rx_work+0x350/0x350 [ 924.429653][T30918] ? hwsim_new_radio_nl+0x992/0x1080 [ 924.434965][T30918] ? memcpy+0x39/0x60 [ 924.438979][T30918] hwsim_new_radio_nl+0x9bc/0x1080 [ 924.444119][T30918] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 924.450058][T30918] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 924.456326][T30918] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 924.463720][T30918] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 924.471019][T30918] genl_family_rcv_msg_doit+0x228/0x320 [ 924.476605][T30918] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 924.484004][T30918] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 924.490263][T30918] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 924.496532][T30918] ? ns_capable+0xd9/0x100 [ 924.500984][T30918] genl_rcv_msg+0x328/0x580 [ 924.505519][T30918] ? genl_get_cmd+0x480/0x480 [ 924.510227][T30918] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 924.516154][T30918] ? lock_release+0x720/0x720 [ 924.520864][T30918] netlink_rcv_skb+0x153/0x420 [ 924.525654][T30918] ? genl_get_cmd+0x480/0x480 [ 924.530360][T30918] ? netlink_ack+0xa60/0xa60 [ 924.534975][T30918] ? netlink_deliver_tap+0x1b1/0xc30 [ 924.540268][T30918] genl_rcv+0x24/0x40 [ 924.544273][T30918] netlink_unicast+0x539/0x7e0 [ 924.549042][T30918] ? netlink_attachskb+0x880/0x880 [ 924.554169][T30918] ? __virt_addr_valid+0x5d/0x2d0 [ 924.559201][T30918] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 924.565471][T30918] ? __phys_addr_symbol+0x2c/0x70 [ 924.570530][T30918] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 924.576285][T30918] ? __check_object_size+0x16e/0x310 [ 924.581614][T30918] netlink_sendmsg+0x904/0xe00 [ 924.586412][T30918] ? netlink_unicast+0x7e0/0x7e0 [ 924.591386][T30918] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 924.597666][T30918] ? netlink_unicast+0x7e0/0x7e0 [ 924.602633][T30918] sock_sendmsg+0xcf/0x120 [ 924.607113][T30918] ____sys_sendmsg+0x6e8/0x810 [ 924.611911][T30918] ? kernel_sendmsg+0x50/0x50 [ 924.616608][T30918] ? do_recvmmsg+0x6d0/0x6d0 [ 924.621225][T30918] ? lock_chain_count+0x20/0x20 [ 924.626112][T30918] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 924.632123][T30918] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 924.638392][T30918] ? futex_wait+0x533/0x670 [ 924.642933][T30918] ___sys_sendmsg+0xf3/0x170 [ 924.647555][T30918] ? sendmsg_copy_msghdr+0x160/0x160 [ 924.652895][T30918] ? lock_downgrade+0x6e0/0x6e0 [ 924.657787][T30918] ? __fget_files+0x28c/0x470 [ 924.662500][T30918] ? __fget_light+0xea/0x280 [ 924.667117][T30918] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 924.673393][T30918] __sys_sendmsg+0xe5/0x1b0 [ 924.677934][T30918] ? __sys_sendmsg_sock+0x30/0x30 [ 924.683004][T30918] ? syscall_enter_from_user_mode+0x21/0x70 [ 924.688936][T30918] do_syscall_64+0x35/0xb0 [ 924.693378][T30918] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 924.699286][T30918] RIP: 0033:0x7f0982948059 [ 924.703724][T30918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 924.723369][T30918] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 924.731814][T30918] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 924.739828][T30918] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 924.747821][T30918] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 924.755818][T30918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 924.763803][T30918] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 924.771798][T30918] 20:16:33 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69942e0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:33 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_int(r0, 0x6, 0x6c9, 0x0, &(0x7f00000000c0)) 20:16:33 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_int(r0, 0x6, 0x18, 0x0, &(0x7f00000000c0)) [ 924.811216][T30926] netlink: 'syz-executor.3': attribute type 11 has an invalid length. [ 924.850152][T30926] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. 20:16:33 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, 0x0, 0x0) 20:16:33 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000004c0)={0x0, @empty, @multicast1}, &(0x7f0000000500)=0xc) [ 925.032649][T30932] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 925.044862][T30932] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 925.057146][T30932] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 925.064901][T30932] CPU: 1 PID: 30932 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 925.075426][T30932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 925.085502][T30932] Call Trace: [ 925.088808][T30932] [ 925.091764][T30932] dump_stack_lvl+0xcd/0x134 [ 925.096393][T30932] sysfs_warn_dup.cold+0x1c/0x29 [ 925.101363][T30932] sysfs_do_create_link_sd+0x11e/0x140 [ 925.106877][T30932] sysfs_create_link+0x5f/0xc0 [ 925.111689][T30932] device_add+0x789/0x1ee0 [ 925.116149][T30932] ? wait_for_completion_io+0x270/0x270 [ 925.121730][T30932] ? lock_downgrade+0x6e0/0x6e0 [ 925.126616][T30932] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 20:16:34 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011122e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:34 executing program 0: socket(0x11, 0x3, 0x5eb2) 20:16:34 executing program 2: socket$inet_udp(0x2, 0x3, 0x0) [ 925.132897][T30932] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 925.139177][T30932] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 925.145466][T30932] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 925.151501][T30932] wiphy_register+0x1e86/0x29a0 [ 925.156406][T30932] ? wiphy_unregister+0xbf0/0xbf0 [ 925.161467][T30932] ? minstrel_ht_alloc+0x52c/0xa10 [ 925.166629][T30932] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 925.173263][T30932] ieee80211_register_hw+0x1f16/0x3ed0 [ 925.178783][T30932] ? ieee80211_restart_hw+0x290/0x290 [ 925.184200][T30932] ? debug_object_destroy+0x210/0x210 [ 925.189619][T30932] ? memset+0x20/0x40 [ 925.193636][T30932] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 925.199917][T30932] ? __hrtimer_init+0x136/0x280 [ 925.204814][T30932] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 925.210595][T30932] ? hwsim_virtio_rx_work+0x350/0x350 [ 925.216005][T30932] ? hwsim_new_radio_nl+0x992/0x1080 [ 925.221332][T30932] ? memcpy+0x39/0x60 [ 925.225369][T30932] hwsim_new_radio_nl+0x9bc/0x1080 20:16:34 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_buf(r0, 0x6, 0xb, 0x0, &(0x7f0000001080)) [ 925.230539][T30932] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 925.236491][T30932] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 925.242772][T30932] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 925.250183][T30932] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 925.257532][T30932] genl_family_rcv_msg_doit+0x228/0x320 [ 925.263132][T30932] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 925.270544][T30932] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 925.276838][T30932] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 20:16:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_mtu(r0, 0x0, 0x16, 0x0, 0x0) [ 925.283119][T30932] ? ns_capable+0xd9/0x100 [ 925.287578][T30932] genl_rcv_msg+0x328/0x580 [ 925.292126][T30932] ? genl_get_cmd+0x480/0x480 [ 925.296865][T30932] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 925.302801][T30932] ? lock_release+0x720/0x720 [ 925.307522][T30932] netlink_rcv_skb+0x153/0x420 [ 925.312323][T30932] ? genl_get_cmd+0x480/0x480 [ 925.317039][T30932] ? netlink_ack+0xa60/0xa60 [ 925.321673][T30932] ? netlink_deliver_tap+0x1b1/0xc30 [ 925.327001][T30932] genl_rcv+0x24/0x40 [ 925.331012][T30932] netlink_unicast+0x539/0x7e0 [ 925.335813][T30932] ? netlink_attachskb+0x880/0x880 [ 925.340963][T30932] ? __virt_addr_valid+0x5d/0x2d0 [ 925.346022][T30932] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 925.352309][T30932] ? __phys_addr_symbol+0x2c/0x70 [ 925.357371][T30932] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 925.363134][T30932] ? __check_object_size+0x16e/0x310 [ 925.368460][T30932] netlink_sendmsg+0x904/0xe00 [ 925.373274][T30932] ? netlink_unicast+0x7e0/0x7e0 [ 925.378238][T30932] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 925.384482][T30932] ? netlink_unicast+0x7e0/0x7e0 [ 925.389417][T30932] sock_sendmsg+0xcf/0x120 [ 925.393833][T30932] ____sys_sendmsg+0x6e8/0x810 [ 925.398602][T30932] ? kernel_sendmsg+0x50/0x50 [ 925.403305][T30932] ? do_recvmmsg+0x6d0/0x6d0 [ 925.407919][T30932] ? lock_chain_count+0x20/0x20 [ 925.412772][T30932] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 925.418766][T30932] ___sys_sendmsg+0xf3/0x170 [ 925.423386][T30932] ? sendmsg_copy_msghdr+0x160/0x160 [ 925.428694][T30932] ? lock_downgrade+0x6e0/0x6e0 [ 925.433577][T30932] ? __fget_files+0x28c/0x470 [ 925.438279][T30932] ? __fget_light+0xea/0x280 [ 925.442868][T30932] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 925.449114][T30932] __sys_sendmsg+0xe5/0x1b0 [ 925.453631][T30932] ? __sys_sendmsg_sock+0x30/0x30 [ 925.458707][T30932] ? syscall_enter_from_user_mode+0x21/0x70 [ 925.464626][T30932] do_syscall_64+0x35/0xb0 [ 925.469038][T30932] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 925.474931][T30932] RIP: 0033:0x7f4b423c2059 [ 925.479336][T30932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 925.498949][T30932] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 925.507390][T30932] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 925.515359][T30932] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 925.523323][T30932] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 20:16:34 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c6994350424fc60100011402e2f0200013382c137153e370848068000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:34 executing program 2: socket$inet(0x2, 0xe, 0x0) [ 925.531288][T30932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 925.539253][T30932] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 925.547230][T30932] [ 925.573994][T30938] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 925.620881][T30938] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 925.645922][T30938] CPU: 1 PID: 30938 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 925.656494][T30938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 925.666573][T30938] Call Trace: [ 925.669871][T30938] [ 925.672817][T30938] dump_stack_lvl+0xcd/0x134 [ 925.677437][T30938] sysfs_warn_dup.cold+0x1c/0x29 [ 925.682412][T30938] sysfs_do_create_link_sd+0x11e/0x140 [ 925.687920][T30938] sysfs_create_link+0x5f/0xc0 [ 925.692717][T30938] device_add+0x789/0x1ee0 [ 925.697185][T30938] ? wait_for_completion_io+0x270/0x270 [ 925.702766][T30938] ? lock_downgrade+0x6e0/0x6e0 [ 925.707644][T30938] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 925.713894][T30938] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 925.720146][T30938] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 925.726396][T30938] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 925.732410][T30938] wiphy_register+0x1e86/0x29a0 [ 925.737282][T30938] ? wiphy_unregister+0xbf0/0xbf0 [ 925.742317][T30938] ? minstrel_ht_alloc+0x52c/0xa10 [ 925.747467][T30938] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 925.753543][T30938] ieee80211_register_hw+0x1f16/0x3ed0 [ 925.759043][T30938] ? ieee80211_restart_hw+0x290/0x290 [ 925.764434][T30938] ? debug_object_destroy+0x210/0x210 [ 925.769827][T30938] ? memset+0x20/0x40 [ 925.773823][T30938] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 925.780079][T30938] ? __hrtimer_init+0x136/0x280 [ 925.784926][T30938] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 925.790656][T30938] ? hwsim_virtio_rx_work+0x350/0x350 [ 925.796025][T30938] ? hwsim_new_radio_nl+0x992/0x1080 [ 925.801318][T30938] ? memcpy+0x39/0x60 [ 925.805305][T30938] hwsim_new_radio_nl+0x9bc/0x1080 [ 925.810460][T30938] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 925.816376][T30938] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 925.822701][T30938] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 925.830116][T30938] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 925.837427][T30938] genl_family_rcv_msg_doit+0x228/0x320 [ 925.843006][T30938] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 925.850393][T30938] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 925.856672][T30938] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 925.862938][T30938] ? ns_capable+0xd9/0x100 [ 925.867373][T30938] genl_rcv_msg+0x328/0x580 [ 925.871903][T30938] ? genl_get_cmd+0x480/0x480 [ 925.876598][T30938] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 925.882494][T30938] ? lock_release+0x720/0x720 [ 925.887184][T30938] netlink_rcv_skb+0x153/0x420 [ 925.891968][T30938] ? genl_get_cmd+0x480/0x480 [ 925.896646][T30938] ? netlink_ack+0xa60/0xa60 [ 925.901239][T30938] ? netlink_deliver_tap+0x1b1/0xc30 [ 925.906561][T30938] genl_rcv+0x24/0x40 [ 925.910563][T30938] netlink_unicast+0x539/0x7e0 [ 925.915335][T30938] ? netlink_attachskb+0x880/0x880 [ 925.920449][T30938] ? __virt_addr_valid+0x5d/0x2d0 [ 925.925473][T30938] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 925.931729][T30938] ? __phys_addr_symbol+0x2c/0x70 [ 925.936765][T30938] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 925.942511][T30938] ? __check_object_size+0x16e/0x310 [ 925.947808][T30938] netlink_sendmsg+0x904/0xe00 [ 925.952580][T30938] ? netlink_unicast+0x7e0/0x7e0 [ 925.957537][T30938] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 925.963780][T30938] ? netlink_unicast+0x7e0/0x7e0 [ 925.968713][T30938] sock_sendmsg+0xcf/0x120 [ 925.973126][T30938] ____sys_sendmsg+0x6e8/0x810 [ 925.977940][T30938] ? kernel_sendmsg+0x50/0x50 [ 925.982615][T30938] ? do_recvmmsg+0x6d0/0x6d0 [ 925.987221][T30938] ? lock_chain_count+0x20/0x20 [ 925.992246][T30938] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 925.998229][T30938] ___sys_sendmsg+0xf3/0x170 [ 926.002822][T30938] ? sendmsg_copy_msghdr+0x160/0x160 [ 926.008106][T30938] ? lock_downgrade+0x6e0/0x6e0 [ 926.012965][T30938] ? __fget_files+0x28c/0x470 [ 926.017642][T30938] ? __fget_light+0xea/0x280 [ 926.022225][T30938] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 926.028469][T30938] __sys_sendmsg+0xe5/0x1b0 [ 926.032970][T30938] ? __sys_sendmsg_sock+0x30/0x30 [ 926.037997][T30938] ? syscall_enter_from_user_mode+0x21/0x70 [ 926.043900][T30938] do_syscall_64+0x35/0xb0 [ 926.048336][T30938] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 926.054251][T30938] RIP: 0033:0x7f0982948059 [ 926.058655][T30938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 926.078254][T30938] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 926.086669][T30938] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 926.094652][T30938] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 926.102614][T30938] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 926.110594][T30938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 926.118557][T30938] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 926.126532][T30938] [ 926.145667][T30949] netlink: 'syz-executor.3': attribute type 11 has an invalid length. 20:16:35 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020029000505d25a806c8c69942f0424fc60060011402e2f0200013382c137153e370848018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 20:16:35 executing program 0: socketpair(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8912, &(0x7f0000000000)) 20:16:35 executing program 2: socketpair(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8931, &(0x7f0000000000)) [ 926.179588][T30949] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.3'. [ 926.374781][T30960] netlink: 'syz-executor.1': attribute type 6 has an invalid length. [ 926.383333][T30960] netlink: 128948 bytes leftover after parsing attributes in process `syz-executor.1'. [ 926.423472][ T4534] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 926.450718][T30960] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 926.460749][T30960] CPU: 1 PID: 30960 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 926.471293][T30960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 926.481372][T30960] Call Trace: [ 926.484656][T30960] [ 926.487595][T30960] dump_stack_lvl+0xcd/0x134 [ 926.492199][T30960] sysfs_warn_dup.cold+0x1c/0x29 [ 926.497145][T30960] sysfs_do_create_link_sd+0x11e/0x140 [ 926.502624][T30960] sysfs_create_link+0x5f/0xc0 [ 926.507396][T30960] device_add+0x789/0x1ee0 [ 926.511832][T30960] ? wait_for_completion_io+0x270/0x270 [ 926.517389][T30960] ? lock_downgrade+0x6e0/0x6e0 [ 926.522248][T30960] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 926.528502][T30960] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 926.534757][T30960] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 926.541003][T30960] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 926.547007][T30960] wiphy_register+0x1e86/0x29a0 [ 926.551879][T30960] ? wiphy_unregister+0xbf0/0xbf0 [ 926.556906][T30960] ? minstrel_ht_alloc+0x52c/0xa10 [ 926.562041][T30960] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 926.568130][T30960] ieee80211_register_hw+0x1f16/0x3ed0 [ 926.573607][T30960] ? ieee80211_restart_hw+0x290/0x290 [ 926.578989][T30960] ? debug_object_destroy+0x210/0x210 [ 926.584376][T30960] ? memset+0x20/0x40 [ 926.588361][T30960] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 926.594606][T30960] ? __hrtimer_init+0x136/0x280 [ 926.599464][T30960] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 926.605205][T30960] ? hwsim_virtio_rx_work+0x350/0x350 [ 926.610582][T30960] ? hwsim_new_radio_nl+0x992/0x1080 [ 926.615875][T30960] ? memcpy+0x39/0x60 [ 926.619868][T30960] hwsim_new_radio_nl+0x9bc/0x1080 [ 926.624998][T30960] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 926.630912][T30960] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 926.637156][T30960] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 926.644537][T30960] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 926.651917][T30960] genl_family_rcv_msg_doit+0x228/0x320 [ 926.657471][T30960] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 926.664848][T30960] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 926.671108][T30960] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 926.677355][T30960] ? ns_capable+0xd9/0x100 [ 926.681782][T30960] genl_rcv_msg+0x328/0x580 [ 926.686290][T30960] ? genl_get_cmd+0x480/0x480 [ 926.690972][T30960] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 926.696879][T30960] ? lock_release+0x720/0x720 [ 926.701565][T30960] netlink_rcv_skb+0x153/0x420 [ 926.706331][T30960] ? genl_get_cmd+0x480/0x480 [ 926.711012][T30960] ? netlink_ack+0xa60/0xa60 [ 926.715703][T30960] ? netlink_deliver_tap+0x1b1/0xc30 [ 926.720999][T30960] genl_rcv+0x24/0x40 [ 926.724986][T30960] netlink_unicast+0x539/0x7e0 [ 926.729759][T30960] ? netlink_attachskb+0x880/0x880 [ 926.734871][T30960] ? __virt_addr_valid+0x5d/0x2d0 [ 926.739918][T30960] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 926.746167][T30960] ? __phys_addr_symbol+0x2c/0x70 [ 926.751191][T30960] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 926.756930][T30960] ? __check_object_size+0x16e/0x310 [ 926.762221][T30960] netlink_sendmsg+0x904/0xe00 [ 926.766994][T30960] ? netlink_unicast+0x7e0/0x7e0 [ 926.771944][T30960] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 926.778193][T30960] ? netlink_unicast+0x7e0/0x7e0 [ 926.783132][T30960] sock_sendmsg+0xcf/0x120 [ 926.787552][T30960] ____sys_sendmsg+0x6e8/0x810 [ 926.792329][T30960] ? kernel_sendmsg+0x50/0x50 [ 926.797005][T30960] ? do_recvmmsg+0x6d0/0x6d0 [ 926.801603][T30960] ? lock_chain_count+0x20/0x20 [ 926.806460][T30960] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 926.812448][T30960] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 926.818698][T30960] ? futex_wait+0x533/0x670 [ 926.823217][T30960] ___sys_sendmsg+0xf3/0x170 [ 926.827816][T30960] ? sendmsg_copy_msghdr+0x160/0x160 [ 926.833122][T30960] ? lock_downgrade+0x6e0/0x6e0 [ 926.837991][T30960] ? __fget_files+0x28c/0x470 [ 926.842681][T30960] ? __fget_light+0xea/0x280 [ 926.847276][T30960] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 926.853535][T30960] __sys_sendmsg+0xe5/0x1b0 [ 926.858045][T30960] ? __sys_sendmsg_sock+0x30/0x30 [ 926.863088][T30960] ? syscall_enter_from_user_mode+0x21/0x70 [ 926.869008][T30960] do_syscall_64+0x35/0xb0 [ 926.873434][T30960] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 926.879335][T30960] RIP: 0033:0x7f4b423c2059 [ 926.883752][T30960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 926.903377][T30960] RSP: 002b:00007f4b40d37168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 926.911821][T30960] RAX: ffffffffffffffda RBX: 00007f4b424d4f60 RCX: 00007f4b423c2059 [ 926.919810][T30960] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 926.927799][T30960] RBP: 00007f4b4241c08d R08: 0000000000000000 R09: 0000000000000000 [ 926.935774][T30960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 926.943747][T30960] R13: 00007fffc0c7d24f R14: 00007f4b40d37300 R15: 0000000000022000 [ 926.951737][T30960] [ 926.970257][T30967] netlink: 134336 bytes leftover after parsing attributes in process `syz-executor.5'. [ 926.989333][T30967] sysfs: cannot create duplicate filename '/class/ieee80211/.!' [ 926.998241][T30967] CPU: 1 PID: 30967 Comm: syz-executor.5 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 927.008772][T30967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 927.018848][T30967] Call Trace: [ 927.022138][T30967] [ 927.025066][T30967] dump_stack_lvl+0xcd/0x134 [ 927.029657][T30967] sysfs_warn_dup.cold+0x1c/0x29 [ 927.034597][T30967] sysfs_do_create_link_sd+0x11e/0x140 [ 927.040068][T30967] sysfs_create_link+0x5f/0xc0 [ 927.044847][T30967] device_add+0x789/0x1ee0 [ 927.049271][T30967] ? wait_for_completion_io+0x270/0x270 [ 927.054819][T30967] ? lock_downgrade+0x6e0/0x6e0 [ 927.059677][T30967] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 927.066010][T30967] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 927.072256][T30967] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 927.078494][T30967] ? ieee80211_set_bitrate_flags+0x474/0x650 [ 927.084498][T30967] wiphy_register+0x1e86/0x29a0 [ 927.089375][T30967] ? wiphy_unregister+0xbf0/0xbf0 [ 927.094396][T30967] ? minstrel_ht_alloc+0x52c/0xa10 [ 927.099511][T30967] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 927.105635][T30967] ieee80211_register_hw+0x1f16/0x3ed0 [ 927.111105][T30967] ? ieee80211_restart_hw+0x290/0x290 [ 927.116478][T30967] ? debug_object_destroy+0x210/0x210 [ 927.121856][T30967] ? memset+0x20/0x40 [ 927.125850][T30967] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 927.132083][T30967] ? __hrtimer_init+0x136/0x280 [ 927.136928][T30967] mac80211_hwsim_new_radio+0x24b9/0x4b20 [ 927.142659][T30967] ? hwsim_virtio_rx_work+0x350/0x350 [ 927.148023][T30967] ? hwsim_new_radio_nl+0x992/0x1080 [ 927.153301][T30967] ? memcpy+0x39/0x60 [ 927.157287][T30967] hwsim_new_radio_nl+0x9bc/0x1080 [ 927.162398][T30967] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 927.168292][T30967] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 927.174542][T30967] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 927.181916][T30967] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 927.189223][T30967] genl_family_rcv_msg_doit+0x228/0x320 [ 927.194765][T30967] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 927.202127][T30967] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 927.208369][T30967] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 927.214602][T30967] ? ns_capable+0xd9/0x100 [ 927.219016][T30967] genl_rcv_msg+0x328/0x580 [ 927.223517][T30967] ? genl_get_cmd+0x480/0x480 [ 927.228191][T30967] ? mac80211_hwsim_new_radio+0x4b20/0x4b20 [ 927.234083][T30967] ? lock_release+0x720/0x720 [ 927.238759][T30967] netlink_rcv_skb+0x153/0x420 [ 927.243520][T30967] ? genl_get_cmd+0x480/0x480 [ 927.248194][T30967] ? netlink_ack+0xa60/0xa60 [ 927.252782][T30967] ? netlink_deliver_tap+0x1b1/0xc30 [ 927.258063][T30967] genl_rcv+0x24/0x40 [ 927.262035][T30967] netlink_unicast+0x539/0x7e0 [ 927.266793][T30967] ? netlink_attachskb+0x880/0x880 [ 927.271894][T30967] ? __virt_addr_valid+0x5d/0x2d0 [ 927.276941][T30967] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 927.283177][T30967] ? __phys_addr_symbol+0x2c/0x70 [ 927.288192][T30967] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 927.293901][T30967] ? __check_object_size+0x16e/0x310 [ 927.299179][T30967] netlink_sendmsg+0x904/0xe00 [ 927.303938][T30967] ? netlink_unicast+0x7e0/0x7e0 [ 927.308872][T30967] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 927.315107][T30967] ? netlink_unicast+0x7e0/0x7e0 [ 927.320038][T30967] sock_sendmsg+0xcf/0x120 [ 927.324461][T30967] ____sys_sendmsg+0x6e8/0x810 [ 927.329219][T30967] ? kernel_sendmsg+0x50/0x50 [ 927.333886][T30967] ? do_recvmmsg+0x6d0/0x6d0 [ 927.338475][T30967] ? lock_chain_count+0x20/0x20 [ 927.343317][T30967] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 927.349292][T30967] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 927.355529][T30967] ? futex_wait+0x533/0x670 [ 927.360030][T30967] ___sys_sendmsg+0xf3/0x170 [ 927.364617][T30967] ? sendmsg_copy_msghdr+0x160/0x160 [ 927.369907][T30967] ? lock_downgrade+0x6e0/0x6e0 [ 927.374811][T30967] ? __fget_files+0x28c/0x470 [ 927.379491][T30967] ? __fget_light+0xea/0x280 [ 927.384079][T30967] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 927.390317][T30967] __sys_sendmsg+0xe5/0x1b0 [ 927.394816][T30967] ? __sys_sendmsg_sock+0x30/0x30 [ 927.399841][T30967] ? syscall_enter_from_user_mode+0x21/0x70 [ 927.405731][T30967] do_syscall_64+0x35/0xb0 [ 927.410161][T30967] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 927.416052][T30967] RIP: 0033:0x7f0982948059 [ 927.420457][T30967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 927.440052][T30967] RSP: 002b:00007f09812bd168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 927.448471][T30967] RAX: ffffffffffffffda RBX: 00007f0982a5af60 RCX: 00007f0982948059 [ 927.456431][T30967] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 927.464413][T30967] RBP: 00007f09829a208d R08: 0000000000000000 R09: 0000000000000000 [ 927.472376][T30967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 927.480354][T30967] R13: 00007ffccf9998ef R14: 00007f09812bd300 R15: 0000000000022000 [ 927.488330][T30967] [ 927.554340][ T4534] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 927.644059][ T4534] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 927.737374][ T4534] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 929.259916][ T4534] device bridge_slave_0 left promiscuous mode [ 929.285438][ T4534] bridge13: port 1(bridge_slave_0) entered disabled state [ 929.365804][ T4534] device hsr_slave_0 left promiscuous mode [ 929.372525][ T4534] device hsr_slave_1 left promiscuous mode [ 929.383810][ T4534] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 929.399720][ T4534] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 929.426344][ T4534] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 929.435958][ T4534] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 929.453203][ T4534] device bond0 left promiscuous mode [ 929.465703][ T4534] device bond_slave_0 left promiscuous mode [ 929.471763][ T4534] device bond_slave_1 left promiscuous mode [ 929.493073][ T4534] bridge0: port 3(bond0) entered disabled state [ 929.509540][ T4534] device bridge_slave_1 left promiscuous mode [ 929.525167][ T4534] bridge0: port 2(bridge_slave_1) entered disabled state [ 929.583112][ T4534] device veth1_vlan left promiscuous mode [ 930.828290][ T4534] smc: removing net device veth0_vlan with user defined pnetid SYZ1 [ 930.953206][ T4534] team0 (unregistering): Port device team_slave_1 removed [ 930.971490][ T4534] team0 (unregistering): Port device team_slave_0 removed [ 930.988442][ T4534] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 931.011840][ T4534] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 931.100773][ T4534] bond0 (unregistering): Released all slaves [ 931.247910][ T4534] leaked reference. [ 931.252312][ T4534] smc_pnet_add+0x49a/0x1580 [ 931.257009][ T4534] genl_family_rcv_msg_doit+0x228/0x320 [ 931.262586][ T4534] genl_rcv_msg+0x328/0x580 [ 931.267113][ T4534] netlink_rcv_skb+0x153/0x420 [ 931.271904][ T4534] genl_rcv+0x24/0x40 [ 931.275912][ T4534] netlink_unicast+0x539/0x7e0 [ 931.280707][ T4534] netlink_sendmsg+0x904/0xe00 [ 931.285497][ T4534] sock_sendmsg+0xcf/0x120 [ 931.289939][ T4534] ____sys_sendmsg+0x6e8/0x810 [ 931.294726][ T4534] ___sys_sendmsg+0xf3/0x170 [ 931.299339][ T4534] __sys_sendmsg+0xe5/0x1b0 [ 931.303889][ T4534] do_syscall_64+0x35/0xb0 [ 931.308329][ T4534] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 931.314268][ T4534] leaked reference. [ 931.318079][ T4534] smc_pnet_add+0x49a/0x1580 [ 931.322699][ T4534] genl_family_rcv_msg_doit+0x228/0x320 [ 931.328264][ T4534] genl_rcv_msg+0x328/0x580 [ 931.332784][ T4534] netlink_rcv_skb+0x153/0x420 [ 931.337567][ T4534] genl_rcv+0x24/0x40 [ 931.341569][ T4534] netlink_unicast+0x539/0x7e0 [ 931.346359][ T4534] netlink_sendmsg+0x904/0xe00 [ 931.351139][ T4534] sock_sendmsg+0xcf/0x120 [ 931.355575][ T4534] ____sys_sendmsg+0x6e8/0x810 [ 931.360356][ T4534] ___sys_sendmsg+0xf3/0x170 [ 931.364973][ T4534] __sys_sendmsg+0xe5/0x1b0 [ 931.369499][ T4534] do_syscall_64+0x35/0xb0 [ 931.373936][ T4534] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 931.381971][ T1226] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.388393][ T1226] ieee802154 phy1 wpan1: encryption failed: -22 [ 931.406044][ T4534] ------------[ cut here ]------------ [ 931.411542][ T4534] WARNING: CPU: 1 PID: 4534 at lib/ref_tracker.c:38 ref_tracker_dir_exit.cold+0x137/0x1e3 [ 931.421647][ T4534] Modules linked in: [ 931.428303][ T4534] CPU: 1 PID: 4534 Comm: kworker/u4:7 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 931.438840][ T4534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 931.450136][ T4534] Workqueue: netns cleanup_net [ 931.454987][ T4534] RIP: 0010:ref_tracker_dir_exit.cold+0x137/0x1e3 [ 931.461561][ T4534] Code: 4c 89 ef e8 c3 d5 a8 f8 4c 8b 3c 24 4c 39 fd 49 8b 07 0f 85 b5 00 00 00 e8 ee 64 61 f8 48 8b 74 24 10 4c 89 e7 e8 f1 77 36 00 <0f> 0b e9 7d cf e9 fa 4c 89 ff e8 92 d5 a8 f8 e9 d4 fe ff ff e8 78 [ 931.492911][ T4534] RSP: 0018:ffffc9000f6af978 EFLAGS: 00010246 [ 931.499317][ T4534] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 931.507444][ T4534] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 0000000000000001 [ 931.515755][ T4534] RBP: ffff88804f5ea600 R08: 0000000000000001 R09: ffffffff8ffc494f [ 931.523759][ T4534] R10: 0000000000000001 R11: 0000000000088078 R12: ffff88804f5ea5b8 [ 931.532562][ T4534] R13: ffff88804f5ea600 R14: ffff88804f5ea600 R15: ffff88804f5ea600 [ 931.541143][ T4534] FS: 0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 931.550829][ T4534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.557833][ T4534] CR2: 00007f7b8d9c4ad0 CR3: 0000000019c8b000 CR4: 00000000003506f0 [ 931.566974][ T4534] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 931.579202][ T4534] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 931.587698][ T4534] Call Trace: [ 931.590999][ T4534] [ 931.593960][ T4534] free_netdev+0x32a/0x5b0 [ 931.599073][ T4534] netdev_run_todo+0x8a0/0xaa0 [ 931.603889][ T4534] ? generic_xdp_install+0x4a0/0x4a0 [ 931.611298][ T4534] ? default_device_exit+0x2d0/0x2d0 [ 931.619651][ T4534] ? unregister_netdevice_many+0x1850/0x1850 [ 931.626110][ T4534] ? sysfs_remove_group+0xc2/0x170 [ 931.631259][ T4534] ? br_dev_delete+0x112/0x190 [ 931.636894][ T4534] default_device_exit_batch+0x2ff/0x3c0 [ 931.642603][ T4534] ? unregister_netdev+0x20/0x20 [ 931.666521][ T4534] ? __init_waitqueue_head+0xd0/0xd0 [ 931.672332][ T4534] ? unregister_netdev+0x20/0x20 [ 931.685432][ T4534] ? __dev_change_net_namespace+0x1330/0x1330 [ 931.691565][ T4534] ops_exit_list+0x125/0x170 [ 931.705385][ T4534] cleanup_net+0x4ea/0xb00 [ 931.709923][ T4534] ? unregister_pernet_device+0x70/0x70 [ 931.715726][ T4534] process_one_work+0x9ac/0x1650 [ 931.728498][ T4534] ? pwq_dec_nr_in_flight+0x2a0/0x2a0 [ 931.733936][ T4534] ? rwlock_bug.part.0+0x90/0x90 [ 931.745578][ T4534] ? _raw_spin_lock_irq+0x41/0x50 [ 931.750685][ T4534] worker_thread+0x657/0x1110 [ 931.761298][ T4534] ? process_one_work+0x1650/0x1650 [ 931.767745][ T4534] kthread+0x2e9/0x3a0 [ 931.771848][ T4534] ? kthread_complete_and_exit+0x40/0x40 [ 931.778435][ T4534] ret_from_fork+0x1f/0x30 [ 931.782912][ T4534] [ 931.786375][ T4534] Kernel panic - not syncing: panic_on_warn set ... [ 931.792974][ T4534] CPU: 0 PID: 4534 Comm: kworker/u4:7 Not tainted 5.17.0-rc1-syzkaller-00550-g000fe940e51f #0 [ 931.803234][ T4534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 931.813314][ T4534] Workqueue: netns cleanup_net [ 931.818108][ T4534] Call Trace: [ 931.821401][ T4534] [ 931.824347][ T4534] dump_stack_lvl+0xcd/0x134 [ 931.828958][ T4534] panic+0x2b0/0x6dd [ 931.832927][ T4534] ? __warn_printk+0xf3/0xf3 [ 931.837549][ T4534] ? __warn.cold+0x1d1/0x2cf [ 931.842162][ T4534] ? ref_tracker_dir_exit.cold+0x137/0x1e3 [ 931.848002][ T4534] __warn.cold+0x1ec/0x2cf [ 931.852441][ T4534] ? ref_tracker_dir_exit.cold+0x137/0x1e3 [ 931.858262][ T4534] report_bug+0x1bd/0x210 [ 931.862656][ T4534] handle_bug+0x3c/0x60 [ 931.866823][ T4534] exc_invalid_op+0x14/0x40 [ 931.871333][ T4534] asm_exc_invalid_op+0x12/0x20 [ 931.876183][ T4534] RIP: 0010:ref_tracker_dir_exit.cold+0x137/0x1e3 [ 931.882604][ T4534] Code: 4c 89 ef e8 c3 d5 a8 f8 4c 8b 3c 24 4c 39 fd 49 8b 07 0f 85 b5 00 00 00 e8 ee 64 61 f8 48 8b 74 24 10 4c 89 e7 e8 f1 77 36 00 <0f> 0b e9 7d cf e9 fa 4c 89 ff e8 92 d5 a8 f8 e9 d4 fe ff ff e8 78 [ 931.902229][ T4534] RSP: 0018:ffffc9000f6af978 EFLAGS: 00010246 [ 931.908309][ T4534] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 931.916288][ T4534] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 0000000000000001 [ 931.924268][ T4534] RBP: ffff88804f5ea600 R08: 0000000000000001 R09: ffffffff8ffc494f [ 931.932241][ T4534] R10: 0000000000000001 R11: 0000000000088078 R12: ffff88804f5ea5b8 [ 931.940212][ T4534] R13: ffff88804f5ea600 R14: ffff88804f5ea600 R15: ffff88804f5ea600 [ 931.948203][ T4534] ? ref_tracker_dir_exit.cold+0x137/0x1e3 [ 931.954031][ T4534] free_netdev+0x32a/0x5b0 [ 931.958457][ T4534] netdev_run_todo+0x8a0/0xaa0 [ 931.963234][ T4534] ? generic_xdp_install+0x4a0/0x4a0 [ 931.968537][ T4534] ? default_device_exit+0x2d0/0x2d0 [ 931.973824][ T4534] ? unregister_netdevice_many+0x1850/0x1850 [ 931.979808][ T4534] ? sysfs_remove_group+0xc2/0x170 [ 931.984934][ T4534] ? br_dev_delete+0x112/0x190 [ 931.989709][ T4534] default_device_exit_batch+0x2ff/0x3c0 [ 931.995359][ T4534] ? unregister_netdev+0x20/0x20 [ 932.000307][ T4534] ? __init_waitqueue_head+0xd0/0xd0 [ 932.005605][ T4534] ? unregister_netdev+0x20/0x20 [ 932.010543][ T4534] ? __dev_change_net_namespace+0x1330/0x1330 [ 932.016615][ T4534] ops_exit_list+0x125/0x170 [ 932.021226][ T4534] cleanup_net+0x4ea/0xb00 [ 932.025653][ T4534] ? unregister_pernet_device+0x70/0x70 [ 932.031225][ T4534] process_one_work+0x9ac/0x1650 [ 932.036189][ T4534] ? pwq_dec_nr_in_flight+0x2a0/0x2a0 [ 932.041585][ T4534] ? rwlock_bug.part.0+0x90/0x90 [ 932.046542][ T4534] ? _raw_spin_lock_irq+0x41/0x50 [ 932.051592][ T4534] worker_thread+0x657/0x1110 [ 932.056285][ T4534] ? process_one_work+0x1650/0x1650 [ 932.061489][ T4534] kthread+0x2e9/0x3a0 [ 932.065556][ T4534] ? kthread_complete_and_exit+0x40/0x40 [ 932.071196][ T4534] ret_from_fork+0x1f/0x30 [ 932.075636][ T4534] [ 932.079044][ T4534] Kernel Offset: disabled [ 932.083584][ T4534] Rebooting in 86400 seconds..