program 5 (fault-call:1 fault-nth:2): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3095.858853] R13: 00000000004c563f R14: 00000000004d93a0 R15: 0000000000000004 23:22:29 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09000000000a0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:29 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00l\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:29 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:29 executing program 3: r0 = socket(0x10, 0x4000000000000002, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000000c0)={0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000100)=0x2c) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000140)={r1, 0x65, "467a7345994bf5f0a9c81dd458f3b901d46b1b393c616589978435cc7903c87aeb2d0e7df0e61d6195e0f084930584352d315e9336415a042df7053b82cc096074e656dba12d8b75ded60d150e2b1e84cda664f0908739ffa73b27059e8daa931d3bb34015"}, &(0x7f00000001c0)=0x6d) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000000)={r0}) [ 3096.074000] FAULT_INJECTION: forcing a failure. [ 3096.074000] name failslab, interval 1, probability 0, space 0, times 0 [ 3096.168504] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3096.200284] CPU: 1 PID: 18097 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3096.207532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3096.216891] Call Trace: [ 3096.219499] dump_stack+0x1db/0x2d0 [ 3096.223160] ? dump_stack_print_info.cold+0x20/0x20 [ 3096.228197] ? print_usage_bug+0xd0/0xd0 [ 3096.232286] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3096.237329] ? widen_string+0xe0/0x2e0 [ 3096.241239] should_fail.cold+0xa/0x15 [ 3096.245181] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3096.250311] ? ___might_sleep+0x1e7/0x310 [ 3096.254484] ? arch_local_save_flags+0x50/0x50 [ 3096.259121] __should_failslab+0x121/0x190 [ 3096.263375] should_failslab+0x9/0x14 [ 3096.267187] __kmalloc_track_caller+0x2d8/0x740 [ 3096.271872] ? pointer+0x930/0x930 [ 3096.275433] ? kasprintf+0xbb/0xf0 [ 3096.278993] kvasprintf+0xc8/0x170 [ 3096.282540] ? bust_spinlocks+0xe0/0xe0 [ 3096.286538] ? refcount_inc_not_zero_checked+0x2e0/0x2e0 [ 3096.292004] kasprintf+0xbb/0xf0 [ 3096.295391] ? kvasprintf_const+0x190/0x190 [ 3096.299726] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3096.304936] ? validate_nla+0x28c/0x1580 [ 3096.309020] hwsim_new_radio_nl+0xc54/0x1430 [ 3096.309045] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3096.309083] genl_family_rcv_msg+0x80d/0x11a0 [ 3096.309107] ? genl_unregister_family+0x8a0/0x8a0 [ 3096.309130] ? radix_tree_insert+0x850/0x850 [ 3096.328044] ? netlink_deliver_tap+0x32b/0xf40 [ 3096.328089] genl_rcv_msg+0xca/0x16c [ 3096.328108] netlink_rcv_skb+0x17d/0x410 [ 3096.328123] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3096.328139] ? netlink_ack+0xba0/0xba0 [ 3096.328160] ? __down_interruptible+0x740/0x740 [ 3096.328183] genl_rcv+0x29/0x40 [ 3096.328195] netlink_unicast+0x574/0x770 [ 3096.328214] ? netlink_attachskb+0x980/0x980 [ 3096.328232] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3096.328248] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3096.380876] netlink_sendmsg+0xa05/0xf90 [ 3096.384959] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3096.390525] ? netlink_unicast+0x770/0x770 [ 3096.394866] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3096.399731] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3096.404506] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3096.410057] ? security_socket_sendmsg+0x93/0xc0 [ 3096.414830] ? netlink_unicast+0x770/0x770 [ 3096.419081] sock_sendmsg+0xdd/0x130 [ 3096.422818] ___sys_sendmsg+0x7ec/0x910 [ 3096.426820] ? copy_msghdr_from_user+0x570/0x570 [ 3096.431584] ? iterate_fd+0x4b0/0x4b0 [ 3096.435407] ? lock_downgrade+0x910/0x910 [ 3096.439574] ? __fget_light+0x2db/0x420 [ 3096.443563] ? fget_raw+0x20/0x20 [ 3096.447033] ? __mutex_unlock_slowpath+0x195/0x870 [ 3096.451979] ? wait_for_completion+0x810/0x810 [ 3096.456579] ? __fdget+0x1b/0x20 [ 3096.459963] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3096.465517] ? sockfd_lookup_light+0xc2/0x160 23:22:29 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x4002000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:29 executing program 3: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000100)=0xffffffffffffffc1, 0x4) listen(r0, 0x5) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) listen(r1, 0x2) shutdown(r0, 0x1) r3 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r2, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) ioctl$sock_inet_SIOCDARP(r3, 0x8953, &(0x7f0000000080)={{0x2, 0x4e20, @local}, {0x1, @dev={[], 0x1c}}, 0x4e, {0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x10}}, 'bcsf0\x00'}) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000000)) 23:22:29 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00t\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3096.470025] __sys_sendmsg+0x112/0x270 [ 3096.470043] ? __ia32_sys_shutdown+0x80/0x80 [ 3096.470077] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3096.470095] ? trace_hardirqs_off_caller+0x300/0x300 [ 3096.470114] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3096.470130] __x64_sys_sendmsg+0x78/0xb0 [ 3096.470147] do_syscall_64+0x1a3/0x800 [ 3096.470165] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3096.470182] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3096.470202] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3096.470226] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3096.470238] RIP: 0033:0x458089 [ 3096.470253] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3096.470261] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3096.470279] RAX: ffffffffffffffda RBX: 00007f8208093c90 RCX: 0000000000458089 [ 3096.470287] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 23:22:29 executing program 5 (fault-call:1 fault-nth:3): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:29 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09000000000f0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3096.470295] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3096.470303] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3096.470310] R13: 00000000004c563f R14: 00000000004d93a0 R15: 0000000000000004 23:22:30 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3096.683224] FAULT_INJECTION: forcing a failure. [ 3096.683224] name failslab, interval 1, probability 0, space 0, times 0 [ 3096.757662] CPU: 1 PID: 18137 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3096.764923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3096.774287] Call Trace: [ 3096.776902] dump_stack+0x1db/0x2d0 [ 3096.780548] ? dump_stack_print_info.cold+0x20/0x20 [ 3096.785580] ? __lock_acquire+0x572/0x4a30 [ 3096.789835] ? is_bpf_text_address+0xac/0x170 [ 3096.794353] should_fail.cold+0xa/0x15 [ 3096.798259] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3096.803374] ? ___might_sleep+0x1e7/0x310 23:22:30 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000100012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3096.807558] ? arch_local_save_flags+0x50/0x50 [ 3096.812170] __should_failslab+0x121/0x190 [ 3096.816421] should_failslab+0x9/0x14 [ 3096.816438] __kmalloc+0x2dc/0x740 [ 3096.816453] ? print_usage_bug+0xd0/0xd0 [ 3096.816476] ? wiphy_new_nm+0x7b5/0x2220 [ 3096.816494] wiphy_new_nm+0x7b5/0x2220 [ 3096.823850] ? is_bpf_text_address+0xac/0x170 [ 3096.823872] ? cfg80211_dev_check_name.isra.0+0x440/0x440 [ 3096.823887] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3096.823907] ? print_usage_bug+0xd0/0xd0 [ 3096.855500] ? lock_downgrade+0x910/0x910 [ 3096.859666] ? kasan_check_read+0x11/0x20 [ 3096.863827] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3096.869126] ? __lock_acquire+0x572/0x4a30 [ 3096.873380] ? is_bpf_text_address+0xd3/0x170 [ 3096.877897] ? mark_held_locks+0x100/0x100 [ 3096.882147] ? __save_stack_trace+0x8a/0xf0 [ 3096.886509] ieee80211_alloc_hw_nm+0x507/0x22d0 [ 3096.891192] ? ieee80211_restart_work+0x210/0x210 [ 3096.896050] ? netlink_sendmsg+0xa05/0xf90 [ 3096.900329] ? sock_sendmsg+0xdd/0x130 [ 3096.904240] ? ___sys_sendmsg+0x7ec/0x910 [ 3096.908396] ? __sys_sendmsg+0x112/0x270 [ 3096.912461] ? __x64_sys_sendmsg+0x78/0xb0 [ 3096.916709] ? do_syscall_64+0x1a3/0x800 [ 3096.920769] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3096.926133] ? mark_held_locks+0xb1/0x100 [ 3096.930284] ? __local_bh_enable_ip+0x15a/0x270 [ 3096.934941] ? __local_bh_enable_ip+0x15a/0x270 [ 3096.939602] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3096.944173] ? trace_hardirqs_on+0xbd/0x310 [ 3096.948499] ? _raw_spin_unlock_bh+0x31/0x40 [ 3096.952920] ? trace_hardirqs_off_caller+0x300/0x300 [ 3096.958030] ? do_raw_spin_unlock+0xa0/0x330 [ 3096.962426] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3096.967966] ? check_preemption_disabled+0x48/0x290 [ 3096.972981] ? do_raw_spin_trylock+0x270/0x270 [ 3096.977569] ? mac80211_hwsim_new_radio+0x17e/0x3610 [ 3096.982675] ? __local_bh_enable_ip+0x15a/0x270 [ 3096.987359] mac80211_hwsim_new_radio+0x200/0x3610 [ 3096.992288] ? pointer+0x930/0x930 [ 3096.995832] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3097.001889] ? kvasprintf+0x101/0x170 [ 3097.005688] ? bust_spinlocks+0xe0/0xe0 [ 3097.009655] ? refcount_inc_not_zero_checked+0x2e0/0x2e0 [ 3097.015095] ? kasprintf+0xbb/0xf0 [ 3097.018639] ? kvasprintf_const+0x190/0x190 [ 3097.022962] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3097.028214] ? validate_nla+0x28c/0x1580 [ 3097.032279] hwsim_new_radio_nl+0xca6/0x1430 [ 3097.036695] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3097.041898] genl_family_rcv_msg+0x80d/0x11a0 [ 3097.046386] ? genl_unregister_family+0x8a0/0x8a0 [ 3097.051259] ? radix_tree_insert+0x850/0x850 [ 3097.055658] ? netlink_deliver_tap+0x32b/0xf40 [ 3097.060244] genl_rcv_msg+0xca/0x16c [ 3097.063949] netlink_rcv_skb+0x17d/0x410 [ 3097.068013] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3097.072771] ? netlink_ack+0xba0/0xba0 [ 3097.076667] ? __down_interruptible+0x740/0x740 [ 3097.081365] genl_rcv+0x29/0x40 [ 3097.084631] netlink_unicast+0x574/0x770 [ 3097.088701] ? netlink_attachskb+0x980/0x980 [ 3097.093126] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3097.098671] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3097.103689] netlink_sendmsg+0xa05/0xf90 [ 3097.107746] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3097.113286] ? netlink_unicast+0x770/0x770 [ 3097.117523] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3097.122381] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3097.127157] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3097.132698] ? security_socket_sendmsg+0x93/0xc0 [ 3097.137449] ? netlink_unicast+0x770/0x770 [ 3097.141685] sock_sendmsg+0xdd/0x130 [ 3097.145390] ___sys_sendmsg+0x7ec/0x910 [ 3097.149369] ? copy_msghdr_from_user+0x570/0x570 [ 3097.154129] ? iterate_fd+0x4b0/0x4b0 [ 3097.157951] ? lock_downgrade+0x910/0x910 [ 3097.162117] ? __fget_light+0x2db/0x420 [ 3097.166088] ? fget_raw+0x20/0x20 [ 3097.169532] ? __mutex_unlock_slowpath+0x195/0x870 [ 3097.174468] ? wait_for_completion+0x810/0x810 [ 3097.179070] ? __fdget+0x1b/0x20 [ 3097.182438] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3097.187986] ? sockfd_lookup_light+0xc2/0x160 [ 3097.192495] __sys_sendmsg+0x112/0x270 [ 3097.196397] ? __ia32_sys_shutdown+0x80/0x80 [ 3097.200843] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3097.206213] ? trace_hardirqs_off_caller+0x300/0x300 [ 3097.211311] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3097.216104] __x64_sys_sendmsg+0x78/0xb0 [ 3097.220184] do_syscall_64+0x1a3/0x800 [ 3097.224095] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3097.229028] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3097.234045] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3097.238883] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3097.244060] RIP: 0033:0x458089 23:22:30 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x4802000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3097.247249] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3097.266155] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3097.273865] RAX: ffffffffffffffda RBX: 00007f8208093c90 RCX: 0000000000458089 [ 3097.281122] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3097.288387] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3097.295655] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3097.302909] R13: 00000000004c563f R14: 00000000004d93a0 R15: 0000000000000004 23:22:30 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00z\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:30 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000200012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:30 executing program 5 (fault-call:1 fault-nth:4): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:30 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:30 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\a\xff\xff\xfe\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3097.587837] FAULT_INJECTION: forcing a failure. [ 3097.587837] name failslab, interval 1, probability 0, space 0, times 0 [ 3097.638082] CPU: 0 PID: 18174 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3097.645316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3097.654672] Call Trace: [ 3097.657276] dump_stack+0x1db/0x2d0 [ 3097.660931] ? dump_stack_print_info.cold+0x20/0x20 [ 3097.665972] ? lock_acquire+0x1db/0x570 [ 3097.669960] ? rtnl_lock+0x17/0x20 [ 3097.673512] should_fail.cold+0xa/0x15 [ 3097.677416] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3097.682537] ? ___might_sleep+0x1e7/0x310 [ 3097.686698] ? arch_local_save_flags+0x50/0x50 [ 3097.691300] ? simple_strtoll+0xa0/0xa0 [ 3097.695300] ? netlink_sendmsg+0xa05/0xf90 [ 3097.699549] __should_failslab+0x121/0x190 [ 3097.703795] should_failslab+0x9/0x14 [ 3097.707659] __kmalloc_track_caller+0x2d8/0x740 [ 3097.712329] ? __lock_is_held+0xb6/0x140 [ 3097.716406] ? kstrdup_const+0x66/0x80 [ 3097.720320] kstrdup+0x3a/0x70 [ 3097.723532] kstrdup_const+0x66/0x80 [ 3097.727254] kvasprintf_const+0x10e/0x190 [ 3097.731440] kobject_set_name_vargs+0x5b/0x150 [ 3097.736029] dev_set_name+0xbd/0xf0 [ 3097.739664] ? device_initialize+0x5c0/0x5c0 [ 3097.744083] ? __kmalloc+0x5d5/0x740 [ 3097.747802] ? add_lock_to_list.isra.0+0x450/0x450 [ 3097.752775] wiphy_new_nm+0x1c4a/0x2220 [ 3097.756772] ? cfg80211_dev_check_name.isra.0+0x440/0x440 [ 3097.762329] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3097.767876] ? print_usage_bug+0xd0/0xd0 [ 3097.771947] ? lock_downgrade+0x910/0x910 [ 3097.776113] ? kasan_check_read+0x11/0x20 [ 3097.780272] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3097.785559] ? __lock_acquire+0x572/0x4a30 [ 3097.789826] ? is_bpf_text_address+0xd3/0x170 [ 3097.794354] ? mark_held_locks+0x100/0x100 [ 3097.798593] ? __save_stack_trace+0x8a/0xf0 [ 3097.802941] ieee80211_alloc_hw_nm+0x507/0x22d0 [ 3097.807615] ? ieee80211_restart_work+0x210/0x210 [ 3097.812459] ? netlink_sendmsg+0xa05/0xf90 [ 3097.816698] ? sock_sendmsg+0xdd/0x130 [ 3097.820626] ? ___sys_sendmsg+0x7ec/0x910 [ 3097.824773] ? __sys_sendmsg+0x112/0x270 [ 3097.828877] ? __x64_sys_sendmsg+0x78/0xb0 [ 3097.833122] ? do_syscall_64+0x1a3/0x800 [ 3097.837186] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3097.842560] ? mark_held_locks+0xb1/0x100 [ 3097.846712] ? __local_bh_enable_ip+0x15a/0x270 [ 3097.851400] ? __local_bh_enable_ip+0x15a/0x270 [ 3097.856073] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3097.860665] ? trace_hardirqs_on+0xbd/0x310 [ 3097.864995] ? _raw_spin_unlock_bh+0x31/0x40 [ 3097.869427] ? trace_hardirqs_off_caller+0x300/0x300 [ 3097.874537] ? do_raw_spin_unlock+0xa0/0x330 [ 3097.878972] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3097.884524] ? check_preemption_disabled+0x48/0x290 [ 3097.889550] ? do_raw_spin_trylock+0x270/0x270 [ 3097.894146] ? mac80211_hwsim_new_radio+0x17e/0x3610 [ 3097.899270] ? __local_bh_enable_ip+0x15a/0x270 [ 3097.903954] mac80211_hwsim_new_radio+0x200/0x3610 [ 3097.908897] ? pointer+0x930/0x930 [ 3097.912474] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3097.918553] ? kvasprintf+0x101/0x170 [ 3097.922359] ? bust_spinlocks+0xe0/0xe0 [ 3097.926349] ? refcount_inc_not_zero_checked+0x2e0/0x2e0 [ 3097.931834] ? kasprintf+0xbb/0xf0 [ 3097.935387] ? kvasprintf_const+0x190/0x190 [ 3097.939716] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3097.944911] ? validate_nla+0x28c/0x1580 [ 3097.948987] hwsim_new_radio_nl+0xca6/0x1430 [ 3097.953406] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3097.958623] genl_family_rcv_msg+0x80d/0x11a0 [ 3097.963131] ? genl_unregister_family+0x8a0/0x8a0 [ 3097.967993] ? radix_tree_insert+0x850/0x850 [ 3097.972401] ? netlink_deliver_tap+0x32b/0xf40 [ 3097.977016] genl_rcv_msg+0xca/0x16c [ 3097.980733] netlink_rcv_skb+0x17d/0x410 [ 3097.984797] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3097.989568] ? netlink_ack+0xba0/0xba0 [ 3097.993467] ? __down_interruptible+0x740/0x740 [ 3097.998148] genl_rcv+0x29/0x40 [ 3098.001431] netlink_unicast+0x574/0x770 [ 3098.005514] ? netlink_attachskb+0x980/0x980 [ 3098.009932] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3098.015468] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3098.020490] netlink_sendmsg+0xa05/0xf90 [ 3098.024555] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3098.030102] ? netlink_unicast+0x770/0x770 [ 3098.034344] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3098.039196] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3098.043959] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3098.049502] ? security_socket_sendmsg+0x93/0xc0 [ 3098.054262] ? netlink_unicast+0x770/0x770 [ 3098.058507] sock_sendmsg+0xdd/0x130 [ 3098.062232] ___sys_sendmsg+0x7ec/0x910 [ 3098.066228] ? copy_msghdr_from_user+0x570/0x570 [ 3098.070986] ? iterate_fd+0x4b0/0x4b0 [ 3098.074799] ? lock_downgrade+0x910/0x910 [ 3098.078985] ? __fget_light+0x2db/0x420 [ 3098.082960] ? fget_raw+0x20/0x20 [ 3098.086421] ? __mutex_unlock_slowpath+0x195/0x870 [ 3098.091355] ? wait_for_completion+0x810/0x810 [ 3098.095943] ? __fdget+0x1b/0x20 [ 3098.099334] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3098.104888] ? sockfd_lookup_light+0xc2/0x160 [ 3098.109387] __sys_sendmsg+0x112/0x270 [ 3098.113279] ? __ia32_sys_shutdown+0x80/0x80 [ 3098.117704] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3098.123073] ? trace_hardirqs_off_caller+0x300/0x300 [ 3098.128179] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3098.132950] __x64_sys_sendmsg+0x78/0xb0 [ 3098.137017] do_syscall_64+0x1a3/0x800 [ 3098.140913] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3098.145853] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3098.150881] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3098.155734] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3098.160927] RIP: 0033:0x458089 [ 3098.164119] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3098.183022] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 23:22:31 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000200)) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, &(0x7f00000000c0)={0x0, 0x7ff, 0x0, 0x4}, 0xc) 23:22:31 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000280012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:31 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x9400000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3098.190731] RAX: ffffffffffffffda RBX: 00007f8208093c90 RCX: 0000000000458089 [ 3098.197999] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3098.205265] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3098.212542] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3098.219838] R13: 00000000004c563f R14: 00000000004d93a0 R15: 0000000000000004 23:22:31 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\xff\xff\xff\xff\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:31 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x14, 0x22, 0x2000000303, 0x0, 0x0, {0x2003006}}, 0x14}}, 0x0) socket$inet_sctp(0x2, 0x400000021, 0x84) 23:22:31 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09000000433a0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:31 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:31 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3098.602458] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3098.615525] CPU: 1 PID: 18215 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3098.622737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3098.632107] Call Trace: [ 3098.634715] dump_stack+0x1db/0x2d0 [ 3098.638370] ? dump_stack_print_info.cold+0x20/0x20 [ 3098.643396] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3098.648518] sysfs_warn_dup.cold+0x1c/0x31 [ 3098.652763] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3098.658145] sysfs_create_link+0x65/0xc0 [ 3098.662222] device_add+0x78e/0x1800 [ 3098.665972] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3098.671358] ? get_device_parent.isra.0+0x570/0x570 [ 3098.676399] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3098.681973] wiphy_register+0x1abd/0x2760 [ 3098.682001] ? wiphy_unregister+0x1340/0x1340 [ 3098.682020] ? rcu_read_lock_sched_held+0x110/0x130 [ 3098.682037] ? __kmalloc+0x5d5/0x740 [ 3098.682053] ? memset+0x32/0x40 [ 3098.682068] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3098.682086] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3098.682105] ieee80211_register_hw+0x15e2/0x3f30 [ 3098.682127] ? hrtimer_init_on_stack+0x1/0x40 [ 3098.682150] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3098.682167] ? kasan_check_write+0x14/0x20 [ 3098.682183] ? tasklet_hrtimer_init+0xfa/0x260 [ 3098.682202] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3098.713328] ? tasklet_kill+0xd0/0xd0 [ 3098.731578] mac80211_hwsim_new_radio+0x1f8c/0x3610 23:22:32 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09000000003f0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:32 executing program 3: r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) connect$netrom(0xffffffffffffffff, 0x0, 0x0) listen(0xffffffffffffffff, 0x0) getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x484, 0x0, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) ioctl$sock_SIOCBRADDBR(r1, 0x89a0, &(0x7f0000000740)='bcsf0\x00') socket$isdn_base(0x22, 0x3, 0x0) ioctl$IMSETDEVNAME(0xffffffffffffffff, 0x80184947, 0x0) syz_genetlink_get_family_id$tipc(0x0) sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x3, 0x30}, &(0x7f0000000040)=0xc) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000080)={r2, @in6={{0xa, 0x4e24, 0x8, @mcast1, 0x3}}, [0x6, 0x2, 0x6, 0x0, 0x7, 0xe24e, 0xaa, 0x8, 0x3, 0x1, 0x80000001, 0x0, 0x10000, 0x2f2e, 0x100]}, &(0x7f0000000180)=0x100) ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, 0x0, 0x0) ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$team(0x0) accept4$packet(0xffffffffffffff9c, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$IP6T_SO_GET_INFO(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) ioctl$FS_IOC_FSGETXATTR(r3, 0x801c581f, &(0x7f00000001c0)={0x8, 0x7, 0x100000001, 0x913f058, 0xd2f}) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, 0x0, 0x0) [ 3098.749837] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3098.755922] ? kvasprintf+0x101/0x170 [ 3098.759732] ? bust_spinlocks+0xe0/0xe0 [ 3098.763733] ? kasprintf+0xbb/0xf0 [ 3098.767280] ? kvasprintf_const+0x190/0x190 [ 3098.771612] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3098.776831] ? validate_nla+0x28c/0x1580 [ 3098.780929] hwsim_new_radio_nl+0xca6/0x1430 [ 3098.785347] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3098.790560] genl_family_rcv_msg+0x80d/0x11a0 [ 3098.795068] ? genl_unregister_family+0x8a0/0x8a0 [ 3098.799933] ? radix_tree_insert+0x850/0x850 [ 3098.804383] ? netlink_deliver_tap+0x32b/0xf40 [ 3098.809009] genl_rcv_msg+0xca/0x16c [ 3098.812745] netlink_rcv_skb+0x17d/0x410 [ 3098.816825] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3098.821597] ? netlink_ack+0xba0/0xba0 [ 3098.825505] ? __down_interruptible+0x740/0x740 [ 3098.830189] genl_rcv+0x29/0x40 [ 3098.833470] netlink_unicast+0x574/0x770 [ 3098.838237] ? netlink_attachskb+0x980/0x980 [ 3098.842662] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3098.848212] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3098.853234] netlink_sendmsg+0xa05/0xf90 [ 3098.857298] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3098.862858] ? netlink_unicast+0x770/0x770 [ 3098.867102] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3098.871970] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3098.876733] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3098.882271] ? security_socket_sendmsg+0x93/0xc0 [ 3098.887028] ? netlink_unicast+0x770/0x770 [ 3098.891270] sock_sendmsg+0xdd/0x130 [ 3098.894993] ___sys_sendmsg+0x7ec/0x910 [ 3098.899008] ? copy_msghdr_from_user+0x570/0x570 [ 3098.903760] ? iterate_fd+0x4b0/0x4b0 [ 3098.907580] ? __might_fault+0x12b/0x1e0 [ 3098.911642] ? find_held_lock+0x35/0x120 [ 3098.915706] ? __might_fault+0x12b/0x1e0 [ 3098.919772] ? __fget_light+0x2db/0x420 [ 3098.923775] ? fget_raw+0x20/0x20 [ 3098.927239] ? lock_release+0xc40/0xc40 [ 3098.931217] ? trace_hardirqs_off_caller+0x300/0x300 [ 3098.936332] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3098.941885] ? __fdget+0x1b/0x20 [ 3098.945256] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3098.950800] ? sockfd_lookup_light+0xc2/0x160 [ 3098.955311] __sys_sendmsg+0x112/0x270 [ 3098.959223] ? __ia32_sys_shutdown+0x80/0x80 [ 3098.963653] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3098.969023] ? trace_hardirqs_off_caller+0x300/0x300 [ 3098.974131] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3098.978897] __x64_sys_sendmsg+0x78/0xb0 [ 3098.982969] do_syscall_64+0x1a3/0x800 [ 3098.986869] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3098.991803] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3098.996953] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3099.001818] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3099.007041] RIP: 0033:0x458089 [ 3099.010233] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3099.029133] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3099.036862] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3099.044155] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 23:22:32 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x01\xa0\xff\xff\xff\xff\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3099.051428] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3099.058697] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3099.065989] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3099.115186] __nla_parse: 6 callbacks suppressed [ 3099.115196] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3099.144866] ipvs_mt_check: 35 callbacks suppressed [ 3099.144875] xt_ipvs: protocol family 7 not supported 23:22:32 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0xb804000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3099.215129] xt_ipvs: protocol family 7 not supported 23:22:32 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:32 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000480012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3099.323608] xt_ipvs: protocol family 7 not supported [ 3099.358513] xt_ipvs: protocol family 7 not supported [ 3099.455001] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3099.475843] CPU: 1 PID: 18258 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3099.483065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3099.492425] Call Trace: [ 3099.495034] dump_stack+0x1db/0x2d0 [ 3099.498682] ? dump_stack_print_info.cold+0x20/0x20 [ 3099.503733] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3099.508892] sysfs_warn_dup.cold+0x1c/0x31 [ 3099.513163] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3099.518547] sysfs_create_link+0x65/0xc0 [ 3099.522623] device_add+0x78e/0x1800 [ 3099.526361] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3099.531746] ? get_device_parent.isra.0+0x570/0x570 [ 3099.536778] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3099.542358] wiphy_register+0x1abd/0x2760 [ 3099.546563] ? wiphy_unregister+0x1340/0x1340 [ 3099.551079] ? rcu_read_lock_sched_held+0x110/0x130 [ 3099.556110] ? __kmalloc+0x5d5/0x740 [ 3099.559849] ? memset+0x32/0x40 [ 3099.563145] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3099.568700] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3099.573650] ieee80211_register_hw+0x15e2/0x3f30 [ 3099.578426] ? hrtimer_init_on_stack+0x1/0x40 [ 3099.582965] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3099.587736] ? kasan_check_write+0x14/0x20 [ 3099.591984] ? tasklet_hrtimer_init+0xfa/0x260 [ 3099.596575] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3099.601425] ? tasklet_kill+0xd0/0xd0 [ 3099.605243] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3099.610299] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3099.616385] ? kvasprintf+0x101/0x170 [ 3099.620197] ? bust_spinlocks+0xe0/0xe0 [ 3099.624197] ? kasprintf+0xbb/0xf0 [ 3099.627749] ? kvasprintf_const+0x190/0x190 [ 3099.632101] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3099.637332] ? validate_nla+0x28c/0x1580 [ 3099.641417] hwsim_new_radio_nl+0xca6/0x1430 [ 3099.645856] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3099.651083] genl_family_rcv_msg+0x80d/0x11a0 [ 3099.655599] ? genl_unregister_family+0x8a0/0x8a0 [ 3099.660476] ? radix_tree_insert+0x850/0x850 [ 3099.667416] ? netlink_deliver_tap+0x32b/0xf40 [ 3099.672040] genl_rcv_msg+0xca/0x16c [ 3099.675766] netlink_rcv_skb+0x17d/0x410 [ 3099.679843] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3099.684604] ? netlink_ack+0xba0/0xba0 [ 3099.688489] ? __down_interruptible+0x740/0x740 [ 3099.693161] genl_rcv+0x29/0x40 [ 3099.696433] netlink_unicast+0x574/0x770 [ 3099.700486] ? netlink_attachskb+0x980/0x980 [ 3099.704898] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3099.710418] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3099.715435] netlink_sendmsg+0xa05/0xf90 [ 3099.719481] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3099.725032] ? netlink_unicast+0x770/0x770 [ 3099.729259] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3099.734090] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3099.738837] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3099.744367] ? security_socket_sendmsg+0x93/0xc0 [ 3099.749109] ? netlink_unicast+0x770/0x770 [ 3099.753338] sock_sendmsg+0xdd/0x130 [ 3099.757045] ___sys_sendmsg+0x7ec/0x910 [ 3099.761026] ? copy_msghdr_from_user+0x570/0x570 [ 3099.765776] ? iterate_fd+0x4b0/0x4b0 [ 3099.769566] ? __might_fault+0x12b/0x1e0 [ 3099.773635] ? find_held_lock+0x35/0x120 [ 3099.777693] ? __might_fault+0x12b/0x1e0 [ 3099.781758] ? __fget_light+0x2db/0x420 [ 3099.785720] ? fget_raw+0x20/0x20 [ 3099.789161] ? lock_release+0xc40/0xc40 [ 3099.793119] ? trace_hardirqs_off_caller+0x300/0x300 [ 3099.798211] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3099.803739] ? __fdget+0x1b/0x20 [ 3099.807094] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3099.812620] ? sockfd_lookup_light+0xc2/0x160 [ 3099.817104] __sys_sendmsg+0x112/0x270 [ 3099.820998] ? __ia32_sys_shutdown+0x80/0x80 [ 3099.825405] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3099.830754] ? trace_hardirqs_off_caller+0x300/0x300 [ 3099.835847] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3099.840592] __x64_sys_sendmsg+0x78/0xb0 [ 3099.844659] do_syscall_64+0x1a3/0x800 [ 3099.848533] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3099.853449] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3099.858454] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3099.863293] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3099.868501] RIP: 0033:0x458089 [ 3099.871683] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3099.890569] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3099.898275] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:22:33 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:33 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:33 executing program 3: r0 = socket(0x10, 0x20000000080003, 0xc) write(r0, &(0x7f0000000040)="1f0000000102fffffd3b02c007110000f30501000b000600000403ca3100001d9e97389616da57a57f4a3623041ec95ee1f58f8f2698658ccb9469b365cc044cbca851c54ec240ea887af68fab9fe07b2db9be52e40e62066601d5ad1c32ec6928f068cfcc2ec6334bb69e522a4b269d7e1784bd1275c7a937baf70ee9c1ea144803dd4d3ae0baba2b4c7a11c857db65f5f54d0a180a6958bd09a966", 0xe) getsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f0000000000)={@dev}, &(0x7f0000000100)=0x14) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r0, &(0x7f0000000300)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000000}, 0xffffffffffffff48, &(0x7f00000002c0)={&(0x7f0000000240)={0x6a, r1, 0x8, 0x70bd2c, 0x2ddfdbff, {}, [@TIPC_NLA_NODE={0x20, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x86fd}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_NET={0x48, 0x7, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1ff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x80}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x10001}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x4a}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000180)={0x6, &(0x7f0000000140)=[{0x89, 0x7733, 0x5, 0x5}, {0x100000000, 0x80000000, 0x2, 0x7}, {0x1, 0x7fffffff, 0x3f, 0x7}, {0x8, 0x4, 0x511, 0x6}, {0x1ff, 0x7, 0x6, 0x1}, {0xd1, 0x1, 0x40, 0x3}]}, 0x10) [ 3099.905558] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3099.912834] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3099.920087] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3099.927343] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3099.967119] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3100.007735] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:33 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070") r1 = socket(0x40000000015, 0x5, 0x0) bind$inet(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) mmap(&(0x7f0000000000/0x5000)=nil, 0x5000, 0x4, 0x10031, 0xffffffffffffffff, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$RDS_CANCEL_SENT_TO(r1, 0x114, 0x1, &(0x7f00000000c0), 0x200000d0) getsockopt$sock_cred(r0, 0x1, 0x1e, 0x0, &(0x7f0000000580)=0x3d8) 23:22:33 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:33 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0xc404000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3100.098343] xt_ipvs: protocol family 7 not supported [ 3100.139143] xt_ipvs: protocol family 7 not supported 23:22:33 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09000000004c0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3100.160876] xt_ipvs: protocol family 7 not supported [ 3100.253491] xt_ipvs: protocol family 7 not supported 23:22:33 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x03\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3100.295348] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3100.346883] CPU: 0 PID: 18292 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3100.354124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3100.363478] Call Trace: [ 3100.363534] dump_stack+0x1db/0x2d0 [ 3100.363559] ? dump_stack_print_info.cold+0x20/0x20 [ 3100.363579] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3100.379952] sysfs_warn_dup.cold+0x1c/0x31 [ 3100.379972] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3100.379992] sysfs_create_link+0x65/0xc0 [ 3100.380011] device_add+0x78e/0x1800 [ 3100.380027] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3100.380049] ? get_device_parent.isra.0+0x570/0x570 [ 3100.407758] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3100.413315] wiphy_register+0x1abd/0x2760 [ 3100.417492] ? wiphy_unregister+0x1340/0x1340 [ 3100.422021] ? rcu_read_lock_sched_held+0x110/0x130 [ 3100.427056] ? __kmalloc+0x5d5/0x740 [ 3100.430783] ? memset+0x32/0x40 [ 3100.434096] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3100.439653] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3100.444599] ieee80211_register_hw+0x15e2/0x3f30 [ 3100.447231] xt_ipvs: protocol family 7 not supported [ 3100.449367] ? hrtimer_init_on_stack+0x1/0x40 [ 3100.449391] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3100.449411] ? kasan_check_write+0x14/0x20 [ 3100.449427] ? tasklet_hrtimer_init+0xfa/0x260 [ 3100.449443] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3100.449458] ? tasklet_kill+0xd0/0xd0 [ 3100.476155] xt_ipvs: protocol family 7 not supported [ 3100.477739] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3100.477792] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3100.477838] ? kvasprintf+0x101/0x170 [ 3100.477869] ? bust_spinlocks+0xe0/0xe0 [ 3100.505638] ? kasprintf+0xbb/0xf0 [ 3100.509220] ? kvasprintf_const+0x190/0x190 [ 3100.513607] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3100.518844] ? validate_nla+0x28c/0x1580 [ 3100.522959] hwsim_new_radio_nl+0xca6/0x1430 [ 3100.527390] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3100.532627] genl_family_rcv_msg+0x80d/0x11a0 [ 3100.537145] ? genl_unregister_family+0x8a0/0x8a0 [ 3100.542016] ? radix_tree_insert+0x850/0x850 [ 3100.546440] ? netlink_deliver_tap+0x32b/0xf40 [ 3100.546482] genl_rcv_msg+0xca/0x16c [ 3100.546501] netlink_rcv_skb+0x17d/0x410 [ 3100.546517] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3100.546534] ? netlink_ack+0xba0/0xba0 [ 3100.546570] ? __down_interruptible+0x740/0x740 [ 3100.546609] genl_rcv+0x29/0x40 [ 3100.546623] netlink_unicast+0x574/0x770 [ 3100.546645] ? netlink_attachskb+0x980/0x980 [ 3100.546663] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3100.546677] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3100.546697] netlink_sendmsg+0xa05/0xf90 [ 3100.546711] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3100.546735] ? netlink_unicast+0x770/0x770 [ 3100.546753] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3100.546773] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3100.546788] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3100.546804] ? security_socket_sendmsg+0x93/0xc0 [ 3100.546838] ? netlink_unicast+0x770/0x770 [ 3100.546858] sock_sendmsg+0xdd/0x130 [ 3100.546876] ___sys_sendmsg+0x7ec/0x910 [ 3100.555179] ? copy_msghdr_from_user+0x570/0x570 [ 3100.645345] ? iterate_fd+0x4b0/0x4b0 [ 3100.649164] ? __might_fault+0x12b/0x1e0 [ 3100.653240] ? find_held_lock+0x35/0x120 [ 3100.657324] ? __might_fault+0x12b/0x1e0 [ 3100.661399] ? __fget_light+0x2db/0x420 [ 3100.665398] ? fget_raw+0x20/0x20 [ 3100.668874] ? lock_release+0xc40/0xc40 [ 3100.672891] ? trace_hardirqs_off_caller+0x300/0x300 [ 3100.677999] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3100.683557] ? __fdget+0x1b/0x20 [ 3100.686935] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3100.692490] ? sockfd_lookup_light+0xc2/0x160 [ 3100.696996] __sys_sendmsg+0x112/0x270 [ 3100.700928] ? __ia32_sys_shutdown+0x80/0x80 [ 3100.705366] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3100.710759] ? trace_hardirqs_off_caller+0x300/0x300 [ 3100.715918] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3100.720697] __x64_sys_sendmsg+0x78/0xb0 [ 3100.724775] do_syscall_64+0x1a3/0x800 [ 3100.728701] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3100.733659] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3100.738697] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3100.743563] entry_SYSCALL_64_after_hwframe+0x49/0xbe 23:22:33 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:33 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x04\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:33 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:33 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x05\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:34 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x06\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3100.748759] RIP: 0033:0x458089 [ 3100.752004] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3100.770921] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3100.778637] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3100.785914] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3100.785925] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3100.800507] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3100.800517] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3100.815866] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3100.817166] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:34 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:34 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000600012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:34 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:34 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0xcffeffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3101.058526] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3101.081226] CPU: 0 PID: 18334 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3101.088447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3101.097814] Call Trace: [ 3101.100441] dump_stack+0x1db/0x2d0 [ 3101.104105] ? dump_stack_print_info.cold+0x20/0x20 [ 3101.109181] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3101.114329] sysfs_warn_dup.cold+0x1c/0x31 [ 3101.118568] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3101.123955] sysfs_create_link+0x65/0xc0 [ 3101.128023] device_add+0x78e/0x1800 [ 3101.131738] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3101.137115] ? get_device_parent.isra.0+0x570/0x570 [ 3101.142135] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3101.147687] wiphy_register+0x1abd/0x2760 [ 3101.151905] ? wiphy_unregister+0x1340/0x1340 [ 3101.156421] ? rcu_read_lock_sched_held+0x110/0x130 [ 3101.161441] ? __kmalloc+0x5d5/0x740 [ 3101.165168] ? memset+0x32/0x40 [ 3101.168450] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3101.173995] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3101.178938] ieee80211_register_hw+0x15e2/0x3f30 [ 3101.183703] ? hrtimer_init_on_stack+0x1/0x40 [ 3101.188209] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3101.192977] ? kasan_check_write+0x14/0x20 [ 3101.197212] ? tasklet_hrtimer_init+0xfa/0x260 [ 3101.201836] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3101.206691] ? tasklet_kill+0xd0/0xd0 [ 3101.210530] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3101.215565] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3101.221640] ? kvasprintf+0x101/0x170 [ 3101.225449] ? bust_spinlocks+0xe0/0xe0 [ 3101.229441] ? kasprintf+0xbb/0xf0 [ 3101.233001] ? kvasprintf_const+0x190/0x190 [ 3101.237326] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3101.242519] ? validate_nla+0x28c/0x1580 [ 3101.246591] hwsim_new_radio_nl+0xca6/0x1430 [ 3101.251025] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3101.256249] genl_family_rcv_msg+0x80d/0x11a0 [ 3101.260756] ? genl_unregister_family+0x8a0/0x8a0 [ 3101.265609] ? radix_tree_insert+0x850/0x850 [ 3101.270022] ? netlink_deliver_tap+0x32b/0xf40 [ 3101.274635] genl_rcv_msg+0xca/0x16c [ 3101.278369] netlink_rcv_skb+0x17d/0x410 [ 3101.282432] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3101.287193] ? netlink_ack+0xba0/0xba0 [ 3101.291088] ? __down_interruptible+0x740/0x740 [ 3101.295788] genl_rcv+0x29/0x40 [ 3101.299109] netlink_unicast+0x574/0x770 [ 3101.303176] ? netlink_attachskb+0x980/0x980 [ 3101.307596] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3101.313148] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3101.318174] netlink_sendmsg+0xa05/0xf90 [ 3101.322236] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3101.327787] ? netlink_unicast+0x770/0x770 [ 3101.332039] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3101.336890] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3101.341650] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3101.347190] ? security_socket_sendmsg+0x93/0xc0 [ 3101.351958] ? netlink_unicast+0x770/0x770 [ 3101.356215] sock_sendmsg+0xdd/0x130 [ 3101.359936] ___sys_sendmsg+0x7ec/0x910 [ 3101.363922] ? copy_msghdr_from_user+0x570/0x570 [ 3101.368678] ? iterate_fd+0x4b0/0x4b0 [ 3101.372488] ? __might_fault+0x12b/0x1e0 [ 3101.376552] ? find_held_lock+0x35/0x120 [ 3101.380618] ? __might_fault+0x12b/0x1e0 [ 3101.384686] ? __fget_light+0x2db/0x420 [ 3101.388663] ? fget_raw+0x20/0x20 [ 3101.392147] ? lock_release+0xc40/0xc40 [ 3101.396123] ? trace_hardirqs_off_caller+0x300/0x300 [ 3101.401246] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3101.406826] ? __fdget+0x1b/0x20 [ 3101.410202] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3101.415743] ? sockfd_lookup_light+0xc2/0x160 [ 3101.420257] __sys_sendmsg+0x112/0x270 [ 3101.424145] ? __ia32_sys_shutdown+0x80/0x80 [ 3101.428582] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3101.433947] ? trace_hardirqs_off_caller+0x300/0x300 [ 3101.439057] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3101.443837] __x64_sys_sendmsg+0x78/0xb0 [ 3101.447905] do_syscall_64+0x1a3/0x800 [ 3101.451796] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3101.456742] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3101.461779] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3101.466666] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3101.471858] RIP: 0033:0x458089 [ 3101.475054] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3101.493954] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3101.501660] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:22:34 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3101.508954] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3101.516227] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3101.523495] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3101.530767] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:34 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3101.577745] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:34 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000680012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:35 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:35 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00H\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:35 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3101.770126] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3101.847750] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3101.867332] CPU: 0 PID: 18359 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3101.874533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3101.883890] Call Trace: [ 3101.886487] dump_stack+0x1db/0x2d0 [ 3101.890144] ? dump_stack_print_info.cold+0x20/0x20 [ 3101.895191] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3101.900314] sysfs_warn_dup.cold+0x1c/0x31 [ 3101.904564] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3101.909946] sysfs_create_link+0x65/0xc0 [ 3101.914022] device_add+0x78e/0x1800 [ 3101.917750] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3101.923135] ? get_device_parent.isra.0+0x570/0x570 [ 3101.928194] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3101.933833] wiphy_register+0x1abd/0x2760 [ 3101.938010] ? wiphy_unregister+0x1340/0x1340 [ 3101.942526] ? rcu_read_lock_sched_held+0x110/0x130 23:22:35 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0xfe80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:35 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09000000006c0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3101.947556] ? __kmalloc+0x5d5/0x740 [ 3101.951279] ? memset+0x32/0x40 [ 3101.954569] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3101.960121] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3101.965079] ieee80211_register_hw+0x15e2/0x3f30 [ 3101.969865] ? hrtimer_init_on_stack+0x1/0x40 [ 3101.974388] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3101.979159] ? kasan_check_write+0x14/0x20 [ 3101.979176] ? tasklet_hrtimer_init+0xfa/0x260 [ 3101.979195] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3101.979211] ? tasklet_kill+0xd0/0xd0 [ 3101.979240] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3101.979285] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3101.988073] ? kvasprintf+0x101/0x170 [ 3101.988090] ? bust_spinlocks+0xe0/0xe0 [ 3101.988121] ? kasprintf+0xbb/0xf0 [ 3101.988137] ? kvasprintf_const+0x190/0x190 [ 3101.988155] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3101.988173] ? validate_nla+0x28c/0x1580 [ 3101.988197] hwsim_new_radio_nl+0xca6/0x1430 [ 3102.007916] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3102.007956] genl_family_rcv_msg+0x80d/0x11a0 23:22:35 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3102.007979] ? genl_unregister_family+0x8a0/0x8a0 [ 3102.032863] ? radix_tree_insert+0x850/0x850 [ 3102.032881] ? netlink_deliver_tap+0x32b/0xf40 [ 3102.032925] genl_rcv_msg+0xca/0x16c [ 3102.032947] netlink_rcv_skb+0x17d/0x410 [ 3102.068631] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3102.073409] ? netlink_ack+0xba0/0xba0 [ 3102.077309] ? __down_interruptible+0x740/0x740 [ 3102.081996] genl_rcv+0x29/0x40 [ 3102.085288] netlink_unicast+0x574/0x770 [ 3102.089364] ? netlink_attachskb+0x980/0x980 [ 3102.089384] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3102.089399] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3102.089420] netlink_sendmsg+0xa05/0xf90 [ 3102.089435] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3102.089459] ? netlink_unicast+0x770/0x770 [ 3102.099395] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3102.099417] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3102.099432] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3102.099447] ? security_socket_sendmsg+0x93/0xc0 [ 3102.099465] ? netlink_unicast+0x770/0x770 [ 3102.142439] sock_sendmsg+0xdd/0x130 [ 3102.146173] ___sys_sendmsg+0x7ec/0x910 [ 3102.150169] ? copy_msghdr_from_user+0x570/0x570 [ 3102.154937] ? iterate_fd+0x4b0/0x4b0 [ 3102.158761] ? __might_fault+0x12b/0x1e0 [ 3102.162850] ? find_held_lock+0x35/0x120 [ 3102.166926] ? __might_fault+0x12b/0x1e0 [ 3102.171010] ? __fget_light+0x2db/0x420 [ 3102.174998] ? fget_raw+0x20/0x20 [ 3102.178461] ? lock_release+0xc40/0xc40 [ 3102.182450] ? trace_hardirqs_off_caller+0x300/0x300 [ 3102.187564] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3102.193128] ? __fdget+0x1b/0x20 [ 3102.196504] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3102.202052] ? sockfd_lookup_light+0xc2/0x160 [ 3102.206553] __sys_sendmsg+0x112/0x270 [ 3102.210441] ? __ia32_sys_shutdown+0x80/0x80 [ 3102.214879] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3102.220285] ? trace_hardirqs_off_caller+0x300/0x300 [ 3102.225402] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3102.230158] __x64_sys_sendmsg+0x78/0xb0 [ 3102.234252] do_syscall_64+0x1a3/0x800 [ 3102.238166] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3102.243096] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3102.248131] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3102.252995] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3102.258184] RIP: 0033:0x458089 [ 3102.261408] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3102.280317] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3102.288024] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:22:35 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00L\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3102.295285] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3102.302542] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3102.309797] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3102.317083] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3102.363912] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3102.382896] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3102.430921] CPU: 0 PID: 18389 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3102.438129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3102.447489] Call Trace: [ 3102.450093] dump_stack+0x1db/0x2d0 [ 3102.450117] ? dump_stack_print_info.cold+0x20/0x20 [ 3102.450139] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3102.450167] sysfs_warn_dup.cold+0x1c/0x31 [ 3102.450188] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3102.450207] sysfs_create_link+0x65/0xc0 [ 3102.458868] device_add+0x78e/0x1800 [ 3102.458886] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3102.458910] ? get_device_parent.isra.0+0x570/0x570 [ 3102.458930] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3102.458960] wiphy_register+0x1abd/0x2760 [ 3102.458989] ? wiphy_unregister+0x1340/0x1340 [ 3102.459008] ? rcu_read_lock_sched_held+0x110/0x130 [ 3102.511115] ? __kmalloc+0x5d5/0x740 [ 3102.514856] ? memset+0x32/0x40 [ 3102.514873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3102.514893] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3102.514915] ieee80211_register_hw+0x15e2/0x3f30 [ 3102.514938] ? hrtimer_init_on_stack+0x1/0x40 [ 3102.514960] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3102.523760] ? kasan_check_write+0x14/0x20 [ 3102.523777] ? tasklet_hrtimer_init+0xfa/0x260 [ 3102.523794] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3102.523851] ? tasklet_kill+0xd0/0xd0 [ 3102.523881] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3102.523915] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3102.571368] ? kvasprintf+0x101/0x170 [ 3102.571385] ? bust_spinlocks+0xe0/0xe0 23:22:35 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00`\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:35 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000740012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:35 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0xffffffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3102.571415] ? kasprintf+0xbb/0xf0 [ 3102.571431] ? kvasprintf_const+0x190/0x190 [ 3102.571449] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3102.571466] ? validate_nla+0x28c/0x1580 [ 3102.579280] hwsim_new_radio_nl+0xca6/0x1430 [ 3102.579307] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3102.579346] genl_family_rcv_msg+0x80d/0x11a0 [ 3102.579370] ? genl_unregister_family+0x8a0/0x8a0 [ 3102.579396] ? radix_tree_insert+0x850/0x850 [ 3102.579414] ? netlink_deliver_tap+0x32b/0xf40 [ 3102.624356] genl_rcv_msg+0xca/0x16c 23:22:35 executing program 3: r0 = socket(0x4, 0x800, 0x1) ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000001100)) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = socket(0x2, 0x80801, 0x0) r3 = epoll_create1(0x0) setsockopt$ax25_SO_BINDTODEVICE(r2, 0x101, 0x19, &(0x7f0000000000)=@netrom={'nr', 0x0}, 0x10) epoll_pwait(r3, &(0x7f0000000040)=[{}], 0x1, 0x80000000, 0x0, 0x0) bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f000000eff4)) shutdown(r2, 0x1) close(r3) shutdown(r2, 0x0) recvfrom$inet(r2, &(0x7f00000000c0)=""/4096, 0x1000, 0x40000022, &(0x7f00000010c0)={0x2, 0x4e22, @rand_addr=0x4}, 0x10) [ 3102.628084] netlink_rcv_skb+0x17d/0x410 [ 3102.632169] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3102.636947] ? netlink_ack+0xba0/0xba0 [ 3102.640864] ? __down_interruptible+0x740/0x740 [ 3102.645550] genl_rcv+0x29/0x40 [ 3102.648854] netlink_unicast+0x574/0x770 [ 3102.652932] ? netlink_attachskb+0x980/0x980 [ 3102.657353] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3102.657368] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3102.657418] netlink_sendmsg+0xa05/0xf90 [ 3102.657432] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3102.657456] ? netlink_unicast+0x770/0x770 [ 3102.657472] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3102.657491] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3102.681843] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3102.696964] ? security_socket_sendmsg+0x93/0xc0 [ 3102.701776] ? netlink_unicast+0x770/0x770 [ 3102.706051] sock_sendmsg+0xdd/0x130 [ 3102.709772] ___sys_sendmsg+0x7ec/0x910 [ 3102.713749] ? copy_msghdr_from_user+0x570/0x570 [ 3102.718506] ? iterate_fd+0x4b0/0x4b0 [ 3102.722319] ? __might_fault+0x12b/0x1e0 [ 3102.726383] ? find_held_lock+0x35/0x120 [ 3102.730444] ? __might_fault+0x12b/0x1e0 [ 3102.734509] ? __fget_light+0x2db/0x420 [ 3102.738500] ? fget_raw+0x20/0x20 [ 3102.741958] ? lock_release+0xc40/0xc40 [ 3102.745939] ? trace_hardirqs_off_caller+0x300/0x300 [ 3102.751039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3102.756600] ? __fdget+0x1b/0x20 [ 3102.759966] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3102.765506] ? sockfd_lookup_light+0xc2/0x160 [ 3102.770005] __sys_sendmsg+0x112/0x270 [ 3102.773896] ? __ia32_sys_shutdown+0x80/0x80 [ 3102.778336] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3102.783719] ? trace_hardirqs_off_caller+0x300/0x300 [ 3102.788836] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3102.793597] __x64_sys_sendmsg+0x78/0xb0 [ 3102.797664] do_syscall_64+0x1a3/0x800 [ 3102.801558] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3102.806490] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3102.811516] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3102.816383] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3102.821567] RIP: 0033:0x458089 [ 3102.824760] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3102.843677] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3102.851412] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3102.858678] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3102.865956] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3102.873239] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3102.880507] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3102.942688] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:36 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:36 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00h\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:36 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:36 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09000000007a0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:36 executing program 3: [ 3103.188284] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3103.239400] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3103.269635] CPU: 1 PID: 18439 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3103.276846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3103.286213] Call Trace: [ 3103.288880] dump_stack+0x1db/0x2d0 [ 3103.292551] ? dump_stack_print_info.cold+0x20/0x20 [ 3103.292574] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3103.292603] sysfs_warn_dup.cold+0x1c/0x31 [ 3103.306941] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3103.306959] sysfs_create_link+0x65/0xc0 [ 3103.306976] device_add+0x78e/0x1800 [ 3103.306991] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3103.307012] ? get_device_parent.isra.0+0x570/0x570 [ 3103.307029] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3103.307054] wiphy_register+0x1abd/0x2760 [ 3103.340195] ? wiphy_unregister+0x1340/0x1340 [ 3103.344725] ? rcu_read_lock_sched_held+0x110/0x130 [ 3103.349751] ? __kmalloc+0x5d5/0x740 [ 3103.353474] ? memset+0x32/0x40 [ 3103.356763] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3103.362309] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3103.367256] ieee80211_register_hw+0x15e2/0x3f30 [ 3103.372027] ? hrtimer_init_on_stack+0x1/0x40 [ 3103.376559] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3103.381346] ? kasan_check_write+0x14/0x20 [ 3103.385590] ? tasklet_hrtimer_init+0xfa/0x260 23:22:36 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0xffffffffa0010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3103.390182] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3103.395034] ? tasklet_kill+0xd0/0xd0 [ 3103.398869] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3103.403948] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3103.410030] ? kvasprintf+0x101/0x170 [ 3103.413931] ? bust_spinlocks+0xe0/0xe0 [ 3103.417919] ? kasprintf+0xbb/0xf0 [ 3103.421458] ? kvasprintf_const+0x190/0x190 [ 3103.425767] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3103.430959] ? validate_nla+0x28c/0x1580 [ 3103.435011] hwsim_new_radio_nl+0xca6/0x1430 [ 3103.439516] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3103.444715] genl_family_rcv_msg+0x80d/0x11a0 [ 3103.449218] ? genl_unregister_family+0x8a0/0x8a0 [ 3103.454066] ? radix_tree_insert+0x850/0x850 [ 3103.458505] ? netlink_deliver_tap+0x32b/0xf40 [ 3103.463106] genl_rcv_msg+0xca/0x16c [ 3103.466850] netlink_rcv_skb+0x17d/0x410 [ 3103.470943] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3103.475700] ? netlink_ack+0xba0/0xba0 [ 3103.479610] ? __down_interruptible+0x740/0x740 [ 3103.484280] genl_rcv+0x29/0x40 [ 3103.487557] netlink_unicast+0x574/0x770 [ 3103.491630] ? netlink_attachskb+0x980/0x980 [ 3103.496028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3103.501567] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3103.506584] netlink_sendmsg+0xa05/0xf90 [ 3103.510638] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3103.516181] ? netlink_unicast+0x770/0x770 [ 3103.520416] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3103.525251] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3103.529993] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3103.535528] ? security_socket_sendmsg+0x93/0xc0 [ 3103.540293] ? netlink_unicast+0x770/0x770 [ 3103.544532] sock_sendmsg+0xdd/0x130 [ 3103.548274] ___sys_sendmsg+0x7ec/0x910 [ 3103.552252] ? copy_msghdr_from_user+0x570/0x570 [ 3103.557006] ? iterate_fd+0x4b0/0x4b0 [ 3103.560828] ? __might_fault+0x12b/0x1e0 [ 3103.564890] ? find_held_lock+0x35/0x120 [ 3103.568954] ? __might_fault+0x12b/0x1e0 [ 3103.573013] ? __fget_light+0x2db/0x420 [ 3103.576983] ? fget_raw+0x20/0x20 [ 3103.580434] ? lock_release+0xc40/0xc40 [ 3103.584433] ? trace_hardirqs_off_caller+0x300/0x300 [ 3103.589525] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3103.595067] ? __fdget+0x1b/0x20 [ 3103.598433] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3103.603983] ? sockfd_lookup_light+0xc2/0x160 [ 3103.608476] __sys_sendmsg+0x112/0x270 [ 3103.612375] ? __ia32_sys_shutdown+0x80/0x80 [ 3103.616797] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3103.622166] ? trace_hardirqs_off_caller+0x300/0x300 [ 3103.627293] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3103.632059] __x64_sys_sendmsg+0x78/0xb0 [ 3103.636123] do_syscall_64+0x1a3/0x800 [ 3103.640017] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3103.644944] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3103.649953] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3103.654786] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3103.659977] RIP: 0033:0x458089 [ 3103.663162] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3103.682046] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 23:22:37 executing program 3: 23:22:37 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00l\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3103.689759] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3103.697024] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3103.704294] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3103.711559] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3103.718837] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:37 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000810012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:37 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:37 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:37 executing program 3: [ 3103.981684] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3104.005638] CPU: 0 PID: 18471 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3104.012869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3104.022223] Call Trace: [ 3104.024844] dump_stack+0x1db/0x2d0 [ 3104.028493] ? dump_stack_print_info.cold+0x20/0x20 [ 3104.033544] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3104.038680] sysfs_warn_dup.cold+0x1c/0x31 [ 3104.042956] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3104.042975] sysfs_create_link+0x65/0xc0 [ 3104.042993] device_add+0x78e/0x1800 [ 3104.052410] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3104.061512] ? get_device_parent.isra.0+0x570/0x570 [ 3104.066544] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3104.072119] wiphy_register+0x1abd/0x2760 [ 3104.076291] ? wiphy_unregister+0x1340/0x1340 23:22:37 executing program 3: 23:22:37 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900ffffff9e0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3104.080837] ? rcu_read_lock_sched_held+0x110/0x130 [ 3104.085869] ? __kmalloc+0x5d5/0x740 [ 3104.089588] ? memset+0x32/0x40 [ 3104.092870] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3104.098417] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3104.103363] ieee80211_register_hw+0x15e2/0x3f30 [ 3104.108134] ? hrtimer_init_on_stack+0x1/0x40 [ 3104.112649] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3104.117422] ? kasan_check_write+0x14/0x20 [ 3104.121675] ? tasklet_hrtimer_init+0xfa/0x260 [ 3104.126271] ? mac80211_hwsim_set_tsf+0x220/0x220 23:22:37 executing program 3: [ 3104.131150] ? tasklet_kill+0xd0/0xd0 [ 3104.134979] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3104.140032] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3104.146099] ? kvasprintf+0x101/0x170 [ 3104.149906] ? bust_spinlocks+0xe0/0xe0 [ 3104.153906] ? kasprintf+0xbb/0xf0 [ 3104.157455] ? kvasprintf_const+0x190/0x190 [ 3104.161789] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3104.167008] ? validate_nla+0x28c/0x1580 [ 3104.171122] hwsim_new_radio_nl+0xca6/0x1430 [ 3104.175555] ? mac80211_hwsim_new_radio+0x3610/0x3610 23:22:37 executing program 3: [ 3104.180780] genl_family_rcv_msg+0x80d/0x11a0 [ 3104.185309] ? genl_unregister_family+0x8a0/0x8a0 [ 3104.190173] ? radix_tree_insert+0x850/0x850 [ 3104.194589] ? netlink_deliver_tap+0x32b/0xf40 [ 3104.199218] genl_rcv_msg+0xca/0x16c [ 3104.202958] netlink_rcv_skb+0x17d/0x410 [ 3104.207025] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3104.211793] ? netlink_ack+0xba0/0xba0 [ 3104.215737] ? __down_interruptible+0x740/0x740 [ 3104.215761] genl_rcv+0x29/0x40 [ 3104.215775] netlink_unicast+0x574/0x770 [ 3104.215795] ? netlink_attachskb+0x980/0x980 23:22:37 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a5c1f023c126285719070") r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_cpus\x00', 0x0, 0x0) connect$vsock_dgram(r2, &(0x7f0000000080)={0x28, 0x0, 0x2711, @host}, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)={0x18, 0x22, 0x1, 0x0, 0x0, {0x4000000004}, [@typed={0x4, 0x18}]}, 0x18}}, 0x0) [ 3104.227775] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3104.227789] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3104.227817] netlink_sendmsg+0xa05/0xf90 [ 3104.227837] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3104.227859] ? netlink_unicast+0x770/0x770 [ 3104.227876] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3104.261498] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3104.266271] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3104.271841] ? security_socket_sendmsg+0x93/0xc0 [ 3104.276605] ? netlink_unicast+0x770/0x770 [ 3104.280863] sock_sendmsg+0xdd/0x130 [ 3104.284595] ___sys_sendmsg+0x7ec/0x910 [ 3104.288577] ? copy_msghdr_from_user+0x570/0x570 [ 3104.293332] ? iterate_fd+0x4b0/0x4b0 [ 3104.297125] ? __might_fault+0x12b/0x1e0 [ 3104.301189] ? find_held_lock+0x35/0x120 [ 3104.305236] ? __might_fault+0x12b/0x1e0 [ 3104.309306] ? __fget_light+0x2db/0x420 [ 3104.313284] ? fget_raw+0x20/0x20 [ 3104.316726] ? lock_release+0xc40/0xc40 [ 3104.320722] ? trace_hardirqs_off_caller+0x300/0x300 [ 3104.325840] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3104.331388] ? __fdget+0x1b/0x20 [ 3104.334760] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3104.340283] ? sockfd_lookup_light+0xc2/0x160 [ 3104.344779] __sys_sendmsg+0x112/0x270 [ 3104.348654] ? __ia32_sys_shutdown+0x80/0x80 [ 3104.353068] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3104.358414] ? trace_hardirqs_off_caller+0x300/0x300 [ 3104.363524] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3104.368290] __x64_sys_sendmsg+0x78/0xb0 [ 3104.372343] do_syscall_64+0x1a3/0x800 [ 3104.376227] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3104.381176] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3104.386181] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3104.391012] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3104.396192] RIP: 0033:0x458089 [ 3104.399397] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3104.418336] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3104.426035] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:22:37 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00t\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3104.433289] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3104.440557] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3104.447825] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3104.455084] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3104.501288] __nla_parse: 1 callbacks suppressed [ 3104.501296] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:37 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000001a00012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:37 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3104.565273] ipvs_mt_check: 28 callbacks suppressed [ 3104.565281] xt_ipvs: protocol family 7 not supported 23:22:37 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3104.626870] xt_ipvs: protocol family 7 not supported [ 3104.672905] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3104.695095] CPU: 1 PID: 18471 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3104.702297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3104.711650] Call Trace: [ 3104.714250] dump_stack+0x1db/0x2d0 [ 3104.717892] ? dump_stack_print_info.cold+0x20/0x20 [ 3104.722929] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3104.728047] sysfs_warn_dup.cold+0x1c/0x31 [ 3104.732289] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3104.737852] sysfs_create_link+0x65/0xc0 [ 3104.741933] device_add+0x78e/0x1800 [ 3104.745647] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3104.751021] ? get_device_parent.isra.0+0x570/0x570 [ 3104.756102] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3104.761655] wiphy_register+0x1abd/0x2760 [ 3104.765821] ? wiphy_unregister+0x1340/0x1340 [ 3104.770341] ? rcu_read_lock_sched_held+0x110/0x130 [ 3104.775355] ? __kmalloc+0x5d5/0x740 [ 3104.779069] ? memset+0x32/0x40 [ 3104.782350] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3104.787892] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3104.792836] ieee80211_register_hw+0x15e2/0x3f30 [ 3104.797616] ? hrtimer_init_on_stack+0x1/0x40 [ 3104.802152] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3104.806916] ? kasan_check_write+0x14/0x20 [ 3104.811169] ? tasklet_hrtimer_init+0xfa/0x260 [ 3104.815751] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3104.820592] ? tasklet_kill+0xd0/0xd0 [ 3104.824406] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3104.829451] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3104.835504] ? kvasprintf+0x101/0x170 [ 3104.839308] ? bust_spinlocks+0xe0/0xe0 [ 3104.843301] ? kasprintf+0xbb/0xf0 [ 3104.846848] ? kvasprintf_const+0x190/0x190 [ 3104.851176] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3104.856367] ? validate_nla+0x28c/0x1580 [ 3104.860436] hwsim_new_radio_nl+0xca6/0x1430 [ 3104.864859] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3104.870087] genl_family_rcv_msg+0x80d/0x11a0 [ 3104.874592] ? genl_unregister_family+0x8a0/0x8a0 [ 3104.879450] ? radix_tree_insert+0x850/0x850 [ 3104.883859] ? netlink_deliver_tap+0x32b/0xf40 [ 3104.888469] genl_rcv_msg+0xca/0x16c [ 3104.892194] netlink_rcv_skb+0x17d/0x410 [ 3104.896276] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3104.901029] ? netlink_ack+0xba0/0xba0 [ 3104.904919] ? __down_interruptible+0x740/0x740 [ 3104.909599] genl_rcv+0x29/0x40 [ 3104.912880] netlink_unicast+0x574/0x770 [ 3104.916954] ? netlink_attachskb+0x980/0x980 [ 3104.921362] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3104.926900] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3104.931926] netlink_sendmsg+0xa05/0xf90 [ 3104.935991] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3104.941538] ? netlink_unicast+0x770/0x770 [ 3104.945777] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3104.950629] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3104.955382] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3104.960935] ? security_socket_sendmsg+0x93/0xc0 [ 3104.965709] ? netlink_unicast+0x770/0x770 [ 3104.969949] sock_sendmsg+0xdd/0x130 [ 3104.973667] ___sys_sendmsg+0x7ec/0x910 [ 3104.977653] ? copy_msghdr_from_user+0x570/0x570 [ 3104.982407] ? iterate_fd+0x4b0/0x4b0 [ 3104.986217] ? __might_fault+0x12b/0x1e0 [ 3104.990277] ? find_held_lock+0x35/0x120 [ 3104.994345] ? __might_fault+0x12b/0x1e0 [ 3104.998421] ? __fget_light+0x2db/0x420 [ 3105.002409] ? fget_raw+0x20/0x20 [ 3105.005862] ? lock_release+0xc40/0xc40 [ 3105.009846] ? trace_hardirqs_off_caller+0x300/0x300 [ 3105.014951] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3105.020501] ? __fdget+0x1b/0x20 [ 3105.023864] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3105.029400] ? sockfd_lookup_light+0xc2/0x160 [ 3105.033900] __sys_sendmsg+0x112/0x270 [ 3105.037789] ? __ia32_sys_shutdown+0x80/0x80 [ 3105.042234] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3105.047601] ? trace_hardirqs_off_caller+0x300/0x300 [ 3105.052711] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3105.057469] __x64_sys_sendmsg+0x78/0xb0 [ 3105.061532] do_syscall_64+0x1a3/0x800 [ 3105.065454] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3105.070385] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3105.075426] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3105.080280] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3105.085470] RIP: 0033:0x458089 [ 3105.088680] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3105.107596] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3105.115304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:22:38 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00z\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3105.122590] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3105.129861] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3105.137129] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3105.144395] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3105.174279] xt_ipvs: protocol family 7 not supported [ 3105.211523] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:38 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:38 executing program 3: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$inet_tcp_buf(r2, 0x6, 0x23, &(0x7f0000000300)=""/166, &(0x7f0000000140)=0x10) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000000000)={0x0, 0x2b, "2d3ec2160e8b77dc280656b8da08c14acde46a68333ceeb9eab3f7433bba64e25b4fad36493ff8877ca3da"}, &(0x7f0000000040)=0x33) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000080)={r3, 0x2, 0x5, 0x0, 0x10001, 0xfffffffffffffffb}, &(0x7f00000000c0)=0x14) getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f0000000240)={'broute\x00', 0x0, 0x4, 0x18, [], 0x9, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000100)=""/24}, &(0x7f00000002c0)=0x78) 23:22:38 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000000ec00012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3105.306474] xt_ipvs: protocol family 7 not supported [ 3105.347397] xt_ipvs: protocol family 7 not supported 23:22:38 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\xff\xff', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3105.402341] xt_ipvs: protocol family 7 not supported 23:22:38 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:38 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000000)=0x32, 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000001000)=ANY=[@ANYBLOB="7b1a55a97b6a2c1519d5a6671a00000000003a0000ff"], 0x0}, 0x48) setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0x6) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, &(0x7f0000788000)=0x2, 0xfef2) bind$packet(0xffffffffffffffff, &(0x7f0000000480)={0x11, 0x3, 0x0, 0x1, 0x0, 0x6, @local}, 0x14) setsockopt(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000001000), 0xc5) connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10) sendmmsg(r0, &(0x7f0000004e00)=[{{0x0, 0x40030000000000, &(0x7f0000001f80), 0x300, &(0x7f0000001fc0)}}], 0x400000000000047, 0x0) getsockname$tipc(0xffffffffffffffff, &(0x7f0000000080)=@id, &(0x7f00000000c0)=0x10) 23:22:38 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\xa0\x01\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3105.452397] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3105.488203] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3105.517076] CPU: 0 PID: 18531 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3105.524285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3105.533660] Call Trace: [ 3105.536307] dump_stack+0x1db/0x2d0 [ 3105.539957] ? dump_stack_print_info.cold+0x20/0x20 [ 3105.544988] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3105.550123] sysfs_warn_dup.cold+0x1c/0x31 [ 3105.554381] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3105.559754] sysfs_create_link+0x65/0xc0 [ 3105.563831] device_add+0x78e/0x1800 [ 3105.567548] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3105.572930] ? get_device_parent.isra.0+0x570/0x570 [ 3105.577969] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3105.583517] wiphy_register+0x1abd/0x2760 [ 3105.587678] ? wiphy_unregister+0x1340/0x1340 [ 3105.592178] ? rcu_read_lock_sched_held+0x110/0x130 [ 3105.597239] ? __kmalloc+0x5d5/0x740 [ 3105.600956] ? memset+0x32/0x40 [ 3105.604239] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3105.609781] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3105.614726] ieee80211_register_hw+0x15e2/0x3f30 [ 3105.619491] ? hrtimer_init_on_stack+0x1/0x40 [ 3105.623999] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3105.628761] ? kasan_check_write+0x14/0x20 [ 3105.632994] ? tasklet_hrtimer_init+0xfa/0x260 [ 3105.637582] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3105.642428] ? tasklet_kill+0xd0/0xd0 [ 3105.646261] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3105.651516] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3105.657572] ? kvasprintf+0x101/0x170 [ 3105.661390] ? bust_spinlocks+0xe0/0xe0 [ 3105.665412] ? kasprintf+0xbb/0xf0 [ 3105.668958] ? kvasprintf_const+0x190/0x190 [ 3105.673283] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3105.678473] ? validate_nla+0x28c/0x1580 [ 3105.682541] hwsim_new_radio_nl+0xca6/0x1430 [ 3105.686961] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3105.692175] genl_family_rcv_msg+0x80d/0x11a0 [ 3105.696680] ? genl_unregister_family+0x8a0/0x8a0 [ 3105.701532] ? radix_tree_insert+0x850/0x850 [ 3105.705943] ? netlink_deliver_tap+0x32b/0xf40 [ 3105.710550] genl_rcv_msg+0xca/0x16c [ 3105.714269] netlink_rcv_skb+0x17d/0x410 [ 3105.718362] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3105.723120] ? netlink_ack+0xba0/0xba0 [ 3105.727015] ? __down_interruptible+0x740/0x740 [ 3105.731695] genl_rcv+0x29/0x40 [ 3105.734980] netlink_unicast+0x574/0x770 [ 3105.739049] ? netlink_attachskb+0x980/0x980 [ 3105.743480] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3105.749020] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3105.754040] netlink_sendmsg+0xa05/0xf90 [ 3105.758103] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3105.763649] ? netlink_unicast+0x770/0x770 [ 3105.767887] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3105.772734] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3105.777491] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3105.783035] ? security_socket_sendmsg+0x93/0xc0 [ 3105.787801] ? netlink_unicast+0x770/0x770 [ 3105.792065] sock_sendmsg+0xdd/0x130 [ 3105.795795] ___sys_sendmsg+0x7ec/0x910 [ 3105.799785] ? copy_msghdr_from_user+0x570/0x570 [ 3105.804559] ? iterate_fd+0x4b0/0x4b0 [ 3105.808414] ? __might_fault+0x12b/0x1e0 [ 3105.812470] ? find_held_lock+0x35/0x120 [ 3105.816526] ? __might_fault+0x12b/0x1e0 [ 3105.820588] ? __fget_light+0x2db/0x420 [ 3105.824558] ? fget_raw+0x20/0x20 [ 3105.828020] ? lock_release+0xc40/0xc40 [ 3105.831994] ? trace_hardirqs_off_caller+0x300/0x300 [ 3105.837133] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3105.842694] ? __fdget+0x1b/0x20 [ 3105.846073] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3105.851628] ? sockfd_lookup_light+0xc2/0x160 [ 3105.856128] __sys_sendmsg+0x112/0x270 [ 3105.860012] ? __ia32_sys_shutdown+0x80/0x80 [ 3105.864429] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3105.869791] ? trace_hardirqs_off_caller+0x300/0x300 [ 3105.874911] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3105.879690] __x64_sys_sendmsg+0x78/0xb0 [ 3105.883762] do_syscall_64+0x1a3/0x800 [ 3105.887654] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3105.892581] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3105.897600] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3105.902445] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3105.907627] RIP: 0033:0x458089 [ 3105.910842] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3105.929841] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3105.937549] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3105.944834] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3105.952116] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3105.959398] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3105.966669] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:39 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900fffffff00012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3106.030403] xt_ipvs: protocol family 7 not supported 23:22:39 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3106.135523] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3106.151959] xt_ipvs: protocol family 7 not supported [ 3106.169496] xt_ipvs: protocol family 7 not supported 23:22:39 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000f0ffff0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3106.200393] xt_ipvs: protocol family 7 not supported [ 3106.214077] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3106.265012] CPU: 1 PID: 18561 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3106.272222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3106.281579] Call Trace: [ 3106.284183] dump_stack+0x1db/0x2d0 [ 3106.287858] ? dump_stack_print_info.cold+0x20/0x20 [ 3106.292882] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3106.297995] sysfs_warn_dup.cold+0x1c/0x31 [ 3106.302249] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3106.307639] sysfs_create_link+0x65/0xc0 [ 3106.311714] device_add+0x78e/0x1800 [ 3106.315436] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3106.320865] ? get_device_parent.isra.0+0x570/0x570 [ 3106.325921] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3106.331482] wiphy_register+0x1abd/0x2760 [ 3106.335656] ? wiphy_unregister+0x1340/0x1340 [ 3106.340166] ? rcu_read_lock_sched_held+0x110/0x130 [ 3106.345366] ? __kmalloc+0x5d5/0x740 [ 3106.349103] ? memset+0x32/0x40 [ 3106.352389] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3106.357938] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3106.357960] ieee80211_register_hw+0x15e2/0x3f30 [ 3106.357982] ? hrtimer_init_on_stack+0x1/0x40 [ 3106.358006] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3106.358026] ? kasan_check_write+0x14/0x20 [ 3106.358043] ? tasklet_hrtimer_init+0xfa/0x260 [ 3106.358059] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3106.358075] ? tasklet_kill+0xd0/0xd0 [ 3106.358101] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3106.372272] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3106.372289] ? kvasprintf+0x101/0x170 [ 3106.409396] ? bust_spinlocks+0xe0/0xe0 23:22:39 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000003ec0)=[{0x0, 0x0, &(0x7f0000000580), 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000170100000200000001003500be0000e0ece363ef3b23b2d797e8b510886f2d434c7ca1c8af545331d90f7a3482ba88ca7305a29687799b79230000000000000000c57a32749e0a0390f2102266cb465e94773696dc5687321aeb6b898635c298a1638792b5f882ed913b4c5e8ff5f4d206cac9467ff6a8993576c24f000000000000009823b24a6f58e0e0c1844603185283bfae2ebc316088b91b489531e1f573a423e89e9f3997cec9b15dc84d9dc57e000000000096d549eaaf53c815cf76bf9b540ee6bb12b41b81db590355f30d43db508f67e2a747b2610eaa2cf787e7c00000000000000000000000"], 0x18}], 0x1, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)="0a0743cc05e381e5b3b60ced5c54dbb7", 0x10) r1 = accept(r0, &(0x7f0000000740)=@caif=@dgm, &(0x7f0000000700)=0x80) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000600)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1002fff1", @ANYRES16=r2, @ANYBLOB="09012abd7000ffdbdf2515000000e8000100180001006574683a76657468315f746f5f687372000000002c0004001400010002004e237f00000100000000000000001400020002000008ac1414aa00000000000000001000010069623a677265746170300000100001007564703a73797a32000000002c0004001400010002004e24ffffffff00000000000000001400020002004e22e00000020000000000000000100001007564703a73797a310000000044000400200001000a004e2300000004ff02000000000000000000000000000109000000200002000a004e2200000000fe800000000000000000000000000021010000002c000700080001009109000008000100090000000c000400ff070000000000000c00040000000000000000002c00090008000200560a000008000200070000000800010009000000080001004e70000008000200020000005000010044000400200001000a004e210000005bfe88000000000000000000000000010101000000200002000a004e2400000101fe8800000000000000000000000001010000000a080003009d00000038000200040004000800020004000000080002004e0d00000400040008000100bf030000080002000700000008000200ff0f0000040004003400090008000100200000000800020031d800000800020004000000080001000100000008000200000000000800010002000000"], 0x210}, 0x1, 0x0, 0x0, 0x24000000}, 0x4040000) r3 = accept$alg(r0, 0x0, 0x0) r4 = accept(r3, &(0x7f0000000180)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000100)=0x80) connect$bt_rfcomm(r4, &(0x7f0000000200)={0x1f, {0xffffffffffffffff, 0x100, 0xffffffffffff0001, 0x6, 0x4, 0xff}, 0x10000}, 0xa) sendmmsg$alg(r3, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x0, &(0x7f0000000080)=[@op={0x18}], 0x18}], 0x4924944, 0x0) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r1, 0x28, 0x6, &(0x7f0000000240)={0x77359400}, 0x10) sendto$inet(r1, &(0x7f00000007c0)="9b6a23ba9b724a7926e3f46d6b30f8e9b99b264911086a45152016ee51a684f0d50fa9f73d3685fc9571921cfcf116fa2418a35d076c2dd3b4084643591781c8f5d55b05ba292e1eda55d4cd93f44e52a0149bedadd6a856590abd11d5ec1c77c9372744e6252112fb6faa4c7701a0c413aae542344f8676bab010c70bc25111eeae1eb8b2810cad59ea6d251b09573a92408975c5246c2a3604c0b528294d966d5879fb9ee245ce34e3f40ed6b858711ab373", 0xb3, 0x10, &(0x7f0000000680)={0x2, 0x4e22, @remote}, 0x10) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f00000002c0)={0x0, 0xfffffffffffffffc, 0x1, [0x1f]}, &(0x7f0000000340)=0xa) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r4, 0x84, 0x78, &(0x7f0000000640)=r5, 0x4) 23:22:39 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x03\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:39 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xff\xff', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3106.413416] ? kasprintf+0xbb/0xf0 [ 3106.416966] ? kvasprintf_const+0x190/0x190 [ 3106.421300] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3106.426524] ? validate_nla+0x28c/0x1580 [ 3106.430611] hwsim_new_radio_nl+0xca6/0x1430 [ 3106.435042] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3106.440271] genl_family_rcv_msg+0x80d/0x11a0 [ 3106.444787] ? genl_unregister_family+0x8a0/0x8a0 [ 3106.449665] ? radix_tree_insert+0x850/0x850 [ 3106.454075] ? netlink_deliver_tap+0x32b/0xf40 [ 3106.458682] genl_rcv_msg+0xca/0x16c [ 3106.462396] netlink_rcv_skb+0x17d/0x410 [ 3106.466443] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3106.471228] ? netlink_ack+0xba0/0xba0 [ 3106.475577] ? __down_interruptible+0x740/0x740 [ 3106.480276] genl_rcv+0x29/0x40 [ 3106.483560] netlink_unicast+0x574/0x770 [ 3106.487656] ? netlink_attachskb+0x980/0x980 [ 3106.492071] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3106.497615] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3106.502635] netlink_sendmsg+0xa05/0xf90 [ 3106.506696] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3106.512249] ? netlink_unicast+0x770/0x770 [ 3106.516490] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3106.521327] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3106.526072] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3106.531611] ? security_socket_sendmsg+0x93/0xc0 [ 3106.536378] ? netlink_unicast+0x770/0x770 [ 3106.540616] sock_sendmsg+0xdd/0x130 [ 3106.544329] ___sys_sendmsg+0x7ec/0x910 [ 3106.548312] ? copy_msghdr_from_user+0x570/0x570 [ 3106.553089] ? iterate_fd+0x4b0/0x4b0 [ 3106.556909] ? __might_fault+0x12b/0x1e0 [ 3106.560979] ? find_held_lock+0x35/0x120 [ 3106.565073] ? __might_fault+0x12b/0x1e0 [ 3106.569166] ? __fget_light+0x2db/0x420 [ 3106.573150] ? fget_raw+0x20/0x20 [ 3106.576634] ? lock_release+0xc40/0xc40 [ 3106.580622] ? trace_hardirqs_off_caller+0x300/0x300 [ 3106.585723] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3106.591268] ? __fdget+0x1b/0x20 [ 3106.594619] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3106.600169] ? sockfd_lookup_light+0xc2/0x160 [ 3106.604659] __sys_sendmsg+0x112/0x270 [ 3106.608549] ? __ia32_sys_shutdown+0x80/0x80 [ 3106.612980] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3106.618358] ? trace_hardirqs_off_caller+0x300/0x300 [ 3106.623461] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3106.628218] __x64_sys_sendmsg+0x78/0xb0 [ 3106.632290] do_syscall_64+0x1a3/0x800 [ 3106.636174] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3106.641111] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3106.646119] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3106.650956] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3106.656141] RIP: 0033:0x458089 [ 3106.659339] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3106.678251] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3106.685961] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3106.693236] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3106.700509] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3106.707779] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3106.715051] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:40 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x48, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3106.738987] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3106.799615] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:40 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:40 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\xa0\xff\xff\xff', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:40 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09007fffffff0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3106.933086] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3106.969506] CPU: 1 PID: 18586 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 23:22:40 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x05\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3106.976717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3106.986078] Call Trace: [ 3106.988682] dump_stack+0x1db/0x2d0 [ 3106.992332] ? dump_stack_print_info.cold+0x20/0x20 [ 3106.997378] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3107.002505] sysfs_warn_dup.cold+0x1c/0x31 [ 3107.006759] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3107.012137] sysfs_create_link+0x65/0xc0 [ 3107.016200] device_add+0x78e/0x1800 [ 3107.019913] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3107.025294] ? get_device_parent.isra.0+0x570/0x570 [ 3107.030314] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3107.035880] wiphy_register+0x1abd/0x2760 [ 3107.040049] ? wiphy_unregister+0x1340/0x1340 [ 3107.044567] ? rcu_read_lock_sched_held+0x110/0x130 [ 3107.049593] ? __kmalloc+0x5d5/0x740 [ 3107.053341] ? memset+0x32/0x40 [ 3107.056631] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3107.062183] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3107.067145] ieee80211_register_hw+0x15e2/0x3f30 [ 3107.071915] ? hrtimer_init_on_stack+0x1/0x40 [ 3107.076413] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3107.081159] ? kasan_check_write+0x14/0x20 [ 3107.085409] ? tasklet_hrtimer_init+0xfa/0x260 [ 3107.089995] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3107.094857] ? tasklet_kill+0xd0/0xd0 [ 3107.098682] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3107.103729] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3107.109796] ? kvasprintf+0x101/0x170 [ 3107.113612] ? bust_spinlocks+0xe0/0xe0 [ 3107.117607] ? kasprintf+0xbb/0xf0 [ 3107.121170] ? kvasprintf_const+0x190/0x190 [ 3107.125508] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3107.130700] ? validate_nla+0x28c/0x1580 [ 3107.134772] hwsim_new_radio_nl+0xca6/0x1430 [ 3107.139203] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3107.144425] genl_family_rcv_msg+0x80d/0x11a0 [ 3107.148936] ? genl_unregister_family+0x8a0/0x8a0 [ 3107.153799] ? radix_tree_insert+0x850/0x850 [ 3107.158229] ? netlink_deliver_tap+0x32b/0xf40 [ 3107.162844] genl_rcv_msg+0xca/0x16c [ 3107.166568] netlink_rcv_skb+0x17d/0x410 [ 3107.170626] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3107.175368] ? netlink_ack+0xba0/0xba0 [ 3107.179261] ? __down_interruptible+0x740/0x740 [ 3107.183944] genl_rcv+0x29/0x40 [ 3107.187230] netlink_unicast+0x574/0x770 [ 3107.191294] ? netlink_attachskb+0x980/0x980 [ 3107.195692] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3107.201226] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3107.206250] netlink_sendmsg+0xa05/0xf90 [ 3107.210312] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3107.215864] ? netlink_unicast+0x770/0x770 [ 3107.220103] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3107.224969] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3107.229720] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3107.235258] ? security_socket_sendmsg+0x93/0xc0 [ 3107.240023] ? netlink_unicast+0x770/0x770 [ 3107.244275] sock_sendmsg+0xdd/0x130 [ 3107.247998] ___sys_sendmsg+0x7ec/0x910 [ 3107.251998] ? copy_msghdr_from_user+0x570/0x570 [ 3107.256760] ? iterate_fd+0x4b0/0x4b0 [ 3107.260586] ? __might_fault+0x12b/0x1e0 [ 3107.264646] ? find_held_lock+0x35/0x120 [ 3107.268710] ? __might_fault+0x12b/0x1e0 [ 3107.272784] ? __fget_light+0x2db/0x420 [ 3107.276769] ? fget_raw+0x20/0x20 [ 3107.280209] ? lock_release+0xc40/0xc40 [ 3107.284185] ? trace_hardirqs_off_caller+0x300/0x300 [ 3107.289316] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3107.294878] ? __fdget+0x1b/0x20 [ 3107.298261] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3107.303799] ? sockfd_lookup_light+0xc2/0x160 [ 3107.308310] __sys_sendmsg+0x112/0x270 [ 3107.312218] ? __ia32_sys_shutdown+0x80/0x80 [ 3107.316647] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3107.322016] ? trace_hardirqs_off_caller+0x300/0x300 [ 3107.327122] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3107.331886] __x64_sys_sendmsg+0x78/0xb0 [ 3107.335962] do_syscall_64+0x1a3/0x800 [ 3107.339881] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3107.344809] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3107.349852] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3107.354712] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3107.359905] RIP: 0033:0x458089 [ 3107.363087] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3107.381981] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3107.389709] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3107.396982] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3107.404249] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3107.411558] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3107.418842] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3107.437602] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:40 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070") bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0xc, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1, 0x2c}]}, &(0x7f0000f6bffb)='GPL\x00'}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x14, 0x6, 0x4, 0x400, 0x0, 0x1}, 0x2c) socket$kcm(0x29, 0x5, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) recvmmsg(r1, &(0x7f0000005c00)=[{{&(0x7f0000002700)=@sco, 0x80, &(0x7f0000002780), 0x0, &(0x7f00000027c0)=""/226, 0xe2}, 0x20}, {{&(0x7f00000028c0)=@nfc, 0x80, &(0x7f0000002d80)=[{&(0x7f0000002940)=""/104, 0x68}, {&(0x7f00000029c0)=""/123, 0x7b}, {&(0x7f0000002a40)=""/166, 0xa6}, {&(0x7f0000002b00)=""/167, 0xa7}, {&(0x7f0000002bc0)=""/236, 0xec}, {&(0x7f0000002cc0)=""/18, 0x12}, {&(0x7f0000002d00)=""/30, 0x1e}, {&(0x7f0000002d40)}, {&(0x7f0000003040)=""/4096, 0x1000}], 0x9, &(0x7f0000002e40)=""/253, 0xfd}, 0x4}, {{&(0x7f0000002f40)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f0000002fc0)=[{&(0x7f0000004040)=""/209, 0xd1}], 0x1}, 0x1}, {{0x0, 0x0, &(0x7f0000004540)=[{&(0x7f0000004140)=""/46, 0x2e}, {&(0x7f0000004180)=""/214, 0xd6}, {&(0x7f0000004280)=""/89, 0x59}, {&(0x7f0000004300)=""/119, 0x77}, {&(0x7f0000004380)=""/143, 0x8f}, {&(0x7f0000004440)=""/214, 0xd6}], 0x6, &(0x7f00000045c0)=""/219, 0xdb}, 0x7}, {{&(0x7f00000046c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000004740), 0x0, &(0x7f0000004780)=""/4096, 0x1000}, 0x100000000}, {{&(0x7f0000005780)=@nfc_llcp, 0x80, &(0x7f0000005a00)=[{&(0x7f0000005800)=""/209, 0xd1}, {&(0x7f0000005900)=""/214, 0xd6}], 0x2}, 0x8001}, {{&(0x7f0000005a40)=@caif=@util, 0x80, &(0x7f0000005b80)=[{&(0x7f0000005ac0)=""/181, 0xb5}], 0x1, &(0x7f0000005bc0)=""/27, 0x1b}, 0x9}], 0x7, 0x2000, 0x0) socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$netrom_NETROM_T4(r2, 0x103, 0x6, &(0x7f0000005dc0)=0x7, &(0x7f0000005e00)=0x4) bpf$MAP_CREATE(0x0, &(0x7f0000000000), 0x2c) bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77fffb, 0x0, 0x10020000000, 0x0}, 0x2c) 23:22:40 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4c, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3107.479401] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:40 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:40 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:40 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x06\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:40 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09009effffff0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3107.645705] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3107.713655] CPU: 1 PID: 18616 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3107.720878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3107.730232] Call Trace: [ 3107.732846] dump_stack+0x1db/0x2d0 [ 3107.736493] ? dump_stack_print_info.cold+0x20/0x20 [ 3107.741532] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3107.746666] sysfs_warn_dup.cold+0x1c/0x31 [ 3107.750951] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3107.756343] sysfs_create_link+0x65/0xc0 [ 3107.760418] device_add+0x78e/0x1800 [ 3107.764141] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3107.769522] ? get_device_parent.isra.0+0x570/0x570 [ 3107.774551] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3107.780112] wiphy_register+0x1abd/0x2760 [ 3107.784299] ? wiphy_unregister+0x1340/0x1340 [ 3107.788823] ? rcu_read_lock_sched_held+0x110/0x130 [ 3107.793854] ? __kmalloc+0x5d5/0x740 [ 3107.797573] ? memset+0x32/0x40 [ 3107.800856] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3107.806399] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3107.811341] ieee80211_register_hw+0x15e2/0x3f30 [ 3107.816107] ? hrtimer_init_on_stack+0x1/0x40 [ 3107.820611] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3107.825372] ? kasan_check_write+0x14/0x20 [ 3107.829627] ? tasklet_hrtimer_init+0xfa/0x260 [ 3107.834214] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3107.839056] ? tasklet_kill+0xd0/0xd0 [ 3107.842901] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3107.847939] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3107.854006] ? kvasprintf+0x101/0x170 [ 3107.857831] ? bust_spinlocks+0xe0/0xe0 [ 3107.861827] ? kasprintf+0xbb/0xf0 [ 3107.865384] ? kvasprintf_const+0x190/0x190 [ 3107.869707] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3107.874901] ? validate_nla+0x28c/0x1580 [ 3107.878973] hwsim_new_radio_nl+0xca6/0x1430 [ 3107.883387] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3107.888612] genl_family_rcv_msg+0x80d/0x11a0 [ 3107.893131] ? genl_unregister_family+0x8a0/0x8a0 [ 3107.897982] ? radix_tree_insert+0x850/0x850 [ 3107.902421] ? netlink_deliver_tap+0x32b/0xf40 [ 3107.907027] genl_rcv_msg+0xca/0x16c [ 3107.910745] netlink_rcv_skb+0x17d/0x410 [ 3107.914807] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3107.919578] ? netlink_ack+0xba0/0xba0 [ 3107.923472] ? __down_interruptible+0x740/0x740 [ 3107.928176] genl_rcv+0x29/0x40 [ 3107.931453] netlink_unicast+0x574/0x770 [ 3107.935532] ? netlink_attachskb+0x980/0x980 [ 3107.939945] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3107.945476] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3107.950527] netlink_sendmsg+0xa05/0xf90 [ 3107.954586] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3107.960129] ? netlink_unicast+0x770/0x770 [ 3107.964364] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3107.969231] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3107.973987] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3107.979526] ? security_socket_sendmsg+0x93/0xc0 [ 3107.984284] ? netlink_unicast+0x770/0x770 [ 3107.988523] sock_sendmsg+0xdd/0x130 [ 3107.992258] ___sys_sendmsg+0x7ec/0x910 [ 3107.996238] ? copy_msghdr_from_user+0x570/0x570 [ 3108.000999] ? iterate_fd+0x4b0/0x4b0 [ 3108.004800] ? __might_fault+0x12b/0x1e0 [ 3108.008886] ? find_held_lock+0x35/0x120 [ 3108.012944] ? __might_fault+0x12b/0x1e0 [ 3108.017011] ? __fget_light+0x2db/0x420 [ 3108.020986] ? fget_raw+0x20/0x20 [ 3108.024467] ? lock_release+0xc40/0xc40 [ 3108.028453] ? trace_hardirqs_off_caller+0x300/0x300 [ 3108.033554] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3108.039135] ? __fdget+0x1b/0x20 [ 3108.042497] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3108.048036] ? sockfd_lookup_light+0xc2/0x160 [ 3108.052548] __sys_sendmsg+0x112/0x270 [ 3108.056453] ? __ia32_sys_shutdown+0x80/0x80 [ 3108.060907] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3108.066271] ? trace_hardirqs_off_caller+0x300/0x300 [ 3108.071374] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3108.076142] __x64_sys_sendmsg+0x78/0xb0 [ 3108.080221] do_syscall_64+0x1a3/0x800 [ 3108.084121] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3108.089054] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3108.094094] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3108.098949] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3108.104136] RIP: 0033:0x458089 [ 3108.107336] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3108.126236] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3108.133947] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3108.141217] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3108.148501] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3108.155765] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3108.163046] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3108.232747] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:41 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:41 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x60, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:41 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900f0ffffff0012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:41 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3108.421957] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3108.437707] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3108.445442] CPU: 0 PID: 18652 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3108.452650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3108.462021] Call Trace: [ 3108.464631] dump_stack+0x1db/0x2d0 [ 3108.468272] ? dump_stack_print_info.cold+0x20/0x20 [ 3108.473520] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3108.479632] sysfs_warn_dup.cold+0x1c/0x31 [ 3108.483878] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3108.489248] sysfs_create_link+0x65/0xc0 [ 3108.493331] device_add+0x78e/0x1800 [ 3108.497050] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3108.502439] ? get_device_parent.isra.0+0x570/0x570 [ 3108.507466] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3108.513021] wiphy_register+0x1abd/0x2760 [ 3108.517191] ? wiphy_unregister+0x1340/0x1340 [ 3108.521695] ? rcu_read_lock_sched_held+0x110/0x130 [ 3108.526719] ? __kmalloc+0x5d5/0x740 [ 3108.530436] ? memset+0x32/0x40 [ 3108.533718] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3108.539259] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3108.544194] ieee80211_register_hw+0x15e2/0x3f30 [ 3108.548958] ? hrtimer_init_on_stack+0x1/0x40 [ 3108.553464] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3108.558225] ? kasan_check_write+0x14/0x20 [ 3108.562474] ? tasklet_hrtimer_init+0xfa/0x260 [ 3108.567063] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3108.571908] ? tasklet_kill+0xd0/0xd0 [ 3108.575727] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3108.580766] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3108.586837] ? kvasprintf+0x101/0x170 [ 3108.590656] ? bust_spinlocks+0xe0/0xe0 [ 3108.594639] ? kasprintf+0xbb/0xf0 [ 3108.598176] ? kvasprintf_const+0x190/0x190 [ 3108.602501] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3108.607699] ? validate_nla+0x28c/0x1580 [ 3108.611770] hwsim_new_radio_nl+0xca6/0x1430 [ 3108.616183] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3108.621397] genl_family_rcv_msg+0x80d/0x11a0 [ 3108.625929] ? genl_unregister_family+0x8a0/0x8a0 [ 3108.630781] ? radix_tree_insert+0x850/0x850 [ 3108.635187] ? netlink_deliver_tap+0x32b/0xf40 [ 3108.639797] genl_rcv_msg+0xca/0x16c [ 3108.643528] netlink_rcv_skb+0x17d/0x410 [ 3108.647590] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3108.652356] ? netlink_ack+0xba0/0xba0 [ 3108.656250] ? __down_interruptible+0x740/0x740 [ 3108.660929] genl_rcv+0x29/0x40 [ 3108.664206] netlink_unicast+0x574/0x770 [ 3108.668292] ? netlink_attachskb+0x980/0x980 [ 3108.672699] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3108.678234] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3108.683253] netlink_sendmsg+0xa05/0xf90 [ 3108.687314] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3108.692864] ? netlink_unicast+0x770/0x770 [ 3108.697101] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3108.701951] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3108.706702] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3108.712236] ? security_socket_sendmsg+0x93/0xc0 [ 3108.716991] ? netlink_unicast+0x770/0x770 [ 3108.721230] sock_sendmsg+0xdd/0x130 [ 3108.724948] ___sys_sendmsg+0x7ec/0x910 [ 3108.728933] ? copy_msghdr_from_user+0x570/0x570 [ 3108.733701] ? iterate_fd+0x4b0/0x4b0 [ 3108.737542] ? __might_fault+0x12b/0x1e0 [ 3108.741615] ? find_held_lock+0x35/0x120 [ 3108.745675] ? __might_fault+0x12b/0x1e0 [ 3108.749754] ? __fget_light+0x2db/0x420 [ 3108.753730] ? fget_raw+0x20/0x20 [ 3108.757181] ? lock_release+0xc40/0xc40 [ 3108.761157] ? trace_hardirqs_off_caller+0x300/0x300 [ 3108.766258] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3108.771805] ? __fdget+0x1b/0x20 [ 3108.775180] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3108.780749] ? sockfd_lookup_light+0xc2/0x160 [ 3108.785261] __sys_sendmsg+0x112/0x270 [ 3108.789164] ? __ia32_sys_shutdown+0x80/0x80 [ 3108.793586] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3108.798952] ? trace_hardirqs_off_caller+0x300/0x300 [ 3108.804058] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3108.808846] __x64_sys_sendmsg+0x78/0xb0 [ 3108.812918] do_syscall_64+0x1a3/0x800 [ 3108.816827] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3108.821762] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3108.826786] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3108.831651] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3108.836849] RIP: 0033:0x458089 [ 3108.840049] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3108.858950] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3108.866657] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:22:42 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3108.873958] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3108.881253] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3108.888631] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3108.895894] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:42 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00 \x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:42 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000017000)=0xfffff7fffffffffd, 0x4) bind$inet(r1, &(0x7f0000011ff0)={0x2, 0x4e20, @multicast2}, 0x10) listen(r1, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40106614, &(0x7f0000000200)={0x0, @aes256}) r2 = socket$inet(0x2, 0x1, 0x0) setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000000)=0xffffffffffffff40, 0x4) bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @multicast2}, 0x10) sendto(r1, &(0x7f00000000c0)="770626df3d9eb4f00f6c7e03e1b0a3714bb052a60c60ba15bce2349da8197a3ac796c930ee2d697cfb63075ffaf854564d92dfb68cc8d2cc32d6e677494dac3c36011340b14d714f62db246d70fdfe9dc9dd803ce446876d6132faf125612501bdbbad2a129b2d49c5c87f7d1ae430b288beb7a42fdab768eda5a0eb1121f6863cf37f9de820c8139bb57bb0aeec09a9d2da18f41264638190ff43a146ceccf9", 0xa0, 0x40000, &(0x7f0000000180)=@pppoe={0x18, 0x0, {0x2, @broadcast, 'eql\x00'}}, 0x80) ioctl$PPPIOCSFLAGS(r0, 0x40047459, &(0x7f0000000080)=0x8) listen(r2, 0x0) connect$netlink(r2, &(0x7f0000000680)=@unspec, 0xc) 23:22:42 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000200000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:42 executing program 3: unshare(0x200) syz_extract_tcp_res(0x0, 0x0, 0x4) 23:22:42 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00?\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:42 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00@\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:42 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:42 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000300000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3109.483582] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3109.507408] CPU: 1 PID: 18652 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3109.514616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3109.523973] Call Trace: [ 3109.526577] dump_stack+0x1db/0x2d0 [ 3109.530209] ? dump_stack_print_info.cold+0x20/0x20 [ 3109.535228] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3109.540342] sysfs_warn_dup.cold+0x1c/0x31 [ 3109.544590] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3109.549969] sysfs_create_link+0x65/0xc0 [ 3109.554048] device_add+0x78e/0x1800 [ 3109.557781] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3109.563202] ? get_device_parent.isra.0+0x570/0x570 [ 3109.568234] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3109.573763] wiphy_register+0x1abd/0x2760 [ 3109.577957] ? wiphy_unregister+0x1340/0x1340 [ 3109.582463] ? rcu_read_lock_sched_held+0x110/0x130 [ 3109.587511] ? __kmalloc+0x5d5/0x740 [ 3109.591210] ? memset+0x32/0x40 [ 3109.594474] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3109.600011] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3109.604938] ieee80211_register_hw+0x15e2/0x3f30 [ 3109.609709] ? hrtimer_init_on_stack+0x1/0x40 [ 3109.614193] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3109.618949] ? kasan_check_write+0x14/0x20 [ 3109.623205] ? tasklet_hrtimer_init+0xfa/0x260 [ 3109.627774] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3109.632599] ? tasklet_kill+0xd0/0xd0 [ 3109.636389] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3109.641434] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3109.647500] ? kvasprintf+0x101/0x170 [ 3109.651285] ? bust_spinlocks+0xe0/0xe0 [ 3109.655250] ? kasprintf+0xbb/0xf0 [ 3109.658787] ? kvasprintf_const+0x190/0x190 [ 3109.663156] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3109.668334] ? validate_nla+0x28c/0x1580 [ 3109.672385] hwsim_new_radio_nl+0xca6/0x1430 [ 3109.676799] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3109.682043] genl_family_rcv_msg+0x80d/0x11a0 [ 3109.686557] ? genl_unregister_family+0x8a0/0x8a0 [ 3109.691391] ? radix_tree_insert+0x850/0x850 [ 3109.695783] ? netlink_deliver_tap+0x32b/0xf40 [ 3109.700392] genl_rcv_msg+0xca/0x16c [ 3109.704117] netlink_rcv_skb+0x17d/0x410 [ 3109.708193] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3109.712984] ? netlink_ack+0xba0/0xba0 [ 3109.716878] ? __down_interruptible+0x740/0x740 [ 3109.721564] genl_rcv+0x29/0x40 [ 3109.724851] netlink_unicast+0x574/0x770 [ 3109.728912] ? netlink_attachskb+0x980/0x980 [ 3109.733307] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3109.738846] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3109.743865] netlink_sendmsg+0xa05/0xf90 [ 3109.747913] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3109.753439] ? netlink_unicast+0x770/0x770 [ 3109.757673] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3109.762557] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3109.767303] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3109.772847] ? security_socket_sendmsg+0x93/0xc0 [ 3109.777599] ? netlink_unicast+0x770/0x770 [ 3109.781852] sock_sendmsg+0xdd/0x130 [ 3109.785562] ___sys_sendmsg+0x7ec/0x910 [ 3109.789542] ? copy_msghdr_from_user+0x570/0x570 [ 3109.794313] ? iterate_fd+0x4b0/0x4b0 [ 3109.798125] ? __might_fault+0x12b/0x1e0 [ 3109.802191] ? find_held_lock+0x35/0x120 [ 3109.806247] ? __might_fault+0x12b/0x1e0 [ 3109.810312] ? __fget_light+0x2db/0x420 [ 3109.814277] ? fget_raw+0x20/0x20 [ 3109.817729] ? lock_release+0xc40/0xc40 [ 3109.821709] ? trace_hardirqs_off_caller+0x300/0x300 [ 3109.826807] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3109.832361] ? __fdget+0x1b/0x20 [ 3109.835707] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3109.841244] ? sockfd_lookup_light+0xc2/0x160 [ 3109.845734] __sys_sendmsg+0x112/0x270 [ 3109.849607] ? __ia32_sys_shutdown+0x80/0x80 [ 3109.854009] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3109.859369] ? trace_hardirqs_off_caller+0x300/0x300 [ 3109.864466] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3109.869242] __x64_sys_sendmsg+0x78/0xb0 [ 3109.873289] do_syscall_64+0x1a3/0x800 [ 3109.877176] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3109.882110] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3109.887121] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3109.891983] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3109.897179] RIP: 0033:0x458089 [ 3109.900375] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3109.919281] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3109.926982] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:22:43 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x68, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:43 executing program 3: r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req={0x80, 0x0, 0x3, 0x73d}, 0x29b) syz_genetlink_get_family_id$team(&(0x7f0000000140)='team\x00') getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000700)={{{@in6=@dev, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@broadcast}}, &(0x7f0000000280)=0xe8) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e20, @remote}}}, &(0x7f0000000000)=0x20) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r2, 0x4) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000800)={{{@in6=@dev, @in6=@ipv4={[], [], @multicast2}}}, {{@in6=@mcast1}, 0x0, @in6=@mcast1}}, &(0x7f0000000440)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000001a80)={{{@in=@multicast1, @in6=@mcast2}}, {{@in=@loopback}, 0x0, @in=@dev}}, &(0x7f0000001b80)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000001fc0)={{{@in=@broadcast, @in=@remote}}, {{@in=@local}, 0x0, @in=@local}}, &(0x7f00000020c0)=0xe8) recvmsg(0xffffffffffffffff, &(0x7f0000003700)={&(0x7f0000002100)=@hci, 0x80, &(0x7f0000003540)=[{&(0x7f0000002180)}, {&(0x7f00000021c0)=""/112, 0x70}, {&(0x7f0000002240)=""/79, 0x4f}, {&(0x7f00000022c0)=""/56, 0x38}, {&(0x7f0000002300)=""/242, 0xf2}, {&(0x7f0000002400)=""/4096, 0x1000}, {&(0x7f0000003400)=""/12, 0xc}, {&(0x7f0000003440)=""/190, 0xbe}], 0x8, &(0x7f0000003600)=""/193, 0xc1}, 0x10102) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000003740)={{{@in, @in=@local}}, {{@in6=@mcast1}, 0x0, @in=@dev}}, 0x0) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000003840)={0x0, @remote, @local}, &(0x7f0000003880)=0xc) recvmmsg(r0, &(0x7f00000061c0)=[{{&(0x7f00000038c0)=@in={0x2, 0x0, @dev}, 0x80, &(0x7f0000003d00)=[{&(0x7f0000003940)=""/178, 0xb2}, {&(0x7f0000003b00)=""/115, 0x73}, {&(0x7f0000003c00)=""/210, 0xd2}], 0x3}, 0x200}, {{&(0x7f0000004380)=@hci, 0x80, &(0x7f0000005880)=[{&(0x7f0000005540)=""/241, 0xf1}, {&(0x7f0000005640)=""/168, 0xa8}, {&(0x7f00000057c0)=""/145, 0x91}], 0x3, &(0x7f0000005900)=""/44, 0x2c}}, {{&(0x7f0000005d00)=@ipx, 0x80, &(0x7f0000006040), 0x0, &(0x7f00000060c0)=""/246, 0xf6}}], 0x3, 0x2, &(0x7f0000006300)={0x77359400}) ioctl$sock_netdev_private(r0, 0x89f3, &(0x7f0000000180)="dab2eeae603d3201268d1af0673accf9f84e7f389f09a3924376e330a6976cca80fdeee7e3ca13ea9dccebbd425609cb84b436bad90d8a6ec7e87e377554deaaa0cf25a0fd5642f22c0fff9b3b408a3fe86a36a4282999fd9d76ec131890668e85e4683ca5cf4d1890e96ec2475d74119ac870bc4f2536ab99a5e004fba3208043733523df4f0f91df9199c70063e1665b113f8f740be559ec193a9f7e6bef2e5dc1dc7d82fca9795b12") getsockopt$inet_mreqn(r0, 0x0, 0x0, &(0x7f0000006480)={@dev, @loopback}, &(0x7f00000064c0)=0xc) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000006500)={'vcan0\x00'}) ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f00000000c0)) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000006880)={{{@in=@multicast2, @in=@local}}, {{@in6=@local}, 0x0, @in=@multicast2}}, &(0x7f0000006980)=0xe8) getpeername(0xffffffffffffffff, &(0x7f00000069c0)=@xdp, &(0x7f0000006a40)=0x80) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000006a80)={'ip6tnl0\x00'}) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000006b80)={@ipv4={[], [], @local}}, &(0x7f0000006bc0)=0x14) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000006f40)={{{@in6=@mcast1, @in6=@mcast1}}, {{@in=@loopback}}}, &(0x7f0000007040)=0xe8) accept$packet(r0, &(0x7f000000a280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f000000a2c0)=0x14) sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f000000ac80)={&(0x7f0000000100), 0xc, &(0x7f000000ac40)={&(0x7f000000a300)={0x74, 0x0, 0x100, 0x0, 0x0, {}, [{{0x8}, {0x40, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r1}}}]}}, {{0x8}, {0x4}}, {{0x8}, {0x4}}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000801}, 0xed88231204266231) recvmmsg(0xffffffffffffffff, &(0x7f0000006c80), 0x0, 0x0, &(0x7f0000006ec0)) sendto$inet6(r0, &(0x7f0000000000), 0x101d0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c9c380}) 23:22:43 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000400000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:43 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:43 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00H\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:43 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x05\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3109.934233] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3109.941506] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3109.948769] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3109.956020] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3110.049685] __nla_parse: 2 callbacks suppressed [ 3110.049693] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3110.050006] ipvs_mt_check: 24 callbacks suppressed [ 3110.050013] xt_ipvs: protocol family 7 not supported [ 3110.099332] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3110.111567] xt_ipvs: protocol family 7 not supported [ 3110.111706] CPU: 1 PID: 18729 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3110.123892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3110.133257] Call Trace: [ 3110.135869] dump_stack+0x1db/0x2d0 [ 3110.135889] ? dump_stack_print_info.cold+0x20/0x20 [ 3110.135908] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 23:22:43 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000500000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3110.149646] sysfs_warn_dup.cold+0x1c/0x31 [ 3110.153943] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3110.159334] sysfs_create_link+0x65/0xc0 [ 3110.163423] device_add+0x78e/0x1800 [ 3110.165572] xt_ipvs: protocol family 7 not supported [ 3110.167144] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3110.167170] ? get_device_parent.isra.0+0x570/0x570 [ 3110.167188] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3110.167217] wiphy_register+0x1abd/0x2760 [ 3110.167245] ? wiphy_unregister+0x1340/0x1340 23:22:43 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00L\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3110.196881] ? rcu_read_lock_sched_held+0x110/0x130 [ 3110.201903] ? __kmalloc+0x5d5/0x740 [ 3110.205625] ? memset+0x32/0x40 [ 3110.208934] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3110.214483] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3110.214716] xt_ipvs: protocol family 7 not supported [ 3110.219453] ieee80211_register_hw+0x15e2/0x3f30 [ 3110.219477] ? hrtimer_init_on_stack+0x1/0x40 [ 3110.219501] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3110.219519] ? kasan_check_write+0x14/0x20 [ 3110.219534] ? tasklet_hrtimer_init+0xfa/0x260 [ 3110.219550] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3110.219565] ? tasklet_kill+0xd0/0xd0 [ 3110.219592] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3110.229625] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3110.229641] ? kvasprintf+0x101/0x170 [ 3110.229657] ? bust_spinlocks+0xe0/0xe0 [ 3110.229686] ? kasprintf+0xbb/0xf0 [ 3110.229702] ? kvasprintf_const+0x190/0x190 [ 3110.238965] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3110.238983] ? validate_nla+0x28c/0x1580 [ 3110.239009] hwsim_new_radio_nl+0xca6/0x1430 [ 3110.239033] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3110.302193] genl_family_rcv_msg+0x80d/0x11a0 [ 3110.306704] ? genl_unregister_family+0x8a0/0x8a0 [ 3110.311557] ? radix_tree_insert+0x850/0x850 [ 3110.315964] ? netlink_deliver_tap+0x32b/0xf40 [ 3110.320568] genl_rcv_msg+0xca/0x16c [ 3110.324279] netlink_rcv_skb+0x17d/0x410 [ 3110.328344] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3110.333120] ? netlink_ack+0xba0/0xba0 [ 3110.337031] ? __down_interruptible+0x740/0x740 [ 3110.341907] genl_rcv+0x29/0x40 [ 3110.345188] netlink_unicast+0x574/0x770 [ 3110.349259] ? netlink_attachskb+0x980/0x980 [ 3110.353667] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3110.359202] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3110.364222] netlink_sendmsg+0xa05/0xf90 [ 3110.368280] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3110.373828] ? netlink_unicast+0x770/0x770 [ 3110.378063] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3110.382922] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3110.387715] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3110.393245] ? security_socket_sendmsg+0x93/0xc0 [ 3110.398027] ? netlink_unicast+0x770/0x770 [ 3110.402265] sock_sendmsg+0xdd/0x130 [ 3110.405976] ___sys_sendmsg+0x7ec/0x910 [ 3110.409953] ? copy_msghdr_from_user+0x570/0x570 [ 3110.414706] ? iterate_fd+0x4b0/0x4b0 [ 3110.418530] ? __might_fault+0x12b/0x1e0 [ 3110.422595] ? find_held_lock+0x35/0x120 [ 3110.426663] ? __might_fault+0x12b/0x1e0 [ 3110.430723] ? __fget_light+0x2db/0x420 [ 3110.434696] ? fget_raw+0x20/0x20 [ 3110.438175] ? lock_release+0xc40/0xc40 [ 3110.442152] ? trace_hardirqs_off_caller+0x300/0x300 [ 3110.447261] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3110.452808] ? __fdget+0x1b/0x20 [ 3110.456183] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3110.461736] ? sockfd_lookup_light+0xc2/0x160 [ 3110.466230] __sys_sendmsg+0x112/0x270 [ 3110.470134] ? __ia32_sys_shutdown+0x80/0x80 [ 3110.475124] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3110.480502] ? trace_hardirqs_off_caller+0x300/0x300 [ 3110.485607] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3110.490395] __x64_sys_sendmsg+0x78/0xb0 [ 3110.494454] do_syscall_64+0x1a3/0x800 [ 3110.498354] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3110.503284] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3110.508302] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3110.513191] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3110.518396] RIP: 0033:0x458089 [ 3110.521605] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3110.540504] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3110.548210] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3110.555480] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3110.562759] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3110.570058] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3110.577335] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3110.633329] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3110.651794] xt_ipvs: protocol family 7 not supported 23:22:44 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:44 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3110.692999] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3110.707563] xt_ipvs: protocol family 7 not supported [ 3110.715034] CPU: 1 PID: 18729 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3110.722249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3110.731601] Call Trace: [ 3110.734221] dump_stack+0x1db/0x2d0 [ 3110.737864] ? dump_stack_print_info.cold+0x20/0x20 23:22:44 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000600000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:44 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00`\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3110.742895] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3110.748008] sysfs_warn_dup.cold+0x1c/0x31 [ 3110.752247] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3110.757642] sysfs_create_link+0x65/0xc0 [ 3110.761708] device_add+0x78e/0x1800 [ 3110.765425] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3110.770801] ? get_device_parent.isra.0+0x570/0x570 [ 3110.775898] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3110.781449] wiphy_register+0x1abd/0x2760 [ 3110.785608] ? wiphy_unregister+0x1340/0x1340 [ 3110.790140] ? rcu_read_lock_sched_held+0x110/0x130 [ 3110.795169] ? __kmalloc+0x5d5/0x740 [ 3110.798904] ? memset+0x32/0x40 [ 3110.802199] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3110.807779] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3110.812782] ieee80211_register_hw+0x15e2/0x3f30 [ 3110.817562] ? hrtimer_init_on_stack+0x1/0x40 [ 3110.822076] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3110.826851] ? kasan_check_write+0x14/0x20 [ 3110.831108] ? tasklet_hrtimer_init+0xfa/0x260 [ 3110.835720] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3110.840572] ? tasklet_kill+0xd0/0xd0 [ 3110.844392] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3110.849429] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3110.849458] ? kvasprintf+0x101/0x170 [ 3110.849472] ? bust_spinlocks+0xe0/0xe0 [ 3110.849499] ? kasprintf+0xbb/0xf0 [ 3110.849529] ? kvasprintf_const+0x190/0x190 [ 3110.849545] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3110.871206] ? validate_nla+0x28c/0x1580 [ 3110.871232] hwsim_new_radio_nl+0xca6/0x1430 [ 3110.871255] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3110.871292] genl_family_rcv_msg+0x80d/0x11a0 [ 3110.871312] ? genl_unregister_family+0x8a0/0x8a0 [ 3110.880544] ? radix_tree_insert+0x850/0x850 [ 3110.880561] ? netlink_deliver_tap+0x32b/0xf40 [ 3110.880601] genl_rcv_msg+0xca/0x16c [ 3110.880619] netlink_rcv_skb+0x17d/0x410 [ 3110.880634] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3110.880648] ? netlink_ack+0xba0/0xba0 [ 3110.890222] ? __down_interruptible+0x740/0x740 [ 3110.890246] genl_rcv+0x29/0x40 [ 3110.890259] netlink_unicast+0x574/0x770 [ 3110.890279] ? netlink_attachskb+0x980/0x980 [ 3110.890295] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3110.890308] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3110.890331] netlink_sendmsg+0xa05/0xf90 [ 3110.899675] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3110.899697] ? netlink_unicast+0x770/0x770 [ 3110.899712] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3110.899730] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3110.899743] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3110.899757] ? security_socket_sendmsg+0x93/0xc0 [ 3110.899770] ? netlink_unicast+0x770/0x770 [ 3110.899787] sock_sendmsg+0xdd/0x130 [ 3110.899803] ___sys_sendmsg+0x7ec/0x910 [ 3110.899832] ? copy_msghdr_from_user+0x570/0x570 [ 3110.899844] ? iterate_fd+0x4b0/0x4b0 [ 3110.899863] ? __might_fault+0x12b/0x1e0 [ 3110.908863] ? find_held_lock+0x35/0x120 [ 3110.908878] ? __might_fault+0x12b/0x1e0 [ 3110.908895] ? __fget_light+0x2db/0x420 [ 3110.908911] ? fget_raw+0x20/0x20 [ 3110.908938] ? lock_release+0xc40/0xc40 [ 3110.908954] ? trace_hardirqs_off_caller+0x300/0x300 [ 3110.908967] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3110.908990] ? __fdget+0x1b/0x20 [ 3110.909002] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3110.909016] ? sockfd_lookup_light+0xc2/0x160 [ 3110.909030] __sys_sendmsg+0x112/0x270 [ 3110.909044] ? __ia32_sys_shutdown+0x80/0x80 [ 3110.909070] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3111.004916] xt_ipvs: protocol family 7 not supported [ 3111.006632] ? trace_hardirqs_off_caller+0x300/0x300 [ 3111.006650] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3111.006667] __x64_sys_sendmsg+0x78/0xb0 [ 3111.006683] do_syscall_64+0x1a3/0x800 [ 3111.006700] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3111.006715] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3111.006733] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3111.006756] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3111.042491] xt_ipvs: protocol family 7 not supported [ 3111.044332] RIP: 0033:0x458089 [ 3111.044349] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 23:22:44 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6c, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3111.044357] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3111.044372] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3111.044381] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3111.044391] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3111.044399] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3111.044411] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:44 executing program 3: ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000140)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x7c774aac) accept4$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, &(0x7f0000000180)=0x1c, 0x80000) setsockopt$inet6_MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e22, 0x7000, @loopback, 0x8f8}, {0xa, 0x4e24, 0x1ff, @empty, 0x1}, 0x9, [0x5, 0x81, 0x661, 0x9, 0xdf, 0x0, 0x4, 0x26]}, 0x5c) mmap(&(0x7f0000a00000/0x600000)=nil, 0x600000, 0x300000a, 0x2011, r0, 0x0) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r0, 0x111, 0x3, 0x1, 0x4) mmap(&(0x7f0000f44000/0x4000)=nil, 0x50707c, 0x1000006, 0x2013, r0, 0x0) socket$netlink(0x10, 0x3, 0x0) socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000300)=ANY=[@ANYBLOB="b3b3a50e520000000082ffa5edc448f40a24da96bb692e456f5ca80b630f38924e3d8b097d33060612feedc9a39a1f944e013d58d5fab6762ab5ac4b927085ed9c9595358d2a2fc983deb561cf6aa8c2fa09000000c1b5697c1125e3fed0fd20e4c9416ece8fafdaedd850ace1e1ae76416aa3d1096d911fed9a713e173e47", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x0) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f0000000180), 0x4) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000240)={@dev, 0x0, r3}) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) r5 = accept$inet6(r4, &(0x7f0000002540), &(0x7f0000002580)=0x1c) accept$inet6(0xffffffffffffffff, &(0x7f00000025c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, &(0x7f0000002600)=0x1c) write$binfmt_elf32(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="4caa5684c170520170687a89caabad77015fc5fdd53a5aaa7a19050e81825f75c2a8ad8b507380000000e644285c9ef066c1daccfa425883b8bf09d40ecdc205fdc87e74ace756baa80211a15f25db4c8cfd7df77986fd5d1df4d4f6e226279e3bb00412b9cedf74c66f09d9ea91603e1c178855768cbb9271050000000000000074"], 0x8e) r6 = socket(0x10, 0x3, 0x0) getsockopt$inet_sctp6_SCTP_CONTEXT(r6, 0x84, 0x11, &(0x7f0000000080)={r2, 0x1ff000000000000}, &(0x7f00000000c0)=0x8) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, &(0x7f0000000040)=0x1f, 0x4) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={0xffffffffffffffff, &(0x7f00000026c0), 0x0}, 0x20) setsockopt$RDS_RECVERR(0xffffffffffffffff, 0x114, 0x5, &(0x7f0000000480)=0x1, 0x4) socket$vsock_stream(0x28, 0x1, 0x0) unshare(0x60020000) getsockopt$inet_sctp6_SCTP_CONTEXT(r5, 0x84, 0x11, &(0x7f0000000100)={r1, 0x4}, &(0x7f0000000140)=0x8) bind$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000cc0)={0x1f, {0x0, 0x200, 0x0, 0x101, 0x0, 0x4000000000000002}, 0x3}, 0xa) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000200)={&(0x7f00000001c0)='./file0\x00', 0x0, 0x1}, 0x10) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) 23:22:44 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00h\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3111.219411] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3111.256319] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:44 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000700000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3111.318694] xt_ipvs: protocol family 7 not supported [ 3111.352336] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3111.368985] xt_ipvs: protocol family 7 not supported [ 3111.384148] CPU: 0 PID: 18784 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3111.391359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3111.400715] Call Trace: [ 3111.403309] dump_stack+0x1db/0x2d0 [ 3111.406945] ? dump_stack_print_info.cold+0x20/0x20 [ 3111.411976] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3111.417102] sysfs_warn_dup.cold+0x1c/0x31 [ 3111.421368] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3111.426743] sysfs_create_link+0x65/0xc0 [ 3111.430834] device_add+0x78e/0x1800 [ 3111.434564] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3111.439948] ? get_device_parent.isra.0+0x570/0x570 [ 3111.444977] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3111.450523] wiphy_register+0x1abd/0x2760 [ 3111.454685] ? wiphy_unregister+0x1340/0x1340 [ 3111.459812] ? rcu_read_lock_sched_held+0x110/0x130 [ 3111.464865] ? __kmalloc+0x5d5/0x740 [ 3111.468578] ? memset+0x32/0x40 [ 3111.471910] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3111.477452] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3111.482372] ieee80211_register_hw+0x15e2/0x3f30 [ 3111.487134] ? hrtimer_init_on_stack+0x1/0x40 [ 3111.491645] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3111.496413] ? kasan_check_write+0x14/0x20 [ 3111.500639] ? tasklet_hrtimer_init+0xfa/0x260 [ 3111.505217] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3111.510067] ? tasklet_kill+0xd0/0xd0 [ 3111.513083] IPVS: ftp: loaded support on port[0] = 21 [ 3111.513902] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3111.513953] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3111.513972] ? kvasprintf+0x101/0x170 [ 3111.534025] ? bust_spinlocks+0xe0/0xe0 [ 3111.537997] ? kasprintf+0xbb/0xf0 [ 3111.541523] ? kvasprintf_const+0x190/0x190 [ 3111.545859] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3111.551043] ? validate_nla+0x28c/0x1580 [ 3111.555102] hwsim_new_radio_nl+0xca6/0x1430 [ 3111.559503] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3111.564701] genl_family_rcv_msg+0x80d/0x11a0 [ 3111.569184] ? genl_unregister_family+0x8a0/0x8a0 [ 3111.574015] ? radix_tree_insert+0x850/0x850 [ 3111.578442] ? netlink_deliver_tap+0x32b/0xf40 [ 3111.583024] genl_rcv_msg+0xca/0x16c [ 3111.586739] netlink_rcv_skb+0x17d/0x410 [ 3111.590790] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3111.595536] ? netlink_ack+0xba0/0xba0 [ 3111.599429] ? __down_interruptible+0x740/0x740 [ 3111.604113] genl_rcv+0x29/0x40 [ 3111.607392] netlink_unicast+0x574/0x770 [ 3111.611476] ? netlink_attachskb+0x980/0x980 [ 3111.615872] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3111.621393] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3111.626396] netlink_sendmsg+0xa05/0xf90 [ 3111.630443] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3111.636020] ? netlink_unicast+0x770/0x770 [ 3111.640267] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3111.645122] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3111.649879] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3111.655412] ? security_socket_sendmsg+0x93/0xc0 [ 3111.660167] ? netlink_unicast+0x770/0x770 [ 3111.664385] sock_sendmsg+0xdd/0x130 [ 3111.668083] ___sys_sendmsg+0x7ec/0x910 [ 3111.672099] ? copy_msghdr_from_user+0x570/0x570 [ 3111.676865] ? iterate_fd+0x4b0/0x4b0 [ 3111.680670] ? __might_fault+0x12b/0x1e0 [ 3111.684722] ? find_held_lock+0x35/0x120 [ 3111.688767] ? __might_fault+0x12b/0x1e0 [ 3111.692821] ? __fget_light+0x2db/0x420 [ 3111.696801] ? fget_raw+0x20/0x20 [ 3111.700251] ? lock_release+0xc40/0xc40 [ 3111.704249] ? trace_hardirqs_off_caller+0x300/0x300 [ 3111.709344] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3111.714869] ? __fdget+0x1b/0x20 [ 3111.718232] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3111.723753] ? sockfd_lookup_light+0xc2/0x160 [ 3111.728248] __sys_sendmsg+0x112/0x270 [ 3111.732139] ? __ia32_sys_shutdown+0x80/0x80 [ 3111.736567] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3111.741934] ? trace_hardirqs_off_caller+0x300/0x300 [ 3111.747023] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3111.751794] __x64_sys_sendmsg+0x78/0xb0 [ 3111.755872] do_syscall_64+0x1a3/0x800 [ 3111.759758] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3111.764714] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3111.769729] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3111.774585] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3111.779767] RIP: 0033:0x458089 [ 3111.782941] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 23:22:45 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00l\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3111.801858] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3111.809555] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3111.816845] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3111.824118] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3111.831378] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3111.838643] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:45 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x74, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:45 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000800000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:45 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:45 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00t\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3112.099932] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3112.125096] CPU: 1 PID: 18820 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3112.132303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3112.141681] Call Trace: [ 3112.144275] dump_stack+0x1db/0x2d0 [ 3112.147909] ? dump_stack_print_info.cold+0x20/0x20 [ 3112.152949] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3112.158065] sysfs_warn_dup.cold+0x1c/0x31 [ 3112.162301] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3112.167668] sysfs_create_link+0x65/0xc0 [ 3112.171743] device_add+0x78e/0x1800 [ 3112.175452] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3112.180824] ? get_device_parent.isra.0+0x570/0x570 [ 3112.185862] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3112.191412] wiphy_register+0x1abd/0x2760 [ 3112.195574] ? wiphy_unregister+0x1340/0x1340 [ 3112.200092] ? rcu_read_lock_sched_held+0x110/0x130 [ 3112.205129] ? __kmalloc+0x5d5/0x740 [ 3112.208881] ? memset+0x32/0x40 [ 3112.212160] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3112.217704] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3112.222641] ieee80211_register_hw+0x15e2/0x3f30 [ 3112.227405] ? hrtimer_init_on_stack+0x1/0x40 [ 3112.231910] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3112.236674] ? kasan_check_write+0x14/0x20 [ 3112.240929] ? tasklet_hrtimer_init+0xfa/0x260 [ 3112.245517] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3112.250365] ? tasklet_kill+0xd0/0xd0 [ 3112.254182] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3112.259237] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3112.265293] ? kvasprintf+0x101/0x170 [ 3112.269113] ? bust_spinlocks+0xe0/0xe0 [ 3112.273115] ? kasprintf+0xbb/0xf0 [ 3112.276656] ? kvasprintf_const+0x190/0x190 [ 3112.281014] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3112.286223] ? validate_nla+0x28c/0x1580 [ 3112.290299] hwsim_new_radio_nl+0xca6/0x1430 [ 3112.294720] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3112.299940] genl_family_rcv_msg+0x80d/0x11a0 [ 3112.304443] ? genl_unregister_family+0x8a0/0x8a0 [ 3112.309295] ? radix_tree_insert+0x850/0x850 [ 3112.313714] ? netlink_deliver_tap+0x32b/0xf40 [ 3112.318345] genl_rcv_msg+0xca/0x16c [ 3112.322064] netlink_rcv_skb+0x17d/0x410 [ 3112.326126] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3112.330915] ? netlink_ack+0xba0/0xba0 [ 3112.334822] ? __down_interruptible+0x740/0x740 [ 3112.339519] genl_rcv+0x29/0x40 [ 3112.342933] netlink_unicast+0x574/0x770 [ 3112.347004] ? netlink_attachskb+0x980/0x980 [ 3112.351417] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3112.356951] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3112.361987] netlink_sendmsg+0xa05/0xf90 [ 3112.366048] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3112.371594] ? netlink_unicast+0x770/0x770 [ 3112.375836] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3112.380686] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3112.385437] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3112.390975] ? security_socket_sendmsg+0x93/0xc0 [ 3112.395731] ? netlink_unicast+0x770/0x770 [ 3112.399972] sock_sendmsg+0xdd/0x130 [ 3112.403690] ___sys_sendmsg+0x7ec/0x910 [ 3112.407673] ? copy_msghdr_from_user+0x570/0x570 [ 3112.412424] ? iterate_fd+0x4b0/0x4b0 [ 3112.416262] ? __might_fault+0x12b/0x1e0 [ 3112.420322] ? find_held_lock+0x35/0x120 [ 3112.424403] ? __might_fault+0x12b/0x1e0 [ 3112.428470] ? __fget_light+0x2db/0x420 [ 3112.432446] ? fget_raw+0x20/0x20 [ 3112.435902] ? lock_release+0xc40/0xc40 [ 3112.439881] ? trace_hardirqs_off_caller+0x300/0x300 [ 3112.444986] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3112.450534] ? __fdget+0x1b/0x20 [ 3112.453897] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3112.459437] ? sockfd_lookup_light+0xc2/0x160 [ 3112.463950] __sys_sendmsg+0x112/0x270 [ 3112.467846] ? __ia32_sys_shutdown+0x80/0x80 [ 3112.472273] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3112.478167] ? trace_hardirqs_off_caller+0x300/0x300 [ 3112.483273] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3112.488048] __x64_sys_sendmsg+0x78/0xb0 [ 3112.492145] do_syscall_64+0x1a3/0x800 [ 3112.496037] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3112.501000] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3112.506025] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3112.510884] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3112.516085] RIP: 0033:0x458089 [ 3112.519298] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3112.538200] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3112.545939] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3112.553204] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3112.560472] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3112.567741] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3112.575010] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3112.590903] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:46 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7a, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000a00000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:46 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00H\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:46 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x12c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:46 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00z\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:46 executing program 3: ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000140)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x7c774aac) accept4$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, &(0x7f0000000180)=0x1c, 0x80000) setsockopt$inet6_MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e22, 0x7000, @loopback, 0x8f8}, {0xa, 0x4e24, 0x1ff, @empty, 0x1}, 0x9, [0x5, 0x81, 0x661, 0x9, 0xdf, 0x0, 0x4, 0x26]}, 0x5c) mmap(&(0x7f0000a00000/0x600000)=nil, 0x600000, 0x300000a, 0x2011, r0, 0x0) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r0, 0x111, 0x3, 0x1, 0x4) mmap(&(0x7f0000f44000/0x4000)=nil, 0x50707c, 0x1000006, 0x2013, r0, 0x0) socket$netlink(0x10, 0x3, 0x0) socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000300)=ANY=[@ANYBLOB="b3b3a50e520000000082ffa5edc448f40a24da96bb692e456f5ca80b630f38924e3d8b097d33060612feedc9a39a1f944e013d58d5fab6762ab5ac4b927085ed9c9595358d2a2fc983deb561cf6aa8c2fa09000000c1b5697c1125e3fed0fd20e4c9416ece8fafdaedd850ace1e1ae76416aa3d1096d911fed9a713e173e47", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x0) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f0000000180), 0x4) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000240)={@dev, 0x0, r3}) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) r5 = accept$inet6(r4, &(0x7f0000002540), &(0x7f0000002580)=0x1c) accept$inet6(0xffffffffffffffff, &(0x7f00000025c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, &(0x7f0000002600)=0x1c) write$binfmt_elf32(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="4caa5684c170520170687a89caabad77015fc5fdd53a5aaa7a19050e81825f75c2a8ad8b507380000000e644285c9ef066c1daccfa425883b8bf09d40ecdc205fdc87e74ace756baa80211a15f25db4c8cfd7df77986fd5d1df4d4f6e226279e3bb00412b9cedf74c66f09d9ea91603e1c178855768cbb9271050000000000000074"], 0x8e) r6 = socket(0x10, 0x3, 0x0) getsockopt$inet_sctp6_SCTP_CONTEXT(r6, 0x84, 0x11, &(0x7f0000000080)={r2, 0x1ff000000000000}, &(0x7f00000000c0)=0x8) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, &(0x7f0000000040)=0x1f, 0x4) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={0xffffffffffffffff, &(0x7f00000026c0), 0x0}, 0x20) setsockopt$RDS_RECVERR(0xffffffffffffffff, 0x114, 0x5, &(0x7f0000000480)=0x1, 0x4) socket$vsock_stream(0x28, 0x1, 0x0) unshare(0x60020000) getsockopt$inet_sctp6_SCTP_CONTEXT(r5, 0x84, 0x11, &(0x7f0000000100)={r1, 0x4}, &(0x7f0000000140)=0x8) bind$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000cc0)={0x1f, {0x0, 0x200, 0x0, 0x101, 0x0, 0x4000000000000002}, 0x3}, 0xa) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000200)={&(0x7f00000001c0)='./file0\x00', 0x0, 0x1}, 0x10) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) [ 3112.836455] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3112.862162] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3112.882683] CPU: 0 PID: 18849 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3112.889888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3112.889895] Call Trace: [ 3112.889917] dump_stack+0x1db/0x2d0 [ 3112.889936] ? dump_stack_print_info.cold+0x20/0x20 [ 3112.889955] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3112.889980] sysfs_warn_dup.cold+0x1c/0x31 [ 3112.889999] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3112.890019] sysfs_create_link+0x65/0xc0 [ 3112.890038] device_add+0x78e/0x1800 [ 3112.890054] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3112.890077] ? get_device_parent.isra.0+0x570/0x570 [ 3112.890097] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3112.890126] wiphy_register+0x1abd/0x2760 [ 3112.890169] ? wiphy_unregister+0x1340/0x1340 [ 3112.915857] ? rcu_read_lock_sched_held+0x110/0x130 [ 3112.933202] ? __kmalloc+0x5d5/0x740 [ 3112.933235] ? memset+0x32/0x40 [ 3112.933250] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3112.933268] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3112.933287] ieee80211_register_hw+0x15e2/0x3f30 [ 3112.933307] ? hrtimer_init_on_stack+0x1/0x40 [ 3112.949222] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3112.949242] ? kasan_check_write+0x14/0x20 [ 3112.998554] ? tasklet_hrtimer_init+0xfa/0x260 [ 3113.003164] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3113.008019] ? tasklet_kill+0xd0/0xd0 [ 3113.011868] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3113.016930] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3113.023014] ? kvasprintf+0x101/0x170 [ 3113.026859] ? bust_spinlocks+0xe0/0xe0 [ 3113.030894] ? kasprintf+0xbb/0xf0 [ 3113.034446] ? kvasprintf_const+0x190/0x190 [ 3113.038784] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3113.044009] ? validate_nla+0x28c/0x1580 [ 3113.048097] hwsim_new_radio_nl+0xca6/0x1430 [ 3113.052528] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3113.057738] genl_family_rcv_msg+0x80d/0x11a0 [ 3113.062225] ? genl_unregister_family+0x8a0/0x8a0 [ 3113.067067] ? radix_tree_insert+0x850/0x850 [ 3113.071464] ? netlink_deliver_tap+0x32b/0xf40 [ 3113.076073] genl_rcv_msg+0xca/0x16c [ 3113.079799] netlink_rcv_skb+0x17d/0x410 [ 3113.083905] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3113.088677] ? netlink_ack+0xba0/0xba0 [ 3113.092584] ? __down_interruptible+0x740/0x740 [ 3113.097279] genl_rcv+0x29/0x40 [ 3113.100576] netlink_unicast+0x574/0x770 [ 3113.104685] ? netlink_attachskb+0x980/0x980 [ 3113.109127] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3113.114667] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3113.119688] netlink_sendmsg+0xa05/0xf90 [ 3113.119703] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3113.119726] ? netlink_unicast+0x770/0x770 [ 3113.119745] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3113.138461] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3113.143255] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3113.148798] ? security_socket_sendmsg+0x93/0xc0 [ 3113.153576] ? netlink_unicast+0x770/0x770 [ 3113.157857] sock_sendmsg+0xdd/0x130 [ 3113.161600] ___sys_sendmsg+0x7ec/0x910 [ 3113.165609] ? copy_msghdr_from_user+0x570/0x570 [ 3113.170378] ? iterate_fd+0x4b0/0x4b0 [ 3113.174199] ? __might_fault+0x12b/0x1e0 [ 3113.178279] ? find_held_lock+0x35/0x120 [ 3113.182344] ? __might_fault+0x12b/0x1e0 23:22:46 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:46 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x01\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3113.186417] ? __fget_light+0x2db/0x420 [ 3113.190407] ? fget_raw+0x20/0x20 [ 3113.193860] ? lock_release+0xc40/0xc40 [ 3113.197879] ? trace_hardirqs_off_caller+0x300/0x300 [ 3113.203004] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3113.208559] ? __fdget+0x1b/0x20 [ 3113.211933] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3113.217484] ? sockfd_lookup_light+0xc2/0x160 [ 3113.221989] __sys_sendmsg+0x112/0x270 [ 3113.225900] ? __ia32_sys_shutdown+0x80/0x80 [ 3113.230372] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3113.235750] ? trace_hardirqs_off_caller+0x300/0x300 [ 3113.240877] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3113.245649] __x64_sys_sendmsg+0x78/0xb0 [ 3113.249728] do_syscall_64+0x1a3/0x800 [ 3113.253636] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3113.258582] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3113.263619] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3113.268483] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3113.273708] RIP: 0033:0x458089 23:22:46 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3113.276910] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3113.295833] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3113.303550] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3113.310856] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3113.318137] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3113.325428] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3113.332701] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:46 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x03\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000f00000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:46 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00L\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:46 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:46 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x1a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3113.559430] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3113.619871] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 23:22:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900001000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3113.663739] CPU: 0 PID: 18901 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3113.670961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3113.680312] Call Trace: [ 3113.682901] dump_stack+0x1db/0x2d0 [ 3113.686558] ? dump_stack_print_info.cold+0x20/0x20 [ 3113.691625] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3113.696775] sysfs_warn_dup.cold+0x1c/0x31 [ 3113.701034] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3113.701055] sysfs_create_link+0x65/0xc0 [ 3113.701075] device_add+0x78e/0x1800 [ 3113.701091] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3113.701128] ? get_device_parent.isra.0+0x570/0x570 [ 3113.710541] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3113.710570] wiphy_register+0x1abd/0x2760 [ 3113.710598] ? wiphy_unregister+0x1340/0x1340 [ 3113.710617] ? rcu_read_lock_sched_held+0x110/0x130 [ 3113.743852] ? __kmalloc+0x5d5/0x740 [ 3113.747576] ? memset+0x32/0x40 [ 3113.750906] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3113.756440] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3113.761370] ieee80211_register_hw+0x15e2/0x3f30 [ 3113.766154] ? hrtimer_init_on_stack+0x1/0x40 [ 3113.770701] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3113.775478] ? kasan_check_write+0x14/0x20 [ 3113.779721] ? tasklet_hrtimer_init+0xfa/0x260 [ 3113.784300] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3113.789151] ? tasklet_kill+0xd0/0xd0 [ 3113.792951] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3113.797993] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3113.804053] ? kvasprintf+0x101/0x170 [ 3113.807861] ? bust_spinlocks+0xe0/0xe0 [ 3113.811869] ? kasprintf+0xbb/0xf0 [ 3113.815420] ? kvasprintf_const+0x190/0x190 [ 3113.819747] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3113.824949] ? validate_nla+0x28c/0x1580 [ 3113.829018] hwsim_new_radio_nl+0xca6/0x1430 [ 3113.833443] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3113.838664] genl_family_rcv_msg+0x80d/0x11a0 [ 3113.843176] ? genl_unregister_family+0x8a0/0x8a0 [ 3113.848026] ? radix_tree_insert+0x850/0x850 [ 3113.852420] ? netlink_deliver_tap+0x32b/0xf40 [ 3113.857001] genl_rcv_msg+0xca/0x16c [ 3113.860735] netlink_rcv_skb+0x17d/0x410 [ 3113.864798] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3113.869555] ? netlink_ack+0xba0/0xba0 [ 3113.873430] ? __down_interruptible+0x740/0x740 [ 3113.878104] genl_rcv+0x29/0x40 [ 3113.881381] netlink_unicast+0x574/0x770 [ 3113.885459] ? netlink_attachskb+0x980/0x980 [ 3113.889857] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3113.895393] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3113.900419] netlink_sendmsg+0xa05/0xf90 [ 3113.904503] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3113.910032] ? netlink_unicast+0x770/0x770 [ 3113.914262] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3113.919091] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3113.923882] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3113.929430] ? security_socket_sendmsg+0x93/0xc0 [ 3113.934186] ? netlink_unicast+0x770/0x770 [ 3113.938413] sock_sendmsg+0xdd/0x130 [ 3113.942118] ___sys_sendmsg+0x7ec/0x910 [ 3113.946082] ? copy_msghdr_from_user+0x570/0x570 [ 3113.950862] ? iterate_fd+0x4b0/0x4b0 [ 3113.954668] ? __might_fault+0x12b/0x1e0 [ 3113.958722] ? find_held_lock+0x35/0x120 [ 3113.962776] ? __might_fault+0x12b/0x1e0 [ 3113.966855] ? __fget_light+0x2db/0x420 [ 3113.970862] ? fget_raw+0x20/0x20 [ 3113.974320] ? lock_release+0xc40/0xc40 [ 3113.978318] ? trace_hardirqs_off_caller+0x300/0x300 [ 3113.983419] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3113.988950] ? __fdget+0x1b/0x20 [ 3113.992302] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3113.997851] ? sockfd_lookup_light+0xc2/0x160 [ 3114.002351] __sys_sendmsg+0x112/0x270 [ 3114.006224] ? __ia32_sys_shutdown+0x80/0x80 [ 3114.010643] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3114.016001] ? trace_hardirqs_off_caller+0x300/0x300 [ 3114.021094] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3114.025856] __x64_sys_sendmsg+0x78/0xb0 [ 3114.029920] do_syscall_64+0x1a3/0x800 [ 3114.033845] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3114.038780] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3114.043859] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3114.048700] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3114.053876] RIP: 0033:0x458089 [ 3114.057055] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3114.075948] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3114.083660] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3114.090916] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3114.098172] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3114.105428] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3114.112700] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3114.187435] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3114.500927] IPVS: ftp: loaded support on port[0] = 21 23:22:49 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:49 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x04\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1a0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:49 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00`\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:49 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900002800000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:49 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x218, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3115.905131] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3115.916544] ipvs_mt_check: 22 callbacks suppressed [ 3115.916551] xt_ipvs: protocol family 7 not supported [ 3115.924974] CPU: 1 PID: 18934 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3115.933939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3115.943298] Call Trace: [ 3115.945936] dump_stack+0x1db/0x2d0 [ 3115.949577] ? dump_stack_print_info.cold+0x20/0x20 23:22:49 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x05\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3115.951693] xt_ipvs: protocol family 7 not supported [ 3115.954604] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3115.954630] sysfs_warn_dup.cold+0x1c/0x31 [ 3115.954650] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3115.954669] sysfs_create_link+0x65/0xc0 [ 3115.954687] device_add+0x78e/0x1800 [ 3115.982194] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3115.987564] ? get_device_parent.isra.0+0x570/0x570 [ 3115.992568] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3115.998106] wiphy_register+0x1abd/0x2760 [ 3116.002269] ? wiphy_unregister+0x1340/0x1340 [ 3116.006784] ? rcu_read_lock_sched_held+0x110/0x130 [ 3116.011790] ? __kmalloc+0x5d5/0x740 [ 3116.015524] ? memset+0x32/0x40 [ 3116.018790] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3116.024314] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3116.029248] ieee80211_register_hw+0x15e2/0x3f30 [ 3116.034007] ? hrtimer_init_on_stack+0x1/0x40 [ 3116.038494] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3116.043250] ? kasan_check_write+0x14/0x20 [ 3116.047489] ? tasklet_hrtimer_init+0xfa/0x260 [ 3116.052061] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3116.056901] ? tasklet_kill+0xd0/0xd0 [ 3116.060707] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3116.065720] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3116.071765] ? kvasprintf+0x101/0x170 [ 3116.075563] ? bust_spinlocks+0xe0/0xe0 [ 3116.079561] ? kasprintf+0xbb/0xf0 [ 3116.083102] ? kvasprintf_const+0x190/0x190 [ 3116.087439] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3116.092632] ? validate_nla+0x28c/0x1580 [ 3116.096700] hwsim_new_radio_nl+0xca6/0x1430 [ 3116.101125] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3116.106337] genl_family_rcv_msg+0x80d/0x11a0 [ 3116.110833] ? genl_unregister_family+0x8a0/0x8a0 [ 3116.115671] ? radix_tree_insert+0x850/0x850 [ 3116.120077] ? netlink_deliver_tap+0x32b/0xf40 [ 3116.124675] genl_rcv_msg+0xca/0x16c [ 3116.128408] netlink_rcv_skb+0x17d/0x410 [ 3116.132454] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3116.137195] ? netlink_ack+0xba0/0xba0 [ 3116.141103] ? __down_interruptible+0x740/0x740 [ 3116.145778] genl_rcv+0x29/0x40 [ 3116.149061] netlink_unicast+0x574/0x770 [ 3116.153116] ? netlink_attachskb+0x980/0x980 [ 3116.157510] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3116.163051] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3116.168068] netlink_sendmsg+0xa05/0xf90 [ 3116.172130] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3116.177659] ? netlink_unicast+0x770/0x770 [ 3116.181897] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3116.186759] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3116.191504] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3116.197029] ? security_socket_sendmsg+0x93/0xc0 [ 3116.201785] ? netlink_unicast+0x770/0x770 [ 3116.206025] sock_sendmsg+0xdd/0x130 [ 3116.209730] ___sys_sendmsg+0x7ec/0x910 [ 3116.213720] ? copy_msghdr_from_user+0x570/0x570 [ 3116.218491] ? iterate_fd+0x4b0/0x4b0 [ 3116.222287] ? __might_fault+0x12b/0x1e0 [ 3116.226337] ? find_held_lock+0x35/0x120 [ 3116.230402] ? __might_fault+0x12b/0x1e0 [ 3116.234467] ? __fget_light+0x2db/0x420 [ 3116.238428] ? fget_raw+0x20/0x20 [ 3116.241902] ? lock_release+0xc40/0xc40 [ 3116.245882] ? trace_hardirqs_off_caller+0x300/0x300 [ 3116.250972] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3116.256502] ? __fdget+0x1b/0x20 [ 3116.259857] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3116.265390] ? sockfd_lookup_light+0xc2/0x160 [ 3116.269899] __sys_sendmsg+0x112/0x270 [ 3116.273789] ? __ia32_sys_shutdown+0x80/0x80 [ 3116.278216] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3116.283570] ? trace_hardirqs_off_caller+0x300/0x300 [ 3116.288663] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3116.293441] __x64_sys_sendmsg+0x78/0xb0 [ 3116.297513] do_syscall_64+0x1a3/0x800 [ 3116.301402] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3116.306351] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3116.311388] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3116.316237] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3116.321419] RIP: 0033:0x458089 [ 3116.324612] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3116.343611] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3116.351315] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3116.358580] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3116.365843] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3116.373100] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3116.380354] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3116.406374] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3116.415854] CPU: 1 PID: 18940 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3116.423062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3116.432416] Call Trace: [ 3116.435046] dump_stack+0x1db/0x2d0 [ 3116.438691] ? dump_stack_print_info.cold+0x20/0x20 [ 3116.443728] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3116.448866] sysfs_warn_dup.cold+0x1c/0x31 23:22:49 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7a, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3116.453132] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3116.458516] sysfs_create_link+0x65/0xc0 [ 3116.462589] device_add+0x78e/0x1800 [ 3116.466335] ? get_device_parent.isra.0+0x570/0x570 [ 3116.471391] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3116.477423] wiphy_register+0x1abd/0x2760 [ 3116.481596] ? wiphy_unregister+0x1340/0x1340 [ 3116.486109] ? rcu_read_lock_sched_held+0x110/0x130 [ 3116.491140] ? __kmalloc+0x5d5/0x740 [ 3116.494870] ? memset+0x32/0x40 [ 3116.498161] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3116.503715] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3116.508692] ieee80211_register_hw+0x15e2/0x3f30 [ 3116.513495] ? hrtimer_init_on_stack+0x1/0x40 [ 3116.518008] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3116.522780] ? kasan_check_write+0x14/0x20 [ 3116.527026] ? tasklet_hrtimer_init+0xfa/0x260 [ 3116.531620] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3116.536478] ? tasklet_kill+0xd0/0xd0 [ 3116.540347] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3116.545348] xt_ipvs: protocol family 7 not supported [ 3116.545388] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 23:22:49 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x06\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3116.556597] ? kvasprintf+0x101/0x170 [ 3116.560427] ? bust_spinlocks+0xe0/0xe0 [ 3116.563091] xt_ipvs: protocol family 7 not supported [ 3116.564439] ? kasprintf+0xbb/0xf0 [ 3116.564456] ? kvasprintf_const+0x190/0x190 [ 3116.564475] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3116.564493] ? validate_nla+0x28c/0x1580 [ 3116.586689] hwsim_new_radio_nl+0xca6/0x1430 [ 3116.591133] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3116.596366] genl_family_rcv_msg+0x80d/0x11a0 [ 3116.596391] ? genl_unregister_family+0x8a0/0x8a0 [ 3116.596417] ? radix_tree_insert+0x850/0x850 [ 3116.605746] ? netlink_deliver_tap+0x32b/0xf40 [ 3116.605790] genl_rcv_msg+0xca/0x16c [ 3116.605809] netlink_rcv_skb+0x17d/0x410 [ 3116.622590] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3116.627367] ? netlink_ack+0xba0/0xba0 [ 3116.631279] ? __down_interruptible+0x740/0x740 [ 3116.635971] genl_rcv+0x29/0x40 [ 3116.639260] netlink_unicast+0x574/0x770 [ 3116.643384] ? netlink_attachskb+0x980/0x980 [ 3116.647831] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3116.653377] ? __sanitizer_cov_trace_cmp4+0x16/0x20 23:22:50 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3116.658404] netlink_sendmsg+0xa05/0xf90 [ 3116.659033] xt_ipvs: protocol family 7 not supported [ 3116.662486] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3116.662511] ? netlink_unicast+0x770/0x770 [ 3116.662528] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3116.662548] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3116.662564] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3116.681042] xt_ipvs: protocol family 7 not supported [ 3116.682287] ? security_socket_sendmsg+0x93/0xc0 [ 3116.682303] ? netlink_unicast+0x770/0x770 [ 3116.682323] sock_sendmsg+0xdd/0x130 [ 3116.682353] ___sys_sendmsg+0x7ec/0x910 [ 3116.710404] ? copy_msghdr_from_user+0x570/0x570 [ 3116.719111] ? iterate_fd+0x4b0/0x4b0 [ 3116.719137] ? __might_fault+0x12b/0x1e0 [ 3116.719154] ? find_held_lock+0x35/0x120 [ 3116.719170] ? __might_fault+0x12b/0x1e0 [ 3116.719189] ? __fget_light+0x2db/0x420 [ 3116.719205] ? fget_raw+0x20/0x20 [ 3116.742592] ? lock_release+0xc40/0xc40 [ 3116.746580] ? trace_hardirqs_off_caller+0x300/0x300 [ 3116.751697] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3116.757266] ? __fdget+0x1b/0x20 [ 3116.760642] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3116.766195] ? sockfd_lookup_light+0xc2/0x160 [ 3116.770702] __sys_sendmsg+0x112/0x270 [ 3116.772348] xt_ipvs: protocol family 7 not supported [ 3116.774594] ? __ia32_sys_shutdown+0x80/0x80 [ 3116.774627] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3116.774643] ? trace_hardirqs_off_caller+0x300/0x300 [ 3116.774661] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3116.793495] xt_ipvs: protocol family 7 not supported [ 3116.794615] __x64_sys_sendmsg+0x78/0xb0 23:22:50 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\xfe\xff\xff\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3116.794635] do_syscall_64+0x1a3/0x800 [ 3116.794654] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3116.794671] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3116.822399] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3116.827268] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3116.827280] RIP: 0033:0x458089 [ 3116.827296] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3116.854543] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3116.854557] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3116.854566] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3116.854575] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3116.854584] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3116.854593] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3116.855208] xt_ipvs: protocol family 7 not supported [ 3116.930006] xt_ipvs: protocol family 7 not supported [ 3116.947282] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:50 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3117.021383] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3117.040416] CPU: 1 PID: 18972 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3117.047620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3117.056976] Call Trace: [ 3117.059582] dump_stack+0x1db/0x2d0 [ 3117.063246] ? dump_stack_print_info.cold+0x20/0x20 23:22:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900004800000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3117.068291] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3117.073943] sysfs_warn_dup.cold+0x1c/0x31 [ 3117.078195] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3117.083577] sysfs_create_link+0x65/0xc0 [ 3117.087644] device_add+0x78e/0x1800 [ 3117.091347] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3117.096707] ? get_device_parent.isra.0+0x570/0x570 [ 3117.101741] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3117.107290] wiphy_register+0x1abd/0x2760 [ 3117.111452] ? wiphy_unregister+0x1340/0x1340 [ 3117.115938] ? rcu_read_lock_sched_held+0x110/0x130 [ 3117.120944] ? __kmalloc+0x5d5/0x740 [ 3117.124644] ? memset+0x32/0x40 [ 3117.127913] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3117.133439] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3117.138376] ieee80211_register_hw+0x15e2/0x3f30 [ 3117.143142] ? hrtimer_init_on_stack+0x1/0x40 [ 3117.147639] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3117.152385] ? kasan_check_write+0x14/0x20 [ 3117.156607] ? tasklet_hrtimer_init+0xfa/0x260 [ 3117.161184] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3117.166014] ? tasklet_kill+0xd0/0xd0 [ 3117.169832] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3117.174862] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3117.180906] ? kvasprintf+0x101/0x170 [ 3117.184761] ? bust_spinlocks+0xe0/0xe0 [ 3117.188757] ? kasprintf+0xbb/0xf0 [ 3117.192284] ? kvasprintf_const+0x190/0x190 [ 3117.196592] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3117.201769] ? validate_nla+0x28c/0x1580 [ 3117.205841] hwsim_new_radio_nl+0xca6/0x1430 [ 3117.210259] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3117.215487] genl_family_rcv_msg+0x80d/0x11a0 [ 3117.219973] ? genl_unregister_family+0x8a0/0x8a0 [ 3117.224808] ? radix_tree_insert+0x850/0x850 [ 3117.229214] ? netlink_deliver_tap+0x32b/0xf40 [ 3117.233793] genl_rcv_msg+0xca/0x16c [ 3117.237504] netlink_rcv_skb+0x17d/0x410 [ 3117.241569] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3117.246310] ? netlink_ack+0xba0/0xba0 [ 3117.250205] ? __down_interruptible+0x740/0x740 [ 3117.254883] genl_rcv+0x29/0x40 [ 3117.258151] netlink_unicast+0x574/0x770 [ 3117.262201] ? netlink_attachskb+0x980/0x980 [ 3117.266611] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3117.272141] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3117.277156] netlink_sendmsg+0xa05/0xf90 [ 3117.281213] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3117.286753] ? netlink_unicast+0x770/0x770 [ 3117.290976] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3117.295807] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3117.300559] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3117.306080] ? security_socket_sendmsg+0x93/0xc0 [ 3117.310853] ? netlink_unicast+0x770/0x770 [ 3117.315080] sock_sendmsg+0xdd/0x130 [ 3117.318794] ___sys_sendmsg+0x7ec/0x910 [ 3117.322765] ? copy_msghdr_from_user+0x570/0x570 [ 3117.327531] ? iterate_fd+0x4b0/0x4b0 [ 3117.331346] ? __might_fault+0x12b/0x1e0 [ 3117.335403] ? find_held_lock+0x35/0x120 [ 3117.339464] ? __might_fault+0x12b/0x1e0 [ 3117.343517] ? __fget_light+0x2db/0x420 [ 3117.347488] ? fget_raw+0x20/0x20 [ 3117.350937] ? lock_release+0xc40/0xc40 [ 3117.354894] ? trace_hardirqs_off_caller+0x300/0x300 [ 3117.359998] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3117.365527] ? __fdget+0x1b/0x20 [ 3117.368879] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3117.374404] ? sockfd_lookup_light+0xc2/0x160 [ 3117.378929] __sys_sendmsg+0x112/0x270 [ 3117.382831] ? __ia32_sys_shutdown+0x80/0x80 [ 3117.387237] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3117.392585] ? trace_hardirqs_off_caller+0x300/0x300 [ 3117.397672] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3117.402450] __x64_sys_sendmsg+0x78/0xb0 [ 3117.406532] do_syscall_64+0x1a3/0x800 [ 3117.410419] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3117.415346] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3117.420384] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3117.425249] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3117.430421] RIP: 0033:0x458089 [ 3117.433608] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3117.452524] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3117.460246] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:22:50 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x300, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:50 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00 \x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3117.467518] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3117.474776] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3117.482043] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3117.489318] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:50 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00h\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3117.598910] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3117.624488] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3117.658596] CPU: 0 PID: 18988 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3117.665805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3117.675181] Call Trace: [ 3117.677780] dump_stack+0x1db/0x2d0 [ 3117.681441] ? dump_stack_print_info.cold+0x20/0x20 [ 3117.686471] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3117.691599] sysfs_warn_dup.cold+0x1c/0x31 [ 3117.695873] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3117.701248] sysfs_create_link+0x65/0xc0 [ 3117.705318] device_add+0x78e/0x1800 [ 3117.709033] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3117.709056] ? get_device_parent.isra.0+0x570/0x570 [ 3117.709074] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3117.709101] wiphy_register+0x1abd/0x2760 [ 3117.709126] ? wiphy_unregister+0x1340/0x1340 [ 3117.709145] ? rcu_read_lock_sched_held+0x110/0x130 [ 3117.709161] ? __kmalloc+0x5d5/0x740 [ 3117.709177] ? memset+0x32/0x40 [ 3117.709190] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3117.709207] ? ieee80211_cs_list_valid+0x1a1/0x280 23:22:51 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1a0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:51 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x248, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3117.709242] ieee80211_register_hw+0x15e2/0x3f30 [ 3117.709261] ? hrtimer_init_on_stack+0x1/0x40 [ 3117.719652] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3117.719672] ? kasan_check_write+0x14/0x20 [ 3117.719687] ? tasklet_hrtimer_init+0xfa/0x260 [ 3117.719704] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3117.719719] ? tasklet_kill+0xd0/0xd0 [ 3117.719747] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3117.719780] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3117.738941] ? kvasprintf+0x101/0x170 [ 3117.738959] ? bust_spinlocks+0xe0/0xe0 [ 3117.738988] ? kasprintf+0xbb/0xf0 [ 3117.739003] ? kvasprintf_const+0x190/0x190 [ 3117.739021] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3117.739041] ? validate_nla+0x28c/0x1580 [ 3117.751561] hwsim_new_radio_nl+0xca6/0x1430 [ 3117.751587] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3117.751624] genl_family_rcv_msg+0x80d/0x11a0 [ 3117.837858] ? genl_unregister_family+0x8a0/0x8a0 [ 3117.842722] ? radix_tree_insert+0x850/0x850 [ 3117.847135] ? netlink_deliver_tap+0x32b/0xf40 [ 3117.851743] genl_rcv_msg+0xca/0x16c [ 3117.855462] netlink_rcv_skb+0x17d/0x410 [ 3117.859523] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3117.864278] ? netlink_ack+0xba0/0xba0 [ 3117.868181] ? __down_interruptible+0x740/0x740 [ 3117.872870] genl_rcv+0x29/0x40 [ 3117.876145] netlink_unicast+0x574/0x770 [ 3117.880211] ? netlink_attachskb+0x980/0x980 [ 3117.884627] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3117.890180] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3117.895198] netlink_sendmsg+0xa05/0xf90 [ 3117.899256] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3117.904855] ? netlink_unicast+0x770/0x770 [ 3117.909094] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3117.913938] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3117.918695] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3117.924231] ? security_socket_sendmsg+0x93/0xc0 [ 3117.929043] ? netlink_unicast+0x770/0x770 [ 3117.933304] sock_sendmsg+0xdd/0x130 [ 3117.937040] ___sys_sendmsg+0x7ec/0x910 [ 3117.941027] ? copy_msghdr_from_user+0x570/0x570 [ 3117.945783] ? iterate_fd+0x4b0/0x4b0 [ 3117.949613] ? __might_fault+0x12b/0x1e0 [ 3117.953691] ? find_held_lock+0x35/0x120 [ 3117.957754] ? __might_fault+0x12b/0x1e0 [ 3117.961826] ? __fget_light+0x2db/0x420 [ 3117.965807] ? fget_raw+0x20/0x20 [ 3117.969277] ? lock_release+0xc40/0xc40 [ 3117.973254] ? trace_hardirqs_off_caller+0x300/0x300 [ 3117.978355] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3117.983902] ? __fdget+0x1b/0x20 [ 3117.987266] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3117.992825] ? sockfd_lookup_light+0xc2/0x160 [ 3117.997335] __sys_sendmsg+0x112/0x270 [ 3118.001224] ? __ia32_sys_shutdown+0x80/0x80 [ 3118.005646] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3118.011007] ? trace_hardirqs_off_caller+0x300/0x300 [ 3118.016129] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3118.020895] __x64_sys_sendmsg+0x78/0xb0 [ 3118.024961] do_syscall_64+0x1a3/0x800 [ 3118.028866] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3118.033798] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3118.038843] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3118.043695] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3118.048885] RIP: 0033:0x458089 [ 3118.052078] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3118.071007] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3118.078734] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3118.086016] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3118.093300] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3118.100564] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3118.107842] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3118.157268] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:51 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x500, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:51 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00?\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3118.211842] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3118.241547] CPU: 0 PID: 19003 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3118.248797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3118.258182] Call Trace: 23:22:51 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900004c00000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3118.260787] dump_stack+0x1db/0x2d0 [ 3118.264451] ? dump_stack_print_info.cold+0x20/0x20 [ 3118.269487] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3118.274608] sysfs_warn_dup.cold+0x1c/0x31 [ 3118.278870] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3118.278890] sysfs_create_link+0x65/0xc0 [ 3118.278909] device_add+0x78e/0x1800 [ 3118.278926] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3118.278949] ? get_device_parent.isra.0+0x570/0x570 [ 3118.278968] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3118.288427] wiphy_register+0x1abd/0x2760 [ 3118.288472] ? wiphy_unregister+0x1340/0x1340 [ 3118.288492] ? rcu_read_lock_sched_held+0x110/0x130 [ 3118.288509] ? __kmalloc+0x5d5/0x740 [ 3118.288525] ? memset+0x32/0x40 [ 3118.328808] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3118.334376] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3118.339325] ieee80211_register_hw+0x15e2/0x3f30 [ 3118.344596] ? hrtimer_init_on_stack+0x1/0x40 [ 3118.349110] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3118.353882] ? kasan_check_write+0x14/0x20 [ 3118.358146] ? tasklet_hrtimer_init+0xfa/0x260 [ 3118.362733] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3118.362749] ? tasklet_kill+0xd0/0xd0 [ 3118.362779] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3118.362814] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3118.362863] ? kvasprintf+0x101/0x170 [ 3118.362879] ? bust_spinlocks+0xe0/0xe0 [ 3118.362909] ? kasprintf+0xbb/0xf0 [ 3118.362940] ? kvasprintf_const+0x190/0x190 [ 3118.362957] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3118.403506] ? validate_nla+0x28c/0x1580 [ 3118.407589] hwsim_new_radio_nl+0xca6/0x1430 [ 3118.412021] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3118.417248] genl_family_rcv_msg+0x80d/0x11a0 [ 3118.421766] ? genl_unregister_family+0x8a0/0x8a0 [ 3118.427067] ? radix_tree_insert+0x850/0x850 [ 3118.431513] genl_rcv_msg+0xca/0x16c [ 3118.435256] netlink_rcv_skb+0x17d/0x410 [ 3118.439328] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3118.444100] ? netlink_ack+0xba0/0xba0 [ 3118.448009] ? __down_interruptible+0x740/0x740 [ 3118.452694] genl_rcv+0x29/0x40 [ 3118.455999] netlink_unicast+0x574/0x770 23:22:51 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00@\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3118.460087] ? netlink_attachskb+0x980/0x980 [ 3118.464512] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3118.470055] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3118.475240] netlink_sendmsg+0xa05/0xf90 [ 3118.479325] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3118.484896] ? netlink_unicast+0x770/0x770 [ 3118.489153] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3118.494009] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3118.494025] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3118.494043] ? security_socket_sendmsg+0x93/0xc0 [ 3118.504323] ? netlink_unicast+0x770/0x770 [ 3118.513332] sock_sendmsg+0xdd/0x130 [ 3118.517061] ___sys_sendmsg+0x7ec/0x910 [ 3118.521051] ? copy_msghdr_from_user+0x570/0x570 [ 3118.525834] ? iterate_fd+0x4b0/0x4b0 [ 3118.529663] ? __might_fault+0x12b/0x1e0 [ 3118.533740] ? find_held_lock+0x35/0x120 [ 3118.537835] ? __might_fault+0x12b/0x1e0 [ 3118.541914] ? __fget_light+0x2db/0x420 [ 3118.545903] ? fget_raw+0x20/0x20 [ 3118.549369] ? lock_release+0xc40/0xc40 [ 3118.553353] ? trace_hardirqs_off_caller+0x300/0x300 [ 3118.558490] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3118.564070] ? __fdget+0x1b/0x20 [ 3118.567450] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3118.573000] ? sockfd_lookup_light+0xc2/0x160 [ 3118.577523] __sys_sendmsg+0x112/0x270 [ 3118.581427] ? __ia32_sys_shutdown+0x80/0x80 [ 3118.585893] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3118.591298] ? trace_hardirqs_off_caller+0x300/0x300 [ 3118.596449] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3118.601233] __x64_sys_sendmsg+0x78/0xb0 [ 3118.605352] do_syscall_64+0x1a3/0x800 [ 3118.609253] ? syscall_return_slowpath+0x5f0/0x5f0 23:22:51 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00H\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3118.614213] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3118.619246] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3118.624123] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3118.629313] RIP: 0033:0x458089 [ 3118.632515] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3118.651418] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3118.659154] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3118.666530] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3118.673806] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3118.681113] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3118.688418] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:52 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x4b8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:52 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00L\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3118.743807] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3118.764624] CPU: 1 PID: 19010 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3118.771910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3118.771916] Call Trace: [ 3118.771938] dump_stack+0x1db/0x2d0 [ 3118.771960] ? dump_stack_print_info.cold+0x20/0x20 23:22:52 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900006000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3118.792527] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3118.792553] sysfs_warn_dup.cold+0x1c/0x31 [ 3118.792571] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3118.807306] sysfs_create_link+0x65/0xc0 [ 3118.811399] device_add+0x78e/0x1800 [ 3118.815115] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3118.820491] ? get_device_parent.isra.0+0x570/0x570 [ 3118.825527] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3118.825557] wiphy_register+0x1abd/0x2760 [ 3118.825585] ? wiphy_unregister+0x1340/0x1340 [ 3118.839733] ? rcu_read_lock_sched_held+0x110/0x130 [ 3118.844781] ? __kmalloc+0x5d5/0x740 [ 3118.848509] ? memset+0x32/0x40 [ 3118.851792] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3118.857361] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3118.862341] ieee80211_register_hw+0x15e2/0x3f30 [ 3118.867160] ? hrtimer_init_on_stack+0x1/0x40 [ 3118.871698] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3118.876474] ? kasan_check_write+0x14/0x20 [ 3118.880722] ? tasklet_hrtimer_init+0xfa/0x260 [ 3118.885383] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3118.890285] ? tasklet_kill+0xd0/0xd0 [ 3118.894126] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3118.899172] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3118.905232] ? kvasprintf+0x101/0x170 [ 3118.909033] ? bust_spinlocks+0xe0/0xe0 [ 3118.913013] ? kasprintf+0xbb/0xf0 [ 3118.916626] ? kvasprintf_const+0x190/0x190 [ 3118.920947] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3118.926141] ? validate_nla+0x28c/0x1580 [ 3118.930211] hwsim_new_radio_nl+0xca6/0x1430 [ 3118.934630] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3118.939825] genl_family_rcv_msg+0x80d/0x11a0 [ 3118.944325] ? genl_unregister_family+0x8a0/0x8a0 [ 3118.949167] ? radix_tree_insert+0x850/0x850 [ 3118.953560] ? netlink_deliver_tap+0x32b/0xf40 [ 3118.958162] genl_rcv_msg+0xca/0x16c [ 3118.961863] netlink_rcv_skb+0x17d/0x410 [ 3118.965907] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3118.970662] ? netlink_ack+0xba0/0xba0 [ 3118.974534] ? __down_interruptible+0x740/0x740 [ 3118.979191] genl_rcv+0x29/0x40 [ 3118.982461] netlink_unicast+0x574/0x770 [ 3118.986530] ? netlink_attachskb+0x980/0x980 [ 3118.990937] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3118.996460] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3119.001474] netlink_sendmsg+0xa05/0xf90 [ 3119.005561] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3119.011084] ? netlink_unicast+0x770/0x770 [ 3119.015305] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3119.020168] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3119.024924] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3119.030471] ? security_socket_sendmsg+0x93/0xc0 [ 3119.035245] ? netlink_unicast+0x770/0x770 [ 3119.039470] sock_sendmsg+0xdd/0x130 [ 3119.043172] ___sys_sendmsg+0x7ec/0x910 [ 3119.047141] ? copy_msghdr_from_user+0x570/0x570 [ 3119.051894] ? iterate_fd+0x4b0/0x4b0 [ 3119.055692] ? __might_fault+0x12b/0x1e0 [ 3119.059738] ? find_held_lock+0x35/0x120 [ 3119.063782] ? __might_fault+0x12b/0x1e0 [ 3119.067842] ? __fget_light+0x2db/0x420 [ 3119.071826] ? fget_raw+0x20/0x20 [ 3119.075295] ? lock_release+0xc40/0xc40 [ 3119.079295] ? trace_hardirqs_off_caller+0x300/0x300 [ 3119.084402] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3119.089928] ? __fdget+0x1b/0x20 [ 3119.093296] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3119.098827] ? sockfd_lookup_light+0xc2/0x160 [ 3119.103307] __sys_sendmsg+0x112/0x270 [ 3119.107175] ? __ia32_sys_shutdown+0x80/0x80 [ 3119.111576] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3119.116946] ? trace_hardirqs_off_caller+0x300/0x300 [ 3119.122046] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3119.126806] __x64_sys_sendmsg+0x78/0xb0 [ 3119.130893] do_syscall_64+0x1a3/0x800 [ 3119.134786] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3119.139703] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3119.144724] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3119.149572] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3119.154759] RIP: 0033:0x458089 [ 3119.157944] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3119.176851] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3119.184565] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3119.191827] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3119.199119] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3119.206384] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3119.213636] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:52 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00l\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3119.254430] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:52 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x600, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3119.494923] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3119.503392] CPU: 0 PID: 19062 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3119.510592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3119.519972] Call Trace: [ 3119.522579] dump_stack+0x1db/0x2d0 [ 3119.526227] ? dump_stack_print_info.cold+0x20/0x20 [ 3119.531276] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3119.536403] sysfs_warn_dup.cold+0x1c/0x31 [ 3119.540655] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3119.546063] sysfs_create_link+0x65/0xc0 [ 3119.550148] device_add+0x78e/0x1800 [ 3119.553871] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3119.559250] ? get_device_parent.isra.0+0x570/0x570 [ 3119.564276] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3119.569870] wiphy_register+0x1abd/0x2760 [ 3119.574048] ? wiphy_unregister+0x1340/0x1340 [ 3119.578562] ? rcu_read_lock_sched_held+0x110/0x130 [ 3119.583621] ? __kmalloc+0x5d5/0x740 [ 3119.587365] ? memset+0x32/0x40 [ 3119.590671] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3119.596225] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3119.601173] ieee80211_register_hw+0x15e2/0x3f30 [ 3119.605943] ? hrtimer_init_on_stack+0x1/0x40 [ 3119.610458] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3119.615232] ? kasan_check_write+0x14/0x20 [ 3119.619481] ? tasklet_hrtimer_init+0xfa/0x260 [ 3119.624077] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3119.628941] ? tasklet_kill+0xd0/0xd0 [ 3119.632769] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3119.637816] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 23:22:52 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0x32600) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_subtree(r2, &(0x7f0000000000)={[{0x0, 'memory'}]}, 0x3ff800) setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000100)={0x14000000000}, 0x4) ioctl$EXT4_IOC_MIGRATE(r4, 0x6609) write$cgroup_pid(r1, &(0x7f0000000000), 0xfffffea6) 23:22:52 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900006800000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:52 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00`\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:52 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x4c4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3119.643916] ? kvasprintf+0x101/0x170 [ 3119.647729] ? bust_spinlocks+0xe0/0xe0 [ 3119.651724] ? kasprintf+0xbb/0xf0 [ 3119.655292] ? kvasprintf_const+0x190/0x190 [ 3119.659622] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3119.659641] ? validate_nla+0x28c/0x1580 [ 3119.659667] hwsim_new_radio_nl+0xca6/0x1430 [ 3119.659688] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3119.668945] genl_family_rcv_msg+0x80d/0x11a0 [ 3119.668969] ? genl_unregister_family+0x8a0/0x8a0 [ 3119.668996] ? radix_tree_insert+0x850/0x850 [ 3119.669013] ? netlink_deliver_tap+0x32b/0xf40 [ 3119.669055] genl_rcv_msg+0xca/0x16c [ 3119.700615] netlink_rcv_skb+0x17d/0x410 [ 3119.704685] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3119.709447] ? netlink_ack+0xba0/0xba0 [ 3119.713357] ? __down_interruptible+0x740/0x740 [ 3119.718070] genl_rcv+0x29/0x40 [ 3119.721350] netlink_unicast+0x574/0x770 [ 3119.725441] ? netlink_attachskb+0x980/0x980 [ 3119.729934] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3119.735487] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3119.740519] netlink_sendmsg+0xa05/0xf90 [ 3119.744601] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3119.750161] ? netlink_unicast+0x770/0x770 [ 3119.754408] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3119.759271] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3119.764035] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3119.769598] ? security_socket_sendmsg+0x93/0xc0 [ 3119.774367] ? netlink_unicast+0x770/0x770 [ 3119.778618] sock_sendmsg+0xdd/0x130 [ 3119.782340] ___sys_sendmsg+0x7ec/0x910 [ 3119.786359] ? copy_msghdr_from_user+0x570/0x570 [ 3119.791130] ? iterate_fd+0x4b0/0x4b0 [ 3119.794950] ? __might_fault+0x12b/0x1e0 [ 3119.799030] ? find_held_lock+0x35/0x120 [ 3119.803099] ? __might_fault+0x12b/0x1e0 [ 3119.807177] ? __fget_light+0x2db/0x420 [ 3119.811164] ? fget_raw+0x20/0x20 [ 3119.814632] ? lock_release+0xc40/0xc40 [ 3119.818625] ? trace_hardirqs_off_caller+0x300/0x300 [ 3119.823740] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3119.829307] ? __fdget+0x1b/0x20 [ 3119.832694] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3119.838255] ? sockfd_lookup_light+0xc2/0x160 [ 3119.842758] __sys_sendmsg+0x112/0x270 23:22:53 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00h\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3119.846658] ? __ia32_sys_shutdown+0x80/0x80 [ 3119.851087] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3119.856459] ? trace_hardirqs_off_caller+0x300/0x300 [ 3119.861575] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3119.866344] __x64_sys_sendmsg+0x78/0xb0 [ 3119.870419] do_syscall_64+0x1a3/0x800 [ 3119.874320] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3119.874339] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3119.874362] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3119.874387] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3119.874402] RIP: 0033:0x458089 [ 3119.889169] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3119.889178] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3119.889194] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3119.889203] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3119.889212] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3119.889222] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3119.889232] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:53 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x700, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3119.990970] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:53 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00t\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:53 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900006c00000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3120.118730] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3120.149914] CPU: 1 PID: 19091 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3120.157115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3120.157123] Call Trace: [ 3120.157146] dump_stack+0x1db/0x2d0 [ 3120.157167] ? dump_stack_print_info.cold+0x20/0x20 [ 3120.157189] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3120.177777] sysfs_warn_dup.cold+0x1c/0x31 [ 3120.177797] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3120.177816] sysfs_create_link+0x65/0xc0 [ 3120.177844] device_add+0x78e/0x1800 [ 3120.177861] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3120.200300] ? get_device_parent.isra.0+0x570/0x570 [ 3120.200319] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3120.200355] wiphy_register+0x1abd/0x2760 [ 3120.210727] ? wiphy_unregister+0x1340/0x1340 [ 3120.210750] ? rcu_read_lock_sched_held+0x110/0x130 [ 3120.210767] ? __kmalloc+0x5d5/0x740 [ 3120.210784] ? memset+0x32/0x40 [ 3120.236932] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3120.242480] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3120.242500] ieee80211_register_hw+0x15e2/0x3f30 [ 3120.242520] ? hrtimer_init_on_stack+0x1/0x40 [ 3120.256671] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3120.261434] ? kasan_check_write+0x14/0x20 [ 3120.265692] ? tasklet_hrtimer_init+0xfa/0x260 [ 3120.270296] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3120.275150] ? tasklet_kill+0xd0/0xd0 [ 3120.278970] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3120.284013] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3120.290072] ? kvasprintf+0x101/0x170 [ 3120.293880] ? bust_spinlocks+0xe0/0xe0 [ 3120.297874] ? kasprintf+0xbb/0xf0 [ 3120.301415] ? kvasprintf_const+0x190/0x190 [ 3120.305737] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3120.310928] ? validate_nla+0x28c/0x1580 [ 3120.315000] hwsim_new_radio_nl+0xca6/0x1430 [ 3120.319441] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3120.324653] genl_family_rcv_msg+0x80d/0x11a0 [ 3120.329160] ? genl_unregister_family+0x8a0/0x8a0 [ 3120.334013] ? radix_tree_insert+0x850/0x850 [ 3120.338424] ? netlink_deliver_tap+0x32b/0xf40 [ 3120.343206] genl_rcv_msg+0xca/0x16c [ 3120.346955] netlink_rcv_skb+0x17d/0x410 [ 3120.351018] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3120.355776] ? netlink_ack+0xba0/0xba0 [ 3120.359669] ? __down_interruptible+0x740/0x740 [ 3120.364353] genl_rcv+0x29/0x40 [ 3120.367661] netlink_unicast+0x574/0x770 [ 3120.371728] ? netlink_attachskb+0x980/0x980 [ 3120.376146] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3120.381728] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3120.386749] netlink_sendmsg+0xa05/0xf90 [ 3120.390831] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3120.396391] ? netlink_unicast+0x770/0x770 [ 3120.400639] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3120.405498] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3120.410255] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3120.415791] ? security_socket_sendmsg+0x93/0xc0 [ 3120.420553] ? netlink_unicast+0x770/0x770 [ 3120.424791] sock_sendmsg+0xdd/0x130 [ 3120.428520] ___sys_sendmsg+0x7ec/0x910 [ 3120.432503] ? copy_msghdr_from_user+0x570/0x570 [ 3120.437269] ? iterate_fd+0x4b0/0x4b0 [ 3120.441080] ? __might_fault+0x12b/0x1e0 [ 3120.445143] ? find_held_lock+0x35/0x120 [ 3120.449205] ? __might_fault+0x12b/0x1e0 [ 3120.453287] ? __fget_light+0x2db/0x420 [ 3120.457263] ? fget_raw+0x20/0x20 [ 3120.460734] ? lock_release+0xc40/0xc40 [ 3120.464712] ? trace_hardirqs_off_caller+0x300/0x300 [ 3120.469837] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3120.475906] ? __fdget+0x1b/0x20 [ 3120.479266] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3120.484802] ? sockfd_lookup_light+0xc2/0x160 [ 3120.489309] __sys_sendmsg+0x112/0x270 [ 3120.493203] ? __ia32_sys_shutdown+0x80/0x80 [ 3120.497645] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3120.503020] ? trace_hardirqs_off_caller+0x300/0x300 [ 3120.508128] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3120.512886] __x64_sys_sendmsg+0x78/0xb0 [ 3120.516954] do_syscall_64+0x1a3/0x800 [ 3120.520864] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3120.525796] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3120.530848] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3120.535704] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3120.540892] RIP: 0033:0x458089 [ 3120.544084] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3120.562998] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 23:22:53 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:53 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00l\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3120.570701] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3120.577966] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3120.585232] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3120.592498] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3120.599766] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:54 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900007400000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3120.652765] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3120.713453] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3120.764017] CPU: 1 PID: 19091 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3120.771226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3120.780586] Call Trace: [ 3120.783183] dump_stack+0x1db/0x2d0 [ 3120.786856] ? dump_stack_print_info.cold+0x20/0x20 [ 3120.791893] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3120.797020] sysfs_warn_dup.cold+0x1c/0x31 [ 3120.801264] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3120.806644] sysfs_create_link+0x65/0xc0 [ 3120.810716] device_add+0x78e/0x1800 [ 3120.814434] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3120.819813] ? get_device_parent.isra.0+0x570/0x570 [ 3120.824854] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3120.830416] wiphy_register+0x1abd/0x2760 [ 3120.834580] ? wiphy_unregister+0x1340/0x1340 [ 3120.839107] ? rcu_read_lock_sched_held+0x110/0x130 [ 3120.844138] ? __kmalloc+0x5d5/0x740 [ 3120.847862] ? memset+0x32/0x40 [ 3120.851149] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3120.856692] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3120.861653] ieee80211_register_hw+0x15e2/0x3f30 [ 3120.866418] ? hrtimer_init_on_stack+0x1/0x40 [ 3120.870947] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3120.875712] ? kasan_check_write+0x14/0x20 [ 3120.879958] ? tasklet_hrtimer_init+0xfa/0x260 [ 3120.884545] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3120.889396] ? tasklet_kill+0xd0/0xd0 [ 3120.893215] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3120.898252] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3120.904309] ? kvasprintf+0x101/0x170 [ 3120.908136] ? bust_spinlocks+0xe0/0xe0 [ 3120.912157] ? kasprintf+0xbb/0xf0 [ 3120.915700] ? kvasprintf_const+0x190/0x190 [ 3120.920026] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3120.925220] ? validate_nla+0x28c/0x1580 [ 3120.929297] hwsim_new_radio_nl+0xca6/0x1430 [ 3120.933730] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3120.938951] genl_family_rcv_msg+0x80d/0x11a0 [ 3120.943477] ? genl_unregister_family+0x8a0/0x8a0 [ 3120.948363] ? radix_tree_insert+0x850/0x850 [ 3120.952799] ? netlink_deliver_tap+0x32b/0xf40 [ 3120.957427] genl_rcv_msg+0xca/0x16c [ 3120.961153] netlink_rcv_skb+0x17d/0x410 [ 3120.965222] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3120.969991] ? netlink_ack+0xba0/0xba0 [ 3120.973897] ? __down_interruptible+0x740/0x740 [ 3120.978577] genl_rcv+0x29/0x40 [ 3120.981863] netlink_unicast+0x574/0x770 [ 3120.985938] ? netlink_attachskb+0x980/0x980 [ 3120.990360] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3120.995903] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3121.000932] netlink_sendmsg+0xa05/0xf90 [ 3121.004997] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3121.010549] ? netlink_unicast+0x770/0x770 [ 3121.014805] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3121.019666] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3121.024436] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3121.029983] ? security_socket_sendmsg+0x93/0xc0 [ 3121.034747] ? netlink_unicast+0x770/0x770 [ 3121.038993] sock_sendmsg+0xdd/0x130 [ 3121.042724] ___sys_sendmsg+0x7ec/0x910 [ 3121.046715] ? copy_msghdr_from_user+0x570/0x570 [ 3121.051490] ? iterate_fd+0x4b0/0x4b0 [ 3121.055321] ? __might_fault+0x12b/0x1e0 [ 3121.059394] ? find_held_lock+0x35/0x120 [ 3121.063483] ? __might_fault+0x12b/0x1e0 [ 3121.067556] ? __fget_light+0x2db/0x420 [ 3121.071544] ? fget_raw+0x20/0x20 [ 3121.075002] ? lock_release+0xc40/0xc40 [ 3121.078983] ? trace_hardirqs_off_caller+0x300/0x300 [ 3121.084098] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3121.089659] ? __fdget+0x1b/0x20 [ 3121.093028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3121.098569] ? sockfd_lookup_light+0xc2/0x160 [ 3121.103083] __sys_sendmsg+0x112/0x270 [ 3121.106980] ? __ia32_sys_shutdown+0x80/0x80 [ 3121.111440] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3121.116811] ? trace_hardirqs_off_caller+0x300/0x300 [ 3121.121935] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3121.126711] __x64_sys_sendmsg+0x78/0xb0 [ 3121.130793] do_syscall_64+0x1a3/0x800 [ 3121.134704] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3121.139668] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3121.144694] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3121.149562] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3121.154754] RIP: 0033:0x458089 [ 3121.157949] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3121.176856] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3121.184577] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3121.191898] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3121.199168] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3121.206436] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3121.213741] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3121.225189] ipvs_mt_check: 20 callbacks suppressed [ 3121.225197] xt_ipvs: protocol family 7 not supported [ 3121.251129] xt_ipvs: protocol family 7 not supported [ 3121.267986] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3121.309307] xt_ipvs: protocol family 7 not supported 23:22:54 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00z\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:54 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz0\x00', 0x200002, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000000)='cp\x7fset.memory_pressure\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x6}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000140)={r3, 0x8}, 0x8) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'lo\x00'}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000000c0)={'lo\x00@\x00\x00\x00\x00\x00\x00\x00\x03\x00', 0x101}) 23:22:54 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:54 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00t\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:54 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x900, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:54 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900007a00000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3121.525028] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3121.573311] xt_ipvs: protocol family 7 not supported [ 3121.580714] xt_ipvs: protocol family 7 not supported [ 3121.592279] CPU: 1 PID: 19128 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3121.599490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3121.608867] Call Trace: [ 3121.611469] dump_stack+0x1db/0x2d0 [ 3121.615118] ? dump_stack_print_info.cold+0x20/0x20 [ 3121.620154] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3121.625304] sysfs_warn_dup.cold+0x1c/0x31 [ 3121.629552] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3121.634632] xt_ipvs: protocol family 7 not supported [ 3121.634931] sysfs_create_link+0x65/0xc0 [ 3121.634951] device_add+0x78e/0x1800 [ 3121.634969] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3121.653213] ? get_device_parent.isra.0+0x570/0x570 [ 3121.660758] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3121.666326] wiphy_register+0x1abd/0x2760 [ 3121.670502] ? wiphy_unregister+0x1340/0x1340 [ 3121.675102] ? rcu_read_lock_sched_held+0x110/0x130 [ 3121.680136] ? __kmalloc+0x5d5/0x740 [ 3121.683887] ? memset+0x32/0x40 [ 3121.687181] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3121.692758] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3121.697696] ieee80211_register_hw+0x15e2/0x3f30 [ 3121.702467] ? hrtimer_init_on_stack+0x1/0x40 [ 3121.706979] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3121.711743] ? kasan_check_write+0x14/0x20 [ 3121.715992] ? tasklet_hrtimer_init+0xfa/0x260 [ 3121.720636] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3121.725507] ? tasklet_kill+0xd0/0xd0 [ 3121.729336] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3121.734382] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3121.740447] ? kvasprintf+0x101/0x170 [ 3121.744254] ? bust_spinlocks+0xe0/0xe0 [ 3121.748252] ? kasprintf+0xbb/0xf0 [ 3121.751801] ? kvasprintf_const+0x190/0x190 [ 3121.756160] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3121.761361] ? validate_nla+0x28c/0x1580 [ 3121.765440] hwsim_new_radio_nl+0xca6/0x1430 [ 3121.769883] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3121.775104] genl_family_rcv_msg+0x80d/0x11a0 [ 3121.779629] ? genl_unregister_family+0x8a0/0x8a0 [ 3121.784487] ? radix_tree_insert+0x850/0x850 [ 3121.788930] ? netlink_deliver_tap+0x32b/0xf40 [ 3121.793544] genl_rcv_msg+0xca/0x16c [ 3121.797266] netlink_rcv_skb+0x17d/0x410 [ 3121.801341] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3121.806100] ? netlink_ack+0xba0/0xba0 [ 3121.810014] ? __down_interruptible+0x740/0x740 [ 3121.814697] genl_rcv+0x29/0x40 [ 3121.817979] netlink_unicast+0x574/0x770 [ 3121.822063] ? netlink_attachskb+0x980/0x980 [ 3121.826472] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3121.832454] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3121.837481] netlink_sendmsg+0xa05/0xf90 [ 3121.841542] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3121.847093] ? netlink_unicast+0x770/0x770 [ 3121.851354] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3121.856204] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3121.860962] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3121.866503] ? security_socket_sendmsg+0x93/0xc0 [ 3121.871274] ? netlink_unicast+0x770/0x770 [ 3121.875523] sock_sendmsg+0xdd/0x130 [ 3121.879250] ___sys_sendmsg+0x7ec/0x910 [ 3121.883234] ? copy_msghdr_from_user+0x570/0x570 [ 3121.888001] ? iterate_fd+0x4b0/0x4b0 [ 3121.891818] ? __might_fault+0x12b/0x1e0 [ 3121.895896] ? find_held_lock+0x35/0x120 [ 3121.899965] ? __might_fault+0x12b/0x1e0 [ 3121.904035] ? __fget_light+0x2db/0x420 [ 3121.908022] ? fget_raw+0x20/0x20 [ 3121.911485] ? lock_release+0xc40/0xc40 [ 3121.915469] ? trace_hardirqs_off_caller+0x300/0x300 [ 3121.920571] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3121.926130] ? __fdget+0x1b/0x20 [ 3121.929526] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3121.935067] ? sockfd_lookup_light+0xc2/0x160 [ 3121.939570] __sys_sendmsg+0x112/0x270 [ 3121.943462] ? __ia32_sys_shutdown+0x80/0x80 [ 3121.947893] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3121.953268] ? trace_hardirqs_off_caller+0x300/0x300 [ 3121.958382] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3121.963149] __x64_sys_sendmsg+0x78/0xb0 [ 3121.967222] do_syscall_64+0x1a3/0x800 [ 3121.971119] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3121.976074] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3121.981116] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3121.985976] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3121.991165] RIP: 0033:0x458089 [ 3121.994367] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3122.013286] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 23:22:54 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00z\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3122.021017] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3122.028303] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3122.035578] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3122.042859] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3122.050132] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3122.088403] device lo entered promiscuous mode [ 3122.114494] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3122.123251] xt_ipvs: protocol family 7 not supported [ 3122.137087] device lo left promiscuous mode [ 3122.181441] xt_ipvs: protocol family 7 not supported 23:22:55 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x1100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:55 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf19, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3122.205409] xt_ipvs: protocol family 7 not supported 23:22:55 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x01\xa0\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:55 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa0\x01\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3122.415741] xt_ipvs: protocol family 7 not supported 23:22:55 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\a\xff\xff\xfe\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:55 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\xff\xff\xff\xff\xa0\x01\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3122.747816] device lo entered promiscuous mode [ 3122.808695] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3122.816440] CPU: 0 PID: 19161 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3122.823629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3122.832985] Call Trace: [ 3122.835586] dump_stack+0x1db/0x2d0 [ 3122.839222] ? dump_stack_print_info.cold+0x20/0x20 [ 3122.844248] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3122.849364] sysfs_warn_dup.cold+0x1c/0x31 [ 3122.853606] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3122.858975] sysfs_create_link+0x65/0xc0 [ 3122.863047] device_add+0x78e/0x1800 [ 3122.866774] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3122.872149] ? get_device_parent.isra.0+0x570/0x570 [ 3122.877174] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3122.882729] wiphy_register+0x1abd/0x2760 [ 3122.887007] ? wiphy_unregister+0x1340/0x1340 [ 3122.891515] ? rcu_read_lock_sched_held+0x110/0x130 [ 3122.896539] ? __kmalloc+0x5d5/0x740 [ 3122.900263] ? memset+0x32/0x40 [ 3122.900279] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3122.900299] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3122.900334] ieee80211_register_hw+0x15e2/0x3f30 [ 3122.900354] ? hrtimer_init_on_stack+0x1/0x40 [ 3122.900374] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3122.909173] ? kasan_check_write+0x14/0x20 [ 3122.909190] ? tasklet_hrtimer_init+0xfa/0x260 [ 3122.909206] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3122.909221] ? tasklet_kill+0xd0/0xd0 [ 3122.909248] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3122.909282] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3122.909297] ? kvasprintf+0x101/0x170 [ 3122.960535] ? bust_spinlocks+0xe0/0xe0 [ 3122.964574] ? kasprintf+0xbb/0xf0 [ 3122.968132] ? kvasprintf_const+0x190/0x190 [ 3122.972481] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3122.977678] ? validate_nla+0x28c/0x1580 [ 3122.981760] hwsim_new_radio_nl+0xca6/0x1430 [ 3122.986185] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3122.991404] genl_family_rcv_msg+0x80d/0x11a0 [ 3122.995919] ? genl_unregister_family+0x8a0/0x8a0 [ 3123.000777] ? radix_tree_insert+0x850/0x850 [ 3123.005189] ? netlink_deliver_tap+0x32b/0xf40 [ 3123.009817] genl_rcv_msg+0xca/0x16c [ 3123.013557] netlink_rcv_skb+0x17d/0x410 [ 3123.017626] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3123.022397] ? netlink_ack+0xba0/0xba0 [ 3123.026311] ? __down_interruptible+0x740/0x740 [ 3123.031006] genl_rcv+0x29/0x40 [ 3123.034303] netlink_unicast+0x574/0x770 [ 3123.038400] ? netlink_attachskb+0x980/0x980 [ 3123.042829] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3123.048384] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3123.053417] netlink_sendmsg+0xa05/0xf90 23:22:56 executing program 3: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt$inet6_int(r0, 0x29, 0x1, &(0x7f0000000280), &(0x7f00000002c0)=0x4) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000000)={0x4}, 0x4) 23:22:56 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000f000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3123.057481] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3123.057506] ? netlink_unicast+0x770/0x770 [ 3123.057522] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3123.057543] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3123.067320] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3123.067335] ? security_socket_sendmsg+0x93/0xc0 [ 3123.067348] ? netlink_unicast+0x770/0x770 [ 3123.067367] sock_sendmsg+0xdd/0x130 [ 3123.067402] ___sys_sendmsg+0x7ec/0x910 [ 3123.067423] ? copy_msghdr_from_user+0x570/0x570 [ 3123.067436] ? iterate_fd+0x4b0/0x4b0 [ 3123.067487] ? __might_fault+0x12b/0x1e0 [ 3123.067517] ? find_held_lock+0x35/0x120 [ 3123.115921] ? __might_fault+0x12b/0x1e0 [ 3123.120014] ? __fget_light+0x2db/0x420 [ 3123.123991] ? fget_raw+0x20/0x20 [ 3123.127446] ? lock_release+0xc40/0xc40 [ 3123.131422] ? trace_hardirqs_off_caller+0x300/0x300 [ 3123.136526] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3123.142092] ? __fdget+0x1b/0x20 [ 3123.145457] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3123.151003] ? sockfd_lookup_light+0xc2/0x160 [ 3123.155503] __sys_sendmsg+0x112/0x270 [ 3123.159412] ? __ia32_sys_shutdown+0x80/0x80 [ 3123.163847] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3123.169215] ? trace_hardirqs_off_caller+0x300/0x300 [ 3123.174350] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3123.179124] __x64_sys_sendmsg+0x78/0xb0 [ 3123.183205] do_syscall_64+0x1a3/0x800 [ 3123.187093] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3123.192026] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3123.197050] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3123.201901] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3123.207088] RIP: 0033:0x458089 [ 3123.210284] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3123.229182] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3123.236907] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3123.244173] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3123.251444] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3123.258713] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3123.265993] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:56 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3123.343918] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:56 executing program 3: mmap(&(0x7f0000000000/0xfda000)=nil, 0xfda000, 0x2000004, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffff9c, 0x84, 0x1d, &(0x7f0000000240)=ANY=[@ANYBLOB="3c1570ad44cdd8d4d8aaef", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000000040)=0x2c) setsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000080)=@assoc_value={r2, 0x2b4}, 0x8) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r3, 0x84, 0x17, &(0x7f0000000100)=ANY=[@ANYRES32=r1, @ANYBLOB="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"], 0x106) r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0) getsockopt$rose(r4, 0x104, 0x0, 0x0, &(0x7f0000002ac0)) 23:22:56 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3123.434497] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3123.510058] CPU: 0 PID: 19185 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3123.517270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3123.526629] Call Trace: [ 3123.529247] dump_stack+0x1db/0x2d0 [ 3123.532924] ? dump_stack_print_info.cold+0x20/0x20 [ 3123.537970] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3123.543090] sysfs_warn_dup.cold+0x1c/0x31 [ 3123.547354] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3123.552765] sysfs_create_link+0x65/0xc0 [ 3123.553634] sctp: [Deprecated]: syz-executor3 (pid 19210) Use of struct sctp_assoc_value in delayed_ack socket option. [ 3123.553634] Use struct sctp_sack_info instead [ 3123.556856] device_add+0x78e/0x1800 [ 3123.556881] ? get_device_parent.isra.0+0x570/0x570 [ 3123.556897] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3123.556915] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3123.556944] wiphy_register+0x1abd/0x2760 [ 3123.556970] ? wiphy_unregister+0x1340/0x1340 [ 3123.599797] ? retint_kernel+0x2d/0x2d [ 3123.603726] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3123.607891] sctp: [Deprecated]: syz-executor3 (pid 19210) Use of struct sctp_assoc_value in delayed_ack socket option. [ 3123.607891] Use struct sctp_sack_info instead [ 3123.609272] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3123.609295] ieee80211_register_hw+0x15e2/0x3f30 [ 3123.609331] ? hrtimer_init_on_stack+0x1/0x40 [ 3123.609353] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3123.643419] ? kasan_check_write+0x14/0x20 [ 3123.647702] ? tasklet_hrtimer_init+0xfa/0x260 [ 3123.652310] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3123.657160] ? tasklet_kill+0xd0/0xd0 23:22:56 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f033c123f3188a070") r1 = accept4$inet(r0, &(0x7f0000000040)={0x2, 0x0, @initdev}, &(0x7f0000000500)=0x10, 0x80800) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffff9c, 0x84, 0x13, &(0x7f0000000140)={0x0}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000300)={r2, @in6={{0xa, 0x4e21, 0x7, @remote, 0x4}}, 0x1000, 0x1, 0x65, 0x1, 0x40}, &(0x7f00000003c0)=0x98) pipe(&(0x7f00000006c0)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r3, 0x84, 0x21, &(0x7f0000000700), &(0x7f0000000740)=0x4) read$alg(r3, &(0x7f0000000200)=""/225, 0xe1) recvfrom$unix(r3, &(0x7f0000000400)=""/109, 0x6d, 0x40000000, &(0x7f0000000480)=@abs={0x0, 0x0, 0x4e23}, 0x6e) r4 = socket$inet(0x10, 0x2, 0xc) sendmsg(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000080)="24000000010207041dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8776b7d4fe3a2bdf4d37ed01cc0", 0x4c}], 0x1}, 0x0) 23:22:57 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x1802, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3123.660978] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3123.666018] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3123.672084] ? kvasprintf+0x101/0x170 [ 3123.675919] ? bust_spinlocks+0xe0/0xe0 [ 3123.679941] ? kasprintf+0xbb/0xf0 [ 3123.683493] ? kvasprintf_const+0x190/0x190 [ 3123.687818] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3123.687850] ? validate_nla+0x28c/0x1580 [ 3123.687872] hwsim_new_radio_nl+0xca6/0x1430 [ 3123.701570] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3123.706789] genl_family_rcv_msg+0x80d/0x11a0 [ 3123.706812] ? genl_unregister_family+0x8a0/0x8a0 [ 3123.706853] ? radix_tree_insert+0x850/0x850 [ 3123.706870] ? netlink_deliver_tap+0x32b/0xf40 [ 3123.725195] genl_rcv_msg+0xca/0x16c [ 3123.728928] netlink_rcv_skb+0x17d/0x410 [ 3123.732995] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3123.733027] ? netlink_ack+0xba0/0xba0 [ 3123.733048] ? __down_interruptible+0x740/0x740 [ 3123.733070] genl_rcv+0x29/0x40 [ 3123.749685] netlink_unicast+0x574/0x770 [ 3123.753762] ? netlink_attachskb+0x980/0x980 [ 3123.753782] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3123.753797] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3123.753836] netlink_sendmsg+0xa05/0xf90 [ 3123.772861] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3123.778419] ? netlink_unicast+0x770/0x770 [ 3123.782664] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3123.787553] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3123.792330] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3123.794920] netlink: 5 bytes leftover after parsing attributes in process `syz-executor3'. [ 3123.797875] ? security_socket_sendmsg+0x93/0xc0 [ 3123.797891] ? netlink_unicast+0x770/0x770 [ 3123.797911] sock_sendmsg+0xdd/0x130 [ 3123.797930] ___sys_sendmsg+0x7ec/0x910 [ 3123.797952] ? copy_msghdr_from_user+0x570/0x570 [ 3123.797970] ? iterate_fd+0x4b0/0x4b0 [ 3123.806603] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'. [ 3123.811159] ? __might_fault+0x12b/0x1e0 [ 3123.811175] ? find_held_lock+0x35/0x120 [ 3123.811207] ? __might_fault+0x12b/0x1e0 [ 3123.811227] ? __fget_light+0x2db/0x420 [ 3123.811244] ? fget_raw+0x20/0x20 [ 3123.811258] ? lock_release+0xc40/0xc40 [ 3123.811274] ? trace_hardirqs_off_caller+0x300/0x300 [ 3123.868838] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3123.874398] ? __fdget+0x1b/0x20 [ 3123.877747] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3123.883270] ? sockfd_lookup_light+0xc2/0x160 [ 3123.887750] __sys_sendmsg+0x112/0x270 [ 3123.891634] ? __ia32_sys_shutdown+0x80/0x80 [ 3123.896075] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3123.901441] ? trace_hardirqs_off_caller+0x300/0x300 [ 3123.906530] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3123.911285] __x64_sys_sendmsg+0x78/0xb0 [ 3123.915362] do_syscall_64+0x1a3/0x800 [ 3123.919248] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3123.924179] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3123.929216] ? __switch_to_asm+0x34/0x70 [ 3123.933278] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3123.938111] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3123.943293] RIP: 0033:0x458089 [ 3123.946484] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3123.965380] RSP: 002b:00007f8208072c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3123.973089] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3123.980370] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3123.987651] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 3123.994927] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080736d4 [ 3124.002193] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:57 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x190f, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:57 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3124.025435] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3124.052397] netlink: 5 bytes leftover after parsing attributes in process `syz-executor3'. [ 3124.087016] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'. 23:22:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000a001000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:57 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x32600) r2 = openat$cgroup_ro(r0, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_subtree(r1, &(0x7f0000000000)={[{0x0, 'memory'}]}, 0x3ff800) ioctl$EXT4_IOC_MIGRATE(r2, 0x6609) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 23:22:57 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x2c01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:57 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x05\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3124.215006] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3124.296791] CPU: 1 PID: 19237 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3124.304036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3124.313398] Call Trace: [ 3124.316005] dump_stack+0x1db/0x2d0 [ 3124.319660] ? dump_stack_print_info.cold+0x20/0x20 [ 3124.324707] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3124.329856] sysfs_warn_dup.cold+0x1c/0x31 [ 3124.334112] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3124.339477] sysfs_create_link+0x65/0xc0 [ 3124.343720] device_add+0x78e/0x1800 [ 3124.347448] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3124.352852] ? get_device_parent.isra.0+0x570/0x570 [ 3124.357897] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3124.363457] wiphy_register+0x1abd/0x2760 [ 3124.367632] ? wiphy_unregister+0x1340/0x1340 [ 3124.372138] ? rcu_read_lock_sched_held+0x110/0x130 [ 3124.377166] ? __kmalloc+0x5d5/0x740 [ 3124.380887] ? memset+0x32/0x40 [ 3124.384172] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3124.389719] ? ieee80211_cs_list_valid+0x1a1/0x280 23:22:57 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3124.394672] ieee80211_register_hw+0x15e2/0x3f30 [ 3124.399484] ? hrtimer_init_on_stack+0x1/0x40 [ 3124.404024] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3124.408789] ? kasan_check_write+0x14/0x20 [ 3124.413040] ? tasklet_hrtimer_init+0xfa/0x260 [ 3124.417627] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3124.422477] ? tasklet_kill+0xd0/0xd0 [ 3124.426347] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3124.431397] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3124.437463] ? kvasprintf+0x101/0x170 [ 3124.441278] ? bust_spinlocks+0xe0/0xe0 [ 3124.445275] ? kasprintf+0xbb/0xf0 [ 3124.448842] ? kvasprintf_const+0x190/0x190 [ 3124.453201] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3124.458392] ? validate_nla+0x28c/0x1580 [ 3124.462496] hwsim_new_radio_nl+0xca6/0x1430 [ 3124.466924] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3124.472161] genl_family_rcv_msg+0x80d/0x11a0 [ 3124.476675] ? genl_unregister_family+0x8a0/0x8a0 [ 3124.481538] ? radix_tree_insert+0x850/0x850 [ 3124.485945] ? netlink_deliver_tap+0x32b/0xf40 [ 3124.490557] genl_rcv_msg+0xca/0x16c [ 3124.494273] netlink_rcv_skb+0x17d/0x410 [ 3124.498330] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3124.503080] ? netlink_ack+0xba0/0xba0 [ 3124.506961] ? __down_interruptible+0x740/0x740 [ 3124.511618] genl_rcv+0x29/0x40 [ 3124.514885] netlink_unicast+0x574/0x770 [ 3124.518935] ? netlink_attachskb+0x980/0x980 [ 3124.523337] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3124.528861] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3124.533919] netlink_sendmsg+0xa05/0xf90 [ 3124.537978] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3124.543505] ? netlink_unicast+0x770/0x770 [ 3124.547743] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3124.552613] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3124.557368] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3124.562902] ? security_socket_sendmsg+0x93/0xc0 [ 3124.567657] ? netlink_unicast+0x770/0x770 [ 3124.571926] sock_sendmsg+0xdd/0x130 [ 3124.575638] ___sys_sendmsg+0x7ec/0x910 [ 3124.579603] ? copy_msghdr_from_user+0x570/0x570 [ 3124.584350] ? iterate_fd+0x4b0/0x4b0 [ 3124.588157] ? __might_fault+0x12b/0x1e0 [ 3124.592205] ? find_held_lock+0x35/0x120 [ 3124.596251] ? __might_fault+0x12b/0x1e0 [ 3124.600300] ? __fget_light+0x2db/0x420 [ 3124.604269] ? fget_raw+0x20/0x20 [ 3124.607736] ? lock_release+0xc40/0xc40 [ 3124.611715] ? trace_hardirqs_off_caller+0x300/0x300 [ 3124.616807] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3124.622369] ? __fdget+0x1b/0x20 [ 3124.625745] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3124.631280] ? sockfd_lookup_light+0xc2/0x160 [ 3124.635761] __sys_sendmsg+0x112/0x270 [ 3124.639637] ? __ia32_sys_shutdown+0x80/0x80 [ 3124.644044] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3124.649427] ? trace_hardirqs_off_caller+0x300/0x300 [ 3124.654527] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3124.659282] __x64_sys_sendmsg+0x78/0xb0 [ 3124.663358] do_syscall_64+0x1a3/0x800 [ 3124.667247] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3124.672179] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3124.677201] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3124.682034] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3124.687209] RIP: 0033:0x458089 [ 3124.690401] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3124.709303] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3124.717018] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3124.724285] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3124.731586] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3124.738884] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3124.746160] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:58 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1f00, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3124.778489] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000003000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3124.891470] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3124.967856] CPU: 1 PID: 19259 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3124.975072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3124.984456] Call Trace: [ 3124.987062] dump_stack+0x1db/0x2d0 [ 3124.990707] ? dump_stack_print_info.cold+0x20/0x20 [ 3124.995740] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3125.000872] sysfs_warn_dup.cold+0x1c/0x31 [ 3125.005119] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3125.010494] sysfs_create_link+0x65/0xc0 [ 3125.014565] device_add+0x78e/0x1800 [ 3125.018284] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3125.023658] ? get_device_parent.isra.0+0x570/0x570 [ 3125.028682] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3125.034240] wiphy_register+0x1abd/0x2760 [ 3125.038423] ? wiphy_unregister+0x1340/0x1340 [ 3125.042937] ? rcu_read_lock_sched_held+0x110/0x130 [ 3125.047974] ? __kmalloc+0x5d5/0x740 [ 3125.051691] ? memset+0x32/0x40 [ 3125.054998] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3125.060541] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3125.065486] ieee80211_register_hw+0x15e2/0x3f30 [ 3125.070255] ? hrtimer_init_on_stack+0x1/0x40 [ 3125.074787] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3125.079565] ? kasan_check_write+0x14/0x20 [ 3125.083848] ? tasklet_hrtimer_init+0xfa/0x260 [ 3125.088446] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3125.093299] ? tasklet_kill+0xd0/0xd0 [ 3125.097160] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3125.102222] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3125.108289] ? kvasprintf+0x101/0x170 [ 3125.112106] ? bust_spinlocks+0xe0/0xe0 23:22:58 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3125.116109] ? kasprintf+0xbb/0xf0 [ 3125.119664] ? kvasprintf_const+0x190/0x190 [ 3125.124023] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3125.129226] ? validate_nla+0x28c/0x1580 [ 3125.129253] hwsim_new_radio_nl+0xca6/0x1430 [ 3125.129276] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3125.129312] genl_family_rcv_msg+0x80d/0x11a0 [ 3125.137773] ? genl_unregister_family+0x8a0/0x8a0 [ 3125.137801] ? radix_tree_insert+0x850/0x850 [ 3125.137818] ? netlink_deliver_tap+0x32b/0xf40 [ 3125.137869] genl_rcv_msg+0xca/0x16c [ 3125.137891] netlink_rcv_skb+0x17d/0x410 [ 3125.169168] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3125.173939] ? netlink_ack+0xba0/0xba0 [ 3125.177871] ? __down_interruptible+0x740/0x740 [ 3125.182561] genl_rcv+0x29/0x40 [ 3125.185862] netlink_unicast+0x574/0x770 [ 3125.189946] ? netlink_attachskb+0x980/0x980 [ 3125.194371] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3125.199923] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3125.204957] netlink_sendmsg+0xa05/0xf90 [ 3125.209034] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3125.214589] ? netlink_unicast+0x770/0x770 23:22:58 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3125.218848] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3125.223702] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3125.228467] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3125.234047] ? security_socket_sendmsg+0x93/0xc0 [ 3125.238812] ? netlink_unicast+0x770/0x770 [ 3125.238843] sock_sendmsg+0xdd/0x130 [ 3125.238864] ___sys_sendmsg+0x7ec/0x910 [ 3125.238888] ? copy_msghdr_from_user+0x570/0x570 [ 3125.238903] ? iterate_fd+0x4b0/0x4b0 [ 3125.238927] ? __might_fault+0x12b/0x1e0 [ 3125.238944] ? find_held_lock+0x35/0x120 [ 3125.238959] ? __might_fault+0x12b/0x1e0 [ 3125.246902] ? __fget_light+0x2db/0x420 [ 3125.246921] ? fget_raw+0x20/0x20 [ 3125.246937] ? lock_release+0xc40/0xc40 [ 3125.246954] ? trace_hardirqs_off_caller+0x300/0x300 [ 3125.246970] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3125.246995] ? __fdget+0x1b/0x20 [ 3125.247012] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3125.302568] ? sockfd_lookup_light+0xc2/0x160 [ 3125.307080] __sys_sendmsg+0x112/0x270 [ 3125.310999] ? __ia32_sys_shutdown+0x80/0x80 23:22:58 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x05\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3125.315436] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3125.320806] ? trace_hardirqs_off_caller+0x300/0x300 [ 3125.325958] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3125.330735] __x64_sys_sendmsg+0x78/0xb0 [ 3125.334818] do_syscall_64+0x1a3/0x800 [ 3125.338735] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3125.343702] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3125.348740] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3125.353621] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3125.358848] RIP: 0033:0x458089 23:22:58 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3125.362141] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3125.381413] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3125.389140] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3125.396419] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3125.403694] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3125.411007] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3125.418287] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3125.449441] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:58 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x4002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:22:58 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3125.475872] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:22:59 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:59 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:59 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000005000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:59 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:22:59 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) sendto$inet6(r0, &(0x7f0000000000)="fa27", 0x2, 0x44880, &(0x7f0000000040)={0xa, 0x4e24, 0x3ff, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0xb}}, 0x8}, 0x1c) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) accept4(r0, 0x0, 0x0, 0x0) shutdown(r0, 0x1) sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) [ 3125.870883] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 23:22:59 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x4802, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3125.916737] CPU: 0 PID: 19321 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3125.923970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3125.933330] Call Trace: [ 3125.935939] dump_stack+0x1db/0x2d0 [ 3125.939586] ? dump_stack_print_info.cold+0x20/0x20 [ 3125.944619] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3125.949745] sysfs_warn_dup.cold+0x1c/0x31 [ 3125.954003] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3125.959384] sysfs_create_link+0x65/0xc0 [ 3125.963456] device_add+0x78e/0x1800 [ 3125.967184] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3125.972594] ? get_device_parent.isra.0+0x570/0x570 [ 3125.977627] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3125.983186] wiphy_register+0x1abd/0x2760 [ 3125.987499] ? wiphy_unregister+0x1340/0x1340 [ 3125.987520] ? rcu_read_lock_sched_held+0x110/0x130 [ 3125.987536] ? __kmalloc+0x5d5/0x740 [ 3125.987553] ? memset+0x32/0x40 [ 3125.987567] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3125.987589] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3125.997106] ieee80211_register_hw+0x15e2/0x3f30 [ 3125.997130] ? hrtimer_init_on_stack+0x1/0x40 [ 3125.997168] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3125.997186] ? kasan_check_write+0x14/0x20 [ 3125.997200] ? tasklet_hrtimer_init+0xfa/0x260 [ 3125.997216] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3125.997231] ? tasklet_kill+0xd0/0xd0 [ 3125.997259] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3125.997291] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3126.057154] ? kvasprintf+0x101/0x170 [ 3126.060968] ? bust_spinlocks+0xe0/0xe0 [ 3126.064948] ? kasprintf+0xbb/0xf0 [ 3126.068485] ? kvasprintf_const+0x190/0x190 [ 3126.072806] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3126.078013] ? validate_nla+0x28c/0x1580 [ 3126.082082] hwsim_new_radio_nl+0xca6/0x1430 [ 3126.086490] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3126.091698] genl_family_rcv_msg+0x80d/0x11a0 [ 3126.096197] ? genl_unregister_family+0x8a0/0x8a0 [ 3126.101068] ? radix_tree_insert+0x850/0x850 [ 3126.105464] ? netlink_deliver_tap+0x32b/0xf40 [ 3126.110071] genl_rcv_msg+0xca/0x16c [ 3126.113812] netlink_rcv_skb+0x17d/0x410 [ 3126.117918] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3126.122673] ? netlink_ack+0xba0/0xba0 [ 3126.126549] ? __down_interruptible+0x740/0x740 [ 3126.131222] genl_rcv+0x29/0x40 [ 3126.134500] netlink_unicast+0x574/0x770 [ 3126.138565] ? netlink_attachskb+0x980/0x980 [ 3126.142972] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3126.148522] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3126.153549] netlink_sendmsg+0xa05/0xf90 [ 3126.157630] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3126.163182] ? netlink_unicast+0x770/0x770 [ 3126.167414] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3126.172258] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3126.177027] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3126.182561] ? security_socket_sendmsg+0x93/0xc0 [ 3126.187327] ? netlink_unicast+0x770/0x770 [ 3126.191559] sock_sendmsg+0xdd/0x130 [ 3126.195258] ___sys_sendmsg+0x7ec/0x910 [ 3126.199242] ? copy_msghdr_from_user+0x570/0x570 [ 3126.203991] ? iterate_fd+0x4b0/0x4b0 [ 3126.207795] ? __might_fault+0x12b/0x1e0 [ 3126.211883] ? find_held_lock+0x35/0x120 [ 3126.215942] ? __might_fault+0x12b/0x1e0 [ 3126.220025] ? __fget_light+0x2db/0x420 [ 3126.224002] ? fget_raw+0x20/0x20 [ 3126.227469] ? lock_release+0xc40/0xc40 [ 3126.231455] ? trace_hardirqs_off_caller+0x300/0x300 [ 3126.236566] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3126.242109] ? __fdget+0x1b/0x20 [ 3126.245506] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3126.251055] ? sockfd_lookup_light+0xc2/0x160 [ 3126.255562] __sys_sendmsg+0x112/0x270 [ 3126.259463] ? __ia32_sys_shutdown+0x80/0x80 [ 3126.263895] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3126.269286] ? trace_hardirqs_off_caller+0x300/0x300 [ 3126.274475] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3126.279228] __x64_sys_sendmsg+0x78/0xb0 [ 3126.283284] do_syscall_64+0x1a3/0x800 [ 3126.287186] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3126.292129] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3126.297161] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3126.302020] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3126.307228] RIP: 0033:0x458089 [ 3126.310424] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3126.329337] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3126.337053] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3126.344325] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3126.351600] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3126.358875] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 23:22:59 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00 \x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3126.366159] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:22:59 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2551, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:22:59 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000006000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:22:59 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x80fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3126.462681] ipvs_mt_check: 30 callbacks suppressed [ 3126.462689] xt_ipvs: protocol family 7 not supported [ 3126.469265] xt_ipvs: protocol family 7 not supported 23:22:59 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3126.524634] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3126.533941] xt_ipvs: protocol family 7 not supported [ 3126.566951] CPU: 0 PID: 19346 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3126.574174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3126.583534] Call Trace: [ 3126.586132] dump_stack+0x1db/0x2d0 [ 3126.589799] ? dump_stack_print_info.cold+0x20/0x20 [ 3126.594851] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3126.599972] sysfs_warn_dup.cold+0x1c/0x31 [ 3126.604213] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3126.609579] sysfs_create_link+0x65/0xc0 [ 3126.613660] device_add+0x78e/0x1800 [ 3126.617380] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3126.622754] ? get_device_parent.isra.0+0x570/0x570 [ 3126.627795] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3126.633358] wiphy_register+0x1abd/0x2760 [ 3126.637522] ? wiphy_unregister+0x1340/0x1340 [ 3126.642025] ? rcu_read_lock_sched_held+0x110/0x130 [ 3126.647044] ? __kmalloc+0x5d5/0x740 [ 3126.650760] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3126.656301] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3126.661234] ieee80211_register_hw+0x15e2/0x3f30 [ 3126.665998] ? hrtimer_init_on_stack+0x1/0x40 [ 3126.670501] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3126.675256] ? kasan_check_write+0x14/0x20 [ 3126.679491] ? tasklet_hrtimer_init+0xfa/0x260 [ 3126.684078] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3126.688927] ? tasklet_kill+0xd0/0xd0 [ 3126.692739] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3126.697776] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3126.703844] ? kvasprintf+0x101/0x170 [ 3126.707650] ? bust_spinlocks+0xe0/0xe0 [ 3126.711641] ? kasprintf+0xbb/0xf0 [ 3126.715182] ? kvasprintf_const+0x190/0x190 [ 3126.719508] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3126.724880] ? validate_nla+0x28c/0x1580 [ 3126.728953] hwsim_new_radio_nl+0xca6/0x1430 [ 3126.733373] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3126.738591] genl_family_rcv_msg+0x80d/0x11a0 [ 3126.743113] ? genl_unregister_family+0x8a0/0x8a0 [ 3126.747968] ? radix_tree_insert+0x850/0x850 [ 3126.752380] ? netlink_deliver_tap+0x32b/0xf40 [ 3126.756995] genl_rcv_msg+0xca/0x16c [ 3126.760728] netlink_rcv_skb+0x17d/0x410 [ 3126.764791] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3126.769555] ? netlink_ack+0xba0/0xba0 [ 3126.773449] ? __down_interruptible+0x740/0x740 [ 3126.778146] genl_rcv+0x29/0x40 [ 3126.781422] netlink_unicast+0x574/0x770 [ 3126.785486] ? netlink_attachskb+0x980/0x980 [ 3126.789897] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3126.795431] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3126.800453] netlink_sendmsg+0xa05/0xf90 [ 3126.804528] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3126.810076] ? netlink_unicast+0x770/0x770 [ 3126.814313] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3126.819161] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3126.823947] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3126.829490] ? security_socket_sendmsg+0x93/0xc0 [ 3126.834243] ? netlink_unicast+0x770/0x770 [ 3126.838510] sock_sendmsg+0xdd/0x130 [ 3126.842248] ___sys_sendmsg+0x7ec/0x910 [ 3126.846291] ? copy_msghdr_from_user+0x570/0x570 [ 3126.851046] ? iterate_fd+0x4b0/0x4b0 [ 3126.854878] ? __might_fault+0x12b/0x1e0 [ 3126.858946] ? find_held_lock+0x35/0x120 [ 3126.863010] ? __might_fault+0x12b/0x1e0 [ 3126.867075] ? __fget_light+0x2db/0x420 [ 3126.871056] ? fget_raw+0x20/0x20 [ 3126.874512] ? lock_release+0xc40/0xc40 [ 3126.878492] ? trace_hardirqs_off_caller+0x300/0x300 [ 3126.883610] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3126.889158] ? __fdget+0x1b/0x20 [ 3126.892523] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3126.898063] ? sockfd_lookup_light+0xc2/0x160 [ 3126.902574] __sys_sendmsg+0x112/0x270 [ 3126.906475] ? __ia32_sys_shutdown+0x80/0x80 [ 3126.910912] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3126.916293] ? trace_hardirqs_off_caller+0x300/0x300 [ 3126.921405] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3126.926166] __x64_sys_sendmsg+0x78/0xb0 [ 3126.930229] do_syscall_64+0x1a3/0x800 [ 3126.934115] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3126.939047] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3126.944071] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3126.948924] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3126.954125] RIP: 0033:0x458089 [ 3126.957317] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3126.976305] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3126.984013] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3126.991279] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3126.998546] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3127.005813] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3127.013109] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:00 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:00 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) r0 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x800) ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000240)={'team_slave_1\x00', {0x2, 0x4e21, @loopback}}) socket$inet_udplite(0x2, 0x2, 0x88) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x4, 0x5c832, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) write$binfmt_misc(r6, &(0x7f0000000140)=ANY=[], 0xfffffc8f) getsockopt$IP_VS_SO_GET_INFO(r3, 0x0, 0x481, 0x0, &(0x7f0000000100)) splice(r5, 0x0, r7, 0x0, 0x100000000ffe0, 0x0) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0xfffffc8f) splice(r1, 0x0, r4, 0x0, 0x100000000000a, 0x0) ioctl$SIOCRSACCEPT(r1, 0x89e3) r8 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r8, 0x1000008912, &(0x7f0000000000)="0a5c1f023c126285719070") 23:23:00 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000007000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:00 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3f00, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3127.166968] xt_ipvs: protocol family 7 not supported [ 3127.267695] xt_ipvs: protocol family 7 not supported [ 3127.283491] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3127.287458] xt_ipvs: protocol family 7 not supported 23:23:00 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3127.325303] xt_ipvs: protocol family 7 not supported [ 3127.333087] CPU: 0 PID: 19375 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3127.340290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3127.349650] Call Trace: [ 3127.352245] dump_stack+0x1db/0x2d0 [ 3127.355885] ? dump_stack_print_info.cold+0x20/0x20 [ 3127.360916] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3127.366047] sysfs_warn_dup.cold+0x1c/0x31 [ 3127.370296] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3127.375675] sysfs_create_link+0x65/0xc0 [ 3127.379753] device_add+0x78e/0x1800 [ 3127.383490] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3127.388913] ? get_device_parent.isra.0+0x570/0x570 [ 3127.393930] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3127.399510] wiphy_register+0x1abd/0x2760 [ 3127.403699] ? wiphy_unregister+0x1340/0x1340 [ 3127.408209] ? rcu_read_lock_sched_held+0x110/0x130 [ 3127.413234] ? __kmalloc+0x5d5/0x740 [ 3127.416959] ? memset+0x32/0x40 [ 3127.420246] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3127.425796] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3127.430747] ieee80211_register_hw+0x15e2/0x3f30 [ 3127.435553] ? hrtimer_init_on_stack+0x1/0x40 [ 3127.440067] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3127.444853] ? kasan_check_write+0x14/0x20 [ 3127.449102] ? tasklet_hrtimer_init+0xfa/0x260 [ 3127.453700] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3127.458559] ? tasklet_kill+0xd0/0xd0 [ 3127.462390] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3127.467436] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3127.473512] ? kvasprintf+0x101/0x170 [ 3127.477329] ? bust_spinlocks+0xe0/0xe0 [ 3127.481336] ? kasprintf+0xbb/0xf0 [ 3127.484887] ? kvasprintf_const+0x190/0x190 [ 3127.489239] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3127.494437] ? validate_nla+0x28c/0x1580 [ 3127.498563] hwsim_new_radio_nl+0xca6/0x1430 [ 3127.502986] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3127.508219] genl_family_rcv_msg+0x80d/0x11a0 [ 3127.512732] ? genl_unregister_family+0x8a0/0x8a0 [ 3127.517608] ? radix_tree_insert+0x850/0x850 [ 3127.522024] ? netlink_deliver_tap+0x32b/0xf40 [ 3127.526683] genl_rcv_msg+0xca/0x16c [ 3127.530414] netlink_rcv_skb+0x17d/0x410 [ 3127.534501] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3127.539264] ? netlink_ack+0xba0/0xba0 [ 3127.543169] ? __down_interruptible+0x740/0x740 [ 3127.547883] genl_rcv+0x29/0x40 [ 3127.551170] netlink_unicast+0x574/0x770 [ 3127.555242] ? netlink_attachskb+0x980/0x980 [ 3127.559662] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3127.565204] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3127.570230] netlink_sendmsg+0xa05/0xf90 23:23:00 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00@\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3127.574299] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3127.579879] ? netlink_unicast+0x770/0x770 [ 3127.584126] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3127.589030] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3127.593795] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3127.599370] ? security_socket_sendmsg+0x93/0xc0 [ 3127.604148] ? netlink_unicast+0x770/0x770 [ 3127.608407] sock_sendmsg+0xdd/0x130 [ 3127.612133] ___sys_sendmsg+0x7ec/0x910 [ 3127.616121] ? copy_msghdr_from_user+0x570/0x570 [ 3127.620884] ? iterate_fd+0x4b0/0x4b0 [ 3127.624704] ? __might_fault+0x12b/0x1e0 [ 3127.628777] ? find_held_lock+0x35/0x120 [ 3127.632894] ? __might_fault+0x12b/0x1e0 [ 3127.632914] ? __fget_light+0x2db/0x420 [ 3127.632932] ? fget_raw+0x20/0x20 [ 3127.632948] ? lock_release+0xc40/0xc40 [ 3127.632965] ? trace_hardirqs_off_caller+0x300/0x300 [ 3127.632981] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3127.653500] ? __fdget+0x1b/0x20 [ 3127.653514] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3127.653530] ? sockfd_lookup_light+0xc2/0x160 [ 3127.653547] __sys_sendmsg+0x112/0x270 [ 3127.653562] ? __ia32_sys_shutdown+0x80/0x80 [ 3127.680749] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3127.686112] ? trace_hardirqs_off_caller+0x300/0x300 [ 3127.691251] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3127.696021] __x64_sys_sendmsg+0x78/0xb0 [ 3127.700100] do_syscall_64+0x1a3/0x800 [ 3127.704000] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3127.708943] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3127.713974] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3127.718861] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3127.724056] RIP: 0033:0x458089 [ 3127.727256] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3127.742262] xt_ipvs: protocol family 7 not supported [ 3127.746155] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3127.746171] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3127.746180] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 23:23:01 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x9400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3127.746190] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3127.746199] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3127.746209] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3127.813941] xt_ipvs: protocol family 7 not supported 23:23:01 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:01 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000000a000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:01 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00H\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3127.904109] xt_ipvs: protocol family 7 not supported [ 3127.962228] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3128.003698] CPU: 0 PID: 19405 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3128.010925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3128.020282] Call Trace: [ 3128.022887] dump_stack+0x1db/0x2d0 [ 3128.026532] ? dump_stack_print_info.cold+0x20/0x20 [ 3128.031569] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3128.036690] sysfs_warn_dup.cold+0x1c/0x31 [ 3128.040939] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3128.046321] sysfs_create_link+0x65/0xc0 [ 3128.050396] device_add+0x78e/0x1800 23:23:01 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00L\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3128.054122] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3128.059513] ? get_device_parent.isra.0+0x570/0x570 [ 3128.064541] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3128.070111] wiphy_register+0x1abd/0x2760 [ 3128.074282] ? wiphy_unregister+0x1340/0x1340 [ 3128.078819] ? rcu_read_lock_sched_held+0x110/0x130 [ 3128.083883] ? __kmalloc+0x5d5/0x740 [ 3128.087614] ? memset+0x32/0x40 [ 3128.090904] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3128.096452] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3128.101403] ieee80211_register_hw+0x15e2/0x3f30 [ 3128.106205] ? hrtimer_init_on_stack+0x1/0x40 [ 3128.110716] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3128.115527] ? kasan_check_write+0x14/0x20 [ 3128.119769] ? tasklet_hrtimer_init+0xfa/0x260 [ 3128.124353] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3128.129202] ? tasklet_kill+0xd0/0xd0 [ 3128.133028] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3128.138077] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3128.144157] ? kvasprintf+0x101/0x170 [ 3128.147970] ? bust_spinlocks+0xe0/0xe0 [ 3128.151964] ? kasprintf+0xbb/0xf0 [ 3128.155509] ? kvasprintf_const+0x190/0x190 [ 3128.159877] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3128.165078] ? validate_nla+0x28c/0x1580 [ 3128.169176] hwsim_new_radio_nl+0xca6/0x1430 [ 3128.173602] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3128.178822] genl_family_rcv_msg+0x80d/0x11a0 [ 3128.183371] ? genl_unregister_family+0x8a0/0x8a0 [ 3128.188257] ? radix_tree_insert+0x850/0x850 [ 3128.192671] ? netlink_deliver_tap+0x32b/0xf40 [ 3128.197307] genl_rcv_msg+0xca/0x16c 23:23:01 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3128.201033] netlink_rcv_skb+0x17d/0x410 [ 3128.205106] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3128.209887] ? netlink_ack+0xba0/0xba0 [ 3128.213790] ? __down_interruptible+0x740/0x740 [ 3128.218495] genl_rcv+0x29/0x40 [ 3128.221782] netlink_unicast+0x574/0x770 [ 3128.225867] ? netlink_attachskb+0x980/0x980 [ 3128.230304] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3128.235860] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3128.240891] netlink_sendmsg+0xa05/0xf90 [ 3128.244990] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3128.250544] ? netlink_unicast+0x770/0x770 23:23:01 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00`\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3128.254785] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3128.259641] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3128.264431] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3128.269975] ? security_socket_sendmsg+0x93/0xc0 [ 3128.274757] ? netlink_unicast+0x770/0x770 [ 3128.279009] sock_sendmsg+0xdd/0x130 [ 3128.282735] ___sys_sendmsg+0x7ec/0x910 [ 3128.286729] ? copy_msghdr_from_user+0x570/0x570 [ 3128.291548] ? iterate_fd+0x4b0/0x4b0 [ 3128.295364] ? __might_fault+0x12b/0x1e0 [ 3128.299438] ? find_held_lock+0x35/0x120 [ 3128.303507] ? __might_fault+0x12b/0x1e0 [ 3128.307579] ? __fget_light+0x2db/0x420 [ 3128.311564] ? fget_raw+0x20/0x20 [ 3128.315035] ? lock_release+0xc40/0xc40 [ 3128.319027] ? trace_hardirqs_off_caller+0x300/0x300 [ 3128.319043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3128.319068] ? __fdget+0x1b/0x20 [ 3128.319082] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3128.319099] ? sockfd_lookup_light+0xc2/0x160 [ 3128.319116] __sys_sendmsg+0x112/0x270 [ 3128.319133] ? __ia32_sys_shutdown+0x80/0x80 [ 3128.319161] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3128.343655] ? trace_hardirqs_off_caller+0x300/0x300 [ 3128.343675] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3128.343694] __x64_sys_sendmsg+0x78/0xb0 [ 3128.343713] do_syscall_64+0x1a3/0x800 [ 3128.343735] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3128.380050] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3128.385100] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3128.389977] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3128.395171] RIP: 0033:0x458089 [ 3128.398376] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3128.417278] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3128.424991] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3128.432354] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3128.439627] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3128.446903] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3128.454177] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3128.468854] __nla_parse: 3 callbacks suppressed [ 3128.468865] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3128.493936] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:01 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:01 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4088, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:01 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00H\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:01 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xb400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:01 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00h\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:01 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000c00e000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3128.777905] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3128.788964] CPU: 0 PID: 19455 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3128.796199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3128.805559] Call Trace: [ 3128.808164] dump_stack+0x1db/0x2d0 [ 3128.811883] ? dump_stack_print_info.cold+0x20/0x20 [ 3128.816924] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3128.822047] sysfs_warn_dup.cold+0x1c/0x31 23:23:02 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00l\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3128.826305] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3128.831721] sysfs_create_link+0x65/0xc0 [ 3128.835796] device_add+0x78e/0x1800 [ 3128.839529] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3128.844905] ? get_device_parent.isra.0+0x570/0x570 [ 3128.849933] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3128.855505] wiphy_register+0x1abd/0x2760 [ 3128.859685] ? wiphy_unregister+0x1340/0x1340 [ 3128.864188] ? rcu_read_lock_sched_held+0x110/0x130 [ 3128.869206] ? __kmalloc+0x5d5/0x740 [ 3128.869225] ? memset+0x32/0x40 [ 3128.869240] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3128.869259] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3128.869280] ieee80211_register_hw+0x15e2/0x3f30 [ 3128.869303] ? hrtimer_init_on_stack+0x1/0x40 [ 3128.869324] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3128.900741] ? kasan_check_write+0x14/0x20 [ 3128.904982] ? tasklet_hrtimer_init+0xfa/0x260 [ 3128.909575] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3128.914432] ? tasklet_kill+0xd0/0xd0 [ 3128.918274] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3128.923321] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3128.929392] ? kvasprintf+0x101/0x170 [ 3128.933199] ? bust_spinlocks+0xe0/0xe0 [ 3128.937194] ? kasprintf+0xbb/0xf0 [ 3128.940752] ? kvasprintf_const+0x190/0x190 [ 3128.945090] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3128.950294] ? validate_nla+0x28c/0x1580 [ 3128.954374] hwsim_new_radio_nl+0xca6/0x1430 [ 3128.958809] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3128.964092] genl_family_rcv_msg+0x80d/0x11a0 [ 3128.968607] ? genl_unregister_family+0x8a0/0x8a0 [ 3128.973468] ? radix_tree_insert+0x850/0x850 [ 3128.977883] ? netlink_deliver_tap+0x32b/0xf40 [ 3128.982512] genl_rcv_msg+0xca/0x16c [ 3128.986241] netlink_rcv_skb+0x17d/0x410 [ 3128.990324] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3128.995086] ? netlink_ack+0xba0/0xba0 [ 3128.999002] ? __down_interruptible+0x740/0x740 [ 3129.003682] genl_rcv+0x29/0x40 [ 3129.006986] netlink_unicast+0x574/0x770 [ 3129.011069] ? netlink_attachskb+0x980/0x980 [ 3129.015485] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3129.021031] ? __sanitizer_cov_trace_cmp4+0x16/0x20 23:23:02 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00t\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3129.026062] netlink_sendmsg+0xa05/0xf90 [ 3129.030143] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3129.035699] ? netlink_unicast+0x770/0x770 [ 3129.039947] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3129.044804] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3129.049588] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3129.055150] ? security_socket_sendmsg+0x93/0xc0 [ 3129.059916] ? netlink_unicast+0x770/0x770 [ 3129.064177] sock_sendmsg+0xdd/0x130 [ 3129.067910] ___sys_sendmsg+0x7ec/0x910 [ 3129.071924] ? copy_msghdr_from_user+0x570/0x570 [ 3129.076707] ? iterate_fd+0x4b0/0x4b0 [ 3129.080528] ? __might_fault+0x12b/0x1e0 [ 3129.084600] ? find_held_lock+0x35/0x120 [ 3129.088674] ? __might_fault+0x12b/0x1e0 [ 3129.092765] ? __fget_light+0x2db/0x420 [ 3129.096754] ? fget_raw+0x20/0x20 [ 3129.100219] ? lock_release+0xc40/0xc40 [ 3129.104220] ? trace_hardirqs_off_caller+0x300/0x300 [ 3129.109330] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3129.114898] ? __fdget+0x1b/0x20 [ 3129.118276] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3129.123842] ? sockfd_lookup_light+0xc2/0x160 [ 3129.128417] __sys_sendmsg+0x112/0x270 [ 3129.132332] ? __ia32_sys_shutdown+0x80/0x80 [ 3129.136773] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3129.142146] ? trace_hardirqs_off_caller+0x300/0x300 [ 3129.147347] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3129.152112] __x64_sys_sendmsg+0x78/0xb0 [ 3129.156183] do_syscall_64+0x1a3/0x800 [ 3129.160083] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3129.165022] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3129.170052] ? trace_hardirqs_off_thunk+0x1a/0x1c 23:23:02 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00z\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3129.174916] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3129.180111] RIP: 0033:0x458089 [ 3129.183309] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3129.202214] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3129.202229] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3129.202237] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3129.202245] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3129.202268] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3129.202277] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3129.254740] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3129.267984] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3129.275717] CPU: 0 PID: 19457 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3129.282912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3129.292269] Call Trace: [ 3129.294889] dump_stack+0x1db/0x2d0 [ 3129.298539] ? dump_stack_print_info.cold+0x20/0x20 [ 3129.303568] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3129.308694] sysfs_warn_dup.cold+0x1c/0x31 [ 3129.312937] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3129.318334] sysfs_create_link+0x65/0xc0 [ 3129.322395] device_add+0x78e/0x1800 [ 3129.326109] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3129.331491] ? get_device_parent.isra.0+0x570/0x570 [ 3129.336525] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3129.342083] wiphy_register+0x1abd/0x2760 [ 3129.346263] ? wiphy_unregister+0x1340/0x1340 [ 3129.350793] ? rcu_read_lock_sched_held+0x110/0x130 [ 3129.355849] ? __kmalloc+0x5d5/0x740 [ 3129.359574] ? memset+0x32/0x40 [ 3129.362871] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3129.368422] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3129.373366] ieee80211_register_hw+0x15e2/0x3f30 23:23:02 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3129.378181] ? hrtimer_init_on_stack+0x1/0x40 [ 3129.382690] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3129.387456] ? kasan_check_write+0x14/0x20 [ 3129.391696] ? tasklet_hrtimer_init+0xfa/0x260 [ 3129.396289] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3129.401163] ? tasklet_kill+0xd0/0xd0 [ 3129.405006] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3129.410052] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3129.416113] ? kvasprintf+0x101/0x170 [ 3129.419918] ? bust_spinlocks+0xe0/0xe0 [ 3129.419962] ? kasprintf+0xbb/0xf0 [ 3129.419976] ? kvasprintf_const+0x190/0x190 [ 3129.419990] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3129.420007] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3129.420020] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3129.420038] ? validate_nla+0x28c/0x1580 [ 3129.420061] hwsim_new_radio_nl+0xca6/0x1430 [ 3129.455049] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3129.460297] genl_family_rcv_msg+0x80d/0x11a0 [ 3129.464819] ? genl_unregister_family+0x8a0/0x8a0 [ 3129.469705] ? radix_tree_insert+0x850/0x850 [ 3129.474126] ? netlink_deliver_tap+0x32b/0xf40 [ 3129.478748] genl_rcv_msg+0xca/0x16c [ 3129.482479] netlink_rcv_skb+0x17d/0x410 [ 3129.486550] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3129.491388] ? netlink_ack+0xba0/0xba0 [ 3129.495294] ? __down_interruptible+0x740/0x740 [ 3129.499988] genl_rcv+0x29/0x40 [ 3129.503284] netlink_unicast+0x574/0x770 [ 3129.507361] ? netlink_attachskb+0x980/0x980 [ 3129.511780] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3129.517333] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3129.522382] netlink_sendmsg+0xa05/0xf90 [ 3129.526453] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3129.532011] ? netlink_unicast+0x770/0x770 [ 3129.536311] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3129.541186] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3129.545952] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3129.551493] ? security_socket_sendmsg+0x93/0xc0 [ 3129.556255] ? netlink_unicast+0x770/0x770 [ 3129.560506] sock_sendmsg+0xdd/0x130 [ 3129.564237] ___sys_sendmsg+0x7ec/0x910 [ 3129.568227] ? copy_msghdr_from_user+0x570/0x570 [ 3129.573338] ? iterate_fd+0x4b0/0x4b0 [ 3129.577170] ? __might_fault+0x12b/0x1e0 23:23:02 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\a\xff\xff\xfe\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3129.581241] ? find_held_lock+0x35/0x120 [ 3129.585313] ? __might_fault+0x12b/0x1e0 [ 3129.589396] ? __fget_light+0x2db/0x420 [ 3129.593380] ? fget_raw+0x20/0x20 [ 3129.596862] ? lock_release+0xc40/0xc40 [ 3129.600859] ? trace_hardirqs_off_caller+0x300/0x300 [ 3129.600875] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3129.600903] ? __fdget+0x1b/0x20 [ 3129.600917] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3129.600934] ? sockfd_lookup_light+0xc2/0x160 [ 3129.600950] __sys_sendmsg+0x112/0x270 [ 3129.611582] ? __ia32_sys_shutdown+0x80/0x80 [ 3129.611614] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3129.611631] ? trace_hardirqs_off_caller+0x300/0x300 [ 3129.611649] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3129.611669] __x64_sys_sendmsg+0x78/0xb0 [ 3129.611687] do_syscall_64+0x1a3/0x800 [ 3129.611706] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3129.611725] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3129.611747] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3129.611770] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3129.676448] RIP: 0033:0x458089 [ 3129.679644] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3129.698543] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3129.706247] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3129.713517] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3129.720800] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3129.728094] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3129.735358] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:03 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xb804, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3129.776147] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3129.839731] CPU: 1 PID: 19487 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3129.846941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3129.856299] Call Trace: [ 3129.858916] dump_stack+0x1db/0x2d0 [ 3129.862567] ? dump_stack_print_info.cold+0x20/0x20 [ 3129.867623] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3129.872770] sysfs_warn_dup.cold+0x1c/0x31 [ 3129.877038] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3129.882421] sysfs_create_link+0x65/0xc0 [ 3129.886500] device_add+0x78e/0x1800 [ 3129.890211] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3129.895565] ? get_device_parent.isra.0+0x570/0x570 [ 3129.900601] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3129.906145] wiphy_register+0x1abd/0x2760 [ 3129.910309] ? wiphy_unregister+0x1340/0x1340 [ 3129.914796] ? rcu_read_lock_sched_held+0x110/0x130 [ 3129.919800] ? __kmalloc+0x5d5/0x740 [ 3129.923505] ? memset+0x32/0x40 [ 3129.926787] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3129.932316] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3129.937238] ieee80211_register_hw+0x15e2/0x3f30 [ 3129.942001] ? hrtimer_init_on_stack+0x1/0x40 [ 3129.946501] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3129.951245] ? kasan_check_write+0x14/0x20 [ 3129.955490] ? tasklet_hrtimer_init+0xfa/0x260 [ 3129.960086] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3129.964931] ? tasklet_kill+0xd0/0xd0 [ 3129.968733] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3129.973756] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3129.979836] ? kvasprintf+0x101/0x170 [ 3129.983652] ? bust_spinlocks+0xe0/0xe0 [ 3129.987621] ? kasprintf+0xbb/0xf0 [ 3129.991145] ? kvasprintf_const+0x190/0x190 [ 3129.995455] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3130.000630] ? validate_nla+0x28c/0x1580 [ 3130.004701] hwsim_new_radio_nl+0xca6/0x1430 [ 3130.009130] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3130.014334] genl_family_rcv_msg+0x80d/0x11a0 [ 3130.018851] ? genl_unregister_family+0x8a0/0x8a0 [ 3130.023700] ? radix_tree_insert+0x850/0x850 [ 3130.028119] ? netlink_deliver_tap+0x32b/0xf40 [ 3130.032709] genl_rcv_msg+0xca/0x16c [ 3130.036412] netlink_rcv_skb+0x17d/0x410 [ 3130.040458] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3130.045225] ? netlink_ack+0xba0/0xba0 [ 3130.049113] ? __down_interruptible+0x740/0x740 [ 3130.053796] genl_rcv+0x29/0x40 [ 3130.057115] netlink_unicast+0x574/0x770 [ 3130.061191] ? netlink_attachskb+0x980/0x980 [ 3130.065599] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3130.071159] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3130.076173] netlink_sendmsg+0xa05/0xf90 [ 3130.080224] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3130.085768] ? netlink_unicast+0x770/0x770 [ 3130.090005] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3130.094858] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3130.099619] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3130.105163] ? security_socket_sendmsg+0x93/0xc0 [ 3130.109925] ? netlink_unicast+0x770/0x770 [ 3130.114150] sock_sendmsg+0xdd/0x130 [ 3130.117861] ___sys_sendmsg+0x7ec/0x910 [ 3130.121866] ? copy_msghdr_from_user+0x570/0x570 [ 3130.126624] ? iterate_fd+0x4b0/0x4b0 [ 3130.130426] ? __might_fault+0x12b/0x1e0 [ 3130.134482] ? find_held_lock+0x35/0x120 [ 3130.138548] ? __might_fault+0x12b/0x1e0 [ 3130.142606] ? __fget_light+0x2db/0x420 [ 3130.146577] ? fget_raw+0x20/0x20 [ 3130.150043] ? lock_release+0xc40/0xc40 [ 3130.154006] ? trace_hardirqs_off_caller+0x300/0x300 [ 3130.159096] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3130.164625] ? __fdget+0x1b/0x20 [ 3130.167973] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3130.173495] ? sockfd_lookup_light+0xc2/0x160 [ 3130.177978] __sys_sendmsg+0x112/0x270 [ 3130.181858] ? __ia32_sys_shutdown+0x80/0x80 [ 3130.186287] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3130.191641] ? trace_hardirqs_off_caller+0x300/0x300 [ 3130.196754] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3130.201507] __x64_sys_sendmsg+0x78/0xb0 [ 3130.205557] do_syscall_64+0x1a3/0x800 [ 3130.209430] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3130.214394] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3130.219398] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3130.224230] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3130.229417] RIP: 0033:0x458089 [ 3130.232613] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3130.251509] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3130.259205] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3130.266485] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3130.273759] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3130.281036] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 23:23:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:03 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000000f000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3130.288306] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3130.354319] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:03 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00L\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:03 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\xff\xff\xff\xff\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:03 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4c00, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3130.411212] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 23:23:03 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xc404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3130.496905] CPU: 0 PID: 19509 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3130.504131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3130.513514] Call Trace: [ 3130.516119] dump_stack+0x1db/0x2d0 [ 3130.519779] ? dump_stack_print_info.cold+0x20/0x20 [ 3130.524859] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3130.530001] sysfs_warn_dup.cold+0x1c/0x31 [ 3130.534250] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3130.539641] sysfs_create_link+0x65/0xc0 [ 3130.543716] device_add+0x78e/0x1800 [ 3130.547447] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3130.552855] ? get_device_parent.isra.0+0x570/0x570 [ 3130.557899] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3130.563466] wiphy_register+0x1abd/0x2760 [ 3130.567640] ? wiphy_unregister+0x1340/0x1340 [ 3130.572150] ? rcu_read_lock_sched_held+0x110/0x130 [ 3130.577196] ? __kmalloc+0x5d5/0x740 [ 3130.580922] ? memset+0x32/0x40 [ 3130.584214] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3130.589772] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3130.589808] ieee80211_register_hw+0x15e2/0x3f30 [ 3130.589847] ? hrtimer_init_on_stack+0x1/0x40 [ 3130.589902] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3130.589921] ? kasan_check_write+0x14/0x20 [ 3130.589936] ? tasklet_hrtimer_init+0xfa/0x260 [ 3130.589952] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3130.589967] ? tasklet_kill+0xd0/0xd0 [ 3130.626403] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3130.631452] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3130.637548] ? kvasprintf+0x101/0x170 [ 3130.641383] ? bust_spinlocks+0xe0/0xe0 23:23:03 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x01\xa0\xff\xff\xff\xff\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3130.645388] ? kasprintf+0xbb/0xf0 [ 3130.648937] ? kvasprintf_const+0x190/0x190 [ 3130.653266] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3130.658464] ? validate_nla+0x28c/0x1580 [ 3130.662551] hwsim_new_radio_nl+0xca6/0x1430 [ 3130.667015] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3130.672238] genl_family_rcv_msg+0x80d/0x11a0 [ 3130.676775] ? genl_unregister_family+0x8a0/0x8a0 [ 3130.676816] ? radix_tree_insert+0x850/0x850 [ 3130.676846] ? netlink_deliver_tap+0x32b/0xf40 [ 3130.676886] genl_rcv_msg+0xca/0x16c [ 3130.676904] netlink_rcv_skb+0x17d/0x410 [ 3130.676919] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3130.676934] ? netlink_ack+0xba0/0xba0 [ 3130.676956] ? __down_interruptible+0x740/0x740 [ 3130.686195] genl_rcv+0x29/0x40 [ 3130.686210] netlink_unicast+0x574/0x770 [ 3130.686231] ? netlink_attachskb+0x980/0x980 [ 3130.686248] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3130.686262] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3130.734178] netlink_sendmsg+0xa05/0xf90 [ 3130.738248] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3130.743806] ? netlink_unicast+0x770/0x770 [ 3130.748083] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3130.752959] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3130.757727] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3130.763278] ? security_socket_sendmsg+0x93/0xc0 [ 3130.768047] ? netlink_unicast+0x770/0x770 [ 3130.772297] sock_sendmsg+0xdd/0x130 [ 3130.776027] ___sys_sendmsg+0x7ec/0x910 [ 3130.780037] ? copy_msghdr_from_user+0x570/0x570 [ 3130.784800] ? iterate_fd+0x4b0/0x4b0 [ 3130.788632] ? __might_fault+0x12b/0x1e0 [ 3130.792701] ? find_held_lock+0x35/0x120 23:23:04 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3130.796772] ? __might_fault+0x12b/0x1e0 [ 3130.800878] ? __fget_light+0x2db/0x420 [ 3130.804881] ? fget_raw+0x20/0x20 [ 3130.808340] ? lock_release+0xc40/0xc40 [ 3130.812349] ? trace_hardirqs_off_caller+0x300/0x300 [ 3130.817478] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3130.823072] ? __fdget+0x1b/0x20 [ 3130.826485] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3130.832037] ? sockfd_lookup_light+0xc2/0x160 [ 3130.836544] __sys_sendmsg+0x112/0x270 [ 3130.840464] ? __ia32_sys_shutdown+0x80/0x80 [ 3130.840495] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3130.840511] ? trace_hardirqs_off_caller+0x300/0x300 [ 3130.840528] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3130.840545] __x64_sys_sendmsg+0x78/0xb0 [ 3130.840563] do_syscall_64+0x1a3/0x800 [ 3130.840582] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3130.840600] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3130.840621] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3130.840643] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3130.888215] RIP: 0033:0x458089 23:23:04 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x03\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3130.891416] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3130.910327] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3130.918062] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3130.925334] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3130.932614] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3130.939882] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 23:23:04 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000020000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3130.947155] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3130.982785] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3131.017351] CPU: 1 PID: 19520 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3131.024558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3131.033921] Call Trace: [ 3131.036524] dump_stack+0x1db/0x2d0 [ 3131.040184] ? dump_stack_print_info.cold+0x20/0x20 [ 3131.045237] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3131.050399] sysfs_warn_dup.cold+0x1c/0x31 [ 3131.054669] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3131.060049] sysfs_create_link+0x65/0xc0 [ 3131.064119] device_add+0x78e/0x1800 [ 3131.067848] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3131.073224] ? get_device_parent.isra.0+0x570/0x570 [ 3131.078252] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3131.083784] wiphy_register+0x1abd/0x2760 [ 3131.087926] ? wiphy_unregister+0x1340/0x1340 [ 3131.092444] ? rcu_read_lock_sched_held+0x110/0x130 [ 3131.097454] ? __kmalloc+0x5d5/0x740 [ 3131.101153] ? memset+0x32/0x40 [ 3131.104444] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3131.109984] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3131.114902] ieee80211_register_hw+0x15e2/0x3f30 [ 3131.119666] ? hrtimer_init_on_stack+0x1/0x40 [ 3131.124164] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3131.128936] ? kasan_check_write+0x14/0x20 [ 3131.133164] ? tasklet_hrtimer_init+0xfa/0x260 [ 3131.137774] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3131.142614] ? tasklet_kill+0xd0/0xd0 [ 3131.146432] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3131.151454] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3131.157503] ? kvasprintf+0x101/0x170 [ 3131.161309] ? bust_spinlocks+0xe0/0xe0 [ 3131.165306] ? kasprintf+0xbb/0xf0 [ 3131.168898] ? kvasprintf_const+0x190/0x190 [ 3131.173221] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3131.178396] ? validate_nla+0x28c/0x1580 [ 3131.182459] hwsim_new_radio_nl+0xca6/0x1430 [ 3131.186889] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3131.192089] genl_family_rcv_msg+0x80d/0x11a0 [ 3131.196582] ? genl_unregister_family+0x8a0/0x8a0 [ 3131.201432] ? radix_tree_insert+0x850/0x850 [ 3131.205823] ? netlink_deliver_tap+0x32b/0xf40 [ 3131.210450] genl_rcv_msg+0xca/0x16c [ 3131.214163] netlink_rcv_skb+0x17d/0x410 [ 3131.218211] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3131.222955] ? netlink_ack+0xba0/0xba0 [ 3131.226848] ? __down_interruptible+0x740/0x740 [ 3131.231522] genl_rcv+0x29/0x40 [ 3131.234787] netlink_unicast+0x574/0x770 [ 3131.238854] ? netlink_attachskb+0x980/0x980 [ 3131.243283] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3131.248846] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3131.253872] netlink_sendmsg+0xa05/0xf90 [ 3131.257947] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3131.263489] ? netlink_unicast+0x770/0x770 [ 3131.267733] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3131.272582] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3131.277321] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3131.282856] ? security_socket_sendmsg+0x93/0xc0 [ 3131.287625] ? netlink_unicast+0x770/0x770 [ 3131.291860] sock_sendmsg+0xdd/0x130 [ 3131.295565] ___sys_sendmsg+0x7ec/0x910 [ 3131.299529] ? copy_msghdr_from_user+0x570/0x570 [ 3131.304267] ? iterate_fd+0x4b0/0x4b0 [ 3131.308059] ? __might_fault+0x12b/0x1e0 [ 3131.312118] ? find_held_lock+0x35/0x120 [ 3131.316186] ? __might_fault+0x12b/0x1e0 [ 3131.320254] ? __fget_light+0x2db/0x420 [ 3131.324259] ? fget_raw+0x20/0x20 [ 3131.327697] ? lock_release+0xc40/0xc40 [ 3131.331703] ? trace_hardirqs_off_caller+0x300/0x300 [ 3131.336834] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3131.342378] ? __fdget+0x1b/0x20 [ 3131.345729] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3131.351277] ? sockfd_lookup_light+0xc2/0x160 [ 3131.355771] __sys_sendmsg+0x112/0x270 [ 3131.359691] ? __ia32_sys_shutdown+0x80/0x80 [ 3131.364095] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3131.369473] ? trace_hardirqs_off_caller+0x300/0x300 [ 3131.374588] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3131.379377] __x64_sys_sendmsg+0x78/0xb0 [ 3131.383451] do_syscall_64+0x1a3/0x800 [ 3131.387347] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3131.392282] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3131.397299] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3131.402168] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3131.407345] RIP: 0033:0x458089 [ 3131.410527] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3131.429438] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3131.437182] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3131.444474] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3131.451731] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3131.458985] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 23:23:04 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x04\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3131.466257] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:04 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00`\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3131.504230] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3131.549814] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3131.584602] ipvs_mt_check: 26 callbacks suppressed [ 3131.584611] xt_ipvs: protocol family 7 not supported [ 3131.644271] xt_ipvs: protocol family 7 not supported [ 3131.653099] xt_ipvs: protocol family 7 not supported 23:23:05 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4088, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:05 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5125, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:05 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xfe80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:05 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000028000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:05 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x05\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3131.753598] xt_ipvs: protocol family 7 not supported [ 3131.780033] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3131.805279] xt_ipvs: protocol family 7 not supported [ 3131.820924] CPU: 1 PID: 19575 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3131.828159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3131.837775] Call Trace: [ 3131.840413] dump_stack+0x1db/0x2d0 [ 3131.844063] ? dump_stack_print_info.cold+0x20/0x20 [ 3131.849121] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3131.854241] sysfs_warn_dup.cold+0x1c/0x31 [ 3131.858486] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3131.863877] sysfs_create_link+0x65/0xc0 [ 3131.867948] device_add+0x78e/0x1800 [ 3131.867965] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3131.867987] ? get_device_parent.isra.0+0x570/0x570 [ 3131.868006] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3131.868035] wiphy_register+0x1abd/0x2760 [ 3131.868078] ? wiphy_unregister+0x1340/0x1340 [ 3131.896728] ? rcu_read_lock_sched_held+0x110/0x130 [ 3131.901755] ? __kmalloc+0x5d5/0x740 [ 3131.905476] ? memset+0x32/0x40 [ 3131.908769] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3131.914318] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3131.915747] xt_ipvs: protocol family 7 not supported [ 3131.919259] ieee80211_register_hw+0x15e2/0x3f30 [ 3131.919282] ? hrtimer_init_on_stack+0x1/0x40 [ 3131.919306] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3131.919324] ? kasan_check_write+0x14/0x20 [ 3131.919345] ? tasklet_hrtimer_init+0xfa/0x260 [ 3131.919364] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3131.952098] ? tasklet_kill+0xd0/0xd0 [ 3131.952130] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3131.952163] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3131.960972] ? kvasprintf+0x101/0x170 [ 3131.960988] ? bust_spinlocks+0xe0/0xe0 [ 3131.961017] ? kasprintf+0xbb/0xf0 23:23:05 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00h\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:05 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x06\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3131.961032] ? kvasprintf_const+0x190/0x190 [ 3131.982715] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3131.987919] ? validate_nla+0x28c/0x1580 [ 3131.992000] hwsim_new_radio_nl+0xca6/0x1430 [ 3131.996433] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3132.001688] genl_family_rcv_msg+0x80d/0x11a0 [ 3132.006242] ? genl_unregister_family+0x8a0/0x8a0 [ 3132.011129] ? radix_tree_insert+0x850/0x850 [ 3132.015548] ? netlink_deliver_tap+0x32b/0xf40 [ 3132.020163] genl_rcv_msg+0xca/0x16c [ 3132.023918] netlink_rcv_skb+0x17d/0x410 [ 3132.027986] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3132.032739] ? netlink_ack+0xba0/0xba0 [ 3132.036630] ? __down_interruptible+0x740/0x740 [ 3132.041301] genl_rcv+0x29/0x40 [ 3132.044582] netlink_unicast+0x574/0x770 [ 3132.048651] ? netlink_attachskb+0x980/0x980 [ 3132.053060] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3132.058596] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3132.063601] netlink_sendmsg+0xa05/0xf90 [ 3132.067645] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3132.073181] ? netlink_unicast+0x770/0x770 [ 3132.077403] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3132.082247] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3132.087016] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3132.092570] ? security_socket_sendmsg+0x93/0xc0 [ 3132.097325] ? netlink_unicast+0x770/0x770 [ 3132.101569] sock_sendmsg+0xdd/0x130 [ 3132.105296] ___sys_sendmsg+0x7ec/0x910 [ 3132.109307] ? copy_msghdr_from_user+0x570/0x570 [ 3132.114050] ? iterate_fd+0x4b0/0x4b0 [ 3132.117878] ? __might_fault+0x12b/0x1e0 [ 3132.121948] ? find_held_lock+0x35/0x120 [ 3132.125999] ? __might_fault+0x12b/0x1e0 [ 3132.130093] ? __fget_light+0x2db/0x420 [ 3132.134139] ? fget_raw+0x20/0x20 [ 3132.137612] ? lock_release+0xc40/0xc40 [ 3132.141591] ? trace_hardirqs_off_caller+0x300/0x300 [ 3132.146694] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3132.152242] ? __fdget+0x1b/0x20 [ 3132.155593] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3132.161140] ? sockfd_lookup_light+0xc2/0x160 [ 3132.165651] __sys_sendmsg+0x112/0x270 [ 3132.169535] ? __ia32_sys_shutdown+0x80/0x80 [ 3132.173943] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3132.179296] ? trace_hardirqs_off_caller+0x300/0x300 [ 3132.184409] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3132.189162] __x64_sys_sendmsg+0x78/0xb0 [ 3132.193224] do_syscall_64+0x1a3/0x800 [ 3132.197112] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3132.202074] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3132.207089] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3132.211931] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3132.217111] RIP: 0033:0x458089 [ 3132.220290] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3132.239180] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3132.246902] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3132.254160] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3132.261422] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3132.268684] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3132.275940] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3132.297752] xt_ipvs: protocol family 7 not supported [ 3132.303515] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3132.318448] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3132.326183] CPU: 1 PID: 19595 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3132.333378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3132.342876] Call Trace: [ 3132.345482] dump_stack+0x1db/0x2d0 [ 3132.345967] xt_ipvs: protocol family 7 not supported [ 3132.349128] ? dump_stack_print_info.cold+0x20/0x20 [ 3132.349152] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3132.349181] sysfs_warn_dup.cold+0x1c/0x31 [ 3132.349204] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3132.371662] xt_ipvs: protocol family 7 not supported 23:23:05 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3132.374007] sysfs_create_link+0x65/0xc0 [ 3132.374028] device_add+0x78e/0x1800 [ 3132.374044] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3132.374066] ? get_device_parent.isra.0+0x570/0x570 [ 3132.397329] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3132.402894] wiphy_register+0x1abd/0x2760 [ 3132.407059] ? wiphy_unregister+0x1340/0x1340 [ 3132.411562] ? rcu_read_lock_sched_held+0x110/0x130 [ 3132.416584] ? __kmalloc+0x5d5/0x740 [ 3132.420311] ? memset+0x32/0x40 [ 3132.423605] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3132.429187] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3132.429223] ieee80211_register_hw+0x15e2/0x3f30 [ 3132.429246] ? hrtimer_init_on_stack+0x1/0x40 [ 3132.429272] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3132.448225] ? kasan_check_write+0x14/0x20 [ 3132.452471] ? tasklet_hrtimer_init+0xfa/0x260 [ 3132.457065] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3132.461934] ? tasklet_kill+0xd0/0xd0 [ 3132.465772] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3132.470859] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3132.477885] ? kvasprintf+0x101/0x170 23:23:05 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3132.481698] ? bust_spinlocks+0xe0/0xe0 [ 3132.485691] ? kasprintf+0xbb/0xf0 [ 3132.489255] ? kvasprintf_const+0x190/0x190 [ 3132.493589] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3132.498791] ? validate_nla+0x28c/0x1580 [ 3132.502887] hwsim_new_radio_nl+0xca6/0x1430 [ 3132.507313] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3132.512568] genl_family_rcv_msg+0x80d/0x11a0 [ 3132.517083] ? genl_unregister_family+0x8a0/0x8a0 [ 3132.521945] ? radix_tree_insert+0x850/0x850 [ 3132.526385] ? netlink_deliver_tap+0x32b/0xf40 23:23:05 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00H\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3132.526678] xt_ipvs: protocol family 7 not supported [ 3132.531009] genl_rcv_msg+0xca/0x16c [ 3132.531027] netlink_rcv_skb+0x17d/0x410 [ 3132.531045] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3132.548665] ? netlink_ack+0xba0/0xba0 [ 3132.552575] ? __down_interruptible+0x740/0x740 [ 3132.557265] genl_rcv+0x29/0x40 [ 3132.560554] netlink_unicast+0x574/0x770 [ 3132.564625] ? netlink_attachskb+0x980/0x980 [ 3132.569043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3132.574882] ? __sanitizer_cov_trace_cmp4+0x16/0x20 23:23:05 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x90000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3132.580107] netlink_sendmsg+0xa05/0xf90 [ 3132.584176] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3132.589730] ? netlink_unicast+0x770/0x770 [ 3132.593977] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3132.598850] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3132.603616] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3132.609169] ? security_socket_sendmsg+0x93/0xc0 [ 3132.613939] ? netlink_unicast+0x770/0x770 [ 3132.618189] sock_sendmsg+0xdd/0x130 [ 3132.621917] ___sys_sendmsg+0x7ec/0x910 [ 3132.621941] ? copy_msghdr_from_user+0x570/0x570 [ 3132.621955] ? iterate_fd+0x4b0/0x4b0 [ 3132.621980] ? __might_fault+0x12b/0x1e0 [ 3132.621996] ? find_held_lock+0x35/0x120 [ 3132.622011] ? __might_fault+0x12b/0x1e0 [ 3132.622029] ? __fget_light+0x2db/0x420 [ 3132.630754] ? fget_raw+0x20/0x20 [ 3132.630769] ? lock_release+0xc40/0xc40 [ 3132.630785] ? trace_hardirqs_off_caller+0x300/0x300 [ 3132.630800] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3132.630824] ? __fdget+0x1b/0x20 [ 3132.672152] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3132.677704] ? sockfd_lookup_light+0xc2/0x160 [ 3132.682226] __sys_sendmsg+0x112/0x270 [ 3132.686123] ? __ia32_sys_shutdown+0x80/0x80 [ 3132.690559] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3132.695935] ? trace_hardirqs_off_caller+0x300/0x300 [ 3132.701053] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3132.705812] __x64_sys_sendmsg+0x78/0xb0 [ 3132.709887] do_syscall_64+0x1a3/0x800 [ 3132.713788] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3132.718736] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3132.723764] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3132.728625] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3132.733807] RIP: 0033:0x458089 [ 3132.737000] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3132.755914] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3132.763628] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3132.770900] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3132.778159] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3132.785428] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3132.792699] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3132.830737] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3132.861052] CPU: 0 PID: 19604 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3132.868277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3132.877634] Call Trace: [ 3132.880237] dump_stack+0x1db/0x2d0 [ 3132.883891] ? dump_stack_print_info.cold+0x20/0x20 [ 3132.888925] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3132.894045] sysfs_warn_dup.cold+0x1c/0x31 [ 3132.898297] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3132.903676] sysfs_create_link+0x65/0xc0 [ 3132.907748] device_add+0x78e/0x1800 [ 3132.911469] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3132.916871] ? get_device_parent.isra.0+0x570/0x570 [ 3132.921908] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3132.927465] wiphy_register+0x1abd/0x2760 [ 3132.931641] ? wiphy_unregister+0x1340/0x1340 [ 3132.936156] ? rcu_read_lock_sched_held+0x110/0x130 [ 3132.941181] ? __kmalloc+0x5d5/0x740 [ 3132.941200] ? memset+0x32/0x40 [ 3132.941215] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3132.941234] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3132.941256] ieee80211_register_hw+0x15e2/0x3f30 [ 3132.941279] ? hrtimer_init_on_stack+0x1/0x40 [ 3132.941303] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3132.941323] ? kasan_check_write+0x14/0x20 23:23:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000433a000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:06 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x80fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3132.941339] ? tasklet_hrtimer_init+0xfa/0x260 [ 3132.941356] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3132.941374] ? tasklet_kill+0xd0/0xd0 [ 3132.948383] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3132.948419] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3132.948433] ? kvasprintf+0x101/0x170 [ 3132.948450] ? bust_spinlocks+0xe0/0xe0 [ 3132.948478] ? kasprintf+0xbb/0xf0 [ 3132.948493] ? kvasprintf_const+0x190/0x190 [ 3132.948510] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3132.958965] ? validate_nla+0x28c/0x1580 [ 3132.958993] hwsim_new_radio_nl+0xca6/0x1430 23:23:06 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00L\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3132.959019] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3132.959057] genl_family_rcv_msg+0x80d/0x11a0 [ 3132.973029] ? genl_unregister_family+0x8a0/0x8a0 [ 3132.973054] ? radix_tree_insert+0x850/0x850 [ 3132.973069] ? netlink_deliver_tap+0x32b/0xf40 [ 3132.973125] genl_rcv_msg+0xca/0x16c [ 3132.973156] netlink_rcv_skb+0x17d/0x410 [ 3133.062065] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3133.066846] ? netlink_ack+0xba0/0xba0 [ 3133.070757] ? __down_interruptible+0x740/0x740 [ 3133.075443] genl_rcv+0x29/0x40 [ 3133.078745] netlink_unicast+0x574/0x770 [ 3133.082824] ? netlink_attachskb+0x980/0x980 [ 3133.087276] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3133.087290] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3133.087310] netlink_sendmsg+0xa05/0xf90 [ 3133.087324] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3133.087345] ? netlink_unicast+0x770/0x770 [ 3133.087361] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3133.087381] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3133.087410] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3133.087427] ? security_socket_sendmsg+0x93/0xc0 [ 3133.097998] ? netlink_unicast+0x770/0x770 [ 3133.098019] sock_sendmsg+0xdd/0x130 [ 3133.098040] ___sys_sendmsg+0x7ec/0x910 [ 3133.098063] ? copy_msghdr_from_user+0x570/0x570 [ 3133.098077] ? iterate_fd+0x4b0/0x4b0 [ 3133.098100] ? __might_fault+0x12b/0x1e0 [ 3133.098116] ? find_held_lock+0x35/0x120 [ 3133.098132] ? __might_fault+0x12b/0x1e0 [ 3133.098151] ? __fget_light+0x2db/0x420 [ 3133.098167] ? fget_raw+0x20/0x20 [ 3133.098181] ? lock_release+0xc40/0xc40 [ 3133.098198] ? trace_hardirqs_off_caller+0x300/0x300 [ 3133.098213] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3133.186501] ? __fdget+0x1b/0x20 [ 3133.189879] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3133.195457] ? sockfd_lookup_light+0xc2/0x160 [ 3133.199964] __sys_sendmsg+0x112/0x270 [ 3133.203870] ? __ia32_sys_shutdown+0x80/0x80 [ 3133.208300] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3133.213684] ? trace_hardirqs_off_caller+0x300/0x300 [ 3133.218795] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3133.223574] __x64_sys_sendmsg+0x78/0xb0 [ 3133.227646] do_syscall_64+0x1a3/0x800 [ 3133.231572] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3133.236512] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3133.241557] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3133.246419] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3133.251617] RIP: 0033:0x458089 [ 3133.254852] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3133.273776] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3133.281485] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3133.288766] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3133.296035] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3133.303299] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3133.310559] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:06 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00l\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3133.340109] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3133.370106] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 23:23:06 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_user\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x7c774aac) mmap(&(0x7f0000a00000/0x600000)=nil, 0x600000, 0x808003, 0x8013, r0, 0x0) recvmsg$kcm(r0, 0x0, 0x0) openat$cgroup_type(0xffffffffffffffff, 0x0, 0x2, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000002c0)={r0, 0x50, &(0x7f0000000240)}, 0x10) socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0x0, 0x0}) ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000180)={'ifb0\x00', 0x8}) write$cgroup_int(r0, &(0x7f0000000300), 0x12) close(r2) recvmsg$kcm(r1, &(0x7f0000000200)={&(0x7f0000000040)=@ax25, 0x2, &(0x7f0000000000)=[{&(0x7f0000000080)=""/151, 0xffffff77}], 0x1, &(0x7f00000001c0)=""/17, 0xffda}, 0x3f00) [ 3133.431542] CPU: 0 PID: 19634 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3133.438766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3133.448124] Call Trace: [ 3133.450721] dump_stack+0x1db/0x2d0 [ 3133.454366] ? dump_stack_print_info.cold+0x20/0x20 [ 3133.459426] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3133.464556] sysfs_warn_dup.cold+0x1c/0x31 [ 3133.468853] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3133.474260] sysfs_create_link+0x65/0xc0 [ 3133.478349] device_add+0x78e/0x1800 [ 3133.482080] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3133.487456] ? get_device_parent.isra.0+0x570/0x570 [ 3133.487474] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3133.487503] wiphy_register+0x1abd/0x2760 [ 3133.487546] ? wiphy_unregister+0x1340/0x1340 [ 3133.487566] ? rcu_read_lock_sched_held+0x110/0x130 [ 3133.487582] ? __kmalloc+0x5d5/0x740 [ 3133.487597] ? memset+0x32/0x40 [ 3133.518724] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3133.524283] ? ieee80211_cs_list_valid+0x1a1/0x280 23:23:06 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00`\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3133.529216] ieee80211_register_hw+0x15e2/0x3f30 [ 3133.533985] ? hrtimer_init_on_stack+0x1/0x40 [ 3133.538499] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3133.543271] ? kasan_check_write+0x14/0x20 [ 3133.547517] ? tasklet_hrtimer_init+0xfa/0x260 [ 3133.552114] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3133.556963] ? tasklet_kill+0xd0/0xd0 [ 3133.560785] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3133.565869] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3133.571937] ? kvasprintf+0x101/0x170 [ 3133.571954] ? bust_spinlocks+0xe0/0xe0 [ 3133.571985] ? kasprintf+0xbb/0xf0 [ 3133.572000] ? kvasprintf_const+0x190/0x190 [ 3133.572018] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3133.572035] ? validate_nla+0x28c/0x1580 [ 3133.572061] hwsim_new_radio_nl+0xca6/0x1430 [ 3133.572087] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3133.572127] genl_family_rcv_msg+0x80d/0x11a0 [ 3133.572148] ? genl_unregister_family+0x8a0/0x8a0 [ 3133.583461] ? radix_tree_insert+0x850/0x850 [ 3133.583493] ? netlink_deliver_tap+0x32b/0xf40 [ 3133.583537] genl_rcv_msg+0xca/0x16c [ 3133.583555] netlink_rcv_skb+0x17d/0x410 [ 3133.633192] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3133.637962] ? netlink_ack+0xba0/0xba0 [ 3133.641895] ? __down_interruptible+0x740/0x740 [ 3133.646588] genl_rcv+0x29/0x40 [ 3133.649896] netlink_unicast+0x574/0x770 [ 3133.653982] ? netlink_attachskb+0x980/0x980 [ 3133.658401] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3133.663949] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3133.668983] netlink_sendmsg+0xa05/0xf90 [ 3133.673071] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3133.678630] ? netlink_unicast+0x770/0x770 23:23:07 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00h\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3133.682879] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3133.687734] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3133.692498] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3133.698040] ? security_socket_sendmsg+0x93/0xc0 [ 3133.702803] ? netlink_unicast+0x770/0x770 [ 3133.707069] sock_sendmsg+0xdd/0x130 [ 3133.710789] ___sys_sendmsg+0x7ec/0x910 [ 3133.714807] ? copy_msghdr_from_user+0x570/0x570 [ 3133.719583] ? iterate_fd+0x4b0/0x4b0 [ 3133.723417] ? __might_fault+0x12b/0x1e0 [ 3133.727515] ? find_held_lock+0x35/0x120 [ 3133.731594] ? __might_fault+0x12b/0x1e0 [ 3133.735669] ? __fget_light+0x2db/0x420 [ 3133.739651] ? fget_raw+0x20/0x20 [ 3133.743107] ? lock_release+0xc40/0xc40 [ 3133.743124] ? trace_hardirqs_off_caller+0x300/0x300 [ 3133.743139] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3133.743165] ? __fdget+0x1b/0x20 [ 3133.743179] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3133.743195] ? sockfd_lookup_light+0xc2/0x160 [ 3133.743225] __sys_sendmsg+0x112/0x270 [ 3133.752288] ? __ia32_sys_shutdown+0x80/0x80 [ 3133.752319] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3133.752335] ? trace_hardirqs_off_caller+0x300/0x300 [ 3133.752351] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3133.752369] __x64_sys_sendmsg+0x78/0xb0 [ 3133.752386] do_syscall_64+0x1a3/0x800 [ 3133.752404] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3133.752421] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3133.752442] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3133.752465] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3133.752479] RIP: 0033:0x458089 23:23:07 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00l\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3133.825957] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3133.844869] RSP: 002b:00007f8208072c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3133.852591] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3133.859883] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3133.867151] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 3133.874435] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080736d4 [ 3133.881706] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000003f000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:07 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xb40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3134.042108] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:07 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00t\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3134.090218] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3134.112303] CPU: 0 PID: 19680 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3134.119510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3134.128870] Call Trace: [ 3134.131490] dump_stack+0x1db/0x2d0 [ 3134.135156] ? dump_stack_print_info.cold+0x20/0x20 [ 3134.140187] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3134.145303] sysfs_warn_dup.cold+0x1c/0x31 [ 3134.149554] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3134.149575] sysfs_create_link+0x65/0xc0 [ 3134.149593] device_add+0x78e/0x1800 [ 3134.149610] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3134.149632] ? get_device_parent.isra.0+0x570/0x570 [ 3134.149651] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3134.149681] wiphy_register+0x1abd/0x2760 [ 3134.149706] ? wiphy_unregister+0x1340/0x1340 23:23:07 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00t\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3134.162818] ? rcu_read_lock_sched_held+0x110/0x130 [ 3134.162847] ? __kmalloc+0x5d5/0x740 [ 3134.162863] ? memset+0x32/0x40 [ 3134.199347] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3134.204893] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3134.209846] ieee80211_register_hw+0x15e2/0x3f30 [ 3134.214630] ? hrtimer_init_on_stack+0x1/0x40 [ 3134.219165] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3134.223929] ? kasan_check_write+0x14/0x20 [ 3134.228211] ? tasklet_hrtimer_init+0xfa/0x260 [ 3134.232796] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3134.232811] ? tasklet_kill+0xd0/0xd0 [ 3134.232853] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3134.232885] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3134.252631] ? kvasprintf+0x101/0x170 [ 3134.256436] ? bust_spinlocks+0xe0/0xe0 [ 3134.260430] ? kasprintf+0xbb/0xf0 [ 3134.263993] ? kvasprintf_const+0x190/0x190 [ 3134.268331] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3134.273533] ? validate_nla+0x28c/0x1580 [ 3134.277614] hwsim_new_radio_nl+0xca6/0x1430 [ 3134.282042] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3134.287268] genl_family_rcv_msg+0x80d/0x11a0 [ 3134.291786] ? genl_unregister_family+0x8a0/0x8a0 [ 3134.296649] ? radix_tree_insert+0x850/0x850 [ 3134.301072] ? netlink_deliver_tap+0x32b/0xf40 [ 3134.305710] genl_rcv_msg+0xca/0x16c [ 3134.309438] netlink_rcv_skb+0x17d/0x410 [ 3134.313511] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3134.318276] ? netlink_ack+0xba0/0xba0 [ 3134.322184] ? __down_interruptible+0x740/0x740 [ 3134.326882] genl_rcv+0x29/0x40 [ 3134.330174] netlink_unicast+0x574/0x770 [ 3134.334259] ? netlink_attachskb+0x980/0x980 23:23:07 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00z\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3134.338678] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3134.344720] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3134.349750] netlink_sendmsg+0xa05/0xf90 [ 3134.353818] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3134.359393] ? netlink_unicast+0x770/0x770 [ 3134.363635] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3134.368490] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3134.373256] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3134.378813] ? security_socket_sendmsg+0x93/0xc0 [ 3134.383589] ? netlink_unicast+0x770/0x770 [ 3134.387854] sock_sendmsg+0xdd/0x130 [ 3134.391586] ___sys_sendmsg+0x7ec/0x910 [ 3134.395593] ? copy_msghdr_from_user+0x570/0x570 [ 3134.400360] ? iterate_fd+0x4b0/0x4b0 [ 3134.404183] ? __might_fault+0x12b/0x1e0 [ 3134.408257] ? find_held_lock+0x35/0x120 [ 3134.412332] ? __might_fault+0x12b/0x1e0 [ 3134.416410] ? __fget_light+0x2db/0x420 [ 3134.420394] ? fget_raw+0x20/0x20 [ 3134.423871] ? lock_release+0xc40/0xc40 [ 3134.427945] ? trace_hardirqs_off_caller+0x300/0x300 [ 3134.433085] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3134.438663] ? __fdget+0x1b/0x20 [ 3134.442037] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3134.447587] ? sockfd_lookup_light+0xc2/0x160 [ 3134.452107] __sys_sendmsg+0x112/0x270 [ 3134.456010] ? __ia32_sys_shutdown+0x80/0x80 [ 3134.460448] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3134.465821] ? trace_hardirqs_off_caller+0x300/0x300 [ 3134.470993] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3134.475945] __x64_sys_sendmsg+0x78/0xb0 [ 3134.480021] do_syscall_64+0x1a3/0x800 [ 3134.483964] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3134.488913] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3134.493943] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3134.498806] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3134.504015] RIP: 0033:0x458089 [ 3134.507212] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3134.526117] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3134.533848] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:23:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900003a43000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3134.541127] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3134.548396] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3134.555670] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3134.562947] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6c00, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3134.664319] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3134.710307] CPU: 0 PID: 19707 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3134.717523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3134.726889] Call Trace: [ 3134.729492] dump_stack+0x1db/0x2d0 [ 3134.733162] ? dump_stack_print_info.cold+0x20/0x20 [ 3134.738204] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3134.743342] sysfs_warn_dup.cold+0x1c/0x31 [ 3134.747609] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3134.752988] sysfs_create_link+0x65/0xc0 [ 3134.757063] device_add+0x78e/0x1800 [ 3134.760806] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3134.766213] ? get_device_parent.isra.0+0x570/0x570 [ 3134.771260] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3134.776809] wiphy_register+0x1abd/0x2760 [ 3134.781000] ? wiphy_unregister+0x1340/0x1340 [ 3134.785522] ? rcu_read_lock_sched_held+0x110/0x130 [ 3134.785539] ? __kmalloc+0x5d5/0x740 [ 3134.785555] ? memset+0x32/0x40 [ 3134.785570] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3134.785589] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3134.785622] ieee80211_register_hw+0x15e2/0x3f30 [ 3134.797603] ? hrtimer_init_on_stack+0x1/0x40 [ 3134.797627] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3134.797646] ? kasan_check_write+0x14/0x20 [ 3134.797661] ? tasklet_hrtimer_init+0xfa/0x260 [ 3134.797676] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3134.797691] ? tasklet_kill+0xd0/0xd0 [ 3134.797718] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3134.797749] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3134.812937] ? kvasprintf+0x101/0x170 [ 3134.812954] ? bust_spinlocks+0xe0/0xe0 [ 3134.812999] ? kasprintf+0xbb/0xf0 [ 3134.813030] ? kvasprintf_const+0x190/0x190 [ 3134.822279] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3134.822298] ? validate_nla+0x28c/0x1580 [ 3134.822326] hwsim_new_radio_nl+0xca6/0x1430 [ 3134.880082] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3134.885321] genl_family_rcv_msg+0x80d/0x11a0 [ 3134.889854] ? genl_unregister_family+0x8a0/0x8a0 [ 3134.894801] ? radix_tree_insert+0x850/0x850 [ 3134.899234] ? netlink_deliver_tap+0x32b/0xf40 [ 3134.903826] genl_rcv_msg+0xca/0x16c [ 3134.907557] netlink_rcv_skb+0x17d/0x410 23:23:08 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_user\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x7c774aac) mmap(&(0x7f0000a00000/0x600000)=nil, 0x600000, 0x808003, 0x8013, r0, 0x0) recvmsg$kcm(r0, 0x0, 0x0) openat$cgroup_type(0xffffffffffffffff, 0x0, 0x2, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000002c0)={r0, 0x50, &(0x7f0000000240)}, 0x10) socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0x0, 0x0}) ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000180)={'ifb0\x00', 0x8}) write$cgroup_int(r0, &(0x7f0000000300), 0x12) close(r2) recvmsg$kcm(r1, &(0x7f0000000200)={&(0x7f0000000040)=@ax25, 0x2, &(0x7f0000000000)=[{&(0x7f0000000080)=""/151, 0xffffff77}], 0x1, &(0x7f00000001c0)=""/17, 0xffda}, 0x3f00) [ 3134.911616] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3134.916356] ? netlink_ack+0xba0/0xba0 [ 3134.920245] ? __down_interruptible+0x740/0x740 [ 3134.924945] genl_rcv+0x29/0x40 [ 3134.928250] netlink_unicast+0x574/0x770 [ 3134.932324] ? netlink_attachskb+0x980/0x980 [ 3134.936750] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3134.942304] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3134.947345] netlink_sendmsg+0xa05/0xf90 [ 3134.951407] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3134.956981] ? netlink_unicast+0x770/0x770 23:23:08 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\xa0\x01\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:08 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00z\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:08 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3134.961227] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3134.966077] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3134.970885] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3134.976435] ? security_socket_sendmsg+0x93/0xc0 [ 3134.981200] ? netlink_unicast+0x770/0x770 [ 3134.985448] sock_sendmsg+0xdd/0x130 [ 3134.989171] ___sys_sendmsg+0x7ec/0x910 [ 3134.993168] ? copy_msghdr_from_user+0x570/0x570 [ 3134.993182] ? iterate_fd+0x4b0/0x4b0 [ 3134.993204] ? __might_fault+0x12b/0x1e0 [ 3134.993223] ? find_held_lock+0x35/0x120 [ 3135.005863] ? __might_fault+0x12b/0x1e0 [ 3135.013996] ? __fget_light+0x2db/0x420 [ 3135.017995] ? fget_raw+0x20/0x20 [ 3135.021451] ? lock_release+0xc40/0xc40 [ 3135.025429] ? trace_hardirqs_off_caller+0x300/0x300 [ 3135.030542] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3135.036103] ? __fdget+0x1b/0x20 [ 3135.039478] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3135.045026] ? sockfd_lookup_light+0xc2/0x160 [ 3135.049535] __sys_sendmsg+0x112/0x270 [ 3135.053429] ? __ia32_sys_shutdown+0x80/0x80 [ 3135.057879] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3135.063254] ? trace_hardirqs_off_caller+0x300/0x300 [ 3135.068364] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3135.073135] __x64_sys_sendmsg+0x78/0xb0 [ 3135.077238] do_syscall_64+0x1a3/0x800 [ 3135.081134] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3135.086074] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3135.091108] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3135.095976] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3135.101236] RIP: 0033:0x458089 [ 3135.104433] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3135.123333] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3135.131059] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3135.138337] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3135.145614] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3135.152891] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 23:23:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000048000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3135.160184] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3135.172050] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3135.190624] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:08 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7400, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:08 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x03\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:08 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:08 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3135.341504] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3135.398987] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3135.425481] CPU: 0 PID: 19741 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3135.432688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3135.442044] Call Trace: [ 3135.444675] dump_stack+0x1db/0x2d0 [ 3135.448323] ? dump_stack_print_info.cold+0x20/0x20 [ 3135.453356] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3135.458512] sysfs_warn_dup.cold+0x1c/0x31 [ 3135.462756] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3135.468137] sysfs_create_link+0x65/0xc0 [ 3135.472208] device_add+0x78e/0x1800 [ 3135.475954] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3135.481350] ? get_device_parent.isra.0+0x570/0x570 [ 3135.486381] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3135.491947] wiphy_register+0x1abd/0x2760 23:23:08 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x05\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3135.496119] ? wiphy_unregister+0x1340/0x1340 [ 3135.500636] ? rcu_read_lock_sched_held+0x110/0x130 [ 3135.505667] ? __kmalloc+0x5d5/0x740 [ 3135.509399] ? memset+0x32/0x40 [ 3135.512685] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3135.518246] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3135.523187] ieee80211_register_hw+0x15e2/0x3f30 [ 3135.527954] ? hrtimer_init_on_stack+0x1/0x40 [ 3135.532479] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3135.537293] ? kasan_check_write+0x14/0x20 [ 3135.541547] ? tasklet_hrtimer_init+0xfa/0x260 [ 3135.546137] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3135.550980] ? tasklet_kill+0xd0/0xd0 [ 3135.551010] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3135.551044] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3135.551073] ? kvasprintf+0x101/0x170 [ 3135.551088] ? bust_spinlocks+0xe0/0xe0 [ 3135.551130] ? kasprintf+0xbb/0xf0 [ 3135.551158] ? kvasprintf_const+0x190/0x190 [ 3135.551177] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3135.586904] ? validate_nla+0x28c/0x1580 [ 3135.590988] hwsim_new_radio_nl+0xca6/0x1430 [ 3135.595420] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3135.600648] genl_family_rcv_msg+0x80d/0x11a0 [ 3135.605162] ? genl_unregister_family+0x8a0/0x8a0 [ 3135.610031] ? radix_tree_insert+0x850/0x850 [ 3135.614449] ? netlink_deliver_tap+0x32b/0xf40 [ 3135.619070] genl_rcv_msg+0xca/0x16c [ 3135.622791] netlink_rcv_skb+0x17d/0x410 [ 3135.626878] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3135.631638] ? netlink_ack+0xba0/0xba0 [ 3135.635534] ? __down_interruptible+0x740/0x740 [ 3135.640267] genl_rcv+0x29/0x40 [ 3135.643559] netlink_unicast+0x574/0x770 23:23:08 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x06\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3135.647643] ? netlink_attachskb+0x980/0x980 [ 3135.652065] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3135.657619] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3135.662649] netlink_sendmsg+0xa05/0xf90 [ 3135.666722] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3135.672278] ? netlink_unicast+0x770/0x770 [ 3135.676518] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3135.681385] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3135.686145] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3135.691704] ? security_socket_sendmsg+0x93/0xc0 [ 3135.696461] ? netlink_unicast+0x770/0x770 [ 3135.700724] sock_sendmsg+0xdd/0x130 [ 3135.704472] ___sys_sendmsg+0x7ec/0x910 [ 3135.708457] ? copy_msghdr_from_user+0x570/0x570 [ 3135.713224] ? iterate_fd+0x4b0/0x4b0 [ 3135.717060] ? __might_fault+0x12b/0x1e0 [ 3135.721133] ? find_held_lock+0x35/0x120 [ 3135.725209] ? __might_fault+0x12b/0x1e0 [ 3135.729301] ? __fget_light+0x2db/0x420 [ 3135.733287] ? fget_raw+0x20/0x20 [ 3135.736747] ? lock_release+0xc40/0xc40 [ 3135.740732] ? trace_hardirqs_off_caller+0x300/0x300 [ 3135.745858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3135.751414] ? __fdget+0x1b/0x20 [ 3135.754784] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3135.760333] ? sockfd_lookup_light+0xc2/0x160 [ 3135.764856] __sys_sendmsg+0x112/0x270 [ 3135.768754] ? __ia32_sys_shutdown+0x80/0x80 [ 3135.773188] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3135.778565] ? trace_hardirqs_off_caller+0x300/0x300 [ 3135.783685] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3135.788470] __x64_sys_sendmsg+0x78/0xb0 [ 3135.792539] do_syscall_64+0x1a3/0x800 23:23:09 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3135.796438] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3135.801378] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3135.806408] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3135.811264] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3135.816491] RIP: 0033:0x458089 [ 3135.819732] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3135.838640] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3135.846352] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3135.846363] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3135.860887] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3135.868159] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3135.875440] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:09 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-serpent-avx2\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) r2 = accept$alg(r1, 0x0, 0x0) sendmmsg$alg(r2, &(0x7f00000037c0)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="e43b2e70c12a634e6fd169574b4423aa842f63238b7d23138e328aa471540402", 0x20}], 0x1}], 0x1, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f00000003c0)={r1}) getsockopt$bt_l2cap_L2CAP_LM(r3, 0x6, 0x3, &(0x7f0000000400), &(0x7f0000000440)=0x4) recvmmsg(r2, &(0x7f0000001280)=[{{&(0x7f0000000ec0)=@nl=@proc, 0x4c3, &(0x7f0000001180)=[{&(0x7f0000001080)=""/251, 0xfb}], 0x11, &(0x7f00000011c0)=""/157, 0xfffffffffffffd95}}], 0x1880, 0x0, &(0x7f0000001380)={0x77359400}) 23:23:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000004c000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:09 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7a00, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:09 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:09 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00 \x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:09 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3136.514610] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3136.534080] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3136.550176] CPU: 0 PID: 19792 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3136.557385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3136.566744] Call Trace: [ 3136.569338] dump_stack+0x1db/0x2d0 [ 3136.572977] ? dump_stack_print_info.cold+0x20/0x20 [ 3136.578005] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3136.583116] sysfs_warn_dup.cold+0x1c/0x31 [ 3136.587362] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3136.592730] sysfs_create_link+0x65/0xc0 [ 3136.596795] device_add+0x78e/0x1800 [ 3136.600514] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3136.605903] ? get_device_parent.isra.0+0x570/0x570 [ 3136.610929] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3136.616477] wiphy_register+0x1abd/0x2760 [ 3136.620641] ? wiphy_unregister+0x1340/0x1340 [ 3136.625142] ? rcu_read_lock_sched_held+0x110/0x130 [ 3136.630176] ? __kmalloc+0x5d5/0x740 [ 3136.633902] ? memset+0x32/0x40 [ 3136.637183] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3136.642738] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3136.647672] ieee80211_register_hw+0x15e2/0x3f30 [ 3136.652433] ? hrtimer_init_on_stack+0x1/0x40 [ 3136.656939] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3136.661714] ? kasan_check_write+0x14/0x20 [ 3136.665978] ? tasklet_hrtimer_init+0xfa/0x260 [ 3136.670562] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3136.675406] ? tasklet_kill+0xd0/0xd0 [ 3136.679246] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3136.684281] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3136.690340] ? kvasprintf+0x101/0x170 [ 3136.694155] ? bust_spinlocks+0xe0/0xe0 [ 3136.698141] ? kasprintf+0xbb/0xf0 [ 3136.701678] ? kvasprintf_const+0x190/0x190 [ 3136.706001] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3136.711208] ? validate_nla+0x28c/0x1580 [ 3136.715275] hwsim_new_radio_nl+0xca6/0x1430 [ 3136.719691] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3136.724902] genl_family_rcv_msg+0x80d/0x11a0 [ 3136.729410] ? genl_unregister_family+0x8a0/0x8a0 [ 3136.734276] ? radix_tree_insert+0x850/0x850 [ 3136.738699] ? netlink_deliver_tap+0x32b/0xf40 [ 3136.743318] genl_rcv_msg+0xca/0x16c [ 3136.747035] netlink_rcv_skb+0x17d/0x410 [ 3136.751093] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3136.755862] ? netlink_ack+0xba0/0xba0 [ 3136.759773] ? __down_interruptible+0x740/0x740 [ 3136.764460] genl_rcv+0x29/0x40 [ 3136.767741] netlink_unicast+0x574/0x770 [ 3136.771810] ? netlink_attachskb+0x980/0x980 [ 3136.776235] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3136.781769] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3136.786791] netlink_sendmsg+0xa05/0xf90 [ 3136.790875] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3136.796425] ? netlink_unicast+0x770/0x770 [ 3136.800662] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3136.805513] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3136.810275] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3136.815827] ? security_socket_sendmsg+0x93/0xc0 [ 3136.820604] ? netlink_unicast+0x770/0x770 [ 3136.824885] sock_sendmsg+0xdd/0x130 [ 3136.828604] ___sys_sendmsg+0x7ec/0x910 [ 3136.832585] ? copy_msghdr_from_user+0x570/0x570 [ 3136.837341] ? iterate_fd+0x4b0/0x4b0 [ 3136.841152] ? __might_fault+0x12b/0x1e0 [ 3136.845213] ? find_held_lock+0x35/0x120 [ 3136.849273] ? __might_fault+0x12b/0x1e0 [ 3136.853352] ? __fget_light+0x2db/0x420 [ 3136.857416] ? fget_raw+0x20/0x20 [ 3136.860878] ? lock_release+0xc40/0xc40 [ 3136.864868] ? trace_hardirqs_off_caller+0x300/0x300 [ 3136.869973] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3136.875522] ? __fdget+0x1b/0x20 [ 3136.878893] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3136.884450] ? sockfd_lookup_light+0xc2/0x160 [ 3136.888954] __sys_sendmsg+0x112/0x270 [ 3136.892856] ? __ia32_sys_shutdown+0x80/0x80 [ 3136.897279] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3136.902638] ? trace_hardirqs_off_caller+0x300/0x300 [ 3136.907739] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3136.912495] __x64_sys_sendmsg+0x78/0xb0 [ 3136.916575] do_syscall_64+0x1a3/0x800 [ 3136.920463] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3136.925389] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3136.930411] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3136.935263] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3136.940449] RIP: 0033:0x458089 [ 3136.943640] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3136.962537] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3136.970241] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3136.977508] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3136.984772] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3136.992036] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3136.999303] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000060000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3137.024791] ipvs_mt_check: 33 callbacks suppressed [ 3137.024799] xt_ipvs: protocol family 7 not supported [ 3137.036453] xt_ipvs: protocol family 7 not supported [ 3137.103192] xt_ipvs: protocol family 7 not supported 23:23:10 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:10 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00?\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:10 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xa000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3137.135895] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3137.163879] xt_ipvs: protocol family 7 not supported 23:23:10 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3137.261813] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3137.291675] CPU: 0 PID: 19817 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3137.298887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3137.308239] Call Trace: [ 3137.308265] dump_stack+0x1db/0x2d0 [ 3137.308287] ? dump_stack_print_info.cold+0x20/0x20 [ 3137.308310] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3137.308337] sysfs_warn_dup.cold+0x1c/0x31 [ 3137.308361] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3137.308380] sysfs_create_link+0x65/0xc0 [ 3137.314580] device_add+0x78e/0x1800 [ 3137.314596] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3137.314616] ? get_device_parent.isra.0+0x570/0x570 [ 3137.352421] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 23:23:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000068000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3137.357521] xt_ipvs: protocol family 7 not supported [ 3137.358006] wiphy_register+0x1abd/0x2760 [ 3137.358052] ? wiphy_unregister+0x1340/0x1340 [ 3137.358071] ? rcu_read_lock_sched_held+0x110/0x130 [ 3137.377008] ? __kmalloc+0x5d5/0x740 [ 3137.380735] ? memset+0x32/0x40 [ 3137.384020] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3137.389565] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3137.394521] ieee80211_register_hw+0x15e2/0x3f30 [ 3137.399306] ? hrtimer_init_on_stack+0x1/0x40 [ 3137.403818] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3137.403853] ? kasan_check_write+0x14/0x20 [ 3137.403870] ? tasklet_hrtimer_init+0xfa/0x260 [ 3137.403889] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3137.422299] ? tasklet_kill+0xd0/0xd0 [ 3137.422345] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3137.422381] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3137.422395] ? kvasprintf+0x101/0x170 [ 3137.422410] ? bust_spinlocks+0xe0/0xe0 [ 3137.427638] xt_ipvs: protocol family 7 not supported [ 3137.431224] ? kasprintf+0xbb/0xf0 [ 3137.431243] ? kvasprintf_const+0x190/0x190 [ 3137.458005] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3137.463205] ? validate_nla+0x28c/0x1580 [ 3137.467294] hwsim_new_radio_nl+0xca6/0x1430 [ 3137.471717] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3137.476954] genl_family_rcv_msg+0x80d/0x11a0 [ 3137.481467] ? genl_unregister_family+0x8a0/0x8a0 [ 3137.486332] ? radix_tree_insert+0x850/0x850 [ 3137.490752] ? netlink_deliver_tap+0x32b/0xf40 [ 3137.495367] genl_rcv_msg+0xca/0x16c [ 3137.499092] netlink_rcv_skb+0x17d/0x410 [ 3137.499109] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3137.499125] ? netlink_ack+0xba0/0xba0 [ 3137.499146] ? __down_interruptible+0x740/0x740 [ 3137.499170] genl_rcv+0x29/0x40 [ 3137.499183] netlink_unicast+0x574/0x770 [ 3137.499203] ? netlink_attachskb+0x980/0x980 [ 3137.499219] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3137.499233] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3137.499252] netlink_sendmsg+0xa05/0xf90 [ 3137.499265] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3137.499286] ? netlink_unicast+0x770/0x770 [ 3137.508084] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3137.508107] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3137.508122] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3137.508139] ? security_socket_sendmsg+0x93/0xc0 [ 3137.508153] ? netlink_unicast+0x770/0x770 [ 3137.508175] sock_sendmsg+0xdd/0x130 [ 3137.580587] ___sys_sendmsg+0x7ec/0x910 [ 3137.584583] ? copy_msghdr_from_user+0x570/0x570 [ 3137.589352] ? iterate_fd+0x4b0/0x4b0 [ 3137.593191] ? __might_fault+0x12b/0x1e0 [ 3137.597287] ? find_held_lock+0x35/0x120 [ 3137.601360] ? __might_fault+0x12b/0x1e0 [ 3137.605437] ? __fget_light+0x2db/0x420 [ 3137.609411] ? fget_raw+0x20/0x20 [ 3137.612862] ? lock_release+0xc40/0xc40 [ 3137.616853] ? trace_hardirqs_off_caller+0x300/0x300 [ 3137.621976] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3137.627519] ? __fdget+0x1b/0x20 [ 3137.630896] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3137.636438] ? sockfd_lookup_light+0xc2/0x160 [ 3137.640935] __sys_sendmsg+0x112/0x270 [ 3137.644854] ? __ia32_sys_shutdown+0x80/0x80 [ 3137.649297] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3137.654673] ? trace_hardirqs_off_caller+0x300/0x300 [ 3137.659779] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3137.664542] __x64_sys_sendmsg+0x78/0xb0 [ 3137.668603] do_syscall_64+0x1a3/0x800 [ 3137.672481] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3137.677413] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3137.682444] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3137.687292] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3137.692473] RIP: 0033:0x458089 [ 3137.695650] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3137.714543] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3137.722245] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3137.729514] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3137.736774] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3137.744043] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3137.751414] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:11 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:11 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00@\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:11 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xff0f, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000006c000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:11 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3137.927507] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3137.953138] xt_ipvs: protocol family 7 not supported [ 3137.967140] xt_ipvs: protocol family 7 not supported [ 3137.967265] CPU: 0 PID: 19850 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3137.979451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3137.988805] Call Trace: [ 3137.991418] dump_stack+0x1db/0x2d0 [ 3137.995091] ? dump_stack_print_info.cold+0x20/0x20 [ 3138.000123] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3138.001629] xt_ipvs: protocol family 7 not supported [ 3138.005256] sysfs_warn_dup.cold+0x1c/0x31 [ 3138.005276] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3138.005295] sysfs_create_link+0x65/0xc0 [ 3138.005328] device_add+0x78e/0x1800 23:23:11 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00H\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3138.027752] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3138.033126] ? get_device_parent.isra.0+0x570/0x570 [ 3138.038186] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3138.043742] wiphy_register+0x1abd/0x2760 [ 3138.047916] ? wiphy_unregister+0x1340/0x1340 [ 3138.052423] ? rcu_read_lock_sched_held+0x110/0x130 [ 3138.057449] ? __kmalloc+0x5d5/0x740 [ 3138.061170] ? memset+0x32/0x40 [ 3138.064476] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3138.070027] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3138.074976] ieee80211_register_hw+0x15e2/0x3f30 [ 3138.079753] ? hrtimer_init_on_stack+0x1/0x40 [ 3138.084257] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3138.089038] ? kasan_check_write+0x14/0x20 [ 3138.093275] ? tasklet_hrtimer_init+0xfa/0x260 [ 3138.097874] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3138.102721] ? tasklet_kill+0xd0/0xd0 [ 3138.106537] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3138.111611] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3138.117683] ? kvasprintf+0x101/0x170 [ 3138.121492] ? bust_spinlocks+0xe0/0xe0 [ 3138.125485] ? kasprintf+0xbb/0xf0 [ 3138.129041] ? kvasprintf_const+0x190/0x190 [ 3138.133375] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3138.138585] ? validate_nla+0x28c/0x1580 [ 3138.140643] xt_ipvs: protocol family 7 not supported [ 3138.142666] hwsim_new_radio_nl+0xca6/0x1430 [ 3138.142689] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3138.157406] genl_family_rcv_msg+0x80d/0x11a0 [ 3138.161913] ? genl_unregister_family+0x8a0/0x8a0 [ 3138.166774] ? radix_tree_insert+0x850/0x850 [ 3138.171189] ? netlink_deliver_tap+0x32b/0xf40 23:23:11 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00L\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3138.175800] genl_rcv_msg+0xca/0x16c [ 3138.179554] netlink_rcv_skb+0x17d/0x410 [ 3138.183616] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3138.188377] ? netlink_ack+0xba0/0xba0 [ 3138.192289] ? __down_interruptible+0x740/0x740 [ 3138.196967] genl_rcv+0x29/0x40 [ 3138.200245] netlink_unicast+0x574/0x770 [ 3138.204314] ? netlink_attachskb+0x980/0x980 [ 3138.208733] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3138.214282] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3138.219344] netlink_sendmsg+0xa05/0xf90 [ 3138.223423] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3138.228971] ? netlink_unicast+0x770/0x770 [ 3138.233221] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3138.238084] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3138.242872] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3138.248419] ? security_socket_sendmsg+0x93/0xc0 [ 3138.253185] ? netlink_unicast+0x770/0x770 [ 3138.257435] sock_sendmsg+0xdd/0x130 [ 3138.261158] ___sys_sendmsg+0x7ec/0x910 [ 3138.265186] ? copy_msghdr_from_user+0x570/0x570 [ 3138.269951] ? iterate_fd+0x4b0/0x4b0 [ 3138.273772] ? __might_fault+0x12b/0x1e0 23:23:11 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00`\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3138.277857] ? find_held_lock+0x35/0x120 [ 3138.281945] ? __might_fault+0x12b/0x1e0 [ 3138.286019] ? __fget_light+0x2db/0x420 [ 3138.290060] ? fget_raw+0x20/0x20 [ 3138.293539] ? lock_release+0xc40/0xc40 [ 3138.297526] ? trace_hardirqs_off_caller+0x300/0x300 [ 3138.302637] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3138.308198] ? __fdget+0x1b/0x20 [ 3138.311586] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3138.317154] ? sockfd_lookup_light+0xc2/0x160 [ 3138.321672] __sys_sendmsg+0x112/0x270 [ 3138.325592] ? __ia32_sys_shutdown+0x80/0x80 [ 3138.330057] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3138.335449] ? trace_hardirqs_off_caller+0x300/0x300 [ 3138.340569] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3138.345816] __x64_sys_sendmsg+0x78/0xb0 [ 3138.349911] do_syscall_64+0x1a3/0x800 [ 3138.353812] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3138.358776] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3138.363805] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3138.368681] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3138.373927] RIP: 0033:0x458089 23:23:11 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00h\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3138.377127] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3138.396049] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3138.403765] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3138.411038] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3138.418327] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3138.425598] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3138.425610] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3138.463236] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3138.484035] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3138.505059] CPU: 0 PID: 19847 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3138.512278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3138.521636] Call Trace: [ 3138.524237] dump_stack+0x1db/0x2d0 [ 3138.527890] ? dump_stack_print_info.cold+0x20/0x20 [ 3138.532958] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3138.538079] sysfs_warn_dup.cold+0x1c/0x31 [ 3138.542331] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3138.547723] sysfs_create_link+0x65/0xc0 [ 3138.551801] device_add+0x78e/0x1800 [ 3138.555555] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3138.560941] ? get_device_parent.isra.0+0x570/0x570 [ 3138.565967] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3138.571528] wiphy_register+0x1abd/0x2760 [ 3138.575716] ? wiphy_unregister+0x1340/0x1340 [ 3138.580216] ? rcu_read_lock_sched_held+0x110/0x130 [ 3138.585219] ? __kmalloc+0x5d5/0x740 [ 3138.588951] ? memset+0x32/0x40 [ 3138.592239] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3138.597777] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3138.602695] ieee80211_register_hw+0x15e2/0x3f30 [ 3138.607439] ? hrtimer_init_on_stack+0x1/0x40 [ 3138.611923] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3138.616709] ? kasan_check_write+0x14/0x20 [ 3138.620932] ? tasklet_hrtimer_init+0xfa/0x260 [ 3138.625529] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3138.630371] ? tasklet_kill+0xd0/0xd0 [ 3138.634184] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3138.639228] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3138.645270] ? kvasprintf+0x101/0x170 [ 3138.649069] ? bust_spinlocks+0xe0/0xe0 [ 3138.653035] ? kasprintf+0xbb/0xf0 [ 3138.656579] ? kvasprintf_const+0x190/0x190 [ 3138.660907] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3138.666081] ? validate_nla+0x28c/0x1580 [ 3138.670130] hwsim_new_radio_nl+0xca6/0x1430 [ 3138.674543] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3138.679729] genl_family_rcv_msg+0x80d/0x11a0 [ 3138.684213] ? genl_unregister_family+0x8a0/0x8a0 [ 3138.689095] ? radix_tree_insert+0x850/0x850 [ 3138.693535] ? netlink_deliver_tap+0x32b/0xf40 [ 3138.698156] genl_rcv_msg+0xca/0x16c [ 3138.701879] netlink_rcv_skb+0x17d/0x410 [ 3138.705929] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3138.710680] ? netlink_ack+0xba0/0xba0 [ 3138.714566] ? __down_interruptible+0x740/0x740 [ 3138.719221] genl_rcv+0x29/0x40 [ 3138.722484] netlink_unicast+0x574/0x770 [ 3138.726544] ? netlink_attachskb+0x980/0x980 [ 3138.730960] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3138.736520] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3138.741531] netlink_sendmsg+0xa05/0xf90 [ 3138.745617] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3138.751174] ? netlink_unicast+0x770/0x770 [ 3138.755398] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3138.760274] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3138.765029] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3138.770551] ? security_socket_sendmsg+0x93/0xc0 [ 3138.775292] ? netlink_unicast+0x770/0x770 [ 3138.779513] sock_sendmsg+0xdd/0x130 [ 3138.783214] ___sys_sendmsg+0x7ec/0x910 [ 3138.787191] ? copy_msghdr_from_user+0x570/0x570 [ 3138.791934] ? iterate_fd+0x4b0/0x4b0 [ 3138.795736] ? __might_fault+0x12b/0x1e0 [ 3138.799787] ? find_held_lock+0x35/0x120 [ 3138.803845] ? __might_fault+0x12b/0x1e0 [ 3138.807911] ? __fget_light+0x2db/0x420 [ 3138.811872] ? fget_raw+0x20/0x20 [ 3138.815326] ? lock_release+0xc40/0xc40 [ 3138.819289] ? trace_hardirqs_off_caller+0x300/0x300 [ 3138.824400] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3138.829940] ? __fdget+0x1b/0x20 [ 3138.833307] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3138.838838] ? sockfd_lookup_light+0xc2/0x160 [ 3138.843339] __sys_sendmsg+0x112/0x270 [ 3138.847222] ? __ia32_sys_shutdown+0x80/0x80 [ 3138.851633] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3138.856983] ? trace_hardirqs_off_caller+0x300/0x300 [ 3138.862082] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3138.866822] __x64_sys_sendmsg+0x78/0xb0 [ 3138.870899] do_syscall_64+0x1a3/0x800 [ 3138.874773] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3138.879699] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3138.884736] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3138.889622] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3138.894825] RIP: 0033:0x458089 [ 3138.898015] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3138.916900] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3138.924596] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:23:12 executing program 3: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r0, 0x5) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) write(r0, &(0x7f0000000280)="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", 0xfffffd90) shutdown(r1, 0x1) ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000)) sendto$inet6(r1, &(0x7f00000001c0)="8f", 0x1, 0x0, 0x0, 0x0) [ 3138.931894] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3138.939165] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3138.946422] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3138.953674] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:12 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:12 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00l\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:12 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x30000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000074000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:12 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x11000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:12 executing program 3: ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$IP_VS_SO_SET_EDIT(r0, 0x0, 0x483, &(0x7f0000000140)={0xbf, @rand_addr=0x5e, 0x4e24, 0x3, 'lblcr\x00', 0x1, 0x80000001, 0x70}, 0x2c) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'bpq0\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0xc, 0x1a665ac491d0dac0, &(0x7f0000000240)=ANY=[@ANYBLOB="85000800150000800f000900000000009500dd2fa1c25df1"], &(0x7f0000000280)='GPL\x00\x83\xff\x13\x0f_\xb0\x0e][dCT\xb6\xe2\x84v\xf8P\x0e_\a\x0e\xd6S>*\xe1\x06\xbee\\lRcI!l0\xbb\x1f\x80\xfbE\x0e\xc0\xd5\xbe', 0x1, 0xfffffffffffffd00, &(0x7f0000000180)=""/153, 0x0, 0x0, [], r1}, 0xfffffffffffffdfe) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000000c0)='vlan0\x00', 0x10) [ 3139.176205] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:12 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00t\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3139.267148] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3139.292554] CPU: 0 PID: 19901 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3139.299784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3139.309134] Call Trace: [ 3139.311742] dump_stack+0x1db/0x2d0 23:23:12 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070") r1 = socket$alg(0x26, 0x5, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='memory.swap.current\x00', 0x0, 0x0) clock_gettime(0x0, &(0x7f0000001e80)={0x0, 0x0}) recvmmsg(r0, &(0x7f0000002080)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000540)=""/7, 0x7}, {&(0x7f0000000580)=""/194, 0xc2}, {&(0x7f0000000680)=""/216, 0xd8}], 0x3, &(0x7f00000007c0)=""/248, 0xf8}, 0xfffffffffffff351}, {{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000008c0)=""/80, 0x50}], 0x1, &(0x7f0000000980)=""/133, 0x85}, 0x7fff}, {{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000000a40)=""/41, 0x29}, {&(0x7f0000000a80)=""/105, 0x69}, {&(0x7f0000000b00)=""/238, 0xee}], 0x3}, 0xfd91}, {{&(0x7f0000000c40)=@vsock, 0x80, &(0x7f0000000e00)=[{&(0x7f0000000cc0)=""/30, 0x1e}, {&(0x7f0000000d00)=""/51, 0x33}, {&(0x7f0000000d40)=""/170, 0xaa}], 0x3, &(0x7f0000000e40)=""/204, 0xcc}, 0x5}, {{&(0x7f0000000f40)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000001080)=[{&(0x7f0000000fc0)=""/182, 0xb6}], 0x1}}, {{&(0x7f00000010c0)=@generic, 0x80, &(0x7f0000001480)=[{&(0x7f0000001140)=""/38, 0x26}, {&(0x7f0000001180)=""/122, 0x7a}, {&(0x7f0000001200)=""/37, 0x25}, {&(0x7f0000001240)=""/199, 0xc7}, {&(0x7f0000001340)=""/75, 0x4b}, {&(0x7f00000013c0)=""/89, 0x59}, {&(0x7f0000001440)=""/32, 0x20}], 0x7}, 0x58245008}, {{&(0x7f0000001500)=@pppoe={0x18, 0x0, {0x0, @broadcast}}, 0x80, &(0x7f0000001900)=[{&(0x7f0000001580)=""/23, 0x17}, {&(0x7f00000015c0)=""/233, 0xe9}, {&(0x7f00000016c0)=""/71, 0x47}, {&(0x7f0000001740)=""/239, 0xef}, {&(0x7f0000001840)=""/176, 0xb0}], 0x5, &(0x7f0000001980)=""/228, 0xe4}}, {{&(0x7f0000001b80)=@ipx, 0x80, &(0x7f0000001e40)=[{&(0x7f0000001c00)=""/83, 0x53}, {&(0x7f0000001c80)=""/65, 0x41}, {&(0x7f0000001d40)=""/215, 0xd7}], 0x3}, 0xffffffffffffffe0}], 0x8, 0x40, &(0x7f0000001ec0)={r3, r4+30000000}) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00') sendmsg$TIPC_NL_LINK_GET(r2, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800020}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0xe0, r5, 0x401, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x58, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @broadcast}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x2, @empty, 0xfffffffffffffffd}}}}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xaf12}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}]}]}, @TIPC_NLA_NET={0x60, 0x7, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x10001}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2b74}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x80000000}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x80}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x40}]}, @TIPC_NLA_MEDIA={0x14, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x20000840}, 0x24040005) recvmmsg(0xffffffffffffffff, &(0x7f0000003440)=[{{0x0, 0x0, &(0x7f0000002040)=[{0x0}, {&(0x7f00000004c0)=""/71, 0x47}], 0x2}}, {{0x0, 0x0, &(0x7f0000001b40)=[{&(0x7f0000001a80)=""/192, 0xc0}], 0x1}}], 0x2, 0x0, 0x0) bind$alg(r1, &(0x7f0000000340)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000001c0)="e180db4e3b23cdde86a3b7ae4fdb961983a44c4bca5351a6904cf9b053d46ee6", 0x20) ioctl$IMHOLD_L1(r0, 0x80044948, &(0x7f0000000000)=0x8) setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000480)=0x7, 0x4) getsockopt$inet6_int(r2, 0x29, 0xcf, &(0x7f0000000400), &(0x7f0000000440)=0x4) r6 = accept4(r1, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFBR(r6, 0x8940, &(0x7f00000000c0)=@add_del={0x2, &(0x7f0000000080)='hwsim0\x00'}) recvmmsg(r6, &(0x7f0000001bc0), 0xfe, 0x0, &(0x7f0000001d00)={0x77359400}) [ 3139.315399] ? dump_stack_print_info.cold+0x20/0x20 [ 3139.320433] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3139.325559] sysfs_warn_dup.cold+0x1c/0x31 [ 3139.329810] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3139.335210] sysfs_create_link+0x65/0xc0 [ 3139.339314] device_add+0x78e/0x1800 [ 3139.343029] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3139.348409] ? get_device_parent.isra.0+0x570/0x570 [ 3139.353439] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3139.359001] wiphy_register+0x1abd/0x2760 [ 3139.363176] ? wiphy_unregister+0x1340/0x1340 [ 3139.367699] ? rcu_read_lock_sched_held+0x110/0x130 [ 3139.372727] ? __kmalloc+0x5d5/0x740 [ 3139.376453] ? memset+0x32/0x40 [ 3139.379739] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3139.385335] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3139.390298] ieee80211_register_hw+0x15e2/0x3f30 [ 3139.395076] ? hrtimer_init_on_stack+0x1/0x40 [ 3139.399591] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3139.404360] ? kasan_check_write+0x14/0x20 [ 3139.408602] ? tasklet_hrtimer_init+0xfa/0x260 [ 3139.413178] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3139.418021] ? tasklet_kill+0xd0/0xd0 [ 3139.421866] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3139.426946] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3139.433018] ? kvasprintf+0x101/0x170 [ 3139.436848] ? bust_spinlocks+0xe0/0xe0 [ 3139.440879] ? kasprintf+0xbb/0xf0 [ 3139.444459] ? kvasprintf_const+0x190/0x190 [ 3139.448781] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3139.453978] ? validate_nla+0x28c/0x1580 [ 3139.458063] hwsim_new_radio_nl+0xca6/0x1430 [ 3139.462494] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3139.467730] genl_family_rcv_msg+0x80d/0x11a0 [ 3139.472245] ? genl_unregister_family+0x8a0/0x8a0 [ 3139.477122] ? radix_tree_insert+0x850/0x850 [ 3139.481554] ? netlink_deliver_tap+0x32b/0xf40 [ 3139.486207] genl_rcv_msg+0xca/0x16c [ 3139.489940] netlink_rcv_skb+0x17d/0x410 [ 3139.494012] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3139.498779] ? netlink_ack+0xba0/0xba0 [ 3139.502678] ? __down_interruptible+0x740/0x740 [ 3139.507355] genl_rcv+0x29/0x40 [ 3139.510641] netlink_unicast+0x574/0x770 23:23:12 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00z\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3139.514711] ? netlink_attachskb+0x980/0x980 [ 3139.519162] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3139.524728] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3139.529761] netlink_sendmsg+0xa05/0xf90 [ 3139.533848] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3139.539404] ? netlink_unicast+0x770/0x770 [ 3139.539421] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3139.539441] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3139.539456] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3139.539473] ? security_socket_sendmsg+0x93/0xc0 [ 3139.548538] ? netlink_unicast+0x770/0x770 [ 3139.548558] sock_sendmsg+0xdd/0x130 [ 3139.548577] ___sys_sendmsg+0x7ec/0x910 [ 3139.548600] ? copy_msghdr_from_user+0x570/0x570 [ 3139.548614] ? iterate_fd+0x4b0/0x4b0 [ 3139.548636] ? __might_fault+0x12b/0x1e0 [ 3139.548652] ? find_held_lock+0x35/0x120 [ 3139.548667] ? __might_fault+0x12b/0x1e0 [ 3139.548686] ? __fget_light+0x2db/0x420 [ 3139.548702] ? fget_raw+0x20/0x20 [ 3139.548716] ? lock_release+0xc40/0xc40 [ 3139.548732] ? trace_hardirqs_off_caller+0x300/0x300 [ 3139.548747] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3139.618485] ? __fdget+0x1b/0x20 [ 3139.621868] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3139.627415] ? sockfd_lookup_light+0xc2/0x160 [ 3139.631920] __sys_sendmsg+0x112/0x270 [ 3139.635822] ? __ia32_sys_shutdown+0x80/0x80 [ 3139.640276] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3139.645652] ? trace_hardirqs_off_caller+0x300/0x300 [ 3139.650768] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3139.655529] __x64_sys_sendmsg+0x78/0xb0 [ 3139.659600] do_syscall_64+0x1a3/0x800 [ 3139.663493] ? syscall_return_slowpath+0x5f0/0x5f0 23:23:12 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3139.668429] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3139.673456] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3139.678332] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3139.683523] RIP: 0033:0x458089 [ 3139.686722] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3139.705643] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3139.713358] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3139.720649] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3139.727927] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3139.735251] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3139.742529] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:13 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000007a000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3139.798873] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3139.815582] CPU: 0 PID: 19901 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3139.822788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3139.832134] Call Trace: [ 3139.832154] dump_stack+0x1db/0x2d0 [ 3139.832189] ? dump_stack_print_info.cold+0x20/0x20 [ 3139.832209] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3139.832234] sysfs_warn_dup.cold+0x1c/0x31 [ 3139.832271] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3139.832303] sysfs_create_link+0x65/0xc0 [ 3139.832321] device_add+0x78e/0x1800 [ 3139.832336] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3139.832356] ? get_device_parent.isra.0+0x570/0x570 [ 3139.832372] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3139.881883] wiphy_register+0x1abd/0x2760 [ 3139.886059] ? wiphy_unregister+0x1340/0x1340 [ 3139.890584] ? rcu_read_lock_sched_held+0x110/0x130 [ 3139.895609] ? __kmalloc+0x5d5/0x740 [ 3139.899333] ? memset+0x32/0x40 [ 3139.902622] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3139.908163] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3139.913083] ieee80211_register_hw+0x15e2/0x3f30 [ 3139.917862] ? hrtimer_init_on_stack+0x1/0x40 [ 3139.922376] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3139.927139] ? kasan_check_write+0x14/0x20 [ 3139.931374] ? tasklet_hrtimer_init+0xfa/0x260 [ 3139.935945] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3139.940782] ? tasklet_kill+0xd0/0xd0 [ 3139.944595] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3139.949605] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3139.955647] ? kvasprintf+0x101/0x170 [ 3139.959432] ? bust_spinlocks+0xe0/0xe0 [ 3139.963399] ? kasprintf+0xbb/0xf0 [ 3139.966925] ? kvasprintf_const+0x190/0x190 [ 3139.971245] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3139.976441] ? validate_nla+0x28c/0x1580 [ 3139.980517] hwsim_new_radio_nl+0xca6/0x1430 [ 3139.984915] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3139.990103] genl_family_rcv_msg+0x80d/0x11a0 [ 3139.994586] ? genl_unregister_family+0x8a0/0x8a0 [ 3139.999431] ? radix_tree_insert+0x850/0x850 [ 3140.003861] ? netlink_deliver_tap+0x32b/0xf40 [ 3140.008464] genl_rcv_msg+0xca/0x16c [ 3140.012197] netlink_rcv_skb+0x17d/0x410 [ 3140.016244] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3140.021011] ? netlink_ack+0xba0/0xba0 [ 3140.024898] ? __down_interruptible+0x740/0x740 [ 3140.029555] genl_rcv+0x29/0x40 [ 3140.032818] netlink_unicast+0x574/0x770 [ 3140.036891] ? netlink_attachskb+0x980/0x980 [ 3140.041298] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3140.046820] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3140.051861] netlink_sendmsg+0xa05/0xf90 [ 3140.055937] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3140.061462] ? netlink_unicast+0x770/0x770 [ 3140.065685] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3140.070537] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3140.075276] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3140.080813] ? security_socket_sendmsg+0x93/0xc0 [ 3140.085564] ? netlink_unicast+0x770/0x770 [ 3140.089801] sock_sendmsg+0xdd/0x130 [ 3140.093548] ___sys_sendmsg+0x7ec/0x910 [ 3140.097511] ? copy_msghdr_from_user+0x570/0x570 [ 3140.102253] ? iterate_fd+0x4b0/0x4b0 [ 3140.106042] ? __might_fault+0x12b/0x1e0 [ 3140.110092] ? find_held_lock+0x35/0x120 [ 3140.114140] ? __might_fault+0x12b/0x1e0 [ 3140.118204] ? __fget_light+0x2db/0x420 [ 3140.122164] ? fget_raw+0x20/0x20 [ 3140.125643] ? lock_release+0xc40/0xc40 [ 3140.129602] ? trace_hardirqs_off_caller+0x300/0x300 [ 3140.134687] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3140.140214] ? __fdget+0x1b/0x20 [ 3140.143563] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3140.149099] ? sockfd_lookup_light+0xc2/0x160 [ 3140.153577] __sys_sendmsg+0x112/0x270 [ 3140.157447] ? __ia32_sys_shutdown+0x80/0x80 [ 3140.161863] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3140.167284] ? trace_hardirqs_off_caller+0x300/0x300 [ 3140.172381] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3140.177149] __x64_sys_sendmsg+0x78/0xb0 [ 3140.181196] do_syscall_64+0x1a3/0x800 [ 3140.185068] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3140.189999] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3140.195005] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3140.199846] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3140.205020] RIP: 0033:0x458089 [ 3140.208220] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3140.227147] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3140.234896] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3140.242170] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 23:23:13 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x01\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3140.249425] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3140.256685] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3140.263959] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:13 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x05\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:13 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x18020000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3140.305015] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:13 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070") pipe(&(0x7f0000000000)={0xffffffffffffffff}) ioctl$PPPIOCGCHAN(r2, 0x80047437, &(0x7f0000000080)) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x400200007fe, &(0x7f00000002c0)={0x2, 0x10084e23, @local}, 0x10) write$binfmt_elf64(r0, &(0x7f00000016c0)=ANY=[@ANYRES64, @ANYRESDEC, @ANYRES16], 0xffffffe6) recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000001700)=""/4096, 0x1000}], 0x1, 0x0, 0x0, 0x31010000}, 0x1ffe) 23:23:13 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83816, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:13 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:13 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000081000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3140.531469] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3140.571264] CPU: 0 PID: 19959 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 23:23:13 executing program 3: pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) bind$rds(r1, &(0x7f0000000140)={0x2, 0x10004e20, @remote}, 0xfffffffffffffe22) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hul\x04!\x00\x00\x00\x00\x00\x00age_ir_Z\xa2\xf4es\x00', 0x275a, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001a00)={r2, 0x28, &(0x7f00000019c0)}, 0x10) connect$x25(r0, &(0x7f00000017c0)={0x9, @null=' \x00'}, 0x12) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000001a80)={0x0, @initdev, @remote}, &(0x7f0000001ac0)=0xc) setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000001b00)={r3, 0x1, 0x6}, 0x10) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000001b40)={0x0, @in6={{0xa, 0x4e20, 0x1, @mcast2, 0x3400000}}, 0x9, 0x100000001, 0x2, 0x3, 0xa0}, &(0x7f0000001c00)=0x98) setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r2, 0x84, 0x5, &(0x7f0000001c40)={r4, @in6={{0xa, 0x4e22, 0x100000001, @dev={0xfe, 0x80, [], 0xe}}}}, 0x84) write$cgroup_int(r2, &(0x7f0000000000), 0xffd2) mmap$xdp(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000005, 0x80010, r2, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.events\x00', 0x275a, 0x0) write$cgroup_int(r5, &(0x7f0000000380), 0x10076) read(r2, &(0x7f0000001900)=""/183, 0xb7) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f00000000c0)={0x0, r5, 0x0, 0x2}) sendmsg$rds(r1, &(0x7f00000018c0)={&(0x7f0000000180)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000001700)=[{&(0x7f00000001c0)=""/243, 0xf3}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000002c0)=""/88, 0x58}, {&(0x7f00000013c0)=""/96, 0x60}, {&(0x7f0000001440)=""/77, 0x4d}, {&(0x7f0000000340)=""/27, 0x1b}, {&(0x7f00000014c0)=""/168, 0xa8}, {&(0x7f0000001580)=""/165, 0xa5}, {&(0x7f0000001640)=""/164, 0xa4}], 0x9, &(0x7f0000001840)=ANY=[@ANYBLOB="580000000000000014010000070000006508000000000000", @ANYPTR=&(0x7f0000001a40)=ANY=[@ANYBLOB='\x00\x00'], @ANYPTR=&(0x7f0000001800)=ANY=[@ANYBLOB="0000008000000000"], @ANYBLOB="ff0000000000000003000000000000001f00000000000000c4b2000000dc080000000000000000004000000000000000"], 0x58, 0x4000000}, 0x24000000) [ 3140.578472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3140.587875] Call Trace: [ 3140.590486] dump_stack+0x1db/0x2d0 [ 3140.594146] ? dump_stack_print_info.cold+0x20/0x20 [ 3140.599192] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3140.604298] sysfs_warn_dup.cold+0x1c/0x31 [ 3140.608531] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3140.613902] sysfs_create_link+0x65/0xc0 [ 3140.617987] device_add+0x78e/0x1800 [ 3140.618003] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3140.618026] ? get_device_parent.isra.0+0x570/0x570 [ 3140.618045] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3140.618104] wiphy_register+0x1abd/0x2760 [ 3140.618127] ? wiphy_unregister+0x1340/0x1340 [ 3140.627218] ? rcu_read_lock_sched_held+0x110/0x130 [ 3140.627236] ? __kmalloc+0x5d5/0x740 [ 3140.627253] ? memset+0x32/0x40 [ 3140.627268] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3140.627287] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3140.627307] ieee80211_register_hw+0x15e2/0x3f30 [ 3140.627328] ? hrtimer_init_on_stack+0x1/0x40 [ 3140.627351] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3140.627369] ? kasan_check_write+0x14/0x20 [ 3140.627388] ? tasklet_hrtimer_init+0xfa/0x260 [ 3140.691749] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3140.696594] ? tasklet_kill+0xd0/0xd0 [ 3140.700414] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3140.705465] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3140.711541] ? kvasprintf+0x101/0x170 [ 3140.715342] ? bust_spinlocks+0xe0/0xe0 [ 3140.719332] ? kasprintf+0xbb/0xf0 [ 3140.722889] ? kvasprintf_const+0x190/0x190 [ 3140.727234] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3140.732429] ? validate_nla+0x28c/0x1580 [ 3140.736504] hwsim_new_radio_nl+0xca6/0x1430 [ 3140.740922] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3140.746179] genl_family_rcv_msg+0x80d/0x11a0 [ 3140.750686] ? genl_unregister_family+0x8a0/0x8a0 [ 3140.755536] ? radix_tree_insert+0x850/0x850 [ 3140.759964] ? netlink_deliver_tap+0x32b/0xf40 [ 3140.764575] genl_rcv_msg+0xca/0x16c [ 3140.768296] netlink_rcv_skb+0x17d/0x410 [ 3140.772358] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3140.777131] ? netlink_ack+0xba0/0xba0 [ 3140.781025] ? __down_interruptible+0x740/0x740 [ 3140.785705] genl_rcv+0x29/0x40 [ 3140.788987] netlink_unicast+0x574/0x770 [ 3140.793055] ? netlink_attachskb+0x980/0x980 [ 3140.797471] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3140.803006] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3140.808060] netlink_sendmsg+0xa05/0xf90 [ 3140.812119] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3140.817662] ? netlink_unicast+0x770/0x770 [ 3140.821896] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3140.826744] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3140.831500] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3140.837037] ? security_socket_sendmsg+0x93/0xc0 [ 3140.841791] ? netlink_unicast+0x770/0x770 [ 3140.846034] sock_sendmsg+0xdd/0x130 [ 3140.849752] ___sys_sendmsg+0x7ec/0x910 [ 3140.853735] ? copy_msghdr_from_user+0x570/0x570 [ 3140.858489] ? iterate_fd+0x4b0/0x4b0 [ 3140.862301] ? __might_fault+0x12b/0x1e0 [ 3140.866360] ? find_held_lock+0x35/0x120 [ 3140.870424] ? __might_fault+0x12b/0x1e0 [ 3140.874493] ? __fget_light+0x2db/0x420 [ 3140.878472] ? fget_raw+0x20/0x20 [ 3140.881923] ? lock_release+0xc40/0xc40 [ 3140.885927] ? trace_hardirqs_off_caller+0x300/0x300 [ 3140.891057] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3140.896601] ? __fdget+0x1b/0x20 [ 3140.899977] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3140.905513] ? sockfd_lookup_light+0xc2/0x160 [ 3140.910012] __sys_sendmsg+0x112/0x270 [ 3140.913903] ? __ia32_sys_shutdown+0x80/0x80 [ 3140.918326] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3140.923691] ? trace_hardirqs_off_caller+0x300/0x300 [ 3140.928809] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3140.933578] __x64_sys_sendmsg+0x78/0xb0 [ 3140.937640] do_syscall_64+0x1a3/0x800 [ 3140.941532] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3140.946465] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3140.951486] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3140.956336] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3140.961523] RIP: 0033:0x458089 [ 3140.964712] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3140.983606] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3140.991309] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3140.998661] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3141.005924] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3141.013190] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3141.020453] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:14 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3141.072808] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:14 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83817, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:14 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x03\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:14 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000ec0000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:14 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x2c010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3141.230137] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3141.283229] CPU: 0 PID: 19989 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3141.290487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3141.299857] Call Trace: [ 3141.302459] dump_stack+0x1db/0x2d0 [ 3141.306117] ? dump_stack_print_info.cold+0x20/0x20 [ 3141.311157] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3141.316281] sysfs_warn_dup.cold+0x1c/0x31 [ 3141.320526] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3141.325907] sysfs_create_link+0x65/0xc0 [ 3141.329985] device_add+0x78e/0x1800 [ 3141.333725] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3141.339108] ? get_device_parent.isra.0+0x570/0x570 [ 3141.344142] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3141.349699] wiphy_register+0x1abd/0x2760 [ 3141.353888] ? wiphy_unregister+0x1340/0x1340 [ 3141.358401] ? rcu_read_lock_sched_held+0x110/0x130 [ 3141.363427] ? __kmalloc+0x5d5/0x740 [ 3141.367155] ? memset+0x32/0x40 [ 3141.370445] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3141.375999] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3141.380949] ieee80211_register_hw+0x15e2/0x3f30 [ 3141.385723] ? hrtimer_init_on_stack+0x1/0x40 [ 3141.390343] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3141.395113] ? kasan_check_write+0x14/0x20 [ 3141.399363] ? tasklet_hrtimer_init+0xfa/0x260 [ 3141.403965] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3141.408813] ? tasklet_kill+0xd0/0xd0 [ 3141.412653] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3141.417693] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3141.423865] ? kvasprintf+0x101/0x170 [ 3141.427680] ? bust_spinlocks+0xe0/0xe0 23:23:14 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x04\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3141.427711] ? kasprintf+0xbb/0xf0 [ 3141.427727] ? kvasprintf_const+0x190/0x190 [ 3141.427746] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3141.427764] ? validate_nla+0x28c/0x1580 [ 3141.427790] hwsim_new_radio_nl+0xca6/0x1430 [ 3141.427814] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3141.427872] genl_family_rcv_msg+0x80d/0x11a0 [ 3141.427893] ? genl_unregister_family+0x8a0/0x8a0 [ 3141.435421] ? radix_tree_insert+0x850/0x850 [ 3141.472297] ? netlink_deliver_tap+0x32b/0xf40 [ 3141.476933] genl_rcv_msg+0xca/0x16c [ 3141.480665] netlink_rcv_skb+0x17d/0x410 [ 3141.484757] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3141.489527] ? netlink_ack+0xba0/0xba0 [ 3141.493433] ? __down_interruptible+0x740/0x740 [ 3141.498148] genl_rcv+0x29/0x40 [ 3141.501432] netlink_unicast+0x574/0x770 [ 3141.505509] ? netlink_attachskb+0x980/0x980 [ 3141.509929] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3141.515475] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3141.520518] netlink_sendmsg+0xa05/0xf90 [ 3141.524595] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3141.530153] ? netlink_unicast+0x770/0x770 [ 3141.534403] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3141.539264] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3141.544028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3141.549580] ? security_socket_sendmsg+0x93/0xc0 [ 3141.554360] ? netlink_unicast+0x770/0x770 [ 3141.558610] sock_sendmsg+0xdd/0x130 [ 3141.562335] ___sys_sendmsg+0x7ec/0x910 [ 3141.566327] ? copy_msghdr_from_user+0x570/0x570 [ 3141.571094] ? iterate_fd+0x4b0/0x4b0 [ 3141.574931] ? __might_fault+0x12b/0x1e0 [ 3141.579000] ? find_held_lock+0x35/0x120 23:23:14 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x05\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3141.583069] ? __might_fault+0x12b/0x1e0 [ 3141.587141] ? __fget_light+0x2db/0x420 [ 3141.591132] ? fget_raw+0x20/0x20 [ 3141.594592] ? lock_release+0xc40/0xc40 [ 3141.598582] ? trace_hardirqs_off_caller+0x300/0x300 [ 3141.603695] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3141.609262] ? __fdget+0x1b/0x20 [ 3141.609291] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3141.609308] ? sockfd_lookup_light+0xc2/0x160 [ 3141.609326] __sys_sendmsg+0x112/0x270 [ 3141.609342] ? __ia32_sys_shutdown+0x80/0x80 [ 3141.609372] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3141.609388] ? trace_hardirqs_off_caller+0x300/0x300 [ 3141.618286] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3141.618306] __x64_sys_sendmsg+0x78/0xb0 [ 3141.618326] do_syscall_64+0x1a3/0x800 [ 3141.618346] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3141.618365] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3141.618386] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3141.618411] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3141.618423] RIP: 0033:0x458089 [ 3141.618439] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3141.618448] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3141.618463] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3141.618472] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3141.618483] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3141.725900] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3141.733178] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3141.764390] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3141.791156] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3141.800576] CPU: 0 PID: 19989 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 23:23:15 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x06\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3141.807782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3141.817151] Call Trace: [ 3141.819758] dump_stack+0x1db/0x2d0 [ 3141.823402] ? dump_stack_print_info.cold+0x20/0x20 [ 3141.828433] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3141.833553] sysfs_warn_dup.cold+0x1c/0x31 [ 3141.837802] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3141.843191] sysfs_create_link+0x65/0xc0 [ 3141.847268] device_add+0x78e/0x1800 [ 3141.850993] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3141.856381] ? get_device_parent.isra.0+0x570/0x570 [ 3141.861420] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3141.866984] wiphy_register+0x1abd/0x2760 [ 3141.871157] ? wiphy_unregister+0x1340/0x1340 [ 3141.875673] ? rcu_read_lock_sched_held+0x110/0x130 [ 3141.880699] ? __kmalloc+0x5d5/0x740 [ 3141.884419] ? memset+0x32/0x40 [ 3141.887711] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3141.893263] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3141.898214] ieee80211_register_hw+0x15e2/0x3f30 [ 3141.902990] ? hrtimer_init_on_stack+0x1/0x40 [ 3141.907495] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3141.912266] ? kasan_check_write+0x14/0x20 [ 3141.916542] ? tasklet_hrtimer_init+0xfa/0x260 [ 3141.921136] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3141.926015] ? tasklet_kill+0xd0/0xd0 [ 3141.929866] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3141.934914] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3141.940974] ? kvasprintf+0x101/0x170 [ 3141.944777] ? bust_spinlocks+0xe0/0xe0 [ 3141.948770] ? kasprintf+0xbb/0xf0 [ 3141.952313] ? kvasprintf_const+0x190/0x190 [ 3141.956642] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3141.961856] ? validate_nla+0x28c/0x1580 [ 3141.965952] hwsim_new_radio_nl+0xca6/0x1430 [ 3141.970371] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3141.975600] genl_family_rcv_msg+0x80d/0x11a0 [ 3141.980108] ? genl_unregister_family+0x8a0/0x8a0 [ 3141.984984] ? radix_tree_insert+0x850/0x850 [ 3141.989397] ? netlink_deliver_tap+0x32b/0xf40 [ 3141.994011] genl_rcv_msg+0xca/0x16c [ 3141.997746] netlink_rcv_skb+0x17d/0x410 [ 3142.001816] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3142.006615] ? netlink_ack+0xba0/0xba0 [ 3142.010506] ? __down_interruptible+0x740/0x740 [ 3142.015187] genl_rcv+0x29/0x40 [ 3142.018467] netlink_unicast+0x574/0x770 [ 3142.022536] ? netlink_attachskb+0x980/0x980 [ 3142.026958] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3142.032496] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3142.037539] netlink_sendmsg+0xa05/0xf90 [ 3142.041603] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3142.047154] ? netlink_unicast+0x770/0x770 [ 3142.051392] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3142.056246] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3142.061006] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3142.066547] ? security_socket_sendmsg+0x93/0xc0 [ 3142.071307] ? netlink_unicast+0x770/0x770 [ 3142.075564] sock_sendmsg+0xdd/0x130 [ 3142.079286] ___sys_sendmsg+0x7ec/0x910 [ 3142.083276] ? copy_msghdr_from_user+0x570/0x570 [ 3142.088033] ? iterate_fd+0x4b0/0x4b0 [ 3142.091858] ? __might_fault+0x12b/0x1e0 [ 3142.095925] ? find_held_lock+0x35/0x120 [ 3142.100010] ? __might_fault+0x12b/0x1e0 [ 3142.104079] ? __fget_light+0x2db/0x420 [ 3142.108061] ? fget_raw+0x20/0x20 [ 3142.111515] ? lock_release+0xc40/0xc40 [ 3142.115506] ? trace_hardirqs_off_caller+0x300/0x300 [ 3142.120614] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3142.126183] ? __fdget+0x1b/0x20 [ 3142.129551] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3142.135093] ? sockfd_lookup_light+0xc2/0x160 [ 3142.139591] __sys_sendmsg+0x112/0x270 [ 3142.143481] ? __ia32_sys_shutdown+0x80/0x80 [ 3142.147908] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3142.153272] ? trace_hardirqs_off_caller+0x300/0x300 [ 3142.158394] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3142.163155] __x64_sys_sendmsg+0x78/0xb0 [ 3142.167265] do_syscall_64+0x1a3/0x800 [ 3142.171156] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3142.176087] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3142.181141] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3142.186003] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3142.191205] RIP: 0033:0x458089 [ 3142.194412] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 23:23:15 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x40020000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3142.213313] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3142.221022] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3142.228291] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3142.235566] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3142.242839] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3142.250128] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3142.303669] ipvs_mt_check: 30 callbacks suppressed [ 3142.303680] xt_ipvs: protocol family 7 not supported [ 3142.351620] xt_ipvs: protocol family 7 not supported 23:23:15 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09000000f0000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:15 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83818, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3142.373631] xt_ipvs: protocol family 7 not supported [ 3142.492653] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3142.507560] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3142.522741] CPU: 0 PID: 20038 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3142.529953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3142.539326] Call Trace: [ 3142.541942] dump_stack+0x1db/0x2d0 [ 3142.545586] ? dump_stack_print_info.cold+0x20/0x20 [ 3142.550621] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3142.555732] sysfs_warn_dup.cold+0x1c/0x31 [ 3142.559974] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3142.565334] sysfs_create_link+0x65/0xc0 [ 3142.569393] device_add+0x78e/0x1800 [ 3142.573110] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3142.578477] ? get_device_parent.isra.0+0x570/0x570 [ 3142.583497] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3142.589051] wiphy_register+0x1abd/0x2760 [ 3142.593193] ? wiphy_unregister+0x1340/0x1340 [ 3142.597692] ? rcu_read_lock_sched_held+0x110/0x130 [ 3142.602748] ? __kmalloc+0x5d5/0x740 [ 3142.606471] ? memset+0x32/0x40 [ 3142.609747] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3142.615272] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3142.620205] ieee80211_register_hw+0x15e2/0x3f30 [ 3142.624974] ? hrtimer_init_on_stack+0x1/0x40 [ 3142.629471] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3142.634219] ? kasan_check_write+0x14/0x20 [ 3142.638450] ? tasklet_hrtimer_init+0xfa/0x260 [ 3142.643045] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3142.647899] ? tasklet_kill+0xd0/0xd0 [ 3142.651698] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3142.656736] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3142.662823] ? kvasprintf+0x101/0x170 [ 3142.666651] ? bust_spinlocks+0xe0/0xe0 [ 3142.670666] ? kasprintf+0xbb/0xf0 [ 3142.674194] ? kvasprintf_const+0x190/0x190 [ 3142.678515] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3142.683715] ? validate_nla+0x28c/0x1580 [ 3142.687781] hwsim_new_radio_nl+0xca6/0x1430 [ 3142.692203] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3142.697417] genl_family_rcv_msg+0x80d/0x11a0 [ 3142.701928] ? genl_unregister_family+0x8a0/0x8a0 [ 3142.706798] ? radix_tree_insert+0x850/0x850 [ 3142.711198] ? netlink_deliver_tap+0x32b/0xf40 [ 3142.715777] genl_rcv_msg+0xca/0x16c [ 3142.719506] netlink_rcv_skb+0x17d/0x410 [ 3142.723588] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3142.728365] ? netlink_ack+0xba0/0xba0 [ 3142.732265] ? __down_interruptible+0x740/0x740 [ 3142.736941] genl_rcv+0x29/0x40 [ 3142.740244] netlink_unicast+0x574/0x770 [ 3142.744303] ? netlink_attachskb+0x980/0x980 [ 3142.748719] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3142.754244] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3142.759275] netlink_sendmsg+0xa05/0xf90 [ 3142.763351] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3142.768906] ? netlink_unicast+0x770/0x770 [ 3142.773130] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3142.777976] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3142.782740] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3142.788274] ? security_socket_sendmsg+0x93/0xc0 [ 3142.793017] ? netlink_unicast+0x770/0x770 [ 3142.797252] sock_sendmsg+0xdd/0x130 [ 3142.800992] ___sys_sendmsg+0x7ec/0x910 [ 3142.804978] ? copy_msghdr_from_user+0x570/0x570 [ 3142.809723] ? iterate_fd+0x4b0/0x4b0 [ 3142.813544] ? __might_fault+0x12b/0x1e0 [ 3142.817610] ? find_held_lock+0x35/0x120 [ 3142.821682] ? __might_fault+0x12b/0x1e0 [ 3142.825741] ? __fget_light+0x2db/0x420 [ 3142.829709] ? fget_raw+0x20/0x20 [ 3142.833165] ? lock_release+0xc40/0xc40 [ 3142.837172] ? trace_hardirqs_off_caller+0x300/0x300 [ 3142.842281] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3142.847821] ? __fdget+0x1b/0x20 [ 3142.851216] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3142.856783] ? sockfd_lookup_light+0xc2/0x160 [ 3142.861289] __sys_sendmsg+0x112/0x270 [ 3142.865192] ? __ia32_sys_shutdown+0x80/0x80 [ 3142.869598] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3142.874959] ? trace_hardirqs_off_caller+0x300/0x300 [ 3142.880075] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3142.884862] __x64_sys_sendmsg+0x78/0xb0 [ 3142.888918] do_syscall_64+0x1a3/0x800 [ 3142.892793] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3142.897728] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3142.902755] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3142.907610] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3142.912799] RIP: 0033:0x458089 [ 3142.915979] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3142.934880] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3142.942583] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3142.949857] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3142.957119] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3142.964412] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3142.971700] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:16 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:16 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:16 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x48020000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:16 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f00000001c0)="153f6234488dd25d766070") r1 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r1, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x19) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000140)}, 0xc100) getpeername$packet(0xffffffffffffff9c, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'bond_slave_0\x00', r2}) sendmsg(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000280)="b1", 0x1}], 0x1, &(0x7f00000001c0)}, 0x8000) setsockopt$inet6_int(r1, 0x29, 0x7, &(0x7f0000000000), 0x4) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58) r4 = accept4$alg(r3, 0x0, 0x0, 0x0) sendto(r4, &(0x7f00005c8f58), 0xfffffffffffffeee, 0x0, &(0x7f0000351ff0)=@ipx={0x4, 0x0, 0x0, "a074edebb7e1"}, 0x10) sendmsg(r1, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000500)="d0", 0x1}], 0x1, &(0x7f0000003b40)}, 0x0) 23:23:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000040030012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:16 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83819, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3143.139823] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3143.155465] CPU: 0 PID: 20050 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3143.162683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3143.172129] Call Trace: [ 3143.174737] dump_stack+0x1db/0x2d0 [ 3143.178389] ? dump_stack_print_info.cold+0x20/0x20 [ 3143.183428] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3143.188556] sysfs_warn_dup.cold+0x1c/0x31 [ 3143.192798] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3143.198207] sysfs_create_link+0x65/0xc0 [ 3143.202274] device_add+0x78e/0x1800 [ 3143.206001] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3143.211368] ? get_device_parent.isra.0+0x570/0x570 [ 3143.216388] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3143.221958] wiphy_register+0x1abd/0x2760 [ 3143.226123] ? wiphy_unregister+0x1340/0x1340 [ 3143.230628] ? rcu_read_lock_sched_held+0x110/0x130 [ 3143.235662] ? __kmalloc+0x5d5/0x740 [ 3143.239476] ? memset+0x32/0x40 [ 3143.242760] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3143.248303] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3143.253250] ieee80211_register_hw+0x15e2/0x3f30 [ 3143.258020] ? hrtimer_init_on_stack+0x1/0x40 [ 3143.262530] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3143.267295] ? kasan_check_write+0x14/0x20 [ 3143.271533] ? tasklet_hrtimer_init+0xfa/0x260 [ 3143.276119] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3143.280968] ? tasklet_kill+0xd0/0xd0 [ 3143.284785] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3143.289826] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3143.295914] ? kvasprintf+0x101/0x170 [ 3143.299721] ? bust_spinlocks+0xe0/0xe0 [ 3143.303713] ? kasprintf+0xbb/0xf0 [ 3143.307270] ? kvasprintf_const+0x190/0x190 [ 3143.311595] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3143.316793] ? validate_nla+0x28c/0x1580 [ 3143.320877] hwsim_new_radio_nl+0xca6/0x1430 [ 3143.325305] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3143.330519] genl_family_rcv_msg+0x80d/0x11a0 [ 3143.335029] ? genl_unregister_family+0x8a0/0x8a0 [ 3143.339894] ? radix_tree_insert+0x850/0x850 [ 3143.344320] ? netlink_deliver_tap+0x32b/0xf40 [ 3143.348933] genl_rcv_msg+0xca/0x16c [ 3143.352651] netlink_rcv_skb+0x17d/0x410 [ 3143.356727] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3143.361483] ? netlink_ack+0xba0/0xba0 [ 3143.365378] ? __down_interruptible+0x740/0x740 [ 3143.370060] genl_rcv+0x29/0x40 [ 3143.373365] netlink_unicast+0x574/0x770 [ 3143.377434] ? netlink_attachskb+0x980/0x980 [ 3143.381860] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3143.387410] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3143.392446] netlink_sendmsg+0xa05/0xf90 [ 3143.396507] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3143.402055] ? netlink_unicast+0x770/0x770 [ 3143.406303] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3143.411149] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3143.415908] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3143.421451] ? security_socket_sendmsg+0x93/0xc0 [ 3143.426206] ? netlink_unicast+0x770/0x770 [ 3143.430466] sock_sendmsg+0xdd/0x130 [ 3143.434193] ___sys_sendmsg+0x7ec/0x910 [ 3143.438188] ? copy_msghdr_from_user+0x570/0x570 [ 3143.442956] ? iterate_fd+0x4b0/0x4b0 [ 3143.446770] ? __might_fault+0x12b/0x1e0 [ 3143.450840] ? find_held_lock+0x35/0x120 [ 3143.454924] ? __might_fault+0x12b/0x1e0 [ 3143.459008] ? __fget_light+0x2db/0x420 [ 3143.462986] ? fget_raw+0x20/0x20 [ 3143.466441] ? lock_release+0xc40/0xc40 [ 3143.470419] ? trace_hardirqs_off_caller+0x300/0x300 [ 3143.475524] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3143.481078] ? __fdget+0x1b/0x20 [ 3143.484443] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3143.489990] ? sockfd_lookup_light+0xc2/0x160 [ 3143.494490] __sys_sendmsg+0x112/0x270 [ 3143.498381] ? __ia32_sys_shutdown+0x80/0x80 [ 3143.502808] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3143.508185] ? trace_hardirqs_off_caller+0x300/0x300 [ 3143.513292] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3143.518052] __x64_sys_sendmsg+0x78/0xb0 [ 3143.522124] do_syscall_64+0x1a3/0x800 [ 3143.526015] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3143.530949] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3143.535976] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3143.540832] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3143.546046] RIP: 0033:0x458089 [ 3143.549238] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3143.568144] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3143.575880] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3143.583154] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3143.590428] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3143.597701] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3143.604988] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3143.653429] xt_ipvs: protocol family 7 not supported [ 3143.672353] xt_ipvs: protocol family 7 not supported [ 3143.679361] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3143.709211] xt_ipvs: protocol family 7 not supported 23:23:17 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8381a, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000003400012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:17 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\xfe\xff\xff\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3143.770868] xt_ipvs: protocol family 7 not supported 23:23:17 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x94000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:17 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xfe\xff\xff\a\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3143.900534] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3143.959506] xt_ipvs: protocol family 7 not supported 23:23:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000fffff00012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3144.025750] xt_ipvs: protocol family 7 not supported 23:23:17 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8381b, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:17 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00 \x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3144.068038] xt_ipvs: protocol family 7 not supported [ 3144.147300] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3144.200106] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3144.217154] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3144.224982] CPU: 1 PID: 20102 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3144.232177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3144.241539] Call Trace: [ 3144.244143] dump_stack+0x1db/0x2d0 23:23:17 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f00000001c0)="153f6234488dd25d766070") r1 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r1, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x19) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000140)}, 0xc100) getpeername$packet(0xffffffffffffff9c, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'bond_slave_0\x00', r2}) sendmsg(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000280)="b1", 0x1}], 0x1, &(0x7f00000001c0)}, 0x8000) setsockopt$inet6_int(r1, 0x29, 0x7, &(0x7f0000000000), 0x4) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58) r4 = accept4$alg(r3, 0x0, 0x0, 0x0) sendto(r4, &(0x7f00005c8f58), 0xfffffffffffffeee, 0x0, &(0x7f0000351ff0)=@ipx={0x4, 0x0, 0x0, "a074edebb7e1"}, 0x10) sendmsg(r1, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000500)="d0", 0x1}], 0x1, &(0x7f0000003b40)}, 0x0) 23:23:17 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:17 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xa0010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3144.247800] ? dump_stack_print_info.cold+0x20/0x20 [ 3144.252853] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3144.257981] sysfs_warn_dup.cold+0x1c/0x31 [ 3144.262237] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3144.267628] sysfs_create_link+0x65/0xc0 [ 3144.271706] device_add+0x78e/0x1800 [ 3144.275433] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3144.280817] ? get_device_parent.isra.0+0x570/0x570 [ 3144.285867] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3144.291430] wiphy_register+0x1abd/0x2760 [ 3144.295613] ? wiphy_unregister+0x1340/0x1340 23:23:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000000112000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3144.300125] ? rcu_read_lock_sched_held+0x110/0x130 [ 3144.305156] ? __kmalloc+0x5d5/0x740 [ 3144.308902] ? memset+0x32/0x40 [ 3144.312205] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3144.317760] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3144.322710] ieee80211_register_hw+0x15e2/0x3f30 [ 3144.327493] ? hrtimer_init_on_stack+0x1/0x40 [ 3144.332013] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3144.336783] ? kasan_check_write+0x14/0x20 [ 3144.341026] ? tasklet_hrtimer_init+0xfa/0x260 [ 3144.345738] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3144.350606] ? tasklet_kill+0xd0/0xd0 [ 3144.354431] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3144.354469] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3144.354499] ? kvasprintf+0x101/0x170 [ 3144.365594] ? bust_spinlocks+0xe0/0xe0 [ 3144.365625] ? kasprintf+0xbb/0xf0 [ 3144.365639] ? kvasprintf_const+0x190/0x190 [ 3144.365657] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3144.386464] ? validate_nla+0x28c/0x1580 [ 3144.390548] hwsim_new_radio_nl+0xca6/0x1430 [ 3144.394992] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3144.400231] genl_family_rcv_msg+0x80d/0x11a0 [ 3144.404748] ? genl_unregister_family+0x8a0/0x8a0 [ 3144.409625] ? radix_tree_insert+0x850/0x850 [ 3144.414041] ? netlink_deliver_tap+0x32b/0xf40 [ 3144.418665] genl_rcv_msg+0xca/0x16c [ 3144.422409] netlink_rcv_skb+0x17d/0x410 [ 3144.426485] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3144.431255] ? netlink_ack+0xba0/0xba0 [ 3144.435249] ? __down_interruptible+0x740/0x740 [ 3144.439945] genl_rcv+0x29/0x40 [ 3144.443244] netlink_unicast+0x574/0x770 [ 3144.447314] ? netlink_attachskb+0x980/0x980 [ 3144.451711] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3144.457264] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3144.462316] netlink_sendmsg+0xa05/0xf90 [ 3144.466394] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3144.471930] ? netlink_unicast+0x770/0x770 [ 3144.476152] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3144.481003] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3144.485779] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3144.491356] ? security_socket_sendmsg+0x93/0xc0 [ 3144.496601] ? netlink_unicast+0x770/0x770 23:23:17 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00?\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3144.500882] sock_sendmsg+0xdd/0x130 [ 3144.504608] ___sys_sendmsg+0x7ec/0x910 [ 3144.508609] ? copy_msghdr_from_user+0x570/0x570 [ 3144.513372] ? iterate_fd+0x4b0/0x4b0 [ 3144.517167] ? __might_fault+0x12b/0x1e0 [ 3144.521216] ? find_held_lock+0x35/0x120 [ 3144.525280] ? __might_fault+0x12b/0x1e0 [ 3144.529343] ? __fget_light+0x2db/0x420 [ 3144.533325] ? fget_raw+0x20/0x20 [ 3144.536793] ? lock_release+0xc40/0xc40 [ 3144.540779] ? trace_hardirqs_off_caller+0x300/0x300 [ 3144.545911] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3144.551458] ? __fdget+0x1b/0x20 [ 3144.554845] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3144.560385] ? sockfd_lookup_light+0xc2/0x160 [ 3144.564869] __sys_sendmsg+0x112/0x270 [ 3144.568747] ? __ia32_sys_shutdown+0x80/0x80 [ 3144.573151] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3144.578503] ? trace_hardirqs_off_caller+0x300/0x300 [ 3144.583611] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3144.588364] __x64_sys_sendmsg+0x78/0xb0 [ 3144.592414] do_syscall_64+0x1a3/0x800 [ 3144.596293] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3144.601214] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3144.606233] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3144.611076] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3144.616279] RIP: 0033:0x458089 [ 3144.619456] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3144.638366] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3144.646062] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3144.653318] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3144.660571] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3144.667844] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3144.675114] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3144.708365] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:18 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8381c, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3144.773540] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000000212000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:18 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:18 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00@\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3144.919923] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3144.944017] CPU: 1 PID: 20135 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3144.951252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3144.960611] Call Trace: [ 3144.963230] dump_stack+0x1db/0x2d0 [ 3144.966904] ? dump_stack_print_info.cold+0x20/0x20 [ 3144.971957] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3144.977082] sysfs_warn_dup.cold+0x1c/0x31 [ 3144.981334] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3144.986710] sysfs_create_link+0x65/0xc0 [ 3144.990781] device_add+0x78e/0x1800 [ 3144.994504] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3144.999901] ? get_device_parent.isra.0+0x570/0x570 [ 3145.004950] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3145.010499] wiphy_register+0x1abd/0x2760 [ 3145.014661] ? wiphy_unregister+0x1340/0x1340 [ 3145.019165] ? rcu_read_lock_sched_held+0x110/0x130 [ 3145.024201] ? __kmalloc+0x5d5/0x740 [ 3145.027943] ? memset+0x32/0x40 [ 3145.031238] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3145.036795] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3145.041730] ieee80211_register_hw+0x15e2/0x3f30 [ 3145.046506] ? hrtimer_init_on_stack+0x1/0x40 [ 3145.051029] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3145.055788] ? kasan_check_write+0x14/0x20 [ 3145.060027] ? tasklet_hrtimer_init+0xfa/0x260 [ 3145.064611] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3145.069458] ? tasklet_kill+0xd0/0xd0 [ 3145.073276] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3145.078315] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3145.084379] ? kvasprintf+0x101/0x170 [ 3145.088182] ? bust_spinlocks+0xe0/0xe0 [ 3145.092181] ? kasprintf+0xbb/0xf0 [ 3145.095721] ? kvasprintf_const+0x190/0x190 [ 3145.100067] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3145.105257] ? validate_nla+0x28c/0x1580 [ 3145.109361] hwsim_new_radio_nl+0xca6/0x1430 [ 3145.113778] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3145.119002] genl_family_rcv_msg+0x80d/0x11a0 [ 3145.123509] ? genl_unregister_family+0x8a0/0x8a0 [ 3145.128390] ? radix_tree_insert+0x850/0x850 [ 3145.133231] ? netlink_deliver_tap+0x32b/0xf40 [ 3145.137852] genl_rcv_msg+0xca/0x16c [ 3145.141574] netlink_rcv_skb+0x17d/0x410 [ 3145.145640] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3145.150399] ? netlink_ack+0xba0/0xba0 [ 3145.154308] ? __down_interruptible+0x740/0x740 [ 3145.158989] genl_rcv+0x29/0x40 [ 3145.162272] netlink_unicast+0x574/0x770 [ 3145.166340] ? netlink_attachskb+0x980/0x980 [ 3145.170757] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3145.176294] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3145.181318] netlink_sendmsg+0xa05/0xf90 [ 3145.185400] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3145.190950] ? netlink_unicast+0x770/0x770 [ 3145.195187] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3145.200046] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3145.204801] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3145.210360] ? security_socket_sendmsg+0x93/0xc0 [ 3145.215149] ? netlink_unicast+0x770/0x770 [ 3145.219405] sock_sendmsg+0xdd/0x130 [ 3145.223128] ___sys_sendmsg+0x7ec/0x910 [ 3145.227114] ? copy_msghdr_from_user+0x570/0x570 [ 3145.231873] ? iterate_fd+0x4b0/0x4b0 [ 3145.235708] ? __might_fault+0x12b/0x1e0 [ 3145.239772] ? find_held_lock+0x35/0x120 [ 3145.243843] ? __might_fault+0x12b/0x1e0 [ 3145.247915] ? __fget_light+0x2db/0x420 [ 3145.251893] ? fget_raw+0x20/0x20 [ 3145.255377] ? lock_release+0xc40/0xc40 [ 3145.259364] ? trace_hardirqs_off_caller+0x300/0x300 [ 3145.264471] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3145.270024] ? __fdget+0x1b/0x20 [ 3145.273390] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3145.278941] ? sockfd_lookup_light+0xc2/0x160 [ 3145.283442] __sys_sendmsg+0x112/0x270 [ 3145.287334] ? __ia32_sys_shutdown+0x80/0x80 [ 3145.291769] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3145.297134] ? trace_hardirqs_off_caller+0x300/0x300 [ 3145.302255] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3145.307009] __x64_sys_sendmsg+0x78/0xb0 [ 3145.311080] do_syscall_64+0x1a3/0x800 [ 3145.314975] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3145.319934] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3145.324962] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3145.329817] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3145.335050] RIP: 0033:0x458089 [ 3145.338246] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3145.357186] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3145.364904] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3145.372178] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3145.379450] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3145.386721] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3145.393990] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:18 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8381d, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3145.433441] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:18 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xb8040000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000000312000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3145.575683] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3145.619354] CPU: 0 PID: 20159 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3145.626594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3145.635969] Call Trace: [ 3145.638588] dump_stack+0x1db/0x2d0 [ 3145.642277] ? dump_stack_print_info.cold+0x20/0x20 [ 3145.647312] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3145.652440] sysfs_warn_dup.cold+0x1c/0x31 [ 3145.656696] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3145.662075] sysfs_create_link+0x65/0xc0 [ 3145.666145] device_add+0x78e/0x1800 [ 3145.669881] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3145.675257] ? get_device_parent.isra.0+0x570/0x570 [ 3145.680286] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3145.685867] wiphy_register+0x1abd/0x2760 [ 3145.690047] ? wiphy_unregister+0x1340/0x1340 [ 3145.694558] ? rcu_read_lock_sched_held+0x110/0x130 [ 3145.699586] ? __kmalloc+0x5d5/0x740 [ 3145.703308] ? memset+0x32/0x40 [ 3145.706596] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3145.712155] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3145.717092] ieee80211_register_hw+0x15e2/0x3f30 [ 3145.721871] ? hrtimer_init_on_stack+0x1/0x40 [ 3145.726391] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3145.731152] ? kasan_check_write+0x14/0x20 [ 3145.735389] ? tasklet_hrtimer_init+0xfa/0x260 [ 3145.739977] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3145.744820] ? tasklet_kill+0xd0/0xd0 [ 3145.748662] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3145.753715] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3145.759775] ? kvasprintf+0x101/0x170 [ 3145.763582] ? bust_spinlocks+0xe0/0xe0 [ 3145.767574] ? kasprintf+0xbb/0xf0 [ 3145.771115] ? kvasprintf_const+0x190/0x190 [ 3145.775444] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3145.780639] ? validate_nla+0x28c/0x1580 [ 3145.784712] hwsim_new_radio_nl+0xca6/0x1430 [ 3145.789137] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3145.794353] genl_family_rcv_msg+0x80d/0x11a0 [ 3145.798915] ? genl_unregister_family+0x8a0/0x8a0 [ 3145.804117] ? radix_tree_insert+0x850/0x850 [ 3145.808531] ? netlink_deliver_tap+0x32b/0xf40 [ 3145.813142] genl_rcv_msg+0xca/0x16c [ 3145.816873] netlink_rcv_skb+0x17d/0x410 [ 3145.820943] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3145.825703] ? netlink_ack+0xba0/0xba0 [ 3145.829600] ? __down_interruptible+0x740/0x740 [ 3145.834280] genl_rcv+0x29/0x40 [ 3145.837561] netlink_unicast+0x574/0x770 [ 3145.841628] ? netlink_attachskb+0x980/0x980 [ 3145.846046] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3145.851601] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3145.856621] netlink_sendmsg+0xa05/0xf90 [ 3145.860684] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3145.866233] ? netlink_unicast+0x770/0x770 [ 3145.870473] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3145.875320] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3145.880082] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3145.885635] ? security_socket_sendmsg+0x93/0xc0 [ 3145.890391] ? netlink_unicast+0x770/0x770 [ 3145.894636] sock_sendmsg+0xdd/0x130 [ 3145.898360] ___sys_sendmsg+0x7ec/0x910 [ 3145.902362] ? copy_msghdr_from_user+0x570/0x570 [ 3145.907120] ? iterate_fd+0x4b0/0x4b0 [ 3145.910935] ? __might_fault+0x12b/0x1e0 [ 3145.914998] ? find_held_lock+0x35/0x120 [ 3145.919063] ? __might_fault+0x12b/0x1e0 [ 3145.923133] ? __fget_light+0x2db/0x420 [ 3145.927112] ? fget_raw+0x20/0x20 [ 3145.930584] ? lock_release+0xc40/0xc40 [ 3145.934561] ? trace_hardirqs_off_caller+0x300/0x300 [ 3145.939666] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3145.945260] ? __fdget+0x1b/0x20 [ 3145.948625] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3145.954166] ? sockfd_lookup_light+0xc2/0x160 [ 3145.958667] __sys_sendmsg+0x112/0x270 [ 3145.962559] ? __ia32_sys_shutdown+0x80/0x80 [ 3145.966988] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3145.972355] ? trace_hardirqs_off_caller+0x300/0x300 [ 3145.977467] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3145.982225] __x64_sys_sendmsg+0x78/0xb0 [ 3145.986289] do_syscall_64+0x1a3/0x800 [ 3145.990185] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3145.995123] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3146.000150] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3146.004999] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3146.010187] RIP: 0033:0x458089 [ 3146.013381] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3146.032296] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3146.040008] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3146.047285] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3146.054550] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3146.061816] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3146.069095] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:19 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f00000001c0)="153f6234488dd25d766070") r1 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r1, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x19) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000140)}, 0xc100) getpeername$packet(0xffffffffffffff9c, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'bond_slave_0\x00', r2}) sendmsg(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000280)="b1", 0x1}], 0x1, &(0x7f00000001c0)}, 0x8000) setsockopt$inet6_int(r1, 0x29, 0x7, &(0x7f0000000000), 0x4) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58) r4 = accept4$alg(r3, 0x0, 0x0, 0x0) sendto(r4, &(0x7f00005c8f58), 0xfffffffffffffeee, 0x0, &(0x7f0000351ff0)=@ipx={0x4, 0x0, 0x0, "a074edebb7e1"}, 0x10) sendmsg(r1, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000500)="d0", 0x1}], 0x1, &(0x7f0000003b40)}, 0x0) 23:23:19 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:19 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00H\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3146.121855] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:19 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000000412000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:19 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8381e, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:19 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00L\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3146.334462] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3146.361424] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3146.382831] CPU: 1 PID: 20194 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3146.390066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3146.399423] Call Trace: [ 3146.402026] dump_stack+0x1db/0x2d0 [ 3146.405699] ? dump_stack_print_info.cold+0x20/0x20 [ 3146.410730] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3146.415881] sysfs_warn_dup.cold+0x1c/0x31 [ 3146.420130] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3146.425506] sysfs_create_link+0x65/0xc0 [ 3146.429582] device_add+0x78e/0x1800 [ 3146.433305] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3146.438682] ? get_device_parent.isra.0+0x570/0x570 [ 3146.443712] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3146.449261] wiphy_register+0x1abd/0x2760 [ 3146.453432] ? wiphy_unregister+0x1340/0x1340 [ 3146.457924] ? rcu_read_lock_sched_held+0x110/0x130 [ 3146.462939] ? __kmalloc+0x5d5/0x740 [ 3146.466669] ? memset+0x32/0x40 [ 3146.469943] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3146.475470] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3146.480403] ieee80211_register_hw+0x15e2/0x3f30 [ 3146.485151] ? hrtimer_init_on_stack+0x1/0x40 [ 3146.489650] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3146.494397] ? kasan_check_write+0x14/0x20 [ 3146.498618] ? tasklet_hrtimer_init+0xfa/0x260 [ 3146.503187] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3146.508018] ? tasklet_kill+0xd0/0xd0 [ 3146.511830] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3146.516872] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3146.522947] ? kvasprintf+0x101/0x170 [ 3146.526735] ? bust_spinlocks+0xe0/0xe0 [ 3146.530765] ? kasprintf+0xbb/0xf0 [ 3146.534312] ? kvasprintf_const+0x190/0x190 [ 3146.538643] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3146.543859] ? validate_nla+0x28c/0x1580 [ 3146.547918] hwsim_new_radio_nl+0xca6/0x1430 [ 3146.552345] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3146.557561] genl_family_rcv_msg+0x80d/0x11a0 [ 3146.562053] ? genl_unregister_family+0x8a0/0x8a0 [ 3146.566901] ? radix_tree_insert+0x850/0x850 [ 3146.571317] ? netlink_deliver_tap+0x32b/0xf40 [ 3146.575903] genl_rcv_msg+0xca/0x16c [ 3146.579606] netlink_rcv_skb+0x17d/0x410 [ 3146.583665] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3146.588405] ? netlink_ack+0xba0/0xba0 [ 3146.592281] ? __down_interruptible+0x740/0x740 [ 3146.596943] genl_rcv+0x29/0x40 [ 3146.600209] netlink_unicast+0x574/0x770 [ 3146.604276] ? netlink_attachskb+0x980/0x980 [ 3146.608672] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3146.614194] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3146.619209] netlink_sendmsg+0xa05/0xf90 [ 3146.623273] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3146.628800] ? netlink_unicast+0x770/0x770 [ 3146.633025] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3146.637866] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3146.642613] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3146.648139] ? security_socket_sendmsg+0x93/0xc0 [ 3146.652883] ? netlink_unicast+0x770/0x770 [ 3146.657109] sock_sendmsg+0xdd/0x130 [ 3146.660813] ___sys_sendmsg+0x7ec/0x910 [ 3146.664787] ? copy_msghdr_from_user+0x570/0x570 [ 3146.669573] ? iterate_fd+0x4b0/0x4b0 [ 3146.673374] ? __might_fault+0x12b/0x1e0 [ 3146.677424] ? find_held_lock+0x35/0x120 [ 3146.681482] ? __might_fault+0x12b/0x1e0 [ 3146.685558] ? __fget_light+0x2db/0x420 [ 3146.689519] ? fget_raw+0x20/0x20 [ 3146.692980] ? lock_release+0xc40/0xc40 [ 3146.696960] ? trace_hardirqs_off_caller+0x300/0x300 [ 3146.702051] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3146.707581] ? __fdget+0x1b/0x20 [ 3146.710939] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3146.716482] ? sockfd_lookup_light+0xc2/0x160 [ 3146.720997] __sys_sendmsg+0x112/0x270 [ 3146.724887] ? __ia32_sys_shutdown+0x80/0x80 [ 3146.729291] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3146.734642] ? trace_hardirqs_off_caller+0x300/0x300 [ 3146.739737] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3146.744481] __x64_sys_sendmsg+0x78/0xb0 [ 3146.748535] do_syscall_64+0x1a3/0x800 [ 3146.752415] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3146.757332] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3146.762350] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3146.767195] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3146.772382] RIP: 0033:0x458089 [ 3146.775569] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3146.794469] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3146.802178] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3146.809436] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3146.816705] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3146.823962] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 23:23:20 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00H\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3146.831220] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:20 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8381f, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:20 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000000512000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:20 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xc4040000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3147.024853] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3147.049010] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3147.073238] CPU: 0 PID: 20210 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3147.080556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3147.089913] Call Trace: [ 3147.089939] dump_stack+0x1db/0x2d0 [ 3147.089963] ? dump_stack_print_info.cold+0x20/0x20 [ 3147.089987] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3147.090015] sysfs_warn_dup.cold+0x1c/0x31 [ 3147.090038] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3147.090059] sysfs_create_link+0x65/0xc0 [ 3147.090077] device_add+0x78e/0x1800 [ 3147.123716] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3147.129101] ? get_device_parent.isra.0+0x570/0x570 [ 3147.134138] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3147.139697] wiphy_register+0x1abd/0x2760 [ 3147.139726] ? wiphy_unregister+0x1340/0x1340 [ 3147.139751] ? rcu_read_lock_sched_held+0x110/0x130 [ 3147.153401] ? __kmalloc+0x5d5/0x740 [ 3147.153420] ? memset+0x32/0x40 [ 3147.153437] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3147.153457] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3147.153478] ieee80211_register_hw+0x15e2/0x3f30 [ 3147.153499] ? hrtimer_init_on_stack+0x1/0x40 [ 3147.180194] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3147.184970] ? kasan_check_write+0x14/0x20 [ 3147.189219] ? tasklet_hrtimer_init+0xfa/0x260 [ 3147.193816] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3147.198692] ? tasklet_kill+0xd0/0xd0 [ 3147.202532] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3147.207594] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3147.213685] ? kvasprintf+0x101/0x170 [ 3147.217495] ? bust_spinlocks+0xe0/0xe0 [ 3147.221508] ? kasprintf+0xbb/0xf0 23:23:20 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00`\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:20 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x27e, &(0x7f0000000000)=@framed={{0xffffffb7, 0x0, 0x0, 0x0, 0xffffffe4, 0x55}}, &(0x7f0000000180)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc5\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2', 0x1000000, 0x0, 0x0, 0x0, 0xffffffffffffffff, [], 0x0, 0x8}, 0x48) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/sja\'Tb\xcd\xe7)\xbeB\xd7\\\f\x03yz1\x00', 0x200002, 0x0) [ 3147.225057] ? kvasprintf_const+0x190/0x190 [ 3147.229391] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3147.234609] ? validate_nla+0x28c/0x1580 [ 3147.238692] hwsim_new_radio_nl+0xca6/0x1430 [ 3147.243126] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3147.253914] genl_family_rcv_msg+0x80d/0x11a0 [ 3147.258426] ? genl_unregister_family+0x8a0/0x8a0 [ 3147.263299] ? radix_tree_insert+0x850/0x850 [ 3147.267725] ? netlink_deliver_tap+0x32b/0xf40 [ 3147.272350] genl_rcv_msg+0xca/0x16c 23:23:20 executing program 3: socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000540)='hqgetl\x14\x00\x00\x00\t\x00\x00\x00age_ir?\x00\x00\x00es\x00p\x80#\xbe\xc4\xe5\x05\xab\xcd\x7f\xd3so2\xcb\x85o\xd5\x11\xfe.\xb6\xf9\xf2;\xd0\xbe\xa6\xe9\xb9\xa4Aa\xbe\xfb\x9c\xff\xf1', 0x275a, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x7fffffff}) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)) ioctl(r0, 0x0, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r2, 0x0, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000001c0)=0x16c, 0x4) setsockopt$inet_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000280)={@in={{0x2, 0x4e21, @local}}, 0x0, 0x2, 0x2, "a77760f5a7645bc43c241d69912dda0c63c2a66726f8cfafd6c8fe2c98de7ba44947a79015f0fe57917cb62a93987a938fdedfce7bbba4fec2d8a09c41fb233245f2604b9e07b8ab79ec15ef2818a179"}, 0xd8) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0) ioctl$IMCTRLREQ(r1, 0x80044945, &(0x7f0000000380)={0xd, 0x9, 0x3, 0xfffffffffffffff8}) bind$inet(r3, &(0x7f0000000500)={0x2, 0x4e23, @multicast1}, 0x10) getsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, 0x0, 0x0) ioctl$IMGETDEVINFO(0xffffffffffffffff, 0x80044944, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f00000000c0)={0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000100)=0x2c) sendto$inet(r1, 0x0, 0x34, 0x200007fd, &(0x7f00000008c0)={0x2, 0x8000000000004e23, @local}, 0x10) bind$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x2711}, 0x10) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) setsockopt$inet_icmp_ICMP_FILTER(0xffffffffffffffff, 0x1, 0x1, 0x0, 0x0) setsockopt$sock_int(r2, 0x1, 0x3f, 0x0, 0xfffffffffffffe26) recvmsg(r3, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0xdc00}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x0) write$binfmt_elf64(r3, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) [ 3147.276077] netlink_rcv_skb+0x17d/0x410 [ 3147.280149] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3147.284915] ? netlink_ack+0xba0/0xba0 [ 3147.288817] ? __down_interruptible+0x740/0x740 [ 3147.293540] genl_rcv+0x29/0x40 [ 3147.296830] netlink_unicast+0x574/0x770 [ 3147.300926] ? netlink_attachskb+0x980/0x980 [ 3147.300945] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3147.310911] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3147.310933] netlink_sendmsg+0xa05/0xf90 [ 3147.310948] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3147.310974] ? netlink_unicast+0x770/0x770 [ 3147.310992] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3147.311023] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3147.311038] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3147.311055] ? security_socket_sendmsg+0x93/0xc0 [ 3147.311069] ? netlink_unicast+0x770/0x770 [ 3147.311089] sock_sendmsg+0xdd/0x130 [ 3147.311109] ___sys_sendmsg+0x7ec/0x910 [ 3147.311130] ? copy_msghdr_from_user+0x570/0x570 [ 3147.311147] ? iterate_fd+0x4b0/0x4b0 [ 3147.316461] ipvs_mt_check: 18 callbacks suppressed [ 3147.316470] xt_ipvs: protocol family 7 not supported [ 3147.320237] ? __might_fault+0x12b/0x1e0 [ 3147.320255] ? find_held_lock+0x35/0x120 [ 3147.320271] ? __might_fault+0x12b/0x1e0 [ 3147.320292] ? __fget_light+0x2db/0x420 [ 3147.320308] ? fget_raw+0x20/0x20 [ 3147.320322] ? lock_release+0xc40/0xc40 [ 3147.320338] ? trace_hardirqs_off_caller+0x300/0x300 [ 3147.320352] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3147.320378] ? __fdget+0x1b/0x20 [ 3147.417899] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 23:23:20 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00h\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3147.423451] ? sockfd_lookup_light+0xc2/0x160 [ 3147.427970] __sys_sendmsg+0x112/0x270 [ 3147.431897] ? __ia32_sys_shutdown+0x80/0x80 [ 3147.436348] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3147.441723] ? trace_hardirqs_off_caller+0x300/0x300 [ 3147.446855] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3147.446876] __x64_sys_sendmsg+0x78/0xb0 [ 3147.446896] do_syscall_64+0x1a3/0x800 [ 3147.446916] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3147.446935] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3147.446957] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3147.446981] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3147.446993] RIP: 0033:0x458089 [ 3147.447009] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3147.447018] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3147.447035] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3147.459738] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3147.459747] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3147.459755] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3147.459764] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:20 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000000612000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3147.620458] xt_ipvs: protocol family 7 not supported 23:23:20 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83820, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:20 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00L\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:20 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xcffeffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3147.675204] xt_ipvs: protocol family 7 not supported 23:23:21 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83821, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:21 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00l\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3147.762806] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3147.884181] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3147.902730] xt_ipvs: protocol family 7 not supported [ 3147.911016] CPU: 1 PID: 20260 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3147.918225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3147.927596] Call Trace: [ 3147.930222] dump_stack+0x1db/0x2d0 [ 3147.933868] ? dump_stack_print_info.cold+0x20/0x20 [ 3147.938902] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3147.944023] sysfs_warn_dup.cold+0x1c/0x31 [ 3147.948267] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3147.953640] sysfs_create_link+0x65/0xc0 [ 3147.957709] device_add+0x78e/0x1800 [ 3147.961432] ? get_device_parent.isra.0+0x570/0x570 [ 3147.966452] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3147.972006] wiphy_register+0x1abd/0x2760 [ 3147.976174] ? wiphy_unregister+0x1340/0x1340 [ 3147.980678] ? rcu_read_lock_sched_held+0x110/0x130 [ 3147.985695] ? __kmalloc+0x5d5/0x740 [ 3147.989413] ? memset+0x32/0x40 [ 3147.992695] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3147.998239] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3148.003175] ieee80211_register_hw+0x15e2/0x3f30 [ 3148.007949] ? hrtimer_init_on_stack+0x1/0x40 [ 3148.012454] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3148.017216] ? kasan_check_write+0x14/0x20 [ 3148.021454] ? tasklet_hrtimer_init+0xfa/0x260 [ 3148.026065] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3148.030914] ? tasklet_kill+0xd0/0xd0 [ 3148.034751] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3148.039792] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3148.045857] ? kvasprintf+0x101/0x170 [ 3148.049698] ? bust_spinlocks+0xe0/0xe0 [ 3148.053720] ? kasprintf+0xbb/0xf0 [ 3148.057282] ? kvasprintf_const+0x190/0x190 [ 3148.061613] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3148.066808] ? validate_nla+0x28c/0x1580 [ 3148.070895] hwsim_new_radio_nl+0xca6/0x1430 [ 3148.075315] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3148.080537] genl_family_rcv_msg+0x80d/0x11a0 [ 3148.085044] ? genl_unregister_family+0x8a0/0x8a0 [ 3148.089904] ? radix_tree_insert+0x850/0x850 [ 3148.094315] ? netlink_deliver_tap+0x32b/0xf40 [ 3148.098936] genl_rcv_msg+0xca/0x16c [ 3148.102659] netlink_rcv_skb+0x17d/0x410 [ 3148.106723] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3148.111484] ? netlink_ack+0xba0/0xba0 [ 3148.115386] ? __down_interruptible+0x740/0x740 [ 3148.120083] genl_rcv+0x29/0x40 [ 3148.123371] netlink_unicast+0x574/0x770 [ 3148.127442] ? netlink_attachskb+0x980/0x980 [ 3148.131861] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3148.137404] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3148.142426] netlink_sendmsg+0xa05/0xf90 [ 3148.146488] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3148.152053] ? netlink_unicast+0x770/0x770 [ 3148.156300] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3148.161164] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3148.165921] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3148.171499] ? security_socket_sendmsg+0x93/0xc0 [ 3148.176257] ? netlink_unicast+0x770/0x770 [ 3148.180517] sock_sendmsg+0xdd/0x130 [ 3148.184236] ___sys_sendmsg+0x7ec/0x910 [ 3148.188218] ? copy_msghdr_from_user+0x570/0x570 [ 3148.192977] ? iterate_fd+0x4b0/0x4b0 [ 3148.196788] ? __might_fault+0x12b/0x1e0 [ 3148.200875] ? find_held_lock+0x35/0x120 [ 3148.204963] ? __might_fault+0x12b/0x1e0 [ 3148.209071] ? __fget_light+0x2db/0x420 [ 3148.213065] ? fget_raw+0x20/0x20 [ 3148.216517] ? lock_release+0xc40/0xc40 [ 3148.220497] ? trace_hardirqs_off_caller+0x300/0x300 [ 3148.225611] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3148.231213] ? __fdget+0x1b/0x20 [ 3148.234591] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3148.240132] ? sockfd_lookup_light+0xc2/0x160 [ 3148.244631] __sys_sendmsg+0x112/0x270 [ 3148.248523] ? __ia32_sys_shutdown+0x80/0x80 [ 3148.252954] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3148.258325] ? trace_hardirqs_off_caller+0x300/0x300 [ 3148.263436] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3148.268198] __x64_sys_sendmsg+0x78/0xb0 [ 3148.272268] do_syscall_64+0x1a3/0x800 [ 3148.276164] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3148.281098] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3148.286120] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3148.290976] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3148.296165] RIP: 0033:0x458089 [ 3148.299388] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3148.318290] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3148.325999] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:23:21 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000000712000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3148.333272] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3148.340542] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3148.348009] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3148.355278] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:21 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83822, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3148.409294] xt_ipvs: protocol family 7 not supported 23:23:21 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xfe800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3148.447824] xt_ipvs: protocol family 7 not supported 23:23:21 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00`\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3148.498532] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3148.519362] xt_ipvs: protocol family 7 not supported [ 3148.680691] xt_ipvs: protocol family 7 not supported [ 3148.705266] xt_ipvs: protocol family 7 not supported 23:23:22 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r1, &(0x7f0000000940)={&(0x7f0000000080)=@caif=@rfm={0x25, 0x9, "e544e24c7de4fd0d8bdadb7c6bd56595"}, 0x80, 0x0, 0x0, &(0x7f00000006c0)=[{0x10, 0x115, 0x6}], 0x10}, 0x20048800) r2 = accept4(r0, &(0x7f0000000f00)=@vsock={0x28, 0x0, 0x0, @reserved}, &(0x7f0000000f80)=0x80, 0x80800) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f0000000fc0)=0x380000, 0x4) ioctl$sock_ifreq(r0, 0x8990, &(0x7f0000000000)={'bond0\x00', @ifru_names='bond_slave_1\x00'}) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000980)={0x0, 0x3b, "f54ddd928ee114e18c464b728d6a3442b6470bdc3a3791f59a70925d993c7795b453f3edeac6e797a3a636cd9e6bfbce8c48ac1caeec3d4b848fad"}, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000a40)={r3, @in6={{0xa, 0x4e22, 0xffffffffffffffff, @mcast2, 0x9}}, 0x1, 0x8000, 0x6, 0x5, 0x5}, &(0x7f0000000b00)=0x98) 23:23:22 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000000812000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:22 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83823, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:22 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00t\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:22 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00h\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:22 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xfffffecf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3148.882710] xt_ipvs: protocol family 7 not supported [ 3148.903461] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3148.913815] CPU: 0 PID: 20305 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3148.921036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3148.930388] Call Trace: [ 3148.932985] dump_stack+0x1db/0x2d0 [ 3148.936622] ? dump_stack_print_info.cold+0x20/0x20 [ 3148.941679] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3148.946799] sysfs_warn_dup.cold+0x1c/0x31 [ 3148.951042] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3148.956412] sysfs_create_link+0x65/0xc0 [ 3148.960491] device_add+0x78e/0x1800 [ 3148.964208] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3148.969580] ? get_device_parent.isra.0+0x570/0x570 [ 3148.974629] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3148.980203] wiphy_register+0x1abd/0x2760 [ 3148.984385] ? wiphy_unregister+0x1340/0x1340 [ 3148.988902] ? rcu_read_lock_sched_held+0x110/0x130 [ 3148.993920] ? __kmalloc+0x5d5/0x740 [ 3148.997638] ? memset+0x32/0x40 [ 3149.000918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3149.006455] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3149.011398] ieee80211_register_hw+0x15e2/0x3f30 [ 3149.016161] ? hrtimer_init_on_stack+0x1/0x40 [ 3149.020667] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3149.025446] ? kasan_check_write+0x14/0x20 [ 3149.029681] ? tasklet_hrtimer_init+0xfa/0x260 [ 3149.034267] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3149.039110] ? tasklet_kill+0xd0/0xd0 [ 3149.042931] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3149.047975] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3149.054034] ? kvasprintf+0x101/0x170 [ 3149.057852] ? bust_spinlocks+0xe0/0xe0 [ 3149.061880] ? kasprintf+0xbb/0xf0 [ 3149.065421] ? kvasprintf_const+0x190/0x190 [ 3149.069748] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3149.074941] ? validate_nla+0x28c/0x1580 [ 3149.079031] hwsim_new_radio_nl+0xca6/0x1430 [ 3149.083452] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3149.088667] genl_family_rcv_msg+0x80d/0x11a0 [ 3149.093171] ? genl_unregister_family+0x8a0/0x8a0 [ 3149.098029] ? radix_tree_insert+0x850/0x850 [ 3149.102443] ? netlink_deliver_tap+0x32b/0xf40 [ 3149.107059] genl_rcv_msg+0xca/0x16c [ 3149.110778] netlink_rcv_skb+0x17d/0x410 [ 3149.114906] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3149.119679] ? netlink_ack+0xba0/0xba0 [ 3149.123572] ? __down_interruptible+0x740/0x740 [ 3149.128250] genl_rcv+0x29/0x40 [ 3149.131527] netlink_unicast+0x574/0x770 [ 3149.135596] ? netlink_attachskb+0x980/0x980 [ 3149.140009] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3149.145546] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3149.150568] netlink_sendmsg+0xa05/0xf90 [ 3149.154628] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3149.160189] ? netlink_unicast+0x770/0x770 [ 3149.164428] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3149.169310] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3149.174067] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3149.179619] ? security_socket_sendmsg+0x93/0xc0 [ 3149.184373] ? netlink_unicast+0x770/0x770 [ 3149.188628] sock_sendmsg+0xdd/0x130 [ 3149.192360] ___sys_sendmsg+0x7ec/0x910 [ 3149.196343] ? copy_msghdr_from_user+0x570/0x570 [ 3149.201100] ? iterate_fd+0x4b0/0x4b0 [ 3149.204914] ? __might_fault+0x12b/0x1e0 [ 3149.208979] ? find_held_lock+0x35/0x120 [ 3149.213044] ? __might_fault+0x12b/0x1e0 [ 3149.217111] ? __fget_light+0x2db/0x420 [ 3149.221103] ? fget_raw+0x20/0x20 [ 3149.224559] ? lock_release+0xc40/0xc40 [ 3149.228537] ? trace_hardirqs_off_caller+0x300/0x300 [ 3149.233640] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3149.239203] ? __fdget+0x1b/0x20 [ 3149.242568] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3149.248123] ? sockfd_lookup_light+0xc2/0x160 [ 3149.252631] __sys_sendmsg+0x112/0x270 [ 3149.256518] ? __ia32_sys_shutdown+0x80/0x80 [ 3149.260948] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3149.266319] ? trace_hardirqs_off_caller+0x300/0x300 [ 3149.271426] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3149.276189] __x64_sys_sendmsg+0x78/0xb0 [ 3149.280255] do_syscall_64+0x1a3/0x800 [ 3149.284147] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3149.289086] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3149.294111] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3149.298968] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3149.304157] RIP: 0033:0x458089 [ 3149.307443] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3149.326341] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3149.334048] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3149.341314] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3149.348583] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3149.355862] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3149.363391] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3149.393402] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:22 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000000a12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:22 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00z\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3149.410064] bond0: Enslaving bond_slave_1 as an active interface with an up link 23:23:22 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83824, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3149.488927] bond0: Error: Device is in use and cannot be enslaved 23:23:22 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x1a0ffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3149.607827] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3149.615634] CPU: 1 PID: 20328 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3149.622854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3149.632302] Call Trace: [ 3149.634922] dump_stack+0x1db/0x2d0 [ 3149.638576] ? dump_stack_print_info.cold+0x20/0x20 [ 3149.643615] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3149.648743] sysfs_warn_dup.cold+0x1c/0x31 23:23:22 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x01\xa0\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:22 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r1, &(0x7f0000000940)={&(0x7f0000000080)=@caif=@rfm={0x25, 0x9, "e544e24c7de4fd0d8bdadb7c6bd56595"}, 0x80, 0x0, 0x0, &(0x7f00000006c0)=[{0x10, 0x115, 0x6}], 0x10}, 0x20048800) r2 = accept4(r0, &(0x7f0000000f00)=@vsock={0x28, 0x0, 0x0, @reserved}, &(0x7f0000000f80)=0x80, 0x80800) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f0000000fc0)=0x380000, 0x4) ioctl$sock_ifreq(r0, 0x8990, &(0x7f0000000000)={'bond0\x00', @ifru_names='bond_slave_1\x00'}) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000980)={0x0, 0x3b, "f54ddd928ee114e18c464b728d6a3442b6470bdc3a3791f59a70925d993c7795b453f3edeac6e797a3a636cd9e6bfbce8c48ac1caeec3d4b848fad"}, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000a40)={r3, @in6={{0xa, 0x4e22, 0xffffffffffffffff, @mcast2, 0x9}}, 0x1, 0x8000, 0x6, 0x5, 0x5}, &(0x7f0000000b00)=0x98) 23:23:22 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00l\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3149.652992] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3149.658805] sysfs_create_link+0x65/0xc0 [ 3149.662892] device_add+0x78e/0x1800 [ 3149.666620] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3149.672023] ? get_device_parent.isra.0+0x570/0x570 [ 3149.677052] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3149.682626] wiphy_register+0x1abd/0x2760 [ 3149.686829] ? wiphy_unregister+0x1340/0x1340 [ 3149.691365] ? rcu_read_lock_sched_held+0x110/0x130 [ 3149.696391] ? __kmalloc+0x5d5/0x740 [ 3149.696409] ? memset+0x32/0x40 [ 3149.696425] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3149.696443] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3149.696462] ieee80211_register_hw+0x15e2/0x3f30 [ 3149.718659] ? hrtimer_init_on_stack+0x1/0x40 [ 3149.723170] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3149.727946] ? kasan_check_write+0x14/0x20 [ 3149.732188] ? tasklet_hrtimer_init+0xfa/0x260 [ 3149.736775] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3149.741632] ? tasklet_kill+0xd0/0xd0 [ 3149.745506] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3149.750541] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3149.756595] ? kvasprintf+0x101/0x170 [ 3149.760393] ? bust_spinlocks+0xe0/0xe0 [ 3149.764379] ? kasprintf+0xbb/0xf0 [ 3149.767924] ? kvasprintf_const+0x190/0x190 [ 3149.772250] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3149.777463] ? validate_nla+0x28c/0x1580 [ 3149.781550] hwsim_new_radio_nl+0xca6/0x1430 [ 3149.785989] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3149.791216] genl_family_rcv_msg+0x80d/0x11a0 [ 3149.795734] ? genl_unregister_family+0x8a0/0x8a0 [ 3149.800601] ? radix_tree_insert+0x850/0x850 [ 3149.805027] ? netlink_deliver_tap+0x32b/0xf40 [ 3149.809637] genl_rcv_msg+0xca/0x16c [ 3149.813361] netlink_rcv_skb+0x17d/0x410 [ 3149.817451] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3149.822208] ? netlink_ack+0xba0/0xba0 [ 3149.826105] ? __down_interruptible+0x740/0x740 [ 3149.830802] genl_rcv+0x29/0x40 [ 3149.834085] netlink_unicast+0x574/0x770 [ 3149.838186] ? netlink_attachskb+0x980/0x980 [ 3149.842613] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3149.848172] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3149.853191] netlink_sendmsg+0xa05/0xf90 [ 3149.857249] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3149.862800] ? netlink_unicast+0x770/0x770 [ 3149.867055] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3149.871921] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3149.876674] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3149.882210] ? security_socket_sendmsg+0x93/0xc0 [ 3149.886982] ? netlink_unicast+0x770/0x770 [ 3149.891225] sock_sendmsg+0xdd/0x130 [ 3149.894944] ___sys_sendmsg+0x7ec/0x910 [ 3149.898926] ? copy_msghdr_from_user+0x570/0x570 [ 3149.903680] ? iterate_fd+0x4b0/0x4b0 [ 3149.907486] ? __might_fault+0x12b/0x1e0 [ 3149.911543] ? find_held_lock+0x35/0x120 [ 3149.915601] ? __might_fault+0x12b/0x1e0 [ 3149.919670] ? __fget_light+0x2db/0x420 [ 3149.923664] ? fget_raw+0x20/0x20 [ 3149.927118] ? lock_release+0xc40/0xc40 [ 3149.931094] ? trace_hardirqs_off_caller+0x300/0x300 [ 3149.936200] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3149.941747] ? __fdget+0x1b/0x20 [ 3149.945112] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3149.950665] ? sockfd_lookup_light+0xc2/0x160 [ 3149.955158] __sys_sendmsg+0x112/0x270 [ 3149.959051] ? __ia32_sys_shutdown+0x80/0x80 [ 3149.963504] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3149.968910] ? trace_hardirqs_off_caller+0x300/0x300 [ 3149.974017] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3149.978776] __x64_sys_sendmsg+0x78/0xb0 [ 3149.982847] do_syscall_64+0x1a3/0x800 [ 3149.986739] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3149.991667] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3149.996705] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3150.001555] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3150.006750] RIP: 0033:0x458089 [ 3150.009945] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3150.028854] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3150.036564] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3150.043853] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3150.051148] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3150.058413] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3150.065678] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3150.131108] bond0: Error: Device is in use and cannot be enslaved 23:23:23 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000000f12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3150.183352] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3150.220554] CPU: 0 PID: 20328 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3150.227760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3150.237115] Call Trace: [ 3150.239715] dump_stack+0x1db/0x2d0 [ 3150.243363] ? dump_stack_print_info.cold+0x20/0x20 [ 3150.248409] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3150.253531] sysfs_warn_dup.cold+0x1c/0x31 [ 3150.257777] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3150.263158] sysfs_create_link+0x65/0xc0 [ 3150.267237] device_add+0x78e/0x1800 [ 3150.270961] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3150.276345] ? get_device_parent.isra.0+0x570/0x570 [ 3150.281371] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3150.286935] wiphy_register+0x1abd/0x2760 [ 3150.291103] ? wiphy_unregister+0x1340/0x1340 [ 3150.295611] ? rcu_read_lock_sched_held+0x110/0x130 [ 3150.300625] ? __kmalloc+0x5d5/0x740 [ 3150.304345] ? memset+0x32/0x40 [ 3150.307631] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3150.313157] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3150.318077] ieee80211_register_hw+0x15e2/0x3f30 [ 3150.322834] ? hrtimer_init_on_stack+0x1/0x40 [ 3150.327354] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3150.332124] ? kasan_check_write+0x14/0x20 [ 3150.336346] ? tasklet_hrtimer_init+0xfa/0x260 [ 3150.340920] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3150.345763] ? tasklet_kill+0xd0/0xd0 [ 3150.349554] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3150.354566] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3150.360609] ? kvasprintf+0x101/0x170 [ 3150.364397] ? bust_spinlocks+0xe0/0xe0 [ 3150.368379] ? kasprintf+0xbb/0xf0 [ 3150.371918] ? kvasprintf_const+0x190/0x190 [ 3150.376234] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3150.382557] ? validate_nla+0x28c/0x1580 [ 3150.386622] hwsim_new_radio_nl+0xca6/0x1430 [ 3150.391049] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3150.396252] genl_family_rcv_msg+0x80d/0x11a0 [ 3150.400735] ? genl_unregister_family+0x8a0/0x8a0 [ 3150.405577] ? radix_tree_insert+0x850/0x850 [ 3150.409989] ? netlink_deliver_tap+0x32b/0xf40 [ 3150.414592] genl_rcv_msg+0xca/0x16c [ 3150.418294] netlink_rcv_skb+0x17d/0x410 [ 3150.422339] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3150.427100] ? netlink_ack+0xba0/0xba0 [ 3150.430982] ? __down_interruptible+0x740/0x740 [ 3150.435639] genl_rcv+0x29/0x40 [ 3150.438906] netlink_unicast+0x574/0x770 [ 3150.442972] ? netlink_attachskb+0x980/0x980 [ 3150.447431] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3150.452964] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3150.457970] netlink_sendmsg+0xa05/0xf90 [ 3150.462032] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3150.467558] ? netlink_unicast+0x770/0x770 [ 3150.471778] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3150.476793] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3150.481536] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3150.487073] ? security_socket_sendmsg+0x93/0xc0 [ 3150.491827] ? netlink_unicast+0x770/0x770 [ 3150.496063] sock_sendmsg+0xdd/0x130 [ 3150.499781] ___sys_sendmsg+0x7ec/0x910 [ 3150.503803] ? copy_msghdr_from_user+0x570/0x570 [ 3150.508546] ? iterate_fd+0x4b0/0x4b0 [ 3150.512351] ? __might_fault+0x12b/0x1e0 [ 3150.516425] ? find_held_lock+0x35/0x120 [ 3150.520489] ? __might_fault+0x12b/0x1e0 [ 3150.524566] ? __fget_light+0x2db/0x420 [ 3150.528541] ? fget_raw+0x20/0x20 [ 3150.531982] ? lock_release+0xc40/0xc40 [ 3150.535947] ? trace_hardirqs_off_caller+0x300/0x300 [ 3150.541038] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3150.546568] ? __fdget+0x1b/0x20 [ 3150.549920] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3150.555446] ? sockfd_lookup_light+0xc2/0x160 [ 3150.559942] __sys_sendmsg+0x112/0x270 [ 3150.563902] ? __ia32_sys_shutdown+0x80/0x80 [ 3150.568342] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3150.573701] ? trace_hardirqs_off_caller+0x300/0x300 [ 3150.578796] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3150.583539] __x64_sys_sendmsg+0x78/0xb0 [ 3150.587645] do_syscall_64+0x1a3/0x800 [ 3150.591530] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3150.596465] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3150.601513] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3150.606360] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3150.611541] RIP: 0033:0x458089 [ 3150.614728] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 23:23:23 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\a\xff\xff\xfe\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:23 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83823, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3150.633633] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3150.641335] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3150.648602] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3150.655867] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3150.663119] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3150.670370] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3150.738678] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3150.762784] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 23:23:24 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83825, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:24 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\xff\xff\xff\xff\xa0\x01\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3150.784579] CPU: 1 PID: 20359 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3150.791783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3150.801151] Call Trace: [ 3150.803751] dump_stack+0x1db/0x2d0 [ 3150.807413] ? dump_stack_print_info.cold+0x20/0x20 [ 3150.812450] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3150.812479] sysfs_warn_dup.cold+0x1c/0x31 [ 3150.812501] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3150.821815] sysfs_create_link+0x65/0xc0 [ 3150.821834] device_add+0x78e/0x1800 [ 3150.821888] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3150.821925] ? get_device_parent.isra.0+0x570/0x570 [ 3150.845422] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3150.850979] wiphy_register+0x1abd/0x2760 [ 3150.855145] ? wiphy_unregister+0x1340/0x1340 [ 3150.855165] ? rcu_read_lock_sched_held+0x110/0x130 [ 3150.855181] ? __kmalloc+0x5d5/0x740 [ 3150.855196] ? memset+0x32/0x40 [ 3150.871646] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3150.871664] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3150.871683] ieee80211_register_hw+0x15e2/0x3f30 [ 3150.871703] ? hrtimer_init_on_stack+0x1/0x40 [ 3150.871722] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3150.896136] ? kasan_check_write+0x14/0x20 [ 3150.900386] ? tasklet_hrtimer_init+0xfa/0x260 [ 3150.904990] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3150.909835] ? tasklet_kill+0xd0/0xd0 [ 3150.913692] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3150.918782] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3150.924850] ? kvasprintf+0x101/0x170 [ 3150.928662] ? bust_spinlocks+0xe0/0xe0 [ 3150.932642] ? kasprintf+0xbb/0xf0 [ 3150.936168] ? kvasprintf_const+0x190/0x190 [ 3150.940481] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3150.945657] ? validate_nla+0x28c/0x1580 [ 3150.949707] hwsim_new_radio_nl+0xca6/0x1430 [ 3150.954126] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3150.959346] genl_family_rcv_msg+0x80d/0x11a0 [ 3150.963849] ? genl_unregister_family+0x8a0/0x8a0 [ 3150.968697] ? radix_tree_insert+0x850/0x850 [ 3150.973125] ? netlink_deliver_tap+0x32b/0xf40 [ 3150.977742] genl_rcv_msg+0xca/0x16c [ 3150.981472] netlink_rcv_skb+0x17d/0x410 [ 3150.985528] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3150.990277] ? netlink_ack+0xba0/0xba0 [ 3150.994186] ? __down_interruptible+0x740/0x740 [ 3150.998885] genl_rcv+0x29/0x40 [ 3151.002153] netlink_unicast+0x574/0x770 [ 3151.006218] ? netlink_attachskb+0x980/0x980 [ 3151.010642] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3151.016207] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3151.021213] netlink_sendmsg+0xa05/0xf90 [ 3151.025262] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3151.030792] ? netlink_unicast+0x770/0x770 [ 3151.035016] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3151.039854] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3151.044603] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3151.050151] ? security_socket_sendmsg+0x93/0xc0 [ 3151.054920] ? netlink_unicast+0x770/0x770 [ 3151.059158] sock_sendmsg+0xdd/0x130 [ 3151.062873] ___sys_sendmsg+0x7ec/0x910 [ 3151.066854] ? copy_msghdr_from_user+0x570/0x570 [ 3151.071629] ? iterate_fd+0x4b0/0x4b0 [ 3151.075416] ? __might_fault+0x12b/0x1e0 [ 3151.079461] ? find_held_lock+0x35/0x120 [ 3151.083503] ? __might_fault+0x12b/0x1e0 [ 3151.087548] ? __fget_light+0x2db/0x420 [ 3151.091507] ? fget_raw+0x20/0x20 [ 3151.094972] ? lock_release+0xc40/0xc40 [ 3151.098981] ? trace_hardirqs_off_caller+0x300/0x300 [ 3151.104097] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3151.109680] ? __fdget+0x1b/0x20 [ 3151.113032] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3151.118561] ? sockfd_lookup_light+0xc2/0x160 [ 3151.123045] __sys_sendmsg+0x112/0x270 [ 3151.126932] ? __ia32_sys_shutdown+0x80/0x80 [ 3151.131378] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3151.136757] ? trace_hardirqs_off_caller+0x300/0x300 [ 3151.141869] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3151.146641] __x64_sys_sendmsg+0x78/0xb0 [ 3151.150717] do_syscall_64+0x1a3/0x800 [ 3151.154606] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3151.159537] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3151.164572] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3151.169450] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3151.174643] RIP: 0033:0x458089 23:23:24 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000001012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3151.177860] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3151.196760] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3151.204454] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3151.211732] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3151.218997] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3151.226263] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3151.233541] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3151.269043] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3151.307017] CPU: 0 PID: 20368 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3151.314223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3151.323584] Call Trace: [ 3151.326187] dump_stack+0x1db/0x2d0 [ 3151.329865] ? dump_stack_print_info.cold+0x20/0x20 [ 3151.334926] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3151.340050] sysfs_warn_dup.cold+0x1c/0x31 [ 3151.344303] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3151.349678] sysfs_create_link+0x65/0xc0 [ 3151.353748] device_add+0x78e/0x1800 [ 3151.357470] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3151.362949] ? get_device_parent.isra.0+0x570/0x570 23:23:24 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x9000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3151.367988] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3151.373545] wiphy_register+0x1abd/0x2760 [ 3151.377715] ? wiphy_unregister+0x1340/0x1340 [ 3151.382238] ? rcu_read_lock_sched_held+0x110/0x130 [ 3151.387282] ? __kmalloc+0x5d5/0x740 [ 3151.391067] ? memset+0x32/0x40 [ 3151.394349] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3151.399906] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3151.404856] ieee80211_register_hw+0x15e2/0x3f30 [ 3151.409629] ? hrtimer_init_on_stack+0x1/0x40 [ 3151.414160] ? ieee80211_ifa_changed+0xf30/0xf30 23:23:24 executing program 3: r0 = accept4$tipc(0xffffffffffffff9c, &(0x7f00000000c0), &(0x7f0000000100)=0x10, 0x80800) write$binfmt_elf64(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="7f454c4605040802050000000000000000000300ff0f000010010000000000004000000000000000860000000000000005000000018038000200ff07020005000700000004000000070000000000000003000000000000000100000000000000ffffff7fffffffff09000000000000000400000000000000bc06cbd389f550cddb7475fd563951c82cd52a2b401b96f1531bf71d414480f3821014a97aea8e0800000000000000a21d327359997f93ed0dc579b4cfb6394403d3c5a8f785c470caca1396b8ee43024647a0d3677ec6bbe5"], 0xd1) pipe(&(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$TIPC_MCAST_REPLICAST(r2, 0x10f, 0x86) sendto$rose(r1, 0xffffffffffffffff, 0x0, 0x20008000, &(0x7f0000000540)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x3, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default]}, 0x40) r3 = socket$alg(0x26, 0x5, 0x0) ioctl$FS_IOC_GETFSLABEL(r3, 0x81009431, &(0x7f0000000300)) bind$alg(r3, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-pclmul\x00'}, 0xfffffffffffffed9) socketpair(0xa, 0x4, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000040)={0x3f}, 0x4) ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000140)={0x529, 0x0, 0x8, 0x8, 0xffffffff}) r5 = accept$alg(r3, 0x0, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r4, 0x891b, &(0x7f0000000180)={'ip_vti0\x00', {0x2, 0x4e20, @empty}}) r6 = openat$cgroup_ro(r5, &(0x7f00000001c0)='cgroup.events\x00', 0x0, 0x0) openat$cgroup_ro(r6, &(0x7f0000000200)='/\x02roup.stap\x00', 0x2761, 0x0) r7 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) write$cgroup_int(r7, &(0x7f00000002c0), 0x12) sendfile(r5, r7, &(0x7f0000000000)=0x2, 0x6) [ 3151.418931] ? kasan_check_write+0x14/0x20 [ 3151.423200] ? tasklet_hrtimer_init+0xfa/0x260 [ 3151.427803] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3151.432653] ? tasklet_kill+0xd0/0xd0 [ 3151.436477] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3151.441523] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3151.447602] ? kvasprintf+0x101/0x170 [ 3151.447618] ? bust_spinlocks+0xe0/0xe0 [ 3151.447660] ? kasprintf+0xbb/0xf0 [ 3151.447675] ? kvasprintf_const+0x190/0x190 [ 3151.447692] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3151.447711] ? validate_nla+0x28c/0x1580 [ 3151.455491] hwsim_new_radio_nl+0xca6/0x1430 [ 3151.476957] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3151.482202] genl_family_rcv_msg+0x80d/0x11a0 [ 3151.486711] ? genl_unregister_family+0x8a0/0x8a0 [ 3151.491572] ? radix_tree_insert+0x850/0x850 [ 3151.496045] ? netlink_deliver_tap+0x32b/0xf40 [ 3151.500673] genl_rcv_msg+0xca/0x16c [ 3151.504399] netlink_rcv_skb+0x17d/0x410 [ 3151.508647] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3151.513410] ? netlink_ack+0xba0/0xba0 [ 3151.517312] ? __down_interruptible+0x740/0x740 [ 3151.521997] genl_rcv+0x29/0x40 [ 3151.525289] netlink_unicast+0x574/0x770 [ 3151.529367] ? netlink_attachskb+0x980/0x980 [ 3151.533787] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3151.539337] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3151.544370] netlink_sendmsg+0xa05/0xf90 [ 3151.548442] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3151.554001] ? netlink_unicast+0x770/0x770 [ 3151.558252] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3151.563107] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3151.567887] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3151.573446] ? security_socket_sendmsg+0x93/0xc0 [ 3151.578214] ? netlink_unicast+0x770/0x770 [ 3151.582461] sock_sendmsg+0xdd/0x130 [ 3151.586195] ___sys_sendmsg+0x7ec/0x910 [ 3151.590189] ? copy_msghdr_from_user+0x570/0x570 [ 3151.594954] ? iterate_fd+0x4b0/0x4b0 [ 3151.598776] ? __might_fault+0x12b/0x1e0 [ 3151.602876] ? find_held_lock+0x35/0x120 [ 3151.606969] ? __might_fault+0x12b/0x1e0 [ 3151.611045] ? __fget_light+0x2db/0x420 [ 3151.615032] ? fget_raw+0x20/0x20 23:23:24 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) close(r0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f00000000c0)={0x0, {{0x2, 0x4e20, @empty}}}, 0x88) r1 = socket(0x840000000002, 0x3, 0xff) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10) write(r1, 0x0, 0x0) [ 3151.618509] ? lock_release+0xc40/0xc40 [ 3151.622490] ? trace_hardirqs_off_caller+0x300/0x300 [ 3151.627614] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3151.633171] ? __fdget+0x1b/0x20 [ 3151.636547] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3151.642103] ? sockfd_lookup_light+0xc2/0x160 [ 3151.646625] __sys_sendmsg+0x112/0x270 [ 3151.650527] ? __ia32_sys_shutdown+0x80/0x80 [ 3151.654958] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3151.660336] ? trace_hardirqs_off_caller+0x300/0x300 [ 3151.665456] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3151.670214] __x64_sys_sendmsg+0x78/0xb0 [ 3151.674276] do_syscall_64+0x1a3/0x800 [ 3151.674314] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3151.674362] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3151.683184] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3151.683210] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3151.683223] RIP: 0033:0x458089 [ 3151.683238] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 23:23:25 executing program 3: sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000040)=@l2={0x1f, 0xffffdd86}, 0x80, 0x0}, 0x0) r0 = socket$kcm(0x11, 0x3, 0x0) sendmsg$kcm(r0, &(0x7f0000000100)={&(0x7f0000000040)=@nfc={0x27, 0x4}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000200)="c109000000000001a0001fe4ac14", 0xe}], 0x1}, 0x0) sendmsg$kcm(r0, &(0x7f00000006c0)={&(0x7f0000000140)=@caif=@util={0x25, "4e17cbf6a96db4349926b7b32ee79c48"}, 0x80, &(0x7f0000000340)=[{&(0x7f00000001c0)="c652cba3f470f91b4898d0d3f6afcbf6f76d09a731a054f861b622382c74773636fbb0a6f2d83338aae7", 0x2a}, {&(0x7f0000000240)="c13018040e1cd3636be95ebd195ffc6228fcd5e68bf4e0f3e7eee93e98a69af81a9ffc3a25efd55016d3c073af86c70892d7f67bfb77dbc233a802854adca06eee0504c52b059530f20fdfee0f97da3e5b25b97a004485640e487a4f957bf0128fbe8e3f34c1ab5f18b304a241bb2cc623e671ee5c80731b97cb174c762c9aea94e184fb5cc671e115220137486ae9ad0d01b36f22618f302ad185b7861b82af911173352c58a37cf90377e6b99a69125108b635c7b5fd0e37757e3199a60aa6442e9a355dc3140de4927e0760e2e90ad6b16480001fca47e984be8c97d4d8a6e9bbfa8238647c", 0xe7}], 0x2, &(0x7f0000000380)=[{0xb8, 0x196, 0xffffffff, "a92ccb7e08124225f5ef75906e537be0a1f6d202b6404aa29ec57c35189f6c998b47baa1bd18515c0c90102fdbd4c613cf45e0d0a849bcf1c3eb883f186964e0ec5cc9f5e4b6dd01c116ab137806d7f59d549e55e8e3a4985e6920d5de124e33fd734bcbe5bae320cf8f28012df0fd9abeb6d675507ac0bc0ca88111aa365203efdf0b3614b6eb3517546719aa1ad36382043ae94ac0d0c5197e82ee4a741096281b5a26d4fc"}, {0x98, 0x10f, 0xffffffffffff4eb8, "01764cf770cf6d399d0c40c52b799f13aa2866b3a157458f74a2079b19adc6d71cf612810f0b98123ea6b75944cd166749b274156a2ef0a6c632f45f09294dfadf9e70b8cb330d1dfe67b33f5c741801e3a48a20f8aba30f3e944a296cc492cc609a1096a2ab86d01938cfc4ebf38f616d946ee9ea4c3893503f76a23e066c525058"}, {0x80, 0x113, 0x3, "791cb2a18fe27fad2211968140552bab07ef0975394ce10e28acc9cdd08d483d10898b5a8f8225e3fbe5b29ee7d109e444b74549cb640e8d22d0f182ad9f140df615b9d6aba4bb37990ca219c39f7fe59b7ef3c8ee4be21522f595962b07c03426603fb41f82471a50"}, {0xe8, 0x10b, 0x0, "30bd952bf8ccc2091d28c7ee7cad48486c11bf058c2b327bcd515110e207e6a565379199541021cb612740ba54124548b06cfd7a0dddd67d7a2861a7efa1aeb7c3754b66e438ccbe21d098b7abe524abfd8bf111a6e424d68a1601de99f9f6dd2b53eb5bc0e8ada8b146b4127bc213cf39118f3445f466bf93b5acb6d725cddc99371ff9efe909177f7cd5fe033912de133c0b523d0fe623e4b877187eda4b69fd57bc1b95211fc8bac34cbf5d3eee2ce4f9eac9ba3489094ec09fd3438987b22851d6c49ac4509570f958888f2136a1c4d65afb40e3"}, {0x70, 0x11f, 0x3, "ebbd259c79f9ffe3b88435c39d3f097301c3e9ec1893ea3481efa4d8bfbfa9d5f4615a688308b5d403e003198ca5bfe59659e8ca5dc8d4ff3c3ff76e04541592d1afc37d366bac5c872599f21bbcba9faa446ee3844d6561290414e30a62"}], 0x328}, 0x4) [ 3151.683249] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3151.728077] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3151.735350] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3151.742627] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3151.749906] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3151.757197] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:25 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00t\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3151.783664] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:25 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83826, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:25 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:25 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000002012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:25 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xb4000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3151.982487] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3152.061078] CPU: 1 PID: 20409 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3152.068320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3152.077678] Call Trace: [ 3152.080276] dump_stack+0x1db/0x2d0 [ 3152.083918] ? dump_stack_print_info.cold+0x20/0x20 [ 3152.088967] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3152.094088] sysfs_warn_dup.cold+0x1c/0x31 [ 3152.098333] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3152.103736] sysfs_create_link+0x65/0xc0 [ 3152.107810] device_add+0x78e/0x1800 23:23:25 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83825, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3152.111542] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3152.116913] ? get_device_parent.isra.0+0x570/0x570 [ 3152.116931] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3152.116958] wiphy_register+0x1abd/0x2760 [ 3152.116987] ? wiphy_unregister+0x1340/0x1340 [ 3152.136188] ? rcu_read_lock_sched_held+0x110/0x130 [ 3152.141211] ? __kmalloc+0x5d5/0x740 [ 3152.144952] ? memset+0x32/0x40 [ 3152.148245] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3152.153794] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3152.158737] ieee80211_register_hw+0x15e2/0x3f30 [ 3152.163556] ? hrtimer_init_on_stack+0x1/0x40 [ 3152.168072] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3152.172815] ? kasan_check_write+0x14/0x20 [ 3152.177045] ? tasklet_hrtimer_init+0xfa/0x260 [ 3152.181621] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3152.186469] ? tasklet_kill+0xd0/0xd0 [ 3152.190276] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3152.195290] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3152.201330] ? kvasprintf+0x101/0x170 [ 3152.205127] ? bust_spinlocks+0xe0/0xe0 [ 3152.209093] ? kasprintf+0xbb/0xf0 [ 3152.212618] ? kvasprintf_const+0x190/0x190 [ 3152.216926] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3152.222107] ? validate_nla+0x28c/0x1580 [ 3152.226173] hwsim_new_radio_nl+0xca6/0x1430 [ 3152.230572] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3152.235756] genl_family_rcv_msg+0x80d/0x11a0 [ 3152.240272] ? genl_unregister_family+0x8a0/0x8a0 [ 3152.245108] ? radix_tree_insert+0x850/0x850 [ 3152.249500] ? netlink_deliver_tap+0x32b/0xf40 [ 3152.254082] genl_rcv_msg+0xca/0x16c [ 3152.257785] netlink_rcv_skb+0x17d/0x410 [ 3152.261834] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3152.266593] ? netlink_ack+0xba0/0xba0 [ 3152.270484] ? __down_interruptible+0x740/0x740 [ 3152.275170] genl_rcv+0x29/0x40 [ 3152.278448] netlink_unicast+0x574/0x770 [ 3152.282498] ? netlink_attachskb+0x980/0x980 [ 3152.286896] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3152.292420] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3152.297424] netlink_sendmsg+0xa05/0xf90 [ 3152.301472] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3152.307001] ? netlink_unicast+0x770/0x770 [ 3152.311247] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3152.316092] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3152.320847] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3152.326396] ? security_socket_sendmsg+0x93/0xc0 [ 3152.331165] ? netlink_unicast+0x770/0x770 [ 3152.335400] sock_sendmsg+0xdd/0x130 [ 3152.339128] ___sys_sendmsg+0x7ec/0x910 [ 3152.343252] ? copy_msghdr_from_user+0x570/0x570 [ 3152.348035] ? iterate_fd+0x4b0/0x4b0 [ 3152.351884] ? __might_fault+0x12b/0x1e0 [ 3152.355951] ? find_held_lock+0x35/0x120 [ 3152.359997] ? __might_fault+0x12b/0x1e0 [ 3152.364072] ? __fget_light+0x2db/0x420 [ 3152.368058] ? fget_raw+0x20/0x20 [ 3152.371550] ? lock_release+0xc40/0xc40 [ 3152.375525] ? trace_hardirqs_off_caller+0x300/0x300 [ 3152.380622] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3152.386183] ? __fdget+0x1b/0x20 [ 3152.389552] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3152.395076] ? sockfd_lookup_light+0xc2/0x160 [ 3152.399557] __sys_sendmsg+0x112/0x270 [ 3152.403450] ? __ia32_sys_shutdown+0x80/0x80 [ 3152.407914] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3152.413307] ? trace_hardirqs_off_caller+0x300/0x300 [ 3152.418396] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3152.423247] __x64_sys_sendmsg+0x78/0xb0 [ 3152.427309] do_syscall_64+0x1a3/0x800 [ 3152.431223] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3152.436139] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3152.441169] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3152.446018] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3152.451210] RIP: 0033:0x458089 [ 3152.454399] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3152.473282] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3152.481013] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3152.488276] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3152.495563] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3152.502850] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 23:23:25 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3152.510125] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:25 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83827, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3152.537403] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3152.570015] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3152.613967] ipvs_mt_check: 16 callbacks suppressed [ 3152.613974] xt_ipvs: protocol family 7 not supported [ 3152.624918] CPU: 1 PID: 20425 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3152.632122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3152.639526] xt_ipvs: protocol family 7 not supported [ 3152.641471] Call Trace: [ 3152.641495] dump_stack+0x1db/0x2d0 [ 3152.641517] ? dump_stack_print_info.cold+0x20/0x20 [ 3152.641539] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3152.641568] sysfs_warn_dup.cold+0x1c/0x31 [ 3152.667211] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3152.672564] sysfs_create_link+0x65/0xc0 [ 3152.676611] device_add+0x78e/0x1800 [ 3152.680322] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3152.685703] ? get_device_parent.isra.0+0x570/0x570 [ 3152.690714] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3152.696255] wiphy_register+0x1abd/0x2760 [ 3152.700406] ? wiphy_unregister+0x1340/0x1340 [ 3152.704887] ? rcu_read_lock_sched_held+0x110/0x130 [ 3152.709896] ? __kmalloc+0x5d5/0x740 [ 3152.713603] ? memset+0x32/0x40 [ 3152.716867] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3152.722403] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3152.727359] ieee80211_register_hw+0x15e2/0x3f30 [ 3152.732104] ? hrtimer_init_on_stack+0x1/0x40 [ 3152.736585] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3152.741326] ? kasan_check_write+0x14/0x20 [ 3152.745543] ? tasklet_hrtimer_init+0xfa/0x260 [ 3152.750165] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3152.755005] ? tasklet_kill+0xd0/0xd0 [ 3152.758798] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3152.763815] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3152.769896] ? kvasprintf+0x101/0x170 [ 3152.773695] ? bust_spinlocks+0xe0/0xe0 [ 3152.777659] ? kasprintf+0xbb/0xf0 [ 3152.781193] ? kvasprintf_const+0x190/0x190 [ 3152.785521] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3152.790708] ? validate_nla+0x28c/0x1580 [ 3152.794773] hwsim_new_radio_nl+0xca6/0x1430 [ 3152.799191] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3152.804391] genl_family_rcv_msg+0x80d/0x11a0 [ 3152.808874] ? genl_unregister_family+0x8a0/0x8a0 [ 3152.813706] ? radix_tree_insert+0x850/0x850 [ 3152.818114] ? netlink_deliver_tap+0x32b/0xf40 [ 3152.822692] genl_rcv_msg+0xca/0x16c [ 3152.826432] netlink_rcv_skb+0x17d/0x410 [ 3152.830492] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3152.835239] ? netlink_ack+0xba0/0xba0 [ 3152.839133] ? __down_interruptible+0x740/0x740 [ 3152.843793] genl_rcv+0x29/0x40 [ 3152.847056] netlink_unicast+0x574/0x770 [ 3152.851118] ? netlink_attachskb+0x980/0x980 [ 3152.855547] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3152.861083] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3152.866118] netlink_sendmsg+0xa05/0xf90 [ 3152.870165] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3152.875691] ? netlink_unicast+0x770/0x770 [ 3152.879936] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3152.884789] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3152.889530] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3152.895059] ? security_socket_sendmsg+0x93/0xc0 [ 3152.899802] ? netlink_unicast+0x770/0x770 [ 3152.904036] sock_sendmsg+0xdd/0x130 [ 3152.907755] ___sys_sendmsg+0x7ec/0x910 [ 3152.911728] ? copy_msghdr_from_user+0x570/0x570 [ 3152.916500] ? iterate_fd+0x4b0/0x4b0 [ 3152.920300] ? __might_fault+0x12b/0x1e0 [ 3152.924374] ? find_held_lock+0x35/0x120 [ 3152.928445] ? __might_fault+0x12b/0x1e0 [ 3152.932504] ? __fget_light+0x2db/0x420 [ 3152.936494] ? fget_raw+0x20/0x20 [ 3152.939945] ? lock_release+0xc40/0xc40 [ 3152.943906] ? trace_hardirqs_off_caller+0x300/0x300 [ 3152.949012] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3152.954540] ? __fdget+0x1b/0x20 [ 3152.957903] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3152.963436] ? sockfd_lookup_light+0xc2/0x160 [ 3152.967936] __sys_sendmsg+0x112/0x270 [ 3152.971817] ? __ia32_sys_shutdown+0x80/0x80 [ 3152.976228] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3152.981579] ? trace_hardirqs_off_caller+0x300/0x300 [ 3152.986686] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3152.991425] __x64_sys_sendmsg+0x78/0xb0 [ 3152.995469] do_syscall_64+0x1a3/0x800 [ 3152.999340] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3153.004267] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3153.009316] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3153.014190] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3153.019401] RIP: 0033:0x458089 [ 3153.023460] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3153.042342] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3153.050045] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3153.057321] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3153.064602] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3153.071907] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3153.079172] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3153.100871] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3153.124406] CPU: 1 PID: 20436 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3153.131609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3153.140961] Call Trace: [ 3153.140982] dump_stack+0x1db/0x2d0 [ 3153.141011] ? dump_stack_print_info.cold+0x20/0x20 [ 3153.152209] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3153.157325] sysfs_warn_dup.cold+0x1c/0x31 [ 3153.161574] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3153.166987] sysfs_create_link+0x65/0xc0 [ 3153.167003] device_add+0x78e/0x1800 23:23:26 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00z\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:26 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000002812000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:26 executing program 3: socketpair(0x0, 0x1, 0x6, &(0x7f0000000080)={0xffffffffffffffff}) getsockopt$packet_int(r0, 0x107, 0x8, &(0x7f00000000c0), &(0x7f0000000100)=0x4) r1 = socket$nl_xfrm(0x11, 0x3, 0x6) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000000)=0x0) ioctl$sock_FIOSETOWN(r1, 0x8901, &(0x7f0000000040)=r2) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'syz_tun\x00', 0x0}) setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0x6) r4 = socket(0x11, 0x2, 0x0) bind$packet(r4, &(0x7f0000000480)={0x11, 0x3, 0x0, 0x1, 0x0, 0x6, @local}, 0x14) setsockopt(r4, 0x107, 0x5, &(0x7f0000001000), 0xc5) sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, 0x0, 0x0) socket$l2tp(0x18, 0x1, 0x1) bind$packet(r1, &(0x7f0000000240)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @link_local}, 0x14) syz_emit_ethernet(0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="f1b438f203fa86087816499c224cbc67287ba2c2ff7480666f0f66ec04a6187f2cfd4d4aa3ae467bc95d3ab9af5760ef4c6c3f4a5dab8c01ee0784dcc9d9bd3ec558d52a9f10b961dca4cd49da914f0e762b22d0c48d7e09816c65ba5a23869064be3619ff2e641a4e2bfad85c3f1a21ef86e91fbdbfc0afe6fdd57124f4237bb9bbe07674e3e5b070fac6958e88f11c91"], 0x0) [ 3153.167018] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3153.167037] ? get_device_parent.isra.0+0x570/0x570 [ 3153.185195] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3153.190748] wiphy_register+0x1abd/0x2760 [ 3153.194916] ? wiphy_unregister+0x1340/0x1340 [ 3153.199425] ? rcu_read_lock_sched_held+0x110/0x130 [ 3153.204472] ? __kmalloc+0x5d5/0x740 [ 3153.208200] ? memset+0x32/0x40 [ 3153.211492] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3153.217050] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3153.222005] ieee80211_register_hw+0x15e2/0x3f30 [ 3153.224392] xt_ipvs: protocol family 7 not supported [ 3153.226769] ? hrtimer_init_on_stack+0x1/0x40 [ 3153.226792] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3153.226808] ? kasan_check_write+0x14/0x20 [ 3153.226824] ? tasklet_hrtimer_init+0xfa/0x260 [ 3153.249955] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3153.254858] ? tasklet_kill+0xd0/0xd0 [ 3153.258692] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3153.263741] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3153.269823] ? kvasprintf+0x101/0x170 [ 3153.273629] ? bust_spinlocks+0xe0/0xe0 [ 3153.277628] ? kasprintf+0xbb/0xf0 [ 3153.281183] ? kvasprintf_const+0x190/0x190 [ 3153.285521] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3153.290714] ? validate_nla+0x28c/0x1580 [ 3153.294785] hwsim_new_radio_nl+0xca6/0x1430 [ 3153.299239] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3153.304462] genl_family_rcv_msg+0x80d/0x11a0 [ 3153.308966] ? genl_unregister_family+0x8a0/0x8a0 [ 3153.313815] ? radix_tree_insert+0x850/0x850 [ 3153.318230] ? netlink_deliver_tap+0x32b/0xf40 [ 3153.322875] genl_rcv_msg+0xca/0x16c [ 3153.326595] netlink_rcv_skb+0x17d/0x410 [ 3153.330675] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3153.335432] ? netlink_ack+0xba0/0xba0 [ 3153.339326] ? __down_interruptible+0x740/0x740 [ 3153.344007] genl_rcv+0x29/0x40 [ 3153.347282] netlink_unicast+0x574/0x770 [ 3153.351346] ? netlink_attachskb+0x980/0x980 [ 3153.355771] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3153.361321] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3153.366379] netlink_sendmsg+0xa05/0xf90 [ 3153.370445] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3153.375983] ? netlink_unicast+0x770/0x770 [ 3153.380230] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3153.385108] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3153.389867] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3153.395418] ? security_socket_sendmsg+0x93/0xc0 [ 3153.400213] ? netlink_unicast+0x770/0x770 [ 3153.404455] sock_sendmsg+0xdd/0x130 [ 3153.408190] ___sys_sendmsg+0x7ec/0x910 [ 3153.412200] ? copy_msghdr_from_user+0x570/0x570 [ 3153.416954] ? iterate_fd+0x4b0/0x4b0 [ 3153.420764] ? __might_fault+0x12b/0x1e0 [ 3153.424827] ? find_held_lock+0x35/0x120 [ 3153.428927] ? __might_fault+0x12b/0x1e0 [ 3153.433027] ? __fget_light+0x2db/0x420 [ 3153.437004] ? fget_raw+0x20/0x20 [ 3153.440471] ? lock_release+0xc40/0xc40 [ 3153.444445] ? trace_hardirqs_off_caller+0x300/0x300 [ 3153.449546] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3153.455089] ? __fdget+0x1b/0x20 [ 3153.458452] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3153.464008] ? sockfd_lookup_light+0xc2/0x160 [ 3153.468504] __sys_sendmsg+0x112/0x270 [ 3153.472385] ? __ia32_sys_shutdown+0x80/0x80 [ 3153.476809] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3153.482187] ? trace_hardirqs_off_caller+0x300/0x300 [ 3153.487306] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3153.492114] __x64_sys_sendmsg+0x78/0xb0 [ 3153.496182] do_syscall_64+0x1a3/0x800 [ 3153.500132] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3153.505096] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3153.510120] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3153.514975] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3153.520178] RIP: 0033:0x458089 [ 3153.523374] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3153.542282] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3153.550004] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3153.557286] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3153.564548] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 23:23:26 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3153.571813] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3153.579089] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:27 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3153.637797] xt_ipvs: protocol family 7 not supported [ 3153.648397] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3153.661405] xt_ipvs: protocol family 7 not supported 23:23:27 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:27 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000433a12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3153.783039] xt_ipvs: protocol family 7 not supported 23:23:27 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x100000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3153.890287] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3153.903708] xt_ipvs: protocol family 7 not supported [ 3153.906417] xt_ipvs: protocol family 7 not supported 23:23:27 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c) r1 = socket(0x7, 0x3, 0x5) getsockopt$IP6T_SO_GET_INFO(r1, 0x29, 0x40, &(0x7f0000000000)={'nat\x00'}, &(0x7f0000000080)=0x54) recvmmsg(r0, &(0x7f000000b300)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000057c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) sendmmsg(r0, &(0x7f000000ac80), 0x400000000000180, 0x0) 23:23:27 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\xa0\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3153.984160] xt_ipvs: protocol family 7 not supported [ 3153.990154] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 23:23:27 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:27 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000003f12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:27 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x200000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3154.133439] CPU: 0 PID: 20483 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3154.140671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3154.150028] Call Trace: [ 3154.152631] dump_stack+0x1db/0x2d0 [ 3154.156282] ? dump_stack_print_info.cold+0x20/0x20 [ 3154.161326] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3154.166455] sysfs_warn_dup.cold+0x1c/0x31 [ 3154.170711] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3154.174689] xt_ipvs: protocol family 7 not supported [ 3154.176090] sysfs_create_link+0x65/0xc0 [ 3154.176110] device_add+0x78e/0x1800 [ 3154.176127] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3154.176151] ? get_device_parent.isra.0+0x570/0x570 [ 3154.199436] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3154.205012] wiphy_register+0x1abd/0x2760 [ 3154.209201] ? wiphy_unregister+0x1340/0x1340 [ 3154.213710] ? rcu_read_lock_sched_held+0x110/0x130 [ 3154.218758] ? __kmalloc+0x5d5/0x740 [ 3154.222485] ? memset+0x32/0x40 [ 3154.225780] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3154.231419] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3154.236363] ieee80211_register_hw+0x15e2/0x3f30 [ 3154.241137] ? hrtimer_init_on_stack+0x1/0x40 [ 3154.245665] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3154.250447] ? kasan_check_write+0x14/0x20 [ 3154.254694] ? tasklet_hrtimer_init+0xfa/0x260 [ 3154.259287] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3154.264144] ? tasklet_kill+0xd0/0xd0 [ 3154.267968] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3154.273017] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3154.279101] ? kvasprintf+0x101/0x170 [ 3154.282916] ? bust_spinlocks+0xe0/0xe0 [ 3154.286921] ? kasprintf+0xbb/0xf0 [ 3154.290473] ? kvasprintf_const+0x190/0x190 [ 3154.294804] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3154.300017] ? validate_nla+0x28c/0x1580 [ 3154.304095] hwsim_new_radio_nl+0xca6/0x1430 [ 3154.308547] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3154.313786] genl_family_rcv_msg+0x80d/0x11a0 [ 3154.318326] ? genl_unregister_family+0x8a0/0x8a0 [ 3154.323203] ? radix_tree_insert+0x850/0x850 [ 3154.327619] ? netlink_deliver_tap+0x32b/0xf40 [ 3154.332251] genl_rcv_msg+0xca/0x16c [ 3154.335980] netlink_rcv_skb+0x17d/0x410 [ 3154.340060] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3154.345337] ? netlink_ack+0xba0/0xba0 [ 3154.349269] ? __down_interruptible+0x740/0x740 [ 3154.353998] genl_rcv+0x29/0x40 [ 3154.357290] netlink_unicast+0x574/0x770 [ 3154.361385] ? netlink_attachskb+0x980/0x980 [ 3154.365796] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3154.371336] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3154.376374] netlink_sendmsg+0xa05/0xf90 23:23:27 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x05\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3154.380468] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3154.386027] ? netlink_unicast+0x770/0x770 [ 3154.390284] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3154.395147] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3154.399926] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3154.405474] ? security_socket_sendmsg+0x93/0xc0 [ 3154.410245] ? netlink_unicast+0x770/0x770 [ 3154.414512] sock_sendmsg+0xdd/0x130 [ 3154.418245] ___sys_sendmsg+0x7ec/0x910 [ 3154.422262] ? copy_msghdr_from_user+0x570/0x570 [ 3154.427028] ? iterate_fd+0x4b0/0x4b0 [ 3154.430893] ? __might_fault+0x12b/0x1e0 [ 3154.434969] ? find_held_lock+0x35/0x120 [ 3154.439044] ? __might_fault+0x12b/0x1e0 [ 3154.443121] ? __fget_light+0x2db/0x420 [ 3154.447110] ? fget_raw+0x20/0x20 [ 3154.450575] ? lock_release+0xc40/0xc40 [ 3154.454557] ? trace_hardirqs_off_caller+0x300/0x300 [ 3154.459673] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3154.465231] ? __fdget+0x1b/0x20 [ 3154.468623] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3154.474348] ? sockfd_lookup_light+0xc2/0x160 [ 3154.478898] __sys_sendmsg+0x112/0x270 [ 3154.482796] ? __ia32_sys_shutdown+0x80/0x80 [ 3154.487275] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3154.492644] ? trace_hardirqs_off_caller+0x300/0x300 [ 3154.497759] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3154.502527] __x64_sys_sendmsg+0x78/0xb0 [ 3154.506616] do_syscall_64+0x1a3/0x800 [ 3154.510531] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3154.515472] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3154.520523] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3154.525397] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3154.530587] RIP: 0033:0x458089 [ 3154.533797] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3154.552701] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3154.560417] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3154.567706] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3154.574996] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3154.582279] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3154.589565] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3154.603039] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3154.629272] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3154.645837] CPU: 0 PID: 20483 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3154.653062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3154.662416] Call Trace: [ 3154.665011] dump_stack+0x1db/0x2d0 [ 3154.668647] ? dump_stack_print_info.cold+0x20/0x20 [ 3154.673671] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3154.678815] sysfs_warn_dup.cold+0x1c/0x31 23:23:28 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3154.683089] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3154.688492] sysfs_create_link+0x65/0xc0 [ 3154.692560] device_add+0x78e/0x1800 [ 3154.696277] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3154.701674] ? get_device_parent.isra.0+0x570/0x570 [ 3154.706700] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3154.712262] wiphy_register+0x1abd/0x2760 [ 3154.716433] ? wiphy_unregister+0x1340/0x1340 [ 3154.720957] ? rcu_read_lock_sched_held+0x110/0x130 [ 3154.725978] ? __kmalloc+0x5d5/0x740 [ 3154.729696] ? memset+0x32/0x40 [ 3154.732974] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3154.738534] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3154.743469] ieee80211_register_hw+0x15e2/0x3f30 [ 3154.748236] ? hrtimer_init_on_stack+0x1/0x40 [ 3154.752742] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3154.757505] ? kasan_check_write+0x14/0x20 [ 3154.761738] ? tasklet_hrtimer_init+0xfa/0x260 [ 3154.766347] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3154.771194] ? tasklet_kill+0xd0/0xd0 [ 3154.775011] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3154.780051] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3154.786112] ? kvasprintf+0x101/0x170 [ 3154.789917] ? bust_spinlocks+0xe0/0xe0 [ 3154.793905] ? kasprintf+0xbb/0xf0 [ 3154.797448] ? kvasprintf_const+0x190/0x190 [ 3154.801770] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3154.806966] ? validate_nla+0x28c/0x1580 [ 3154.811036] hwsim_new_radio_nl+0xca6/0x1430 [ 3154.815455] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3154.820681] genl_family_rcv_msg+0x80d/0x11a0 [ 3154.825185] ? genl_unregister_family+0x8a0/0x8a0 [ 3154.830040] ? radix_tree_insert+0x850/0x850 [ 3154.834450] ? netlink_deliver_tap+0x32b/0xf40 [ 3154.839061] genl_rcv_msg+0xca/0x16c [ 3154.842781] netlink_rcv_skb+0x17d/0x410 [ 3154.846862] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3154.851623] ? netlink_ack+0xba0/0xba0 [ 3154.855517] ? __down_interruptible+0x740/0x740 [ 3154.860198] genl_rcv+0x29/0x40 [ 3154.863476] netlink_unicast+0x574/0x770 [ 3154.867546] ? netlink_attachskb+0x980/0x980 [ 3154.871960] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3154.877495] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3154.882514] netlink_sendmsg+0xa05/0xf90 [ 3154.886574] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3154.892119] ? netlink_unicast+0x770/0x770 [ 3154.896359] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3154.901209] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3154.905968] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3154.911508] ? security_socket_sendmsg+0x93/0xc0 [ 3154.916262] ? netlink_unicast+0x770/0x770 [ 3154.920504] sock_sendmsg+0xdd/0x130 [ 3154.924240] ___sys_sendmsg+0x7ec/0x910 [ 3154.928239] ? copy_msghdr_from_user+0x570/0x570 [ 3154.933007] ? iterate_fd+0x4b0/0x4b0 [ 3154.936815] ? __might_fault+0x12b/0x1e0 [ 3154.940888] ? find_held_lock+0x35/0x120 [ 3154.944950] ? __might_fault+0x12b/0x1e0 [ 3154.949020] ? __fget_light+0x2db/0x420 [ 3154.953015] ? fget_raw+0x20/0x20 [ 3154.956467] ? lock_release+0xc40/0xc40 [ 3154.960440] ? trace_hardirqs_off_caller+0x300/0x300 [ 3154.965543] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3154.971118] ? __fdget+0x1b/0x20 [ 3154.974481] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3154.980023] ? sockfd_lookup_light+0xc2/0x160 [ 3154.984519] __sys_sendmsg+0x112/0x270 [ 3154.988409] ? __ia32_sys_shutdown+0x80/0x80 [ 3154.992835] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3154.998214] ? trace_hardirqs_off_caller+0x300/0x300 [ 3155.003326] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3155.008112] __x64_sys_sendmsg+0x78/0xb0 [ 3155.012176] do_syscall_64+0x1a3/0x800 [ 3155.016068] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3155.021005] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3155.026031] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3155.030895] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3155.036080] RIP: 0033:0x458089 [ 3155.039275] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3155.058177] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3155.065900] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3155.073169] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3155.080435] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3155.087704] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3155.094972] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:28 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf0ffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3155.138384] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:28 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000004812000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:28 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x800000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:28 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\xff\xff\xfe\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:28 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3155.243740] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3155.308289] CPU: 1 PID: 20532 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3155.315497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3155.324863] Call Trace: [ 3155.327484] dump_stack+0x1db/0x2d0 [ 3155.331132] ? dump_stack_print_info.cold+0x20/0x20 [ 3155.336190] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3155.341335] sysfs_warn_dup.cold+0x1c/0x31 [ 3155.345598] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3155.350977] sysfs_create_link+0x65/0xc0 [ 3155.355055] device_add+0x78e/0x1800 [ 3155.358780] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3155.364158] ? get_device_parent.isra.0+0x570/0x570 [ 3155.369185] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3155.374756] wiphy_register+0x1abd/0x2760 [ 3155.378930] ? wiphy_unregister+0x1340/0x1340 [ 3155.383447] ? rcu_read_lock_sched_held+0x110/0x130 [ 3155.388491] ? __kmalloc+0x5d5/0x740 [ 3155.392233] ? memset+0x32/0x40 [ 3155.395528] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3155.401079] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3155.406039] ieee80211_register_hw+0x15e2/0x3f30 [ 3155.410824] ? hrtimer_init_on_stack+0x1/0x40 [ 3155.415342] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3155.420123] ? kasan_check_write+0x14/0x20 [ 3155.424379] ? tasklet_hrtimer_init+0xfa/0x260 [ 3155.428980] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3155.433836] ? tasklet_kill+0xd0/0xd0 [ 3155.437669] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3155.442715] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3155.448777] ? kvasprintf+0x101/0x170 [ 3155.452586] ? bust_spinlocks+0xe0/0xe0 [ 3155.456585] ? kasprintf+0xbb/0xf0 [ 3155.460150] ? kvasprintf_const+0x190/0x190 [ 3155.464484] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3155.469684] ? validate_nla+0x28c/0x1580 [ 3155.473780] hwsim_new_radio_nl+0xca6/0x1430 [ 3155.478223] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3155.483444] genl_family_rcv_msg+0x80d/0x11a0 [ 3155.487981] ? genl_unregister_family+0x8a0/0x8a0 [ 3155.492889] ? radix_tree_insert+0x850/0x850 [ 3155.497322] ? netlink_deliver_tap+0x32b/0xf40 [ 3155.501973] genl_rcv_msg+0xca/0x16c [ 3155.505702] netlink_rcv_skb+0x17d/0x410 [ 3155.509771] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3155.514539] ? netlink_ack+0xba0/0xba0 [ 3155.518439] ? __down_interruptible+0x740/0x740 [ 3155.523124] genl_rcv+0x29/0x40 [ 3155.526417] netlink_unicast+0x574/0x770 [ 3155.530522] ? netlink_attachskb+0x980/0x980 [ 3155.534958] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3155.540514] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3155.545558] netlink_sendmsg+0xa05/0xf90 [ 3155.549629] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3155.555182] ? netlink_unicast+0x770/0x770 [ 3155.559430] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3155.564280] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3155.569044] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3155.574594] ? security_socket_sendmsg+0x93/0xc0 [ 3155.579361] ? netlink_unicast+0x770/0x770 [ 3155.583607] sock_sendmsg+0xdd/0x130 [ 3155.587397] ___sys_sendmsg+0x7ec/0x910 [ 3155.591396] ? copy_msghdr_from_user+0x570/0x570 [ 3155.596162] ? iterate_fd+0x4b0/0x4b0 [ 3155.599982] ? __might_fault+0x12b/0x1e0 [ 3155.604054] ? find_held_lock+0x35/0x120 [ 3155.608127] ? __might_fault+0x12b/0x1e0 [ 3155.612197] ? __fget_light+0x2db/0x420 [ 3155.616182] ? fget_raw+0x20/0x20 [ 3155.619659] ? lock_release+0xc40/0xc40 [ 3155.623657] ? trace_hardirqs_off_caller+0x300/0x300 [ 3155.628767] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3155.634321] ? __fdget+0x1b/0x20 [ 3155.637697] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3155.643260] ? sockfd_lookup_light+0xc2/0x160 [ 3155.647763] __sys_sendmsg+0x112/0x270 [ 3155.651656] ? __ia32_sys_shutdown+0x80/0x80 [ 3155.656090] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3155.661459] ? trace_hardirqs_off_caller+0x300/0x300 [ 3155.666576] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3155.671340] __x64_sys_sendmsg+0x78/0xb0 [ 3155.675448] do_syscall_64+0x1a3/0x800 [ 3155.679344] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3155.684304] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3155.689341] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3155.694209] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3155.699400] RIP: 0033:0x458089 [ 3155.702598] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3155.721498] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3155.729219] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3155.736485] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3155.743753] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3155.751019] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3155.758293] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3155.809070] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3155.839248] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:29 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c) r1 = socket(0x7, 0x3, 0x5) getsockopt$IP6T_SO_GET_INFO(r1, 0x29, 0x40, &(0x7f0000000000)={'nat\x00'}, &(0x7f0000000080)=0x54) recvmmsg(r0, &(0x7f000000b300)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000057c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) sendmmsg(r0, &(0x7f000000ac80), 0x400000000000180, 0x0) 23:23:29 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:29 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000004c12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:29 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:29 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xff\xff\xff\xa0\x01', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3156.039645] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3156.078003] CPU: 0 PID: 20558 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3156.085212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3156.094567] Call Trace: [ 3156.097160] dump_stack+0x1db/0x2d0 [ 3156.100817] ? dump_stack_print_info.cold+0x20/0x20 [ 3156.105910] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3156.111037] sysfs_warn_dup.cold+0x1c/0x31 [ 3156.115329] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3156.120709] sysfs_create_link+0x65/0xc0 [ 3156.124787] device_add+0x78e/0x1800 [ 3156.128520] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3156.133925] ? get_device_parent.isra.0+0x570/0x570 [ 3156.138962] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3156.144519] wiphy_register+0x1abd/0x2760 [ 3156.148715] ? wiphy_unregister+0x1340/0x1340 [ 3156.153216] ? rcu_read_lock_sched_held+0x110/0x130 [ 3156.158236] ? __kmalloc+0x5d5/0x740 [ 3156.161964] ? memset+0x32/0x40 [ 3156.165251] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3156.170802] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3156.175837] ieee80211_register_hw+0x15e2/0x3f30 [ 3156.180628] ? hrtimer_init_on_stack+0x1/0x40 [ 3156.185145] ? ieee80211_ifa_changed+0xf30/0xf30 23:23:29 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3156.189928] ? kasan_check_write+0x14/0x20 [ 3156.194172] ? tasklet_hrtimer_init+0xfa/0x260 [ 3156.198878] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3156.203732] ? tasklet_kill+0xd0/0xd0 [ 3156.207552] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3156.212595] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3156.218657] ? kvasprintf+0x101/0x170 [ 3156.222469] ? bust_spinlocks+0xe0/0xe0 [ 3156.226460] ? kasprintf+0xbb/0xf0 [ 3156.230014] ? kvasprintf_const+0x190/0x190 [ 3156.234382] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3156.239602] ? validate_nla+0x28c/0x1580 [ 3156.243686] hwsim_new_radio_nl+0xca6/0x1430 [ 3156.248113] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3156.253349] genl_family_rcv_msg+0x80d/0x11a0 [ 3156.257920] ? genl_unregister_family+0x8a0/0x8a0 [ 3156.262789] ? radix_tree_insert+0x850/0x850 [ 3156.267214] ? netlink_deliver_tap+0x32b/0xf40 [ 3156.271832] genl_rcv_msg+0xca/0x16c [ 3156.275606] netlink_rcv_skb+0x17d/0x410 [ 3156.279677] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3156.284446] ? netlink_ack+0xba0/0xba0 [ 3156.288348] ? __down_interruptible+0x740/0x740 [ 3156.293036] genl_rcv+0x29/0x40 [ 3156.296333] netlink_unicast+0x574/0x770 [ 3156.300413] ? netlink_attachskb+0x980/0x980 [ 3156.304836] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3156.310401] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3156.315447] netlink_sendmsg+0xa05/0xf90 [ 3156.319516] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3156.325075] ? netlink_unicast+0x770/0x770 [ 3156.329332] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3156.334191] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3156.338961] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3156.345002] ? security_socket_sendmsg+0x93/0xc0 [ 3156.349766] ? netlink_unicast+0x770/0x770 [ 3156.354015] sock_sendmsg+0xdd/0x130 [ 3156.357758] ___sys_sendmsg+0x7ec/0x910 [ 3156.361760] ? copy_msghdr_from_user+0x570/0x570 [ 3156.366519] ? iterate_fd+0x4b0/0x4b0 [ 3156.370349] ? __might_fault+0x12b/0x1e0 [ 3156.374420] ? find_held_lock+0x35/0x120 [ 3156.378490] ? __might_fault+0x12b/0x1e0 [ 3156.382564] ? __fget_light+0x2db/0x420 [ 3156.386566] ? fget_raw+0x20/0x20 23:23:29 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3156.390026] ? lock_release+0xc40/0xc40 [ 3156.394009] ? trace_hardirqs_off_caller+0x300/0x300 [ 3156.399132] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3156.404702] ? __fdget+0x1b/0x20 [ 3156.408096] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3156.413643] ? sockfd_lookup_light+0xc2/0x160 [ 3156.413677] __sys_sendmsg+0x112/0x270 [ 3156.413709] ? __ia32_sys_shutdown+0x80/0x80 [ 3156.413753] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3156.431890] ? trace_hardirqs_off_caller+0x300/0x300 [ 3156.431909] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3156.431928] __x64_sys_sendmsg+0x78/0xb0 [ 3156.431948] do_syscall_64+0x1a3/0x800 [ 3156.431968] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3156.431985] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3156.432008] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3156.432033] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3156.432045] RIP: 0033:0x458089 23:23:29 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xa00000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3156.432063] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3156.491954] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3156.499676] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3156.506957] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3156.514231] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3156.521529] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3156.528804] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:29 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00H\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3156.570424] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3156.608785] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:29 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:30 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000006012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:30 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3156.773340] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3156.796834] CPU: 0 PID: 20604 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3156.804066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3156.813419] Call Trace: [ 3156.816021] dump_stack+0x1db/0x2d0 [ 3156.819666] ? dump_stack_print_info.cold+0x20/0x20 [ 3156.824694] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3156.829814] sysfs_warn_dup.cold+0x1c/0x31 [ 3156.834092] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3156.839470] sysfs_create_link+0x65/0xc0 [ 3156.843547] device_add+0x78e/0x1800 [ 3156.847268] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3156.852647] ? get_device_parent.isra.0+0x570/0x570 [ 3156.857677] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3156.863268] wiphy_register+0x1abd/0x2760 [ 3156.867438] ? wiphy_unregister+0x1340/0x1340 [ 3156.871941] ? rcu_read_lock_sched_held+0x110/0x130 [ 3156.876964] ? __kmalloc+0x5d5/0x740 [ 3156.880680] ? memset+0x32/0x40 [ 3156.883959] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3156.889499] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3156.894456] ieee80211_register_hw+0x15e2/0x3f30 [ 3156.899225] ? hrtimer_init_on_stack+0x1/0x40 [ 3156.903747] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3156.908506] ? kasan_check_write+0x14/0x20 [ 3156.912743] ? tasklet_hrtimer_init+0xfa/0x260 [ 3156.917329] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3156.922176] ? tasklet_kill+0xd0/0xd0 [ 3156.925992] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3156.931028] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3156.937087] ? kvasprintf+0x101/0x170 [ 3156.940893] ? bust_spinlocks+0xe0/0xe0 [ 3156.944891] ? kasprintf+0xbb/0xf0 [ 3156.948436] ? kvasprintf_const+0x190/0x190 [ 3156.952764] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3156.957961] ? validate_nla+0x28c/0x1580 [ 3156.962036] hwsim_new_radio_nl+0xca6/0x1430 [ 3156.966454] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3156.971672] genl_family_rcv_msg+0x80d/0x11a0 [ 3156.976179] ? genl_unregister_family+0x8a0/0x8a0 [ 3156.981033] ? radix_tree_insert+0x850/0x850 [ 3156.985461] ? netlink_deliver_tap+0x32b/0xf40 [ 3156.990070] genl_rcv_msg+0xca/0x16c [ 3156.993784] netlink_rcv_skb+0x17d/0x410 [ 3156.997862] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3157.002670] ? netlink_ack+0xba0/0xba0 [ 3157.006577] ? __down_interruptible+0x740/0x740 [ 3157.011253] genl_rcv+0x29/0x40 [ 3157.014534] netlink_unicast+0x574/0x770 [ 3157.018615] ? netlink_attachskb+0x980/0x980 [ 3157.023024] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3157.028561] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3157.033583] netlink_sendmsg+0xa05/0xf90 [ 3157.037646] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3157.043189] ? netlink_unicast+0x770/0x770 [ 3157.047428] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3157.052278] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3157.057043] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3157.062583] ? security_socket_sendmsg+0x93/0xc0 [ 3157.067336] ? netlink_unicast+0x770/0x770 [ 3157.071604] sock_sendmsg+0xdd/0x130 [ 3157.075354] ___sys_sendmsg+0x7ec/0x910 [ 3157.079340] ? copy_msghdr_from_user+0x570/0x570 [ 3157.084096] ? iterate_fd+0x4b0/0x4b0 [ 3157.087924] ? __might_fault+0x12b/0x1e0 [ 3157.091991] ? find_held_lock+0x35/0x120 [ 3157.096056] ? __might_fault+0x12b/0x1e0 [ 3157.100121] ? __fget_light+0x2db/0x420 [ 3157.104100] ? fget_raw+0x20/0x20 [ 3157.107552] ? lock_release+0xc40/0xc40 [ 3157.111544] ? trace_hardirqs_off_caller+0x300/0x300 [ 3157.116645] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3157.122217] ? __fdget+0x1b/0x20 [ 3157.125594] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3157.131135] ? sockfd_lookup_light+0xc2/0x160 [ 3157.135631] __sys_sendmsg+0x112/0x270 [ 3157.139561] ? __ia32_sys_shutdown+0x80/0x80 [ 3157.143986] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3157.149349] ? trace_hardirqs_off_caller+0x300/0x300 [ 3157.154456] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3157.159213] __x64_sys_sendmsg+0x78/0xb0 [ 3157.163272] do_syscall_64+0x1a3/0x800 [ 3157.167181] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3157.172127] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3157.177152] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3157.182030] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3157.187231] RIP: 0033:0x458089 [ 3157.190420] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3157.209315] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3157.217016] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3157.224279] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3157.231545] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3157.238830] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3157.246108] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3157.286618] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:30 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c) r1 = socket(0x7, 0x3, 0x5) getsockopt$IP6T_SO_GET_INFO(r1, 0x29, 0x40, &(0x7f0000000000)={'nat\x00'}, &(0x7f0000000080)=0x54) recvmmsg(r0, &(0x7f000000b300)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000057c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) sendmmsg(r0, &(0x7f000000ac80), 0x400000000000180, 0x0) 23:23:30 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00L\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:30 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:30 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000006812000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:30 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x1000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3157.476270] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:30 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:30 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000006c12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:30 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00`\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3157.658737] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:31 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x1100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3157.700200] ipvs_mt_check: 25 callbacks suppressed [ 3157.700208] xt_ipvs: protocol family 7 not supported [ 3157.716941] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3157.758800] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3157.795592] CPU: 0 PID: 20650 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3157.802816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3157.812188] Call Trace: [ 3157.814785] dump_stack+0x1db/0x2d0 [ 3157.818444] ? dump_stack_print_info.cold+0x20/0x20 [ 3157.823498] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3157.828623] sysfs_warn_dup.cold+0x1c/0x31 [ 3157.832888] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3157.838271] sysfs_create_link+0x65/0xc0 [ 3157.842400] device_add+0x78e/0x1800 [ 3157.846138] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3157.846998] xt_ipvs: protocol family 7 not supported [ 3157.851518] ? get_device_parent.isra.0+0x570/0x570 [ 3157.851539] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3157.851584] wiphy_register+0x1abd/0x2760 [ 3157.851609] ? wiphy_unregister+0x1340/0x1340 [ 3157.875884] ? rcu_read_lock_sched_held+0x110/0x130 [ 3157.880913] ? __kmalloc+0x5d5/0x740 [ 3157.884672] ? memset+0x32/0x40 [ 3157.887966] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3157.893518] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3157.898497] ieee80211_register_hw+0x15e2/0x3f30 [ 3157.903282] ? hrtimer_init_on_stack+0x1/0x40 23:23:31 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000007412000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3157.907789] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3157.912558] ? kasan_check_write+0x14/0x20 [ 3157.916801] ? tasklet_hrtimer_init+0xfa/0x260 [ 3157.921390] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3157.926237] ? tasklet_kill+0xd0/0xd0 [ 3157.930052] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3157.930086] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3157.930101] ? kvasprintf+0x101/0x170 [ 3157.930116] ? bust_spinlocks+0xe0/0xe0 [ 3157.930142] ? kasprintf+0xbb/0xf0 [ 3157.952482] ? kvasprintf_const+0x190/0x190 [ 3157.956817] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3157.962039] ? validate_nla+0x28c/0x1580 [ 3157.966126] hwsim_new_radio_nl+0xca6/0x1430 [ 3157.970548] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3157.970554] xt_ipvs: protocol family 7 not supported [ 3157.980878] genl_family_rcv_msg+0x80d/0x11a0 [ 3157.985391] ? genl_unregister_family+0x8a0/0x8a0 [ 3157.990252] ? radix_tree_insert+0x850/0x850 [ 3157.994715] ? netlink_deliver_tap+0x32b/0xf40 [ 3157.999312] genl_rcv_msg+0xca/0x16c [ 3158.003036] netlink_rcv_skb+0x17d/0x410 [ 3158.007110] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3158.011893] ? netlink_ack+0xba0/0xba0 [ 3158.015788] ? __down_interruptible+0x740/0x740 [ 3158.020467] genl_rcv+0x29/0x40 [ 3158.023744] netlink_unicast+0x574/0x770 [ 3158.027813] ? netlink_attachskb+0x980/0x980 [ 3158.032210] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3158.037744] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3158.042773] netlink_sendmsg+0xa05/0xf90 [ 3158.046834] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3158.052388] ? netlink_unicast+0x770/0x770 [ 3158.056611] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3158.061458] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3158.066209] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3158.071756] ? security_socket_sendmsg+0x93/0xc0 [ 3158.076511] ? netlink_unicast+0x770/0x770 [ 3158.080746] sock_sendmsg+0xdd/0x130 [ 3158.084463] ___sys_sendmsg+0x7ec/0x910 [ 3158.088442] ? copy_msghdr_from_user+0x570/0x570 [ 3158.093197] ? iterate_fd+0x4b0/0x4b0 [ 3158.097012] ? __might_fault+0x12b/0x1e0 [ 3158.101117] ? find_held_lock+0x35/0x120 [ 3158.105204] ? __might_fault+0x12b/0x1e0 [ 3158.109263] ? __fget_light+0x2db/0x420 [ 3158.113223] ? fget_raw+0x20/0x20 [ 3158.116674] ? lock_release+0xc40/0xc40 [ 3158.120673] ? trace_hardirqs_off_caller+0x300/0x300 [ 3158.125785] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3158.131319] ? __fdget+0x1b/0x20 [ 3158.134675] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3158.140211] ? sockfd_lookup_light+0xc2/0x160 [ 3158.144715] __sys_sendmsg+0x112/0x270 [ 3158.148613] ? __ia32_sys_shutdown+0x80/0x80 [ 3158.153043] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3158.158425] ? trace_hardirqs_off_caller+0x300/0x300 [ 3158.163526] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3158.168291] __x64_sys_sendmsg+0x78/0xb0 [ 3158.172383] do_syscall_64+0x1a3/0x800 [ 3158.176272] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3158.181217] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3158.186248] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3158.191107] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3158.196298] RIP: 0033:0x458089 [ 3158.199503] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3158.218430] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3158.226158] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3158.233418] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3158.240672] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3158.247926] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3158.255189] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:31 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:31 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3158.309222] xt_ipvs: protocol family 7 not supported 23:23:31 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf0ffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:31 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000007a12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:31 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x1802000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:31 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00h\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3158.451936] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3158.503363] xt_ipvs: protocol family 7 not supported [ 3158.527747] CPU: 0 PID: 20676 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3158.534961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3158.544319] Call Trace: [ 3158.546921] dump_stack+0x1db/0x2d0 [ 3158.550567] ? dump_stack_print_info.cold+0x20/0x20 [ 3158.555618] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3158.560754] sysfs_warn_dup.cold+0x1c/0x31 [ 3158.565014] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3158.570390] sysfs_create_link+0x65/0xc0 [ 3158.574506] device_add+0x78e/0x1800 [ 3158.578222] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3158.583591] ? get_device_parent.isra.0+0x570/0x570 [ 3158.588654] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3158.594218] wiphy_register+0x1abd/0x2760 [ 3158.598405] ? wiphy_unregister+0x1340/0x1340 [ 3158.602933] ? rcu_read_lock_sched_held+0x110/0x130 [ 3158.607963] ? __kmalloc+0x5d5/0x740 [ 3158.611719] ? memset+0x32/0x40 [ 3158.615014] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3158.620567] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3158.625548] ieee80211_register_hw+0x15e2/0x3f30 [ 3158.630325] ? hrtimer_init_on_stack+0x1/0x40 [ 3158.634839] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3158.638281] xt_ipvs: protocol family 7 not supported [ 3158.639637] ? kasan_check_write+0x14/0x20 [ 3158.639655] ? tasklet_hrtimer_init+0xfa/0x260 [ 3158.639673] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3158.639689] ? tasklet_kill+0xd0/0xd0 [ 3158.639720] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3158.639757] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3158.673413] ? kvasprintf+0x101/0x170 23:23:32 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00l\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3158.677222] ? bust_spinlocks+0xe0/0xe0 [ 3158.681211] ? kasprintf+0xbb/0xf0 [ 3158.683672] xt_ipvs: protocol family 7 not supported [ 3158.684757] ? kvasprintf_const+0x190/0x190 [ 3158.684777] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3158.684795] ? validate_nla+0x28c/0x1580 [ 3158.684822] hwsim_new_radio_nl+0xca6/0x1430 [ 3158.684863] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3158.684899] genl_family_rcv_msg+0x80d/0x11a0 [ 3158.717574] ? genl_unregister_family+0x8a0/0x8a0 [ 3158.722425] ? radix_tree_insert+0x850/0x850 [ 3158.726837] ? netlink_deliver_tap+0x32b/0xf40 [ 3158.731485] genl_rcv_msg+0xca/0x16c [ 3158.735228] netlink_rcv_skb+0x17d/0x410 [ 3158.739298] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3158.744078] ? netlink_ack+0xba0/0xba0 [ 3158.747982] ? __down_interruptible+0x740/0x740 [ 3158.752668] genl_rcv+0x29/0x40 [ 3158.755955] netlink_unicast+0x574/0x770 [ 3158.760036] ? netlink_attachskb+0x980/0x980 [ 3158.764458] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3158.770006] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3158.775036] netlink_sendmsg+0xa05/0xf90 [ 3158.779105] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3158.782805] xt_ipvs: protocol family 7 not supported [ 3158.784653] ? netlink_unicast+0x770/0x770 [ 3158.784671] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3158.784691] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3158.784706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3158.784721] ? security_socket_sendmsg+0x93/0xc0 [ 3158.784734] ? netlink_unicast+0x770/0x770 [ 3158.784752] sock_sendmsg+0xdd/0x130 [ 3158.813942] ___sys_sendmsg+0x7ec/0x910 [ 3158.825878] ? copy_msghdr_from_user+0x570/0x570 [ 3158.825893] ? iterate_fd+0x4b0/0x4b0 [ 3158.825919] ? __might_fault+0x12b/0x1e0 [ 3158.825935] ? find_held_lock+0x35/0x120 [ 3158.825952] ? __might_fault+0x12b/0x1e0 [ 3158.825973] ? __fget_light+0x2db/0x420 [ 3158.825990] ? fget_raw+0x20/0x20 [ 3158.826005] ? lock_release+0xc40/0xc40 [ 3158.843208] xt_ipvs: protocol family 7 not supported [ 3158.846700] ? trace_hardirqs_off_caller+0x300/0x300 [ 3158.846717] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3158.846744] ? __fdget+0x1b/0x20 23:23:32 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00t\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3158.846759] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3158.846775] ? sockfd_lookup_light+0xc2/0x160 [ 3158.846794] __sys_sendmsg+0x112/0x270 [ 3158.846811] ? __ia32_sys_shutdown+0x80/0x80 [ 3158.846841] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3158.846875] ? trace_hardirqs_off_caller+0x300/0x300 [ 3158.846893] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3158.846911] __x64_sys_sendmsg+0x78/0xb0 [ 3158.901010] do_syscall_64+0x1a3/0x800 [ 3158.910862] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3158.910881] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3158.910902] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3158.910927] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3158.910939] RIP: 0033:0x458089 [ 3158.910955] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3158.960948] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3158.968661] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3158.975084] xt_ipvs: protocol family 7 not supported [ 3158.975965] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3158.975974] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3158.975983] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3158.975992] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:32 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00z\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3159.058245] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3159.065986] CPU: 0 PID: 20688 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3159.073190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3159.082573] Call Trace: [ 3159.085181] dump_stack+0x1db/0x2d0 [ 3159.088835] ? dump_stack_print_info.cold+0x20/0x20 [ 3159.093906] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3159.099035] sysfs_warn_dup.cold+0x1c/0x31 [ 3159.103293] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3159.108683] sysfs_create_link+0x65/0xc0 [ 3159.112755] device_add+0x78e/0x1800 [ 3159.116477] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3159.121877] ? get_device_parent.isra.0+0x570/0x570 [ 3159.126911] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3159.132472] wiphy_register+0x1abd/0x2760 [ 3159.136673] ? wiphy_unregister+0x1340/0x1340 [ 3159.141187] ? rcu_read_lock_sched_held+0x110/0x130 [ 3159.146227] ? __kmalloc+0x5d5/0x740 [ 3159.149948] ? memset+0x32/0x40 [ 3159.153241] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 23:23:32 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:32 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000008112000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3159.158786] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3159.163727] ieee80211_register_hw+0x15e2/0x3f30 [ 3159.168492] ? hrtimer_init_on_stack+0x1/0x40 [ 3159.173000] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3159.177770] ? kasan_check_write+0x14/0x20 [ 3159.182013] ? tasklet_hrtimer_init+0xfa/0x260 [ 3159.186600] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3159.191442] ? tasklet_kill+0xd0/0xd0 [ 3159.195264] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3159.200297] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3159.206360] ? kvasprintf+0x101/0x170 [ 3159.206375] ? bust_spinlocks+0xe0/0xe0 [ 3159.206402] ? kasprintf+0xbb/0xf0 [ 3159.217720] ? kvasprintf_const+0x190/0x190 [ 3159.222052] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3159.227259] ? validate_nla+0x28c/0x1580 [ 3159.231342] hwsim_new_radio_nl+0xca6/0x1430 [ 3159.235773] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3159.241000] genl_family_rcv_msg+0x80d/0x11a0 [ 3159.245520] ? genl_unregister_family+0x8a0/0x8a0 [ 3159.250397] ? radix_tree_insert+0x850/0x850 [ 3159.254839] ? netlink_deliver_tap+0x32b/0xf40 [ 3159.259522] genl_rcv_msg+0xca/0x16c [ 3159.263248] netlink_rcv_skb+0x17d/0x410 [ 3159.263266] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3159.263283] ? netlink_ack+0xba0/0xba0 [ 3159.263304] ? __down_interruptible+0x740/0x740 [ 3159.263325] genl_rcv+0x29/0x40 [ 3159.283949] netlink_unicast+0x574/0x770 [ 3159.283987] ? netlink_attachskb+0x980/0x980 [ 3159.284004] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3159.284019] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3159.284039] netlink_sendmsg+0xa05/0xf90 [ 3159.284054] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3159.284078] ? netlink_unicast+0x770/0x770 [ 3159.284094] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3159.284113] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3159.312693] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3159.312709] ? security_socket_sendmsg+0x93/0xc0 [ 3159.312723] ? netlink_unicast+0x770/0x770 [ 3159.312742] sock_sendmsg+0xdd/0x130 [ 3159.312761] ___sys_sendmsg+0x7ec/0x910 [ 3159.312782] ? copy_msghdr_from_user+0x570/0x570 [ 3159.312795] ? iterate_fd+0x4b0/0x4b0 [ 3159.312816] ? __might_fault+0x12b/0x1e0 [ 3159.361427] ? find_held_lock+0x35/0x120 [ 3159.365489] ? __might_fault+0x12b/0x1e0 [ 3159.369562] ? __fget_light+0x2db/0x420 [ 3159.373550] ? fget_raw+0x20/0x20 [ 3159.377014] ? lock_release+0xc40/0xc40 [ 3159.381000] ? trace_hardirqs_off_caller+0x300/0x300 [ 3159.386159] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3159.391726] ? __fdget+0x1b/0x20 [ 3159.395099] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3159.400656] ? sockfd_lookup_light+0xc2/0x160 [ 3159.405160] __sys_sendmsg+0x112/0x270 [ 3159.409061] ? __ia32_sys_shutdown+0x80/0x80 [ 3159.413500] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3159.418924] ? trace_hardirqs_off_caller+0x300/0x300 [ 3159.424039] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3159.428810] __x64_sys_sendmsg+0x78/0xb0 [ 3159.432902] do_syscall_64+0x1a3/0x800 [ 3159.436835] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3159.442402] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3159.447436] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3159.452295] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3159.457492] RIP: 0033:0x458089 [ 3159.460697] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3159.479605] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3159.487313] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3159.494579] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3159.501886] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 23:23:32 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\a\xff\xff\xfe\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:32 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf0ffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3159.509156] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3159.516424] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3159.542164] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3159.564131] CPU: 1 PID: 20676 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3159.571370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3159.580751] Call Trace: [ 3159.583325] dump_stack+0x1db/0x2d0 [ 3159.586938] ? dump_stack_print_info.cold+0x20/0x20 [ 3159.591939] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3159.597046] sysfs_warn_dup.cold+0x1c/0x31 [ 3159.601267] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3159.606644] sysfs_create_link+0x65/0xc0 [ 3159.610705] device_add+0x78e/0x1800 [ 3159.614418] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3159.619784] ? get_device_parent.isra.0+0x570/0x570 [ 3159.624805] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3159.630336] wiphy_register+0x1abd/0x2760 [ 3159.634483] ? wiphy_unregister+0x1340/0x1340 [ 3159.638965] ? rcu_read_lock_sched_held+0x110/0x130 [ 3159.644014] ? __kmalloc+0x5d5/0x740 [ 3159.647713] ? memset+0x32/0x40 [ 3159.650974] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3159.656499] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3159.661417] ieee80211_register_hw+0x15e2/0x3f30 [ 3159.666160] ? hrtimer_init_on_stack+0x1/0x40 [ 3159.670644] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3159.675384] ? kasan_check_write+0x14/0x20 [ 3159.679620] ? tasklet_hrtimer_init+0xfa/0x260 [ 3159.684230] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3159.689085] ? tasklet_kill+0xd0/0xd0 [ 3159.692876] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3159.697889] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3159.703932] ? kvasprintf+0x101/0x170 [ 3159.707715] ? bust_spinlocks+0xe0/0xe0 [ 3159.711682] ? kasprintf+0xbb/0xf0 [ 3159.715220] ? kvasprintf_const+0x190/0x190 [ 3159.719529] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3159.724723] ? validate_nla+0x28c/0x1580 [ 3159.728774] hwsim_new_radio_nl+0xca6/0x1430 [ 3159.733169] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3159.738359] genl_family_rcv_msg+0x80d/0x11a0 [ 3159.742864] ? genl_unregister_family+0x8a0/0x8a0 [ 3159.747703] ? radix_tree_insert+0x850/0x850 [ 3159.752096] ? netlink_deliver_tap+0x32b/0xf40 [ 3159.756684] genl_rcv_msg+0xca/0x16c [ 3159.760385] netlink_rcv_skb+0x17d/0x410 [ 3159.764428] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3159.769170] ? netlink_ack+0xba0/0xba0 [ 3159.773047] ? __down_interruptible+0x740/0x740 [ 3159.777706] genl_rcv+0x29/0x40 [ 3159.780967] netlink_unicast+0x574/0x770 [ 3159.785024] ? netlink_attachskb+0x980/0x980 [ 3159.789424] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3159.794943] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3159.799961] netlink_sendmsg+0xa05/0xf90 [ 3159.804006] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3159.809528] ? netlink_unicast+0x770/0x770 [ 3159.813745] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3159.818573] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3159.823328] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3159.828860] ? security_socket_sendmsg+0x93/0xc0 [ 3159.833598] ? netlink_unicast+0x770/0x770 [ 3159.837820] sock_sendmsg+0xdd/0x130 [ 3159.841529] ___sys_sendmsg+0x7ec/0x910 [ 3159.845492] ? copy_msghdr_from_user+0x570/0x570 [ 3159.850232] ? iterate_fd+0x4b0/0x4b0 [ 3159.854022] ? __might_fault+0x12b/0x1e0 [ 3159.858069] ? find_held_lock+0x35/0x120 [ 3159.862126] ? __might_fault+0x12b/0x1e0 [ 3159.866173] ? __fget_light+0x2db/0x420 [ 3159.870153] ? fget_raw+0x20/0x20 [ 3159.873592] ? lock_release+0xc40/0xc40 [ 3159.877549] ? trace_hardirqs_off_caller+0x300/0x300 [ 3159.882646] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3159.888173] ? __fdget+0x1b/0x20 [ 3159.891521] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3159.897043] ? sockfd_lookup_light+0xc2/0x160 [ 3159.901523] __sys_sendmsg+0x112/0x270 [ 3159.905394] ? __ia32_sys_shutdown+0x80/0x80 [ 3159.909795] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3159.915140] ? trace_hardirqs_off_caller+0x300/0x300 [ 3159.920229] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3159.924972] __x64_sys_sendmsg+0x78/0xb0 [ 3159.929021] do_syscall_64+0x1a3/0x800 [ 3159.932897] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3159.937810] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3159.942812] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3159.947642] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3159.952824] RIP: 0033:0x458089 [ 3159.956028] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3159.974915] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3159.982604] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3159.989857] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3159.997140] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3160.004390] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 23:23:33 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3160.011642] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3160.029553] __nla_parse: 3 callbacks suppressed [ 3160.029562] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3160.146461] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3160.182277] CPU: 1 PID: 20737 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3160.189513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3160.198876] Call Trace: [ 3160.201480] dump_stack+0x1db/0x2d0 [ 3160.205136] ? dump_stack_print_info.cold+0x20/0x20 [ 3160.210187] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3160.215334] sysfs_warn_dup.cold+0x1c/0x31 [ 3160.219601] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3160.224972] sysfs_create_link+0x65/0xc0 [ 3160.229041] device_add+0x78e/0x1800 [ 3160.232771] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3160.238158] ? get_device_parent.isra.0+0x570/0x570 [ 3160.243178] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3160.248729] wiphy_register+0x1abd/0x2760 [ 3160.252901] ? wiphy_unregister+0x1340/0x1340 [ 3160.257402] ? rcu_read_lock_sched_held+0x110/0x130 [ 3160.262419] ? __kmalloc+0x5d5/0x740 [ 3160.266132] ? memset+0x32/0x40 [ 3160.269412] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3160.274953] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3160.279891] ieee80211_register_hw+0x15e2/0x3f30 [ 3160.284684] ? hrtimer_init_on_stack+0x1/0x40 [ 3160.289189] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3160.293951] ? kasan_check_write+0x14/0x20 [ 3160.298187] ? tasklet_hrtimer_init+0xfa/0x260 [ 3160.302771] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3160.307615] ? tasklet_kill+0xd0/0xd0 [ 3160.311429] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3160.316482] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3160.322537] ? kvasprintf+0x101/0x170 [ 3160.326341] ? bust_spinlocks+0xe0/0xe0 [ 3160.330333] ? kasprintf+0xbb/0xf0 [ 3160.333885] ? kvasprintf_const+0x190/0x190 [ 3160.338215] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3160.343555] ? validate_nla+0x28c/0x1580 [ 3160.347628] hwsim_new_radio_nl+0xca6/0x1430 [ 3160.352046] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3160.357288] genl_family_rcv_msg+0x80d/0x11a0 [ 3160.361791] ? genl_unregister_family+0x8a0/0x8a0 [ 3160.366647] ? radix_tree_insert+0x850/0x850 [ 3160.371059] ? netlink_deliver_tap+0x32b/0xf40 [ 3160.375667] genl_rcv_msg+0xca/0x16c [ 3160.379404] netlink_rcv_skb+0x17d/0x410 [ 3160.383466] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3160.388223] ? netlink_ack+0xba0/0xba0 [ 3160.392131] ? __down_interruptible+0x740/0x740 [ 3160.396810] genl_rcv+0x29/0x40 [ 3160.400131] netlink_unicast+0x574/0x770 [ 3160.404217] ? netlink_attachskb+0x980/0x980 [ 3160.408639] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3160.414171] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3160.419208] netlink_sendmsg+0xa05/0xf90 [ 3160.423269] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3160.428815] ? netlink_unicast+0x770/0x770 [ 3160.433057] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3160.437919] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3160.442676] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3160.448217] ? security_socket_sendmsg+0x93/0xc0 [ 3160.452973] ? netlink_unicast+0x770/0x770 [ 3160.457214] sock_sendmsg+0xdd/0x130 [ 3160.460948] ___sys_sendmsg+0x7ec/0x910 [ 3160.464930] ? copy_msghdr_from_user+0x570/0x570 [ 3160.469704] ? iterate_fd+0x4b0/0x4b0 [ 3160.473515] ? __might_fault+0x12b/0x1e0 [ 3160.478075] ? find_held_lock+0x35/0x120 [ 3160.482136] ? __might_fault+0x12b/0x1e0 [ 3160.486199] ? __fget_light+0x2db/0x420 [ 3160.490190] ? fget_raw+0x20/0x20 [ 3160.493655] ? lock_release+0xc40/0xc40 [ 3160.497630] ? trace_hardirqs_off_caller+0x300/0x300 [ 3160.502727] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3160.508272] ? __fdget+0x1b/0x20 [ 3160.511636] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3160.517174] ? sockfd_lookup_light+0xc2/0x160 [ 3160.521674] __sys_sendmsg+0x112/0x270 [ 3160.525565] ? __ia32_sys_shutdown+0x80/0x80 [ 3160.530009] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3160.535396] ? trace_hardirqs_off_caller+0x300/0x300 [ 3160.540502] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3160.545262] __x64_sys_sendmsg+0x78/0xb0 [ 3160.549322] do_syscall_64+0x1a3/0x800 [ 3160.553270] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3160.558232] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3160.563285] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3160.568153] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3160.573339] RIP: 0033:0x458089 [ 3160.576546] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 23:23:33 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x2c01000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:33 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000ffffff9e12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3160.595457] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3160.603163] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3160.610436] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3160.617700] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3160.624966] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3160.632235] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:34 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\xff\xff\xff\xff\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3160.704865] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3160.753694] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3160.767900] CPU: 1 PID: 20742 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3160.775102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3160.784456] Call Trace: [ 3160.787059] dump_stack+0x1db/0x2d0 [ 3160.790708] ? dump_stack_print_info.cold+0x20/0x20 [ 3160.795746] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 23:23:34 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3160.800875] sysfs_warn_dup.cold+0x1c/0x31 [ 3160.805138] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3160.810517] sysfs_create_link+0x65/0xc0 [ 3160.814605] device_add+0x78e/0x1800 [ 3160.818333] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3160.823739] ? get_device_parent.isra.0+0x570/0x570 [ 3160.828773] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3160.834339] wiphy_register+0x1abd/0x2760 [ 3160.838513] ? wiphy_unregister+0x1340/0x1340 [ 3160.843000] ? rcu_read_lock_sched_held+0x110/0x130 [ 3160.848017] ? __kmalloc+0x5d5/0x740 23:23:34 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x01\xa0\xff\xff\xff\xff\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3160.851754] ? memset+0x32/0x40 [ 3160.855045] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3160.860581] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3160.865496] ieee80211_register_hw+0x15e2/0x3f30 [ 3160.870245] ? hrtimer_init_on_stack+0x1/0x40 [ 3160.874741] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3160.879507] ? kasan_check_write+0x14/0x20 [ 3160.883747] ? tasklet_hrtimer_init+0xfa/0x260 [ 3160.888352] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3160.893224] ? tasklet_kill+0xd0/0xd0 [ 3160.897048] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3160.902062] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3160.908117] ? kvasprintf+0x101/0x170 [ 3160.911919] ? bust_spinlocks+0xe0/0xe0 [ 3160.916410] ? kasprintf+0xbb/0xf0 [ 3160.919953] ? kvasprintf_const+0x190/0x190 [ 3160.924262] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3160.929446] ? validate_nla+0x28c/0x1580 [ 3160.933500] hwsim_new_radio_nl+0xca6/0x1430 [ 3160.937923] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3160.943136] genl_family_rcv_msg+0x80d/0x11a0 [ 3160.947635] ? genl_unregister_family+0x8a0/0x8a0 [ 3160.952469] ? radix_tree_insert+0x850/0x850 [ 3160.956876] ? netlink_deliver_tap+0x32b/0xf40 [ 3160.961460] genl_rcv_msg+0xca/0x16c [ 3160.965162] netlink_rcv_skb+0x17d/0x410 [ 3160.969219] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3160.973987] ? netlink_ack+0xba0/0xba0 [ 3160.977871] ? __down_interruptible+0x740/0x740 [ 3160.982527] genl_rcv+0x29/0x40 [ 3160.985788] netlink_unicast+0x574/0x770 [ 3160.989835] ? netlink_attachskb+0x980/0x980 [ 3160.994241] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3160.999783] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3161.004789] netlink_sendmsg+0xa05/0xf90 [ 3161.008836] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3161.014432] ? netlink_unicast+0x770/0x770 [ 3161.018667] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3161.023532] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3161.028279] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3161.033821] ? security_socket_sendmsg+0x93/0xc0 [ 3161.038590] ? netlink_unicast+0x770/0x770 [ 3161.042819] sock_sendmsg+0xdd/0x130 [ 3161.046545] ___sys_sendmsg+0x7ec/0x910 [ 3161.050542] ? copy_msghdr_from_user+0x570/0x570 [ 3161.055312] ? iterate_fd+0x4b0/0x4b0 [ 3161.059100] ? __might_fault+0x12b/0x1e0 [ 3161.063144] ? find_held_lock+0x35/0x120 [ 3161.067190] ? __might_fault+0x12b/0x1e0 [ 3161.071237] ? __fget_light+0x2db/0x420 [ 3161.075211] ? fget_raw+0x20/0x20 [ 3161.078662] ? lock_release+0xc40/0xc40 [ 3161.082639] ? trace_hardirqs_off_caller+0x300/0x300 [ 3161.087773] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3161.093311] ? __fdget+0x1b/0x20 [ 3161.096669] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3161.102193] ? sockfd_lookup_light+0xc2/0x160 [ 3161.106691] __sys_sendmsg+0x112/0x270 [ 3161.110560] ? __ia32_sys_shutdown+0x80/0x80 [ 3161.114978] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3161.120340] ? trace_hardirqs_off_caller+0x300/0x300 [ 3161.125456] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3161.130198] __x64_sys_sendmsg+0x78/0xb0 [ 3161.134249] do_syscall_64+0x1a3/0x800 [ 3161.138157] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3161.143103] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3161.148151] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3161.152996] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3161.158169] RIP: 0033:0x458089 [ 3161.161345] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3161.180274] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3161.188007] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3161.195260] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 23:23:34 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000004080)=[{{0x0, 0x0, &(0x7f0000003300)=[{&(0x7f00000000c0)=""/21, 0x15}, {&(0x7f0000000100)=""/32, 0x20}, {&(0x7f0000000140)=""/4096, 0x1000}, {&(0x7f0000001140)=""/240, 0xf0}, {&(0x7f0000001240)=""/66, 0x42}, {&(0x7f00000012c0)=""/14, 0xe}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/4096, 0x1000}], 0x8, &(0x7f0000003380)=""/113, 0x71}, 0x9}, {{&(0x7f0000003400)=@xdp={0x2c, 0x0, 0x0}, 0x80, &(0x7f00000037c0)=[{&(0x7f0000003480)=""/94, 0x5e}, {&(0x7f0000003500)=""/166, 0xa6}, {&(0x7f00000035c0)=""/255, 0xff}, {&(0x7f00000036c0)=""/178, 0xb2}, {&(0x7f0000003780)=""/49, 0x31}], 0x5, &(0x7f0000003840)=""/117, 0x75}, 0xaf2}, {{&(0x7f00000038c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000003d00)=[{&(0x7f0000003940)=""/36, 0x24}, {&(0x7f0000003980)=""/176, 0xb0}, {&(0x7f0000003a40)=""/30, 0x1e}, {&(0x7f0000003a80)=""/253, 0xfd}, {&(0x7f0000003b80)=""/194, 0xc2}, {&(0x7f0000003c80)=""/117, 0x75}], 0x6, &(0x7f0000003d80)=""/56, 0x38}}, {{&(0x7f0000003dc0)=@x25={0x9, @remote}, 0x80, &(0x7f0000003f80)=[{&(0x7f0000003e40)=""/61, 0x3d}, {&(0x7f0000003e80)=""/140, 0x8c}, {&(0x7f0000003f40)=""/33, 0x21}], 0x3, &(0x7f0000003fc0)=""/169, 0xa9}, 0x6}], 0x4, 0x2, &(0x7f0000004180)) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f00000041c0)={@empty, @multicast1, r1}, 0xc) setsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f0000004200)={0xf097, 0x3, 0x5, 0x40}, 0x8) r3 = openat$cgroup_ro(r2, &(0x7f0000004240)='cpu.stat\x00', 0x0, 0x0) openat$cgroup_procs(r3, &(0x7f0000004280)='cgroup.procs\x00', 0x2, 0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000042c0)={0x0, r3, 0x7fffffff, 0x6, 0xfff, 0x8}) getsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0x7, &(0x7f0000004300), &(0x7f0000004340)=0x4) sendto$inet(r0, &(0x7f0000004380)="c636ea34cc947513906e9895e4cae271ced6736783b353bad4af043ae30e40c471ccd1a0c14a3e2a2993eb5bcc0b4ccdd3c00c75b9e1c4317c92a131f4c68613b7457cd46846d56fb3dd88759c23e65d473abb84359e8997f85e1818", 0x5c, 0x4001, &(0x7f0000004400)={0x2, 0x4e22, @local}, 0x10) r5 = openat$cgroup_ro(r4, &(0x7f0000004440)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) ioctl$sock_SIOCGPGRP(r4, 0x8904, &(0x7f0000004480)=0x0) write$cgroup_pid(r5, &(0x7f00000044c0)=r6, 0x12) write$binfmt_script(r4, &(0x7f0000004500)={'#! ', './file0', [{0x20, 'cgroup.procs\x00'}, {0x20, 'cpu.stat\x00'}, {0x20, '#,'}, {0x20, 'hugetlb.2MB.usage_in_bytes\x00'}, {0x20, 'hugetlb.2MB.usage_in_bytes\x00'}, {0x20, 'vmnet1em1'}, {}, {0x20, 'hugetlb.2MB.usage_in_bytes\x00'}, {0x20, 'cgroup.procs\x00'}], 0xa, "4004be25d51d0d4588d17eae7644f3186b06eaf6f1202fd21375b1c2acbd0cd76085753eac8ea7b79ac661e94c33866ac18bd0db7fed90a74f52178358a9d8be0375414c5c36fe70cf44acbbb50161655adbccb85cf49a0583f78f4d6fd089ba846ba8ca96883549d8a7a776368e6be4b057228af97ef3aca07b994773fab33b8a19e6b98eeba6f020bf638498e00cbca961e8e43e2c683b551a7ddb84410c7e532deea34509fd8941978a6e3e6a6d28"}, 0x143) ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000004680)={0x0, r2, 0x0, 0x4, 0xcc43, 0x800}) recvmmsg(r5, &(0x7f0000004ec0)=[{{0x0, 0x0, &(0x7f0000004980)=[{&(0x7f00000046c0)=""/105, 0x69}, {&(0x7f0000004740)=""/171, 0xab}, {&(0x7f0000004800)=""/225, 0xe1}, {&(0x7f0000004900)=""/128, 0x80}], 0x4, &(0x7f00000049c0)=""/237, 0xed}, 0x8000}, {{&(0x7f0000004ac0)=@xdp, 0x80, &(0x7f0000004e40)=[{&(0x7f0000004b40)=""/81, 0x51}, {&(0x7f0000004bc0)=""/152, 0x98}, {&(0x7f0000004c80)=""/122, 0x7a}, {&(0x7f0000004d00)=""/25, 0x19}, {&(0x7f0000004d40)=""/90, 0x5a}, {&(0x7f0000004dc0)=""/93, 0x5d}], 0x6}, 0x1}], 0x2, 0x12000, 0x0) setsockopt$IP_VS_SO_SET_FLUSH(r5, 0x0, 0x485, 0x0, 0x0) r7 = socket$alg(0x26, 0x5, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000004f80)={r3, 0x3, 0x0, 0x1, &(0x7f0000004f40)=[0x0, 0x0, 0x0], 0x3}, 0x20) bind$ax25(r3, &(0x7f0000004fc0)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x6}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48) ioctl$sock_inet_SIOCSIFPFLAGS(r3, 0x8934, &(0x7f0000005040)={'bridge0\x00', 0x40}) ioctl$sock_bt_hidp_HIDPCONNADD(r3, 0x400448c8, &(0x7f0000005180)={r7, r4, 0x0, 0xec, &(0x7f0000005080)="36c3d46e72eaf8eaeb429448cc88cf3018d86f0ba3beae1b296035cfca2d0e491dd6f149359fbc7ab970813d94525e1e42a450365cdb6a508c0cc7d6309e0041e614e85bcdb4807a3046009a3691e51bb9cf772bebeb1eb27af964c79c54d4f99ce4a50f67c720b59eedfb0c3549563f64c2136a76890d62b4ff3aef7c5c8d64724446f33de952e2d736ec7c8b1313dd5a4f0221752e42b88ea661c88f34c1f6cdbe1b80bce1793b453ed31d85e4f2dfe6856a3d81c39a64fd5383de7598d601b485fe818436ae938e258219126bcdda23b1dad4c422fdaaad5ac897edbfcb7a48c351ddd68888f42de05dc5", 0x8, 0x9, 0x3, 0x80000000, 0x1, 0x1, 0x2, 'syz1\x00'}) setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000005240)='htcp\x00', 0x5) ioctl$sock_bt_hidp_HIDPCONNADD(r5, 0x400448c8, &(0x7f0000005300)={r7, r0, 0x10001, 0x5d, &(0x7f0000005280)="f1003645b0024928e50b88ed892754a859e7d5e84338ac426f7811faf5219f014187426b202167c0fdba2ac6277579d914d0294b1bb54f7e4477d915051a38d3fe0b0c29b3272f9396a487c0ac8cde2a63fa4579673ff2aec72a564680", 0x9, 0x5, 0x101, 0x4, 0x0, 0x1, 0x6ec, 'syz1\x00'}) ioctl$FS_IOC_GETFLAGS(r4, 0x80086601, &(0x7f00000053c0)) openat$cgroup_ro(r3, &(0x7f0000005400)='cpuset.effective_cpus\x00', 0x0, 0x0) getsockopt$netrom_NETROM_T2(r0, 0x103, 0x2, &(0x7f0000005440)=0x80, &(0x7f0000005480)=0x4) setsockopt$netrom_NETROM_N2(r3, 0x103, 0x3, &(0x7f00000054c0)=0xfffffffffffffff7, 0x4) getsockopt$bt_hci(r3, 0x0, 0x2, &(0x7f0000005500), &(0x7f0000005540)) [ 3161.202509] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3161.209771] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3161.217032] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:34 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:34 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000000001a012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:34 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x4002000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3161.420685] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:34 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3161.464415] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3161.507293] CPU: 1 PID: 20780 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3161.514504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3161.523863] Call Trace: [ 3161.526455] dump_stack+0x1db/0x2d0 [ 3161.530094] ? dump_stack_print_info.cold+0x20/0x20 [ 3161.535118] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3161.540229] sysfs_warn_dup.cold+0x1c/0x31 [ 3161.544460] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3161.549816] sysfs_create_link+0x65/0xc0 [ 3161.553908] device_add+0x78e/0x1800 [ 3161.557608] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3161.562961] ? get_device_parent.isra.0+0x570/0x570 [ 3161.567964] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3161.573529] wiphy_register+0x1abd/0x2760 [ 3161.577695] ? wiphy_unregister+0x1340/0x1340 [ 3161.582201] ? rcu_read_lock_sched_held+0x110/0x130 [ 3161.587230] ? __kmalloc+0x5d5/0x740 [ 3161.590960] ? memset+0x32/0x40 [ 3161.594227] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3161.599752] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3161.604669] ieee80211_register_hw+0x15e2/0x3f30 [ 3161.609461] ? hrtimer_init_on_stack+0x1/0x40 [ 3161.613973] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3161.618729] ? kasan_check_write+0x14/0x20 [ 3161.622973] ? tasklet_hrtimer_init+0xfa/0x260 [ 3161.627555] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3161.632386] ? tasklet_kill+0xd0/0xd0 [ 3161.636197] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3161.641246] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3161.647299] ? kvasprintf+0x101/0x170 [ 3161.651101] ? bust_spinlocks+0xe0/0xe0 [ 3161.655084] ? kasprintf+0xbb/0xf0 [ 3161.658613] ? kvasprintf_const+0x190/0x190 [ 3161.662929] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3161.668135] ? validate_nla+0x28c/0x1580 [ 3161.672251] hwsim_new_radio_nl+0xca6/0x1430 [ 3161.676665] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3161.681900] genl_family_rcv_msg+0x80d/0x11a0 [ 3161.686406] ? genl_unregister_family+0x8a0/0x8a0 [ 3161.691245] ? radix_tree_insert+0x850/0x850 [ 3161.695665] ? netlink_deliver_tap+0x32b/0xf40 [ 3161.700251] genl_rcv_msg+0xca/0x16c [ 3161.703953] netlink_rcv_skb+0x17d/0x410 [ 3161.708013] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3161.712757] ? netlink_ack+0xba0/0xba0 [ 3161.716734] ? __down_interruptible+0x740/0x740 [ 3161.721407] genl_rcv+0x29/0x40 [ 3161.724674] netlink_unicast+0x574/0x770 [ 3161.728730] ? netlink_attachskb+0x980/0x980 [ 3161.733142] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3161.738679] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3161.743699] netlink_sendmsg+0xa05/0xf90 [ 3161.747758] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3161.753329] ? netlink_unicast+0x770/0x770 [ 3161.757571] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3161.762425] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3161.767199] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3161.772734] ? security_socket_sendmsg+0x93/0xc0 [ 3161.777476] ? netlink_unicast+0x770/0x770 [ 3161.781708] sock_sendmsg+0xdd/0x130 [ 3161.785447] ___sys_sendmsg+0x7ec/0x910 [ 3161.789423] ? copy_msghdr_from_user+0x570/0x570 [ 3161.794173] ? iterate_fd+0x4b0/0x4b0 [ 3161.798013] ? __might_fault+0x12b/0x1e0 [ 3161.802085] ? find_held_lock+0x35/0x120 [ 3161.806171] ? __might_fault+0x12b/0x1e0 [ 3161.810254] ? __fget_light+0x2db/0x420 [ 3161.814256] ? fget_raw+0x20/0x20 [ 3161.817723] ? lock_release+0xc40/0xc40 [ 3161.821698] ? trace_hardirqs_off_caller+0x300/0x300 [ 3161.826798] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3161.832338] ? __fdget+0x1b/0x20 [ 3161.835707] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3161.841244] ? sockfd_lookup_light+0xc2/0x160 [ 3161.845744] __sys_sendmsg+0x112/0x270 [ 3161.849626] ? __ia32_sys_shutdown+0x80/0x80 [ 3161.854059] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3161.859437] ? trace_hardirqs_off_caller+0x300/0x300 [ 3161.864534] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3161.869290] __x64_sys_sendmsg+0x78/0xb0 [ 3161.873340] do_syscall_64+0x1a3/0x800 [ 3161.877264] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3161.882211] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3161.887238] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3161.892100] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3161.897282] RIP: 0033:0x458089 [ 3161.900485] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3161.919385] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3161.927093] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3161.934369] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3161.941650] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3161.948925] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3161.956207] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:35 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:35 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09000000000ec012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:35 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000000)={'dummy0\x00', 0x8000}) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'gre0\x00', 0x0}) sendmmsg(r1, &(0x7f0000008a80)=[{{&(0x7f0000000080)=@ll={0x11, 0x6558, r2, 0x1, 0x0, 0x6, @link_local}, 0x80, 0x0}}], 0x4000345, 0x0) 23:23:35 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x03\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:35 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x4802000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3162.126828] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:35 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3162.197101] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3162.274105] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3162.302816] CPU: 1 PID: 20816 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3162.310035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3162.319396] Call Trace: [ 3162.322004] dump_stack+0x1db/0x2d0 [ 3162.325652] ? dump_stack_print_info.cold+0x20/0x20 [ 3162.330709] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3162.335857] sysfs_warn_dup.cold+0x1c/0x31 [ 3162.340111] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3162.345693] sysfs_create_link+0x65/0xc0 [ 3162.349745] device_add+0x78e/0x1800 [ 3162.353446] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3162.358814] ? get_device_parent.isra.0+0x570/0x570 [ 3162.363852] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3162.369453] wiphy_register+0x1abd/0x2760 [ 3162.369481] ? wiphy_unregister+0x1340/0x1340 [ 3162.369498] ? rcu_read_lock_sched_held+0x110/0x130 [ 3162.383136] ? __kmalloc+0x5d5/0x740 [ 3162.386865] ? memset+0x32/0x40 [ 3162.390179] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3162.395732] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3162.395751] ieee80211_register_hw+0x15e2/0x3f30 [ 3162.395772] ? hrtimer_init_on_stack+0x1/0x40 [ 3162.395792] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3162.414677] ? kasan_check_write+0x14/0x20 [ 3162.418924] ? tasklet_hrtimer_init+0xfa/0x260 [ 3162.423521] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3162.428373] ? tasklet_kill+0xd0/0xd0 [ 3162.432229] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3162.437281] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3162.443376] ? kvasprintf+0x101/0x170 [ 3162.447191] ? bust_spinlocks+0xe0/0xe0 [ 3162.451208] ? kasprintf+0xbb/0xf0 [ 3162.454779] ? kvasprintf_const+0x190/0x190 [ 3162.459116] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3162.464320] ? validate_nla+0x28c/0x1580 [ 3162.468409] hwsim_new_radio_nl+0xca6/0x1430 23:23:35 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x04\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:35 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000e11ff0)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a02000000ff81004e227e00000058000b4824ca944f64009400050028925aa8000000000000008000f0ffffffff09000000fff5dd0000001000010000ae65af29955a7f680cfe63", 0x58}], 0x1) socket$netlink(0x10, 0x3, 0x1f) 23:23:35 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000fffffff012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3162.472836] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3162.478576] genl_family_rcv_msg+0x80d/0x11a0 [ 3162.483089] ? genl_unregister_family+0x8a0/0x8a0 [ 3162.487954] ? radix_tree_insert+0x850/0x850 [ 3162.492376] ? netlink_deliver_tap+0x32b/0xf40 [ 3162.496956] genl_rcv_msg+0xca/0x16c [ 3162.500657] netlink_rcv_skb+0x17d/0x410 [ 3162.504718] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3162.509470] ? netlink_ack+0xba0/0xba0 [ 3162.513369] ? __down_interruptible+0x740/0x740 [ 3162.518045] genl_rcv+0x29/0x40 [ 3162.521322] netlink_unicast+0x574/0x770 [ 3162.525392] ? netlink_attachskb+0x980/0x980 [ 3162.529796] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3162.535398] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3162.540453] netlink_sendmsg+0xa05/0xf90 [ 3162.544525] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3162.550077] ? netlink_unicast+0x770/0x770 [ 3162.554328] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3162.559173] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3162.563934] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3162.569480] ? security_socket_sendmsg+0x93/0xc0 [ 3162.574226] ? netlink_unicast+0x770/0x770 [ 3162.578455] sock_sendmsg+0xdd/0x130 [ 3162.582182] ___sys_sendmsg+0x7ec/0x910 [ 3162.586158] ? copy_msghdr_from_user+0x570/0x570 [ 3162.590911] ? iterate_fd+0x4b0/0x4b0 [ 3162.594724] ? __might_fault+0x12b/0x1e0 [ 3162.598773] ? find_held_lock+0x35/0x120 [ 3162.602819] ? __might_fault+0x12b/0x1e0 [ 3162.606898] ? __fget_light+0x2db/0x420 [ 3162.610894] ? fget_raw+0x20/0x20 [ 3162.614354] ? lock_release+0xc40/0xc40 [ 3162.618336] ? trace_hardirqs_off_caller+0x300/0x300 [ 3162.623445] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3162.628973] ? __fdget+0x1b/0x20 [ 3162.632325] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3162.637885] ? sockfd_lookup_light+0xc2/0x160 [ 3162.642398] __sys_sendmsg+0x112/0x270 [ 3162.646298] ? __ia32_sys_shutdown+0x80/0x80 [ 3162.650700] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3162.656062] ? trace_hardirqs_off_caller+0x300/0x300 [ 3162.661168] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3162.665941] __x64_sys_sendmsg+0x78/0xb0 [ 3162.670018] do_syscall_64+0x1a3/0x800 [ 3162.673909] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3162.678825] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3162.683835] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3162.688673] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3162.693843] RIP: 0033:0x458089 [ 3162.697045] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3162.715940] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3162.723642] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3162.730911] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3162.738166] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3162.745440] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3162.752692] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:36 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3162.803290] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:36 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:36 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = accept(r0, 0x0, &(0x7f00000000c0)) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="710c57df99e9924d1b7b8e3564f970d5e84ff9bdee86ed4d031e37367b6447bec99011eb3a722eadb56a3349cceb429e97811c98c3eb52ac50851aac52c1f6ebf7636d73bb86c59a3464c4e5f5c2ca65fdc33a06ce4ad1862e15234cc76c", 0x5e) ioctl(r1, 0x40001000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000080)={0x0, 0x3, 0x9, 0x6}) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="18000000310019010000000000000000030000000400000020713e6b2a29dfdecb2ee382d7ea9fc6a895a76218d70a9abda4e416a5c9a74d79ed63d0fdbf20cfd2a5955d733d4c8e38ec5913de6cb2f63043dca34e29149c0eff6fc1fa2d63ae85da"], 0x18}}, 0x0) [ 3162.881184] ipvs_mt_check: 20 callbacks suppressed [ 3162.881194] xt_ipvs: protocol family 7 not supported 23:23:36 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c09000000f0ffff12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3162.964741] xt_ipvs: protocol family 7 not supported [ 3163.028974] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3163.036457] xt_ipvs: protocol family 7 not supported [ 3163.062489] CPU: 0 PID: 20847 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3163.069693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 23:23:36 executing program 3: pselect6(0xfffffffffffffdbc, 0x0, 0x0, 0x0, 0x0, 0x0) 23:23:36 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x9400000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3163.079044] Call Trace: [ 3163.081658] dump_stack+0x1db/0x2d0 [ 3163.085335] ? dump_stack_print_info.cold+0x20/0x20 [ 3163.090363] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3163.095476] sysfs_warn_dup.cold+0x1c/0x31 [ 3163.099733] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3163.105115] sysfs_create_link+0x65/0xc0 [ 3163.109187] device_add+0x78e/0x1800 [ 3163.112940] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3163.118333] ? get_device_parent.isra.0+0x570/0x570 [ 3163.123380] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3163.128933] wiphy_register+0x1abd/0x2760 [ 3163.133112] ? wiphy_unregister+0x1340/0x1340 [ 3163.137620] ? rcu_read_lock_sched_held+0x110/0x130 [ 3163.142645] ? __kmalloc+0x5d5/0x740 [ 3163.146367] ? memset+0x32/0x40 [ 3163.149655] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3163.155204] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3163.160161] ieee80211_register_hw+0x15e2/0x3f30 [ 3163.164934] ? hrtimer_init_on_stack+0x1/0x40 [ 3163.169447] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3163.174245] ? kasan_check_write+0x14/0x20 23:23:36 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x05\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3163.178491] ? tasklet_hrtimer_init+0xfa/0x260 [ 3163.183082] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3163.187936] ? tasklet_kill+0xd0/0xd0 [ 3163.191760] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3163.196835] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3163.202925] ? kvasprintf+0x101/0x170 [ 3163.206738] ? bust_spinlocks+0xe0/0xe0 [ 3163.210736] ? kasprintf+0xbb/0xf0 [ 3163.214286] ? kvasprintf_const+0x190/0x190 [ 3163.218624] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3163.223833] ? validate_nla+0x28c/0x1580 [ 3163.227921] hwsim_new_radio_nl+0xca6/0x1430 [ 3163.227947] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3163.227986] genl_family_rcv_msg+0x80d/0x11a0 [ 3163.228010] ? genl_unregister_family+0x8a0/0x8a0 [ 3163.228033] ? radix_tree_insert+0x850/0x850 [ 3163.251334] ? netlink_deliver_tap+0x32b/0xf40 [ 3163.255965] genl_rcv_msg+0xca/0x16c [ 3163.259688] netlink_rcv_skb+0x17d/0x410 [ 3163.263791] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3163.268586] ? netlink_ack+0xba0/0xba0 [ 3163.272484] ? __down_interruptible+0x740/0x740 [ 3163.277178] genl_rcv+0x29/0x40 [ 3163.280472] netlink_unicast+0x574/0x770 [ 3163.284555] ? netlink_attachskb+0x980/0x980 [ 3163.288990] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3163.294532] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3163.299559] netlink_sendmsg+0xa05/0xf90 [ 3163.303632] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3163.309191] ? netlink_unicast+0x770/0x770 [ 3163.313433] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3163.318296] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3163.323060] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3163.328615] ? security_socket_sendmsg+0x93/0xc0 [ 3163.331750] xt_ipvs: protocol family 7 not supported [ 3163.333379] ? netlink_unicast+0x770/0x770 [ 3163.333399] sock_sendmsg+0xdd/0x130 [ 3163.333419] ___sys_sendmsg+0x7ec/0x910 [ 3163.350438] ? copy_msghdr_from_user+0x570/0x570 [ 3163.355201] ? iterate_fd+0x4b0/0x4b0 [ 3163.359042] ? __might_fault+0x12b/0x1e0 [ 3163.363113] ? find_held_lock+0x35/0x120 [ 3163.367199] ? __might_fault+0x12b/0x1e0 [ 3163.371270] ? __fget_light+0x2db/0x420 [ 3163.375249] ? fget_raw+0x20/0x20 [ 3163.378742] ? lock_release+0xc40/0xc40 [ 3163.382745] ? trace_hardirqs_off_caller+0x300/0x300 [ 3163.387887] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3163.392480] xt_ipvs: protocol family 7 not supported [ 3163.393457] ? __fdget+0x1b/0x20 [ 3163.393473] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3163.393490] ? sockfd_lookup_light+0xc2/0x160 [ 3163.393509] __sys_sendmsg+0x112/0x270 [ 3163.393526] ? __ia32_sys_shutdown+0x80/0x80 [ 3163.393556] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3163.425699] ? trace_hardirqs_off_caller+0x300/0x300 [ 3163.430811] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3163.435587] __x64_sys_sendmsg+0x78/0xb0 [ 3163.439661] do_syscall_64+0x1a3/0x800 [ 3163.443565] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3163.448510] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3163.453541] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3163.458437] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3163.463638] RIP: 0033:0x458089 23:23:36 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x06\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:36 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) r1 = socket$packet(0x11, 0x40800000000003, 0x300) setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000002180)=0x100, 0xfffffffffffffda4) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000700)={r1}) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000780)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x30, r3, 0x0, 0x70bd28, 0x25dfdbfc, {{}, 0x0, 0x4107, 0x0, {0x14, 0x18, {0x7, @bearer=@udp='udp:syz0\x00'}}}, ["", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x40054) recvfrom$packet(r1, 0x0, 0x310, 0x0, 0x0, 0x0) write$binfmt_misc(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="487851707817ab5cde49b133939d7d4cf2b9a61d22dbb78e0a3271849b5dc2615efa695f1b238b915fd2ea279a08915658fcb1fe6feff3b15db1961b8273"], 0x1) [ 3163.466862] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3163.485811] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3163.485826] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3163.485835] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3163.485844] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3163.485869] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3163.485879] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3163.534273] xt_ipvs: protocol family 7 not supported [ 3163.555676] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:36 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:36 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900007fffffff12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3163.633129] xt_ipvs: protocol family 7 not supported 23:23:36 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:37 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xb804000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3163.701099] xt_ipvs: protocol family 7 not supported 23:23:37 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:37 executing program 3: r0 = socket$inet6(0xa, 0x80003, 0x1f) listen(r0, 0x40) sendto$inet6(r0, 0x0, 0x0, 0x4000, 0x0, 0x0) [ 3163.794611] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3163.813383] CPU: 0 PID: 20895 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3163.820594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3163.820601] Call Trace: [ 3163.820628] dump_stack+0x1db/0x2d0 [ 3163.820654] ? dump_stack_print_info.cold+0x20/0x20 [ 3163.820678] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3163.820707] sysfs_warn_dup.cold+0x1c/0x31 [ 3163.820728] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3163.820747] sysfs_create_link+0x65/0xc0 [ 3163.820767] device_add+0x78e/0x1800 [ 3163.863776] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3163.869151] ? get_device_parent.isra.0+0x570/0x570 [ 3163.874171] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3163.879732] wiphy_register+0x1abd/0x2760 [ 3163.883934] ? wiphy_unregister+0x1340/0x1340 [ 3163.888451] ? rcu_read_lock_sched_held+0x110/0x130 [ 3163.893466] ? __kmalloc+0x5d5/0x740 [ 3163.897181] ? memset+0x32/0x40 [ 3163.900459] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3163.906012] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3163.910946] ieee80211_register_hw+0x15e2/0x3f30 [ 3163.915706] ? hrtimer_init_on_stack+0x1/0x40 [ 3163.920227] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3163.924986] ? kasan_check_write+0x14/0x20 [ 3163.929218] ? tasklet_hrtimer_init+0xfa/0x260 [ 3163.933814] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3163.938710] ? tasklet_kill+0xd0/0xd0 [ 3163.942538] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3163.947574] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3163.953632] ? kvasprintf+0x101/0x170 [ 3163.957435] ? bust_spinlocks+0xe0/0xe0 [ 3163.961425] ? kasprintf+0xbb/0xf0 [ 3163.964993] ? kvasprintf_const+0x190/0x190 [ 3163.969326] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3163.974514] ? validate_nla+0x28c/0x1580 [ 3163.978585] hwsim_new_radio_nl+0xca6/0x1430 [ 3163.983001] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3163.988227] genl_family_rcv_msg+0x80d/0x11a0 [ 3163.992727] ? genl_unregister_family+0x8a0/0x8a0 [ 3163.997598] ? radix_tree_insert+0x850/0x850 [ 3164.002008] ? netlink_deliver_tap+0x32b/0xf40 [ 3164.006610] genl_rcv_msg+0xca/0x16c [ 3164.010335] netlink_rcv_skb+0x17d/0x410 [ 3164.014392] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3164.019704] ? netlink_ack+0xba0/0xba0 [ 3164.023598] ? __down_interruptible+0x740/0x740 [ 3164.028272] genl_rcv+0x29/0x40 [ 3164.031568] netlink_unicast+0x574/0x770 [ 3164.035633] ? netlink_attachskb+0x980/0x980 [ 3164.040051] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3164.045587] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3164.050611] netlink_sendmsg+0xa05/0xf90 [ 3164.054684] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3164.060233] ? netlink_unicast+0x770/0x770 [ 3164.064466] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3164.069311] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3164.074062] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3164.079659] ? security_socket_sendmsg+0x93/0xc0 [ 3164.084412] ? netlink_unicast+0x770/0x770 [ 3164.088648] sock_sendmsg+0xdd/0x130 [ 3164.092363] ___sys_sendmsg+0x7ec/0x910 [ 3164.096338] ? copy_msghdr_from_user+0x570/0x570 [ 3164.101105] ? iterate_fd+0x4b0/0x4b0 [ 3164.104956] ? __might_fault+0x12b/0x1e0 [ 3164.109050] ? find_held_lock+0x35/0x120 [ 3164.113110] ? __might_fault+0x12b/0x1e0 [ 3164.117189] ? __fget_light+0x2db/0x420 [ 3164.121170] ? fget_raw+0x20/0x20 [ 3164.124619] ? lock_release+0xc40/0xc40 [ 3164.128620] ? trace_hardirqs_off_caller+0x300/0x300 [ 3164.133717] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3164.139264] ? __fdget+0x1b/0x20 [ 3164.142634] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3164.148171] ? sockfd_lookup_light+0xc2/0x160 [ 3164.152670] __sys_sendmsg+0x112/0x270 [ 3164.156558] ? __ia32_sys_shutdown+0x80/0x80 [ 3164.160978] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3164.166342] ? trace_hardirqs_off_caller+0x300/0x300 [ 3164.171457] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3164.176213] __x64_sys_sendmsg+0x78/0xb0 [ 3164.180295] do_syscall_64+0x1a3/0x800 [ 3164.184202] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3164.189163] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3164.194186] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3164.199040] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3164.204230] RIP: 0033:0x458089 [ 3164.207423] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3164.226322] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3164.234050] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3164.241319] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3164.248584] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3164.255855] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3164.263131] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3164.294482] xt_ipvs: protocol family 7 not supported 23:23:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x10000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3164.316097] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3164.339819] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:37 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3164.421088] xt_ipvs: protocol family 7 not supported 23:23:37 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x2e, 0xffffff84}}, &(0x7f0000000180)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2'}, 0x48) setsockopt$inet_udp_int(r0, 0x11, 0x65, &(0x7f00000000c0)=0xfffffffffffffffd, 0x4) r2 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000240)=r1, 0x4) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x96, &(0x7f0000000280)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2'}, 0x30) ioctl$sock_FIOSETOWN(r2, 0x8901, &(0x7f0000000080)=r3) 23:23:37 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900009effffff12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3164.518099] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3164.554282] CPU: 1 PID: 20917 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3164.561486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3164.570856] Call Trace: [ 3164.573467] dump_stack+0x1db/0x2d0 [ 3164.577121] ? dump_stack_print_info.cold+0x20/0x20 [ 3164.582159] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3164.587278] sysfs_warn_dup.cold+0x1c/0x31 [ 3164.591516] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3164.596913] sysfs_create_link+0x65/0xc0 [ 3164.600992] device_add+0x78e/0x1800 [ 3164.604714] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3164.610083] ? get_device_parent.isra.0+0x570/0x570 [ 3164.615104] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3164.620660] wiphy_register+0x1abd/0x2760 [ 3164.624813] ? wiphy_unregister+0x1340/0x1340 [ 3164.629297] ? rcu_read_lock_sched_held+0x110/0x130 [ 3164.634303] ? __kmalloc+0x5d5/0x740 [ 3164.638003] ? memset+0x32/0x40 [ 3164.641267] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3164.646793] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3164.651714] ieee80211_register_hw+0x15e2/0x3f30 [ 3164.656474] ? hrtimer_init_on_stack+0x1/0x40 [ 3164.660980] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3164.665751] ? kasan_check_write+0x14/0x20 [ 3164.669997] ? tasklet_hrtimer_init+0xfa/0x260 [ 3164.674577] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3164.679407] ? tasklet_kill+0xd0/0xd0 [ 3164.683230] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3164.688257] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3164.694326] ? kvasprintf+0x101/0x170 [ 3164.698136] ? bust_spinlocks+0xe0/0xe0 [ 3164.702153] ? kasprintf+0xbb/0xf0 [ 3164.705723] ? kvasprintf_const+0x190/0x190 [ 3164.710040] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3164.715258] ? validate_nla+0x28c/0x1580 [ 3164.719352] hwsim_new_radio_nl+0xca6/0x1430 [ 3164.723768] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3164.728989] genl_family_rcv_msg+0x80d/0x11a0 [ 3164.733488] ? genl_unregister_family+0x8a0/0x8a0 [ 3164.738328] ? radix_tree_insert+0x850/0x850 [ 3164.742740] ? netlink_deliver_tap+0x32b/0xf40 [ 3164.747352] genl_rcv_msg+0xca/0x16c [ 3164.751075] netlink_rcv_skb+0x17d/0x410 [ 3164.755152] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3164.759896] ? netlink_ack+0xba0/0xba0 [ 3164.763774] ? __down_interruptible+0x740/0x740 [ 3164.768435] genl_rcv+0x29/0x40 [ 3164.771706] netlink_unicast+0x574/0x770 [ 3164.775761] ? netlink_attachskb+0x980/0x980 [ 3164.780167] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3164.785742] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3164.790771] netlink_sendmsg+0xa05/0xf90 [ 3164.794874] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3164.800466] ? netlink_unicast+0x770/0x770 [ 3164.804701] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3164.809562] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3164.814310] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3164.819841] ? security_socket_sendmsg+0x93/0xc0 [ 3164.824619] ? netlink_unicast+0x770/0x770 [ 3164.828866] sock_sendmsg+0xdd/0x130 [ 3164.832584] ___sys_sendmsg+0x7ec/0x910 [ 3164.836560] ? copy_msghdr_from_user+0x570/0x570 [ 3164.841314] ? iterate_fd+0x4b0/0x4b0 [ 3164.845132] ? __might_fault+0x12b/0x1e0 [ 3164.849198] ? find_held_lock+0x35/0x120 [ 3164.853260] ? __might_fault+0x12b/0x1e0 [ 3164.857314] ? __fget_light+0x2db/0x420 [ 3164.861278] ? fget_raw+0x20/0x20 [ 3164.864716] ? lock_release+0xc40/0xc40 [ 3164.868710] ? trace_hardirqs_off_caller+0x300/0x300 [ 3164.873812] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3164.879356] ? __fdget+0x1b/0x20 [ 3164.882728] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3164.888260] ? sockfd_lookup_light+0xc2/0x160 [ 3164.892772] __sys_sendmsg+0x112/0x270 [ 3164.896657] ? __ia32_sys_shutdown+0x80/0x80 [ 3164.901083] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3164.906446] ? trace_hardirqs_off_caller+0x300/0x300 [ 3164.911549] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3164.916295] __x64_sys_sendmsg+0x78/0xb0 [ 3164.920365] do_syscall_64+0x1a3/0x800 [ 3164.924258] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3164.929222] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3164.934254] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3164.939101] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3164.944273] RIP: 0033:0x458089 [ 3164.947472] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 23:23:37 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00H\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3164.966371] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3164.974076] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3164.981329] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3164.988584] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3164.995854] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3165.003110] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3165.034997] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:38 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xc404000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:38 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x16380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:38 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000f0ffffff12000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:38 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00L\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:38 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3165.269631] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3165.342135] CPU: 0 PID: 20944 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3165.349346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3165.358705] Call Trace: [ 3165.361311] dump_stack+0x1db/0x2d0 [ 3165.364960] ? dump_stack_print_info.cold+0x20/0x20 [ 3165.369996] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3165.375121] sysfs_warn_dup.cold+0x1c/0x31 [ 3165.379410] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3165.384772] sysfs_create_link+0x65/0xc0 [ 3165.388899] device_add+0x78e/0x1800 [ 3165.392619] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3165.398010] ? get_device_parent.isra.0+0x570/0x570 [ 3165.403033] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3165.408585] wiphy_register+0x1abd/0x2760 [ 3165.412745] ? wiphy_unregister+0x1340/0x1340 [ 3165.417278] ? rcu_read_lock_sched_held+0x110/0x130 [ 3165.422294] ? __kmalloc+0x5d5/0x740 [ 3165.426031] ? memset+0x32/0x40 [ 3165.429314] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3165.434871] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3165.439815] ieee80211_register_hw+0x15e2/0x3f30 [ 3165.444583] ? hrtimer_init_on_stack+0x1/0x40 [ 3165.449103] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3165.453892] ? kasan_check_write+0x14/0x20 [ 3165.458132] ? tasklet_hrtimer_init+0xfa/0x260 [ 3165.462718] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3165.467562] ? tasklet_kill+0xd0/0xd0 [ 3165.471397] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3165.476431] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3165.482504] ? kvasprintf+0x101/0x170 [ 3165.486304] ? bust_spinlocks+0xe0/0xe0 [ 3165.490294] ? kasprintf+0xbb/0xf0 [ 3165.493845] ? kvasprintf_const+0x190/0x190 [ 3165.498199] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3165.503390] ? validate_nla+0x28c/0x1580 [ 3165.507464] hwsim_new_radio_nl+0xca6/0x1430 [ 3165.511888] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3165.517110] genl_family_rcv_msg+0x80d/0x11a0 [ 3165.521612] ? genl_unregister_family+0x8a0/0x8a0 [ 3165.526458] ? radix_tree_insert+0x850/0x850 [ 3165.530878] ? netlink_deliver_tap+0x32b/0xf40 [ 3165.535489] genl_rcv_msg+0xca/0x16c [ 3165.539225] netlink_rcv_skb+0x17d/0x410 [ 3165.543288] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3165.548048] ? netlink_ack+0xba0/0xba0 [ 3165.551942] ? __down_interruptible+0x740/0x740 [ 3165.556645] genl_rcv+0x29/0x40 [ 3165.559945] netlink_unicast+0x574/0x770 [ 3165.564013] ? netlink_attachskb+0x980/0x980 [ 3165.568427] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3165.573963] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3165.578986] netlink_sendmsg+0xa05/0xf90 [ 3165.583045] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3165.588591] ? netlink_unicast+0x770/0x770 [ 3165.592829] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3165.597692] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3165.602446] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3165.608002] ? security_socket_sendmsg+0x93/0xc0 [ 3165.612757] ? netlink_unicast+0x770/0x770 [ 3165.617017] sock_sendmsg+0xdd/0x130 [ 3165.620749] ___sys_sendmsg+0x7ec/0x910 [ 3165.624730] ? copy_msghdr_from_user+0x570/0x570 [ 3165.629485] ? iterate_fd+0x4b0/0x4b0 [ 3165.633298] ? __might_fault+0x12b/0x1e0 [ 3165.637369] ? find_held_lock+0x35/0x120 [ 3165.641433] ? __might_fault+0x12b/0x1e0 [ 3165.645528] ? __fget_light+0x2db/0x420 [ 3165.649506] ? fget_raw+0x20/0x20 [ 3165.652958] ? lock_release+0xc40/0xc40 [ 3165.656935] ? trace_hardirqs_off_caller+0x300/0x300 [ 3165.662072] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3165.667623] ? __fdget+0x1b/0x20 [ 3165.670988] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3165.676525] ? sockfd_lookup_light+0xc2/0x160 [ 3165.681027] __sys_sendmsg+0x112/0x270 [ 3165.684915] ? __ia32_sys_shutdown+0x80/0x80 [ 3165.689357] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3165.694721] ? trace_hardirqs_off_caller+0x300/0x300 [ 3165.699844] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3165.704629] __x64_sys_sendmsg+0x78/0xb0 [ 3165.708709] do_syscall_64+0x1a3/0x800 [ 3165.712599] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3165.717531] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3165.722556] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3165.727406] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3165.732591] RIP: 0033:0x458089 [ 3165.735957] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3165.754868] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3165.762577] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3165.769885] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3165.777165] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3165.784450] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3165.791717] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3165.825700] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3165.865807] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:39 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:39 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x17380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:39 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00`\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:39 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xcffeffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:39 executing program 3: r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f0000000080)="2400000052001f0014f9f407002c04000a00071008000100ffffffff0800000000000000", 0xfffffffffffffd21) 23:23:39 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000000000002000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3166.143708] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3166.164518] CPU: 0 PID: 20987 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3166.171728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3166.181087] Call Trace: [ 3166.181127] dump_stack+0x1db/0x2d0 [ 3166.181163] ? dump_stack_print_info.cold+0x20/0x20 [ 3166.181187] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3166.181229] sysfs_warn_dup.cold+0x1c/0x31 [ 3166.187466] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3166.187486] sysfs_create_link+0x65/0xc0 [ 3166.187506] device_add+0x78e/0x1800 [ 3166.187521] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3166.187545] ? get_device_parent.isra.0+0x570/0x570 [ 3166.187564] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3166.187593] wiphy_register+0x1abd/0x2760 [ 3166.187621] ? wiphy_unregister+0x1340/0x1340 [ 3166.239620] ? rcu_read_lock_sched_held+0x110/0x130 [ 3166.244635] ? __kmalloc+0x5d5/0x740 [ 3166.248355] ? memset+0x32/0x40 [ 3166.251646] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3166.257194] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3166.257216] ieee80211_register_hw+0x15e2/0x3f30 [ 3166.257239] ? hrtimer_init_on_stack+0x1/0x40 [ 3166.257263] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3166.257282] ? kasan_check_write+0x14/0x20 [ 3166.257300] ? tasklet_hrtimer_init+0xfa/0x260 [ 3166.266993] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3166.267010] ? tasklet_kill+0xd0/0xd0 [ 3166.267041] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3166.267076] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3166.267091] ? kvasprintf+0x101/0x170 [ 3166.267107] ? bust_spinlocks+0xe0/0xe0 [ 3166.267137] ? kasprintf+0xbb/0xf0 [ 3166.267152] ? kvasprintf_const+0x190/0x190 [ 3166.320524] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3166.325731] ? validate_nla+0x28c/0x1580 [ 3166.329811] hwsim_new_radio_nl+0xca6/0x1430 [ 3166.334233] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3166.339447] genl_family_rcv_msg+0x80d/0x11a0 23:23:39 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00h\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:39 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='/\x02roup.stap\x00', 0x2761, 0x0) ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, 0x0) r1 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) write$cgroup_int(0xffffffffffffffff, 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b0") getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000180)={0x0, @multicast1, @multicast2}, &(0x7f00000001c0)=0xc) ioctl$FIBMAP(r1, 0x1, &(0x7f0000000000)=0xfffffffffffffffc) getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000001880)={{{@in=@local, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@dev}}, &(0x7f0000001980)=0xe8) getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x74, &(0x7f0000000100)=""/34, &(0x7f0000000140)=0x22) bpf$PROG_LOAD(0x5, &(0x7f00000019c0)={0x0, 0x5, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xffffffff}, [@map={0x18, 0xb, 0x1, 0x0, r0}]}, &(0x7f00000000c0)='GPL\x00', 0x7c453237, 0x0, 0x0, 0x41100, 0x1, [], r3, 0xe}, 0x48) [ 3166.344462] ? genl_unregister_family+0x8a0/0x8a0 [ 3166.349323] ? radix_tree_insert+0x850/0x850 [ 3166.353743] ? netlink_deliver_tap+0x32b/0xf40 [ 3166.358532] genl_rcv_msg+0xca/0x16c [ 3166.362263] netlink_rcv_skb+0x17d/0x410 [ 3166.366360] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3166.371131] ? netlink_ack+0xba0/0xba0 [ 3166.375027] ? __down_interruptible+0x740/0x740 [ 3166.379731] genl_rcv+0x29/0x40 [ 3166.383012] netlink_unicast+0x574/0x770 [ 3166.387081] ? netlink_attachskb+0x980/0x980 [ 3166.391506] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3166.397043] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3166.402084] netlink_sendmsg+0xa05/0xf90 [ 3166.406149] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3166.411713] ? netlink_unicast+0x770/0x770 [ 3166.415951] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3166.420797] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3166.425546] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3166.431081] ? security_socket_sendmsg+0x93/0xc0 [ 3166.435925] ? netlink_unicast+0x770/0x770 [ 3166.440164] sock_sendmsg+0xdd/0x130 [ 3166.443921] ___sys_sendmsg+0x7ec/0x910 [ 3166.447905] ? copy_msghdr_from_user+0x570/0x570 [ 3166.452664] ? iterate_fd+0x4b0/0x4b0 [ 3166.456490] ? __might_fault+0x12b/0x1e0 [ 3166.460557] ? find_held_lock+0x35/0x120 [ 3166.464623] ? __might_fault+0x12b/0x1e0 [ 3166.468692] ? __fget_light+0x2db/0x420 [ 3166.472681] ? fget_raw+0x20/0x20 [ 3166.476263] ? lock_release+0xc40/0xc40 [ 3166.480241] ? trace_hardirqs_off_caller+0x300/0x300 [ 3166.485356] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3166.490904] ? __fdget+0x1b/0x20 [ 3166.494269] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3166.499803] ? sockfd_lookup_light+0xc2/0x160 [ 3166.504337] __sys_sendmsg+0x112/0x270 [ 3166.508225] ? __ia32_sys_shutdown+0x80/0x80 [ 3166.512650] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3166.518034] ? trace_hardirqs_off_caller+0x300/0x300 [ 3166.523139] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3166.527917] __x64_sys_sendmsg+0x78/0xb0 [ 3166.532001] do_syscall_64+0x1a3/0x800 [ 3166.535900] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3166.540831] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3166.545888] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3166.550745] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3166.555948] RIP: 0033:0x458089 [ 3166.559157] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3166.578085] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3166.585805] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:23:39 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000002000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3166.593067] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3166.600329] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3166.607625] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3166.614894] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3166.632339] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:40 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xfe80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:40 executing program 3: pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002, 0x0, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f0000000100), 0x0, 0x20000001, 0x0, 0x0) ioctl$int_in(r1, 0x5421, &(0x7f0000000540)=0x6) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070") splice(r1, 0x0, r0, 0x0, 0x40000ab15, 0x0) 23:23:40 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:40 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x18380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:40 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00l\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3166.858497] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:40 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000003000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:40 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000001180)="0adc1f123c123f3188b070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000700)=ANY=[@ANYBLOB="34010000170001000000000000000000fe8000000000000000000000000000bb0000000000000000ac141400000000000000000000000000ac1414aa0000000000000000000000000000000000000000000000300000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="7f0000010000000000000000000000000000000000000000000000000000000100000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c0015000000000000000000"], 0x134}}, 0x0) [ 3166.933082] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3166.954286] CPU: 1 PID: 21020 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3166.961489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3166.970845] Call Trace: [ 3166.973475] dump_stack+0x1db/0x2d0 [ 3166.977130] ? dump_stack_print_info.cold+0x20/0x20 [ 3166.977156] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3166.977185] sysfs_warn_dup.cold+0x1c/0x31 [ 3166.977206] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3166.977244] sysfs_create_link+0x65/0xc0 [ 3166.977264] device_add+0x78e/0x1800 [ 3166.977281] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3166.977305] ? get_device_parent.isra.0+0x570/0x570 [ 3166.977325] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3166.977356] wiphy_register+0x1abd/0x2760 [ 3166.977397] ? wiphy_unregister+0x1340/0x1340 [ 3166.977418] ? rcu_read_lock_sched_held+0x110/0x130 [ 3166.977437] ? __kmalloc+0x5d5/0x740 [ 3166.977455] ? memset+0x32/0x40 [ 3166.987554] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3166.987573] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3166.987593] ieee80211_register_hw+0x15e2/0x3f30 [ 3166.987615] ? hrtimer_init_on_stack+0x1/0x40 [ 3167.020890] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3167.029518] ? kasan_check_write+0x14/0x20 [ 3167.029534] ? tasklet_hrtimer_init+0xfa/0x260 [ 3167.029550] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3167.029568] ? tasklet_kill+0xd0/0xd0 [ 3167.083389] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3167.088432] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3167.094482] ? kvasprintf+0x101/0x170 [ 3167.098272] ? bust_spinlocks+0xe0/0xe0 [ 3167.102261] ? kasprintf+0xbb/0xf0 [ 3167.105784] ? kvasprintf_const+0x190/0x190 [ 3167.110117] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3167.115339] ? validate_nla+0x28c/0x1580 [ 3167.119409] hwsim_new_radio_nl+0xca6/0x1430 [ 3167.123822] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3167.129026] genl_family_rcv_msg+0x80d/0x11a0 [ 3167.133508] ? genl_unregister_family+0x8a0/0x8a0 [ 3167.138339] ? radix_tree_insert+0x850/0x850 [ 3167.142735] ? netlink_deliver_tap+0x32b/0xf40 [ 3167.147318] genl_rcv_msg+0xca/0x16c [ 3167.151033] netlink_rcv_skb+0x17d/0x410 [ 3167.155092] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3167.159834] ? netlink_ack+0xba0/0xba0 [ 3167.163734] ? __down_interruptible+0x740/0x740 [ 3167.168399] genl_rcv+0x29/0x40 [ 3167.171664] netlink_unicast+0x574/0x770 [ 3167.175712] ? netlink_attachskb+0x980/0x980 [ 3167.180109] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3167.185647] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3167.190656] netlink_sendmsg+0xa05/0xf90 [ 3167.194705] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3167.200229] ? netlink_unicast+0x770/0x770 [ 3167.204462] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3167.209292] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3167.214032] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3167.219552] ? security_socket_sendmsg+0x93/0xc0 [ 3167.224331] ? netlink_unicast+0x770/0x770 [ 3167.228591] sock_sendmsg+0xdd/0x130 [ 3167.232298] ___sys_sendmsg+0x7ec/0x910 [ 3167.236270] ? copy_msghdr_from_user+0x570/0x570 [ 3167.241069] ? iterate_fd+0x4b0/0x4b0 [ 3167.244888] ? __might_fault+0x12b/0x1e0 [ 3167.248936] ? find_held_lock+0x35/0x120 [ 3167.252982] ? __might_fault+0x12b/0x1e0 [ 3167.257032] ? __fget_light+0x2db/0x420 [ 3167.260994] ? fget_raw+0x20/0x20 [ 3167.264447] ? lock_release+0xc40/0xc40 [ 3167.268418] ? trace_hardirqs_off_caller+0x300/0x300 [ 3167.273519] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3167.279050] ? __fdget+0x1b/0x20 [ 3167.282402] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3167.287927] ? sockfd_lookup_light+0xc2/0x160 [ 3167.292408] __sys_sendmsg+0x112/0x270 [ 3167.296279] ? __ia32_sys_shutdown+0x80/0x80 [ 3167.300698] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3167.306047] ? trace_hardirqs_off_caller+0x300/0x300 [ 3167.311138] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3167.315911] __x64_sys_sendmsg+0x78/0xb0 [ 3167.319975] do_syscall_64+0x1a3/0x800 [ 3167.323873] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3167.328799] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3167.333806] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3167.338642] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3167.343835] RIP: 0033:0x458089 [ 3167.347027] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3167.365913] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3167.373628] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:23:40 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00t\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3167.381491] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3167.388762] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3167.396018] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3167.403272] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:40 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:40 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xffffffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3167.449910] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3167.481141] netlink: 12 bytes leftover after parsing attributes in process `syz-executor3'. 23:23:40 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000004000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:40 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x190f0000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:40 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x18380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:40 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00z\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3167.666631] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3167.718925] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 23:23:41 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000005000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3167.776306] CPU: 1 PID: 21061 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3167.783552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3167.792913] Call Trace: [ 3167.795527] dump_stack+0x1db/0x2d0 [ 3167.799178] ? dump_stack_print_info.cold+0x20/0x20 [ 3167.804211] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3167.804256] sysfs_warn_dup.cold+0x1c/0x31 [ 3167.804278] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3167.804302] sysfs_create_link+0x65/0xc0 [ 3167.818974] device_add+0x78e/0x1800 [ 3167.818990] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3167.819013] ? get_device_parent.isra.0+0x570/0x570 [ 3167.819031] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3167.819058] wiphy_register+0x1abd/0x2760 [ 3167.819084] ? wiphy_unregister+0x1340/0x1340 [ 3167.851374] ? rcu_read_lock_sched_held+0x110/0x130 [ 3167.856383] ? __kmalloc+0x5d5/0x740 [ 3167.860086] ? memset+0x32/0x40 [ 3167.863353] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3167.868887] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3167.873806] ieee80211_register_hw+0x15e2/0x3f30 [ 3167.878553] ? hrtimer_init_on_stack+0x1/0x40 [ 3167.883038] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3167.887818] ? kasan_check_write+0x14/0x20 [ 3167.892068] ? tasklet_hrtimer_init+0xfa/0x260 [ 3167.896645] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3167.901485] ? tasklet_kill+0xd0/0xd0 [ 3167.905294] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3167.910315] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3167.916365] ? kvasprintf+0x101/0x170 [ 3167.920166] ? bust_spinlocks+0xe0/0xe0 [ 3167.924150] ? kasprintf+0xbb/0xf0 [ 3167.927677] ? kvasprintf_const+0x190/0x190 [ 3167.931987] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3167.937171] ? validate_nla+0x28c/0x1580 [ 3167.941256] hwsim_new_radio_nl+0xca6/0x1430 [ 3167.945667] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3167.950864] genl_family_rcv_msg+0x80d/0x11a0 [ 3167.955371] ? genl_unregister_family+0x8a0/0x8a0 [ 3167.960219] ? radix_tree_insert+0x850/0x850 [ 3167.964622] ? netlink_deliver_tap+0x32b/0xf40 [ 3167.969247] genl_rcv_msg+0xca/0x16c [ 3167.972978] netlink_rcv_skb+0x17d/0x410 [ 3167.977060] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3167.981804] ? netlink_ack+0xba0/0xba0 [ 3167.985696] ? __down_interruptible+0x740/0x740 [ 3167.990376] genl_rcv+0x29/0x40 [ 3167.993662] netlink_unicast+0x574/0x770 [ 3167.998372] ? netlink_attachskb+0x980/0x980 [ 3168.002798] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3168.008329] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3168.013330] netlink_sendmsg+0xa05/0xf90 [ 3168.017378] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3168.022925] ? netlink_unicast+0x770/0x770 [ 3168.027158] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3168.032013] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3168.036786] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3168.042310] ? security_socket_sendmsg+0x93/0xc0 [ 3168.047055] ? netlink_unicast+0x770/0x770 [ 3168.051281] sock_sendmsg+0xdd/0x130 [ 3168.054985] ___sys_sendmsg+0x7ec/0x910 [ 3168.058950] ? copy_msghdr_from_user+0x570/0x570 [ 3168.063704] ? iterate_fd+0x4b0/0x4b0 [ 3168.067498] ? __might_fault+0x12b/0x1e0 [ 3168.071560] ? find_held_lock+0x35/0x120 [ 3168.075628] ? __might_fault+0x12b/0x1e0 [ 3168.079697] ? __fget_light+0x2db/0x420 [ 3168.083673] ? fget_raw+0x20/0x20 [ 3168.087140] ? lock_release+0xc40/0xc40 [ 3168.091104] ? trace_hardirqs_off_caller+0x300/0x300 [ 3168.096250] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3168.101803] ? __fdget+0x1b/0x20 [ 3168.105161] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3168.110701] ? sockfd_lookup_light+0xc2/0x160 [ 3168.115202] __sys_sendmsg+0x112/0x270 [ 3168.119087] ? __ia32_sys_shutdown+0x80/0x80 [ 3168.123516] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3168.128894] ? trace_hardirqs_off_caller+0x300/0x300 [ 3168.134010] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3168.138795] __x64_sys_sendmsg+0x78/0xb0 [ 3168.142867] do_syscall_64+0x1a3/0x800 [ 3168.146752] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3168.151672] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3168.156691] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3168.161536] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3168.166798] RIP: 0033:0x458089 [ 3168.169977] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3168.189138] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3168.196828] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3168.204087] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3168.211345] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3168.218619] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 23:23:41 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3168.225877] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3168.251597] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3168.282515] ipvs_mt_check: 22 callbacks suppressed [ 3168.282536] xt_ipvs: protocol family 7 not supported [ 3168.287018] CPU: 0 PID: 21067 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3168.299806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3168.301135] xt_ipvs: protocol family 7 not supported [ 3168.309157] Call Trace: [ 3168.309180] dump_stack+0x1db/0x2d0 [ 3168.309202] ? dump_stack_print_info.cold+0x20/0x20 [ 3168.309225] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3168.309256] sysfs_warn_dup.cold+0x1c/0x31 [ 3168.309279] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3168.309303] sysfs_create_link+0x65/0xc0 [ 3168.344819] device_add+0x78e/0x1800 [ 3168.348565] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3168.349471] xt_ipvs: protocol family 7 not supported [ 3168.353947] ? get_device_parent.isra.0+0x570/0x570 [ 3168.353966] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3168.353994] wiphy_register+0x1abd/0x2760 [ 3168.354022] ? wiphy_unregister+0x1340/0x1340 [ 3168.354041] ? rcu_read_lock_sched_held+0x110/0x130 [ 3168.354057] ? __kmalloc+0x5d5/0x740 [ 3168.354074] ? memset+0x32/0x40 [ 3168.390382] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3168.395936] ? ieee80211_cs_list_valid+0x1a1/0x280 23:23:41 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\xa0\x01\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3168.400221] xt_ipvs: protocol family 7 not supported [ 3168.400891] ieee80211_register_hw+0x15e2/0x3f30 [ 3168.410737] ? hrtimer_init_on_stack+0x1/0x40 [ 3168.415271] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3168.419709] xt_ipvs: protocol family 7 not supported [ 3168.420052] ? kasan_check_write+0x14/0x20 [ 3168.420068] ? tasklet_hrtimer_init+0xfa/0x260 [ 3168.420084] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3168.420097] ? tasklet_kill+0xd0/0xd0 [ 3168.420121] mac80211_hwsim_new_radio+0x1f8c/0x3610 23:23:41 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x03\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3168.429480] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3168.429494] ? kvasprintf+0x101/0x170 [ 3168.429509] ? bust_spinlocks+0xe0/0xe0 [ 3168.429535] ? kasprintf+0xbb/0xf0 [ 3168.439030] ? kvasprintf_const+0x190/0x190 [ 3168.439049] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3168.439068] ? validate_nla+0x28c/0x1580 [ 3168.439093] hwsim_new_radio_nl+0xca6/0x1430 [ 3168.439117] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3168.439155] genl_family_rcv_msg+0x80d/0x11a0 [ 3168.439180] ? genl_unregister_family+0x8a0/0x8a0 [ 3168.439205] ? radix_tree_insert+0x850/0x850 [ 3168.439224] ? netlink_deliver_tap+0x32b/0xf40 [ 3168.479130] genl_rcv_msg+0xca/0x16c [ 3168.488683] netlink_rcv_skb+0x17d/0x410 [ 3168.488700] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3168.488716] ? netlink_ack+0xba0/0xba0 [ 3168.488736] ? __down_interruptible+0x740/0x740 [ 3168.488774] genl_rcv+0x29/0x40 [ 3168.531385] netlink_unicast+0x574/0x770 [ 3168.535462] ? netlink_attachskb+0x980/0x980 [ 3168.539897] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3168.545446] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3168.550507] netlink_sendmsg+0xa05/0xf90 [ 3168.554590] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3168.560181] ? netlink_unicast+0x770/0x770 [ 3168.561227] xt_ipvs: protocol family 7 not supported [ 3168.564419] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3168.564441] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3168.564456] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3168.564474] ? security_socket_sendmsg+0x93/0xc0 [ 3168.589454] ? netlink_unicast+0x770/0x770 [ 3168.589631] xt_ipvs: protocol family 7 not supported [ 3168.593785] sock_sendmsg+0xdd/0x130 23:23:41 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x05\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3168.593805] ___sys_sendmsg+0x7ec/0x910 [ 3168.593827] ? copy_msghdr_from_user+0x570/0x570 [ 3168.593840] ? iterate_fd+0x4b0/0x4b0 [ 3168.593878] ? __might_fault+0x12b/0x1e0 [ 3168.619225] ? find_held_lock+0x35/0x120 [ 3168.623303] ? __might_fault+0x12b/0x1e0 [ 3168.627476] ? __fget_light+0x2db/0x420 [ 3168.631464] ? fget_raw+0x20/0x20 [ 3168.634932] ? lock_release+0xc40/0xc40 [ 3168.638920] ? trace_hardirqs_off_caller+0x300/0x300 [ 3168.644033] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3168.649607] ? __fdget+0x1b/0x20 [ 3168.652983] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3168.658532] ? sockfd_lookup_light+0xc2/0x160 [ 3168.663040] __sys_sendmsg+0x112/0x270 [ 3168.666940] ? __ia32_sys_shutdown+0x80/0x80 [ 3168.671370] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3168.676749] ? trace_hardirqs_off_caller+0x300/0x300 [ 3168.681882] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3168.686658] __x64_sys_sendmsg+0x78/0xb0 [ 3168.690732] do_syscall_64+0x1a3/0x800 [ 3168.694634] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3168.699575] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3168.704601] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3168.709454] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3168.714641] RIP: 0033:0x458089 [ 3168.717838] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3168.736772] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3168.744479] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 23:23:42 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x18380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3168.751744] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3168.759029] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3168.766313] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3168.773589] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3168.789327] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3168.834713] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3168.849653] xt_ipvs: protocol family 7 not supported [ 3168.873710] CPU: 1 PID: 21061 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3168.880920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3168.890274] Call Trace: [ 3168.892910] dump_stack+0x1db/0x2d0 [ 3168.896561] ? dump_stack_print_info.cold+0x20/0x20 [ 3168.901594] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3168.906734] sysfs_warn_dup.cold+0x1c/0x31 [ 3168.910982] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3168.911003] sysfs_create_link+0x65/0xc0 [ 3168.911023] device_add+0x78e/0x1800 [ 3168.911040] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3168.911062] ? get_device_parent.isra.0+0x570/0x570 23:23:42 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xffffffffa0010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3168.911080] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3168.920497] wiphy_register+0x1abd/0x2760 [ 3168.920525] ? wiphy_unregister+0x1340/0x1340 [ 3168.920544] ? rcu_read_lock_sched_held+0x110/0x130 [ 3168.953760] ? __kmalloc+0x5d5/0x740 [ 3168.957472] ? memset+0x32/0x40 [ 3168.960751] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3168.966291] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3168.971275] ieee80211_register_hw+0x15e2/0x3f30 [ 3168.976036] ? hrtimer_init_on_stack+0x1/0x40 [ 3168.980539] ? ieee80211_ifa_changed+0xf30/0xf30 23:23:42 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000006000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3168.985310] ? kasan_check_write+0x14/0x20 [ 3168.989551] ? tasklet_hrtimer_init+0xfa/0x260 [ 3168.994144] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3168.998997] ? tasklet_kill+0xd0/0xd0 [ 3168.999027] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3168.999061] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3169.007859] ? kvasprintf+0x101/0x170 [ 3169.007877] ? bust_spinlocks+0xe0/0xe0 [ 3169.007908] ? kasprintf+0xbb/0xf0 [ 3169.007924] ? kvasprintf_const+0x190/0x190 [ 3169.007943] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3169.007962] ? validate_nla+0x28c/0x1580 [ 3169.007989] hwsim_new_radio_nl+0xca6/0x1430 [ 3169.008013] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3169.048506] genl_family_rcv_msg+0x80d/0x11a0 [ 3169.053005] ? genl_unregister_family+0x8a0/0x8a0 [ 3169.057867] ? radix_tree_insert+0x850/0x850 [ 3169.062290] ? netlink_deliver_tap+0x32b/0xf40 [ 3169.066921] genl_rcv_msg+0xca/0x16c [ 3169.070643] netlink_rcv_skb+0x17d/0x410 [ 3169.074703] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3169.079453] ? netlink_ack+0xba0/0xba0 [ 3169.083368] ? __down_interruptible+0x740/0x740 [ 3169.088067] genl_rcv+0x29/0x40 [ 3169.091345] netlink_unicast+0x574/0x770 [ 3169.095416] ? netlink_attachskb+0x980/0x980 [ 3169.099825] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3169.105407] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3169.110426] netlink_sendmsg+0xa05/0xf90 [ 3169.114484] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3169.120039] ? netlink_unicast+0x770/0x770 [ 3169.124291] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3169.129135] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3169.133892] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3169.139435] ? security_socket_sendmsg+0x93/0xc0 [ 3169.144207] ? netlink_unicast+0x770/0x770 [ 3169.148497] sock_sendmsg+0xdd/0x130 [ 3169.152237] ___sys_sendmsg+0x7ec/0x910 [ 3169.156230] ? copy_msghdr_from_user+0x570/0x570 [ 3169.160983] ? iterate_fd+0x4b0/0x4b0 [ 3169.164806] ? __might_fault+0x12b/0x1e0 [ 3169.168868] ? find_held_lock+0x35/0x120 [ 3169.172945] ? __might_fault+0x12b/0x1e0 [ 3169.177018] ? __fget_light+0x2db/0x420 [ 3169.180989] ? fget_raw+0x20/0x20 [ 3169.184443] ? lock_release+0xc40/0xc40 [ 3169.188414] ? trace_hardirqs_off_caller+0x300/0x300 [ 3169.193520] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3169.199059] ? __fdget+0x1b/0x20 [ 3169.202423] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3169.207961] ? sockfd_lookup_light+0xc2/0x160 [ 3169.212466] __sys_sendmsg+0x112/0x270 [ 3169.216384] ? __ia32_sys_shutdown+0x80/0x80 [ 3169.220786] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3169.226139] ? trace_hardirqs_off_caller+0x300/0x300 [ 3169.231259] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3169.236028] __x64_sys_sendmsg+0x78/0xb0 [ 3169.240095] do_syscall_64+0x1a3/0x800 [ 3169.243998] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3169.248940] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3169.253966] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3169.258815] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3169.264011] RIP: 0033:0x458089 [ 3169.267202] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3169.286093] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3169.293808] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3169.301075] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3169.308334] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3169.315605] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3169.322867] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3169.333011] xt_ipvs: protocol family 7 not supported [ 3169.350832] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3169.381880] CPU: 0 PID: 21106 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3169.389083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3169.398434] Call Trace: [ 3169.401029] dump_stack+0x1db/0x2d0 [ 3169.404672] ? dump_stack_print_info.cold+0x20/0x20 [ 3169.409693] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3169.414809] sysfs_warn_dup.cold+0x1c/0x31 [ 3169.419060] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3169.424466] sysfs_create_link+0x65/0xc0 [ 3169.428542] device_add+0x78e/0x1800 [ 3169.432264] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3169.437642] ? get_device_parent.isra.0+0x570/0x570 [ 3169.442670] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3169.448227] wiphy_register+0x1abd/0x2760 [ 3169.448257] ? wiphy_unregister+0x1340/0x1340 [ 3169.448278] ? rcu_read_lock_sched_held+0x110/0x130 [ 3169.448295] ? __kmalloc+0x5d5/0x740 [ 3169.448313] ? memset+0x32/0x40 [ 3169.448327] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3169.448347] ? ieee80211_cs_list_valid+0x1a1/0x280 23:23:42 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x19380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3169.448366] ieee80211_register_hw+0x15e2/0x3f30 [ 3169.484185] ? hrtimer_init_on_stack+0x1/0x40 [ 3169.488715] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3169.493485] ? kasan_check_write+0x14/0x20 [ 3169.497728] ? tasklet_hrtimer_init+0xfa/0x260 [ 3169.502350] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3169.507205] ? tasklet_kill+0xd0/0xd0 [ 3169.511032] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3169.516070] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3169.522147] ? kvasprintf+0x101/0x170 [ 3169.525943] ? bust_spinlocks+0xe0/0xe0 [ 3169.529912] ? kasprintf+0xbb/0xf0 [ 3169.533440] ? kvasprintf_const+0x190/0x190 [ 3169.537758] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3169.542946] ? validate_nla+0x28c/0x1580 [ 3169.547010] hwsim_new_radio_nl+0xca6/0x1430 [ 3169.551431] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3169.556635] genl_family_rcv_msg+0x80d/0x11a0 [ 3169.561158] ? genl_unregister_family+0x8a0/0x8a0 [ 3169.566006] ? radix_tree_insert+0x850/0x850 [ 3169.570400] ? netlink_deliver_tap+0x32b/0xf40 [ 3169.574979] genl_rcv_msg+0xca/0x16c [ 3169.578704] netlink_rcv_skb+0x17d/0x410 [ 3169.582756] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3169.587495] ? netlink_ack+0xba0/0xba0 [ 3169.591379] ? __down_interruptible+0x740/0x740 [ 3169.596052] genl_rcv+0x29/0x40 [ 3169.599333] netlink_unicast+0x574/0x770 [ 3169.603393] ? netlink_attachskb+0x980/0x980 [ 3169.607788] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3169.613333] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3169.618364] netlink_sendmsg+0xa05/0xf90 [ 3169.622420] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3169.627948] ? netlink_unicast+0x770/0x770 [ 3169.632171] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3169.637035] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3169.641801] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3169.647355] ? security_socket_sendmsg+0x93/0xc0 [ 3169.652111] ? netlink_unicast+0x770/0x770 [ 3169.656346] sock_sendmsg+0xdd/0x130 [ 3169.660063] ___sys_sendmsg+0x7ec/0x910 [ 3169.664040] ? copy_msghdr_from_user+0x570/0x570 [ 3169.668783] ? iterate_fd+0x4b0/0x4b0 [ 3169.672593] ? __might_fault+0x12b/0x1e0 [ 3169.676664] ? find_held_lock+0x35/0x120 [ 3169.680732] ? __might_fault+0x12b/0x1e0 [ 3169.684791] ? __fget_light+0x2db/0x420 [ 3169.688757] ? fget_raw+0x20/0x20 [ 3169.692194] ? lock_release+0xc40/0xc40 [ 3169.696156] ? trace_hardirqs_off_caller+0x300/0x300 [ 3169.701257] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3169.706817] ? __fdget+0x1b/0x20 [ 3169.710183] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3169.715720] ? sockfd_lookup_light+0xc2/0x160 [ 3169.720225] __sys_sendmsg+0x112/0x270 [ 3169.724111] ? __ia32_sys_shutdown+0x80/0x80 [ 3169.728514] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3169.733879] ? trace_hardirqs_off_caller+0x300/0x300 [ 3169.738999] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3169.743777] __x64_sys_sendmsg+0x78/0xb0 [ 3169.747859] do_syscall_64+0x1a3/0x800 [ 3169.751742] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3169.756671] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3169.761709] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3169.766571] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3169.771749] RIP: 0033:0x458089 [ 3169.774926] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3169.793811] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3169.801511] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3169.808772] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3169.816052] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3169.823321] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 23:23:43 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x06\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3169.830577] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3169.856842] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3169.893703] xt_ipvs: protocol family 7 not supported [ 3169.912821] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3169.952530] CPU: 1 PID: 21118 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3169.959739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3169.969101] Call Trace: [ 3169.971715] dump_stack+0x1db/0x2d0 [ 3169.975370] ? dump_stack_print_info.cold+0x20/0x20 [ 3169.980416] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3169.985538] sysfs_warn_dup.cold+0x1c/0x31 [ 3169.989776] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3169.989794] sysfs_create_link+0x65/0xc0 [ 3169.989811] device_add+0x78e/0x1800 [ 3169.989828] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe 23:23:43 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000007000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:43 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:43 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:43 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x18380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3170.009319] ? get_device_parent.isra.0+0x570/0x570 [ 3170.014335] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3170.019907] wiphy_register+0x1abd/0x2760 [ 3170.024078] ? wiphy_unregister+0x1340/0x1340 [ 3170.028603] ? rcu_read_lock_sched_held+0x110/0x130 [ 3170.033626] ? __kmalloc+0x5d5/0x740 [ 3170.037349] ? memset+0x32/0x40 [ 3170.040640] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3170.046202] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3170.051150] ieee80211_register_hw+0x15e2/0x3f30 [ 3170.055927] ? hrtimer_init_on_stack+0x1/0x40 [ 3170.060449] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3170.065218] ? kasan_check_write+0x14/0x20 [ 3170.069461] ? tasklet_hrtimer_init+0xfa/0x260 [ 3170.074048] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3170.078927] ? tasklet_kill+0xd0/0xd0 [ 3170.082754] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3170.087795] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3170.093903] ? kvasprintf+0x101/0x170 [ 3170.097717] ? bust_spinlocks+0xe0/0xe0 [ 3170.101710] ? kasprintf+0xbb/0xf0 [ 3170.105256] ? kvasprintf_const+0x190/0x190 [ 3170.109592] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3170.114799] ? validate_nla+0x28c/0x1580 [ 3170.118906] hwsim_new_radio_nl+0xca6/0x1430 [ 3170.123345] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3170.128573] genl_family_rcv_msg+0x80d/0x11a0 [ 3170.133085] ? genl_unregister_family+0x8a0/0x8a0 [ 3170.137964] ? radix_tree_insert+0x850/0x850 [ 3170.142390] ? netlink_deliver_tap+0x32b/0xf40 [ 3170.147013] genl_rcv_msg+0xca/0x16c [ 3170.150744] netlink_rcv_skb+0x17d/0x410 [ 3170.154860] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3170.159630] ? netlink_ack+0xba0/0xba0 [ 3170.163539] ? __down_interruptible+0x740/0x740 [ 3170.168225] genl_rcv+0x29/0x40 [ 3170.171489] netlink_unicast+0x574/0x770 [ 3170.175563] ? netlink_attachskb+0x980/0x980 [ 3170.179969] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3170.185495] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3170.190498] netlink_sendmsg+0xa05/0xf90 [ 3170.194555] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3170.200084] ? netlink_unicast+0x770/0x770 [ 3170.204328] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3170.209174] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3170.213957] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3170.219486] ? security_socket_sendmsg+0x93/0xc0 [ 3170.224252] ? netlink_unicast+0x770/0x770 [ 3170.228484] sock_sendmsg+0xdd/0x130 [ 3170.232194] ___sys_sendmsg+0x7ec/0x910 [ 3170.236162] ? copy_msghdr_from_user+0x570/0x570 [ 3170.240966] ? iterate_fd+0x4b0/0x4b0 [ 3170.244757] ? __might_fault+0x12b/0x1e0 [ 3170.248808] ? find_held_lock+0x35/0x120 [ 3170.252882] ? __might_fault+0x12b/0x1e0 [ 3170.256959] ? __fget_light+0x2db/0x420 [ 3170.260931] ? fget_raw+0x20/0x20 [ 3170.264400] ? lock_release+0xc40/0xc40 [ 3170.268392] ? trace_hardirqs_off_caller+0x300/0x300 [ 3170.273499] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3170.279075] ? __fdget+0x1b/0x20 [ 3170.282436] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3170.287974] ? sockfd_lookup_light+0xc2/0x160 [ 3170.292462] __sys_sendmsg+0x112/0x270 [ 3170.296369] ? __ia32_sys_shutdown+0x80/0x80 [ 3170.300813] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3170.306184] ? trace_hardirqs_off_caller+0x300/0x300 [ 3170.311277] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3170.316021] __x64_sys_sendmsg+0x78/0xb0 [ 3170.320082] do_syscall_64+0x1a3/0x800 [ 3170.323971] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3170.328890] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3170.333895] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3170.338757] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3170.344073] RIP: 0033:0x458089 [ 3170.347282] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3170.366212] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3170.373905] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3170.381165] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3170.388465] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3170.395748] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3170.403005] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3170.425255] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3170.456354] CPU: 0 PID: 21138 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3170.463562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3170.472916] Call Trace: [ 3170.475707] dump_stack+0x1db/0x2d0 [ 3170.479365] ? dump_stack_print_info.cold+0x20/0x20 [ 3170.484396] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3170.489518] sysfs_warn_dup.cold+0x1c/0x31 [ 3170.493768] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3170.499184] sysfs_create_link+0x65/0xc0 [ 3170.503287] device_add+0x78e/0x1800 [ 3170.507014] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3170.512397] ? get_device_parent.isra.0+0x570/0x570 [ 3170.517414] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3170.522980] wiphy_register+0x1abd/0x2760 [ 3170.527136] ? wiphy_unregister+0x1340/0x1340 [ 3170.531640] ? rcu_read_lock_sched_held+0x110/0x130 [ 3170.536667] ? __kmalloc+0x5d5/0x740 [ 3170.540390] ? memset+0x32/0x40 [ 3170.543681] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3170.549247] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3170.554164] ieee80211_register_hw+0x15e2/0x3f30 [ 3170.558925] ? hrtimer_init_on_stack+0x1/0x40 [ 3170.563444] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3170.568204] ? kasan_check_write+0x14/0x20 [ 3170.572457] ? tasklet_hrtimer_init+0xfa/0x260 [ 3170.577048] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3170.581889] ? tasklet_kill+0xd0/0xd0 [ 3170.585716] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3170.590731] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3170.596790] ? kvasprintf+0x101/0x170 [ 3170.600589] ? bust_spinlocks+0xe0/0xe0 [ 3170.604585] ? kasprintf+0xbb/0xf0 [ 3170.608127] ? kvasprintf_const+0x190/0x190 [ 3170.612444] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3170.617647] ? validate_nla+0x28c/0x1580 [ 3170.621709] hwsim_new_radio_nl+0xca6/0x1430 [ 3170.626109] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3170.631319] genl_family_rcv_msg+0x80d/0x11a0 [ 3170.635832] ? genl_unregister_family+0x8a0/0x8a0 [ 3170.640710] ? radix_tree_insert+0x850/0x850 [ 3170.645105] ? netlink_deliver_tap+0x32b/0xf40 [ 3170.649690] genl_rcv_msg+0xca/0x16c [ 3170.653391] netlink_rcv_skb+0x17d/0x410 [ 3170.657448] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3170.662199] ? netlink_ack+0xba0/0xba0 [ 3170.666084] ? __down_interruptible+0x740/0x740 [ 3170.670761] genl_rcv+0x29/0x40 [ 3170.674027] netlink_unicast+0x574/0x770 [ 3170.678081] ? netlink_attachskb+0x980/0x980 [ 3170.682476] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3170.688001] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3170.693008] netlink_sendmsg+0xa05/0xf90 [ 3170.697067] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3170.702617] ? netlink_unicast+0x770/0x770 [ 3170.706874] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3170.711707] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3170.716534] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3170.722059] ? security_socket_sendmsg+0x93/0xc0 [ 3170.726801] ? netlink_unicast+0x770/0x770 [ 3170.731044] sock_sendmsg+0xdd/0x130 [ 3170.734749] ___sys_sendmsg+0x7ec/0x910 [ 3170.738726] ? copy_msghdr_from_user+0x570/0x570 [ 3170.743483] ? iterate_fd+0x4b0/0x4b0 [ 3170.747277] ? __might_fault+0x12b/0x1e0 [ 3170.751326] ? find_held_lock+0x35/0x120 [ 3170.755375] ? __might_fault+0x12b/0x1e0 [ 3170.759427] ? __fget_light+0x2db/0x420 [ 3170.763388] ? fget_raw+0x20/0x20 [ 3170.766829] ? lock_release+0xc40/0xc40 [ 3170.770818] ? trace_hardirqs_off_caller+0x300/0x300 [ 3170.775906] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3170.781436] ? __fdget+0x1b/0x20 [ 3170.784790] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3170.790316] ? sockfd_lookup_light+0xc2/0x160 [ 3170.794801] __sys_sendmsg+0x112/0x270 [ 3170.798692] ? __ia32_sys_shutdown+0x80/0x80 [ 3170.803132] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3170.808498] ? trace_hardirqs_off_caller+0x300/0x300 [ 3170.813613] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3170.818381] __x64_sys_sendmsg+0x78/0xb0 [ 3170.822446] do_syscall_64+0x1a3/0x800 [ 3170.826338] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3170.831295] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3170.836325] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3170.841175] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3170.846360] RIP: 0033:0x458089 [ 3170.849560] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3170.868462] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 23:23:44 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1a380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:44 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3170.876200] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3170.883456] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3170.890717] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3170.897973] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3170.905225] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3170.950911] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3171.003399] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3171.035015] CPU: 0 PID: 21154 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3171.042307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3171.051666] Call Trace: [ 3171.054269] dump_stack+0x1db/0x2d0 [ 3171.057913] ? dump_stack_print_info.cold+0x20/0x20 [ 3171.062968] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3171.068134] sysfs_warn_dup.cold+0x1c/0x31 [ 3171.072384] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3171.077762] sysfs_create_link+0x65/0xc0 [ 3171.077781] device_add+0x78e/0x1800 [ 3171.077799] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3171.077821] ? get_device_parent.isra.0+0x570/0x570 [ 3171.077840] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 23:23:44 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3171.077891] wiphy_register+0x1abd/0x2760 [ 3171.091045] ? wiphy_unregister+0x1340/0x1340 [ 3171.091067] ? rcu_read_lock_sched_held+0x110/0x130 [ 3171.091084] ? __kmalloc+0x5d5/0x740 [ 3171.091102] ? memset+0x32/0x40 [ 3171.091118] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3171.091136] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3171.091162] ieee80211_register_hw+0x15e2/0x3f30 [ 3171.091185] ? hrtimer_init_on_stack+0x1/0x40 [ 3171.091206] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3171.091240] ? kasan_check_write+0x14/0x20 [ 3171.091256] ? tasklet_hrtimer_init+0xfa/0x260 [ 3171.155669] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3171.160531] ? tasklet_kill+0xd0/0xd0 [ 3171.164362] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3171.169408] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3171.175467] ? kvasprintf+0x101/0x170 [ 3171.179263] ? bust_spinlocks+0xe0/0xe0 [ 3171.183248] ? kasprintf+0xbb/0xf0 [ 3171.186788] ? kvasprintf_const+0x190/0x190 [ 3171.191124] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3171.196322] ? validate_nla+0x28c/0x1580 [ 3171.200479] hwsim_new_radio_nl+0xca6/0x1430 [ 3171.204931] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3171.210190] genl_family_rcv_msg+0x80d/0x11a0 [ 3171.214716] ? genl_unregister_family+0x8a0/0x8a0 [ 3171.219579] ? radix_tree_insert+0x850/0x850 [ 3171.223992] ? netlink_deliver_tap+0x32b/0xf40 [ 3171.228635] genl_rcv_msg+0xca/0x16c [ 3171.232364] netlink_rcv_skb+0x17d/0x410 [ 3171.236421] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3171.241163] ? netlink_ack+0xba0/0xba0 [ 3171.245053] ? __down_interruptible+0x740/0x740 [ 3171.249745] genl_rcv+0x29/0x40 [ 3171.253036] netlink_unicast+0x574/0x770 [ 3171.257113] ? netlink_attachskb+0x980/0x980 [ 3171.261535] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3171.267087] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3171.272123] netlink_sendmsg+0xa05/0xf90 [ 3171.276182] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3171.281709] ? netlink_unicast+0x770/0x770 [ 3171.285948] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3171.290804] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3171.295562] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3171.301106] ? security_socket_sendmsg+0x93/0xc0 [ 3171.305916] ? netlink_unicast+0x770/0x770 [ 3171.310143] sock_sendmsg+0xdd/0x130 [ 3171.313879] ___sys_sendmsg+0x7ec/0x910 [ 3171.317879] ? copy_msghdr_from_user+0x570/0x570 [ 3171.322643] ? iterate_fd+0x4b0/0x4b0 [ 3171.326443] ? __might_fault+0x12b/0x1e0 [ 3171.330512] ? find_held_lock+0x35/0x120 [ 3171.334563] ? __might_fault+0x12b/0x1e0 [ 3171.338635] ? __fget_light+0x2db/0x420 [ 3171.342625] ? fget_raw+0x20/0x20 [ 3171.346076] ? lock_release+0xc40/0xc40 [ 3171.350044] ? trace_hardirqs_off_caller+0x300/0x300 [ 3171.355138] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3171.360685] ? __fdget+0x1b/0x20 [ 3171.364072] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3171.369606] ? sockfd_lookup_light+0xc2/0x160 [ 3171.374104] __sys_sendmsg+0x112/0x270 [ 3171.377992] ? __ia32_sys_shutdown+0x80/0x80 [ 3171.382426] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3171.387812] ? trace_hardirqs_off_caller+0x300/0x300 [ 3171.392945] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3171.397718] __x64_sys_sendmsg+0x78/0xb0 [ 3171.401787] do_syscall_64+0x1a3/0x800 [ 3171.405697] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3171.410646] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3171.415651] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3171.420539] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3171.425722] RIP: 0033:0x458089 [ 3171.428902] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3171.447793] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 23:23:44 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000008000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:44 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xf, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="85100000010000009522e600000000009500000000000000"], &(0x7f00000000c0)='G\xff3\x00\xa3]m}5\x18\xa52\xdek\xeb{\xc6\x88\xd1\xd3\x9d\xcd*\x04\xd4B\xf1\xb4v\x98\xea\xd7\xe4\x13/T\x97*\xd7\x0f##;&\x12\x99}\xc4\xe9Qw|V\xc0\x8e\x99n\xcc\x7f\xa0K|L*4f\x1a$G\xd4\x13;\xb9\x1e\x01#\xfa\x0f\x00\x04g4\x1exb\xc0y\xf3\x16!\x01\\R\xfe\x1f\x0f\xe2\xab\xc2\xba4=i\xffLb\f\xe2\xb8\xa2\fH\x87y[\x8d?%\xd4\r\xf3B\x1c2\x03\xd9a\x90\x1fN\xe6\xa7U;\xdc!!\x0et\x96\v\xd3\xcc\xa7Y\xd3F\xbe_\xb1\xb9', 0x4, 0x99, &(0x7f0000000000)=""/153}, 0x48) r0 = accept$inet6(0xffffffffffffff9c, &(0x7f00000001c0)={0xa, 0x0, 0x0, @initdev}, &(0x7f0000000200)=0x1c) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffff9c, 0x84, 0x18, &(0x7f0000000240)={0x0, 0x9800000000000000}, &(0x7f0000000280)=0x8) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000002c0)=@sack_info={r1, 0x7fff, 0x6}, 0xc) [ 3171.455494] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3171.462772] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3171.470054] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3171.477333] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3171.484598] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:44 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1b380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:44 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:44 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00 \x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:44 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3171.643212] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3171.727299] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3171.749730] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3171.769544] CPU: 0 PID: 21176 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3171.776765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3171.786128] Call Trace: [ 3171.788724] dump_stack+0x1db/0x2d0 [ 3171.792374] ? dump_stack_print_info.cold+0x20/0x20 [ 3171.797411] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3171.802533] sysfs_warn_dup.cold+0x1c/0x31 [ 3171.806786] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3171.812153] sysfs_create_link+0x65/0xc0 [ 3171.816232] device_add+0x78e/0x1800 [ 3171.819952] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe 23:23:45 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00?\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:45 executing program 3: r0 = socket$unix(0x1, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000000)=0x7, 0x4) ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f00000000c0)=0x2) connect$unix(r0, &(0x7f0000000040)=@abs, 0x6e) [ 3171.825334] ? get_device_parent.isra.0+0x570/0x570 [ 3171.830373] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3171.835940] wiphy_register+0x1abd/0x2760 [ 3171.840113] ? wiphy_unregister+0x1340/0x1340 [ 3171.844627] ? rcu_read_lock_sched_held+0x110/0x130 [ 3171.849656] ? __kmalloc+0x5d5/0x740 [ 3171.853382] ? memset+0x32/0x40 [ 3171.856676] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3171.862218] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3171.867152] ieee80211_register_hw+0x15e2/0x3f30 [ 3171.871920] ? hrtimer_init_on_stack+0x1/0x40 [ 3171.876445] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3171.881235] ? kasan_check_write+0x14/0x20 [ 3171.885482] ? tasklet_hrtimer_init+0xfa/0x260 [ 3171.890076] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3171.894930] ? tasklet_kill+0xd0/0xd0 [ 3171.898753] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3171.903799] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3171.909910] ? kvasprintf+0x101/0x170 [ 3171.913724] ? bust_spinlocks+0xe0/0xe0 [ 3171.917743] ? kasprintf+0xbb/0xf0 [ 3171.921293] ? kvasprintf_const+0x190/0x190 [ 3171.925628] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3171.931093] ? validate_nla+0x28c/0x1580 [ 3171.935181] hwsim_new_radio_nl+0xca6/0x1430 [ 3171.939610] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3171.944839] genl_family_rcv_msg+0x80d/0x11a0 [ 3171.949374] ? genl_unregister_family+0x8a0/0x8a0 [ 3171.954252] ? radix_tree_insert+0x850/0x850 [ 3171.958675] ? netlink_deliver_tap+0x32b/0xf40 [ 3171.963298] genl_rcv_msg+0xca/0x16c [ 3171.967034] netlink_rcv_skb+0x17d/0x410 [ 3171.971103] ? genl_family_rcv_msg+0x11a0/0x11a0 23:23:45 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00@\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3171.975891] ? netlink_ack+0xba0/0xba0 [ 3171.979799] ? __down_interruptible+0x740/0x740 [ 3171.984490] genl_rcv+0x29/0x40 [ 3171.987780] netlink_unicast+0x574/0x770 [ 3171.991870] ? netlink_attachskb+0x980/0x980 [ 3171.996315] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3172.001879] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3172.006939] netlink_sendmsg+0xa05/0xf90 [ 3172.011028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3172.016592] ? netlink_unicast+0x770/0x770 [ 3172.020881] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3172.025745] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3172.030513] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3172.036060] ? security_socket_sendmsg+0x93/0xc0 [ 3172.040820] ? netlink_unicast+0x770/0x770 [ 3172.040840] sock_sendmsg+0xdd/0x130 [ 3172.040876] ___sys_sendmsg+0x7ec/0x910 [ 3172.040899] ? copy_msghdr_from_user+0x570/0x570 [ 3172.040913] ? iterate_fd+0x4b0/0x4b0 [ 3172.040938] ? __might_fault+0x12b/0x1e0 [ 3172.040954] ? find_held_lock+0x35/0x120 [ 3172.040970] ? __might_fault+0x12b/0x1e0 [ 3172.040987] ? __fget_light+0x2db/0x420 [ 3172.077557] ? fget_raw+0x20/0x20 [ 3172.081031] ? lock_release+0xc40/0xc40 [ 3172.085025] ? trace_hardirqs_off_caller+0x300/0x300 [ 3172.090145] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3172.095745] ? __fdget+0x1b/0x20 [ 3172.099127] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3172.104680] ? sockfd_lookup_light+0xc2/0x160 [ 3172.109192] __sys_sendmsg+0x112/0x270 [ 3172.113111] ? __ia32_sys_shutdown+0x80/0x80 [ 3172.117547] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3172.122950] ? trace_hardirqs_off_caller+0x300/0x300 23:23:45 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00H\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3172.128071] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3172.132845] __x64_sys_sendmsg+0x78/0xb0 [ 3172.136946] do_syscall_64+0x1a3/0x800 [ 3172.140845] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3172.145817] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3172.150911] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3172.155772] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3172.160969] RIP: 0033:0x458089 23:23:45 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000000a000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3172.164169] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3172.183114] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3172.190849] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3172.198147] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3172.205422] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3172.212706] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3172.219982] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:45 executing program 3: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00@\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3172.276568] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:45 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000000f000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:45 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00L\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1c380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:45 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:45 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:45 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@nat={'nat\x00', 0x19, 0x4, 0x570, [0x20000500, 0x0, 0x0, 0x20000698, 0x200007d0], 0x0, &(0x7f0000000000), &(0x7f0000000500)=[{0x0, '\x00', 0x0, 0x0, 0x1, [{{{0x9, 0x10, 0xfc7f491479385bfb, 'vcan0\x00', 'veth1\x00', 'bridge0\x00', 'ip6tnl0\x00', @empty, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, [0xff, 0x0, 0x0, 0x0, 0xff, 0xff], 0xc0, 0x130, 0x168, [@nfacct={'nfacct\x00', 0x28, {{'syz0\x00', 0x10001}}}]}, [@snat={'snat\x00', 0x10, {{@local}}}, @snat={'snat\x00', 0x10, {{@empty, 0xffffffffffffffff}}}]}, @snat={'snat\x00', 0x10, {{@empty, 0x10}}}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffc, 0x1, [{{{0x9, 0x0, 0x8aff, 'nr0\x00', 'team_slave_0\x00', 'ip6erspan0\x00', 'gretap0\x00', @random="7443fab2ea16", [0xff, 0xff, 0xff, 0xff], @dev={[], 0x26}, [0xff, 0x0, 0xff, 0xff, 0x0, 0xff], 0xd0, 0xd0, 0x108, [@pkttype={'pkttype\x00', 0x8, {{0x3, 0x1}}}, @vlan={'vlan\x00', 0x8, {{0x0, 0x2, 0x0, 0x4, 0x5}}}]}}, @snat={'snat\x00', 0x10, {{@remote, 0xffffffffffffffff}}}}]}, {0x0, '\x00', 0x2, 0xffffffffffffffff, 0x2, [{{{0x0, 0x4, 0x6006, 'bridge_slave_0\x00', 'dummy0\x00', 'ifb0\x00', 'bridge_slave_0\x00', @broadcast, [0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, [0x0, 0x0, 0xff, 0xff], 0xb0, 0xb0, 0xe8, [@quota={'quota\x00', 0x18, {{0x0, 0x0, 0x9, 0x81}}}]}}, @arpreply={'arpreply\x00', 0x10, {{@local, 0xffffffffffffffff}}}}, {{{0xb, 0x12, 0xf6, 'syz_tun\x00', 'vcan0\x00', 'syzkaller0\x00', 'rose0\x00', @random="cfd464de782e", [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @random="7ba5d56d6753", [0x0, 0x0, 0xff, 0xff, 0xff, 0xff], 0x70, 0x120, 0x158}, [@common=@nflog={'nflog\x00', 0x50, {{0x1ff, 0x0, 0x8, 0x0, 0x0, "82f47860695ca337bad06f94f77d2a1bde227503b56fe59129d3d826603ac4e5041b30b6b74d4e4aa123675bb8604eab4dc7655bed87112eb6cb08dc9ec6f3be"}}}, @arpreply={'arpreply\x00', 0x10, {{@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, 0xffffffffffffffff}}}]}, @arpreply={'arpreply\x00', 0x10, {{@dev={[], 0x21}, 0xfffffffffffffffe}}}}]}, {0x0, '\x00', 0x4, 0xfffffffffffffffe}]}, 0x5e8) r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$SIOCX25SDTEFACILITIES(r1, 0x89e1, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "b5ff65d23bb12f2d5d440631f9c84e48d693ebd8", "e81cf15920112482df946f3f6266f23970c35550"}) [ 3172.525803] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3172.579590] CPU: 0 PID: 21235 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3172.586876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3172.596274] Call Trace: [ 3172.598893] dump_stack+0x1db/0x2d0 [ 3172.602571] ? dump_stack_print_info.cold+0x20/0x20 [ 3172.607625] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3172.612750] sysfs_warn_dup.cold+0x1c/0x31 [ 3172.617002] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3172.622378] sysfs_create_link+0x65/0xc0 [ 3172.626454] device_add+0x78e/0x1800 [ 3172.630182] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3172.635567] ? get_device_parent.isra.0+0x570/0x570 [ 3172.640603] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3172.646162] wiphy_register+0x1abd/0x2760 [ 3172.650338] ? wiphy_unregister+0x1340/0x1340 [ 3172.654874] ? rcu_read_lock_sched_held+0x110/0x130 [ 3172.659907] ? __kmalloc+0x5d5/0x740 [ 3172.663631] ? memset+0x32/0x40 [ 3172.666929] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 23:23:46 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00`\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3172.667142] kernel msg: ebtables bug: please report to author: EBT_ENTRY_OR_ENTRIES shouldn't be set in distinguisher [ 3172.672482] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3172.672505] ieee80211_register_hw+0x15e2/0x3f30 [ 3172.672527] ? hrtimer_init_on_stack+0x1/0x40 [ 3172.672549] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3172.702185] ? kasan_check_write+0x14/0x20 [ 3172.706458] ? tasklet_hrtimer_init+0xfa/0x260 [ 3172.711071] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3172.715927] ? tasklet_kill+0xd0/0xd0 [ 3172.719840] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3172.724927] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3172.724943] ? kvasprintf+0x101/0x170 [ 3172.724959] ? bust_spinlocks+0xe0/0xe0 [ 3172.724985] ? kasprintf+0xbb/0xf0 [ 3172.742318] ? kvasprintf_const+0x190/0x190 [ 3172.746663] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3172.751885] ? validate_nla+0x28c/0x1580 [ 3172.755974] hwsim_new_radio_nl+0xca6/0x1430 [ 3172.756000] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3172.756037] genl_family_rcv_msg+0x80d/0x11a0 [ 3172.770110] ? genl_unregister_family+0x8a0/0x8a0 [ 3172.774976] ? radix_tree_insert+0x850/0x850 [ 3172.779393] ? netlink_deliver_tap+0x32b/0xf40 [ 3172.784009] genl_rcv_msg+0xca/0x16c [ 3172.787739] netlink_rcv_skb+0x17d/0x410 [ 3172.791814] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3172.796580] ? netlink_ack+0xba0/0xba0 [ 3172.800480] ? __down_interruptible+0x740/0x740 [ 3172.805190] genl_rcv+0x29/0x40 [ 3172.808479] netlink_unicast+0x574/0x770 [ 3172.812569] ? netlink_attachskb+0x980/0x980 [ 3172.816992] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3172.822541] ? __sanitizer_cov_trace_cmp4+0x16/0x20 23:23:46 executing program 3: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f00000003c0)=[{{&(0x7f0000000140)=@xdp, 0x80, &(0x7f0000000280), 0x0, &(0x7f00000002c0)=""/204, 0xcc}}], 0x1500, 0x0, 0x0) ioctl(r0, 0x6, &(0x7f0000000000)="7ac730beeb65138848da96c3199d97603cb5a550c3dee48f5f860410f2795082bb75cf4a11999c569d542d756b5545756ab0c83a75b034b4b40c7820e1320c123a94e98561cb51c0a5db") r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") [ 3172.827570] netlink_sendmsg+0xa05/0xf90 [ 3172.831648] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3172.837205] ? netlink_unicast+0x770/0x770 [ 3172.841452] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3172.846317] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3172.851079] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3172.856641] ? security_socket_sendmsg+0x93/0xc0 [ 3172.861419] ? netlink_unicast+0x770/0x770 [ 3172.865671] sock_sendmsg+0xdd/0x130 [ 3172.869403] ___sys_sendmsg+0x7ec/0x910 [ 3172.873404] ? copy_msghdr_from_user+0x570/0x570 [ 3172.878173] ? iterate_fd+0x4b0/0x4b0 [ 3172.881992] ? __might_fault+0x12b/0x1e0 [ 3172.886066] ? find_held_lock+0x35/0x120 [ 3172.890129] ? __might_fault+0x12b/0x1e0 [ 3172.890150] ? __fget_light+0x2db/0x420 [ 3172.890167] ? fget_raw+0x20/0x20 [ 3172.890182] ? lock_release+0xc40/0xc40 [ 3172.890199] ? trace_hardirqs_off_caller+0x300/0x300 [ 3172.890215] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3172.890241] ? __fdget+0x1b/0x20 [ 3172.890255] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3172.890272] ? sockfd_lookup_light+0xc2/0x160 [ 3172.890289] __sys_sendmsg+0x112/0x270 [ 3172.890304] ? __ia32_sys_shutdown+0x80/0x80 [ 3172.938088] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3172.943469] ? trace_hardirqs_off_caller+0x300/0x300 [ 3172.948619] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3172.953390] __x64_sys_sendmsg+0x78/0xb0 [ 3172.957466] do_syscall_64+0x1a3/0x800 [ 3172.961371] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3172.966306] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3172.971332] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3172.976213] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3172.981411] RIP: 0033:0x458089 [ 3172.984609] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3173.003533] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3173.011247] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3173.018527] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 23:23:46 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00h\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3173.025820] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3173.033107] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3173.040378] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3173.064610] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:46 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1d380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000010000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:46 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00l\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3173.260509] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3173.270815] CPU: 0 PID: 21273 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3173.278077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3173.278084] Call Trace: [ 3173.278110] dump_stack+0x1db/0x2d0 [ 3173.278133] ? dump_stack_print_info.cold+0x20/0x20 [ 3173.278156] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3173.278186] sysfs_warn_dup.cold+0x1c/0x31 23:23:46 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\xff', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:46 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3173.278207] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3173.278227] sysfs_create_link+0x65/0xc0 [ 3173.317521] device_add+0x78e/0x1800 [ 3173.321244] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3173.326621] ? get_device_parent.isra.0+0x570/0x570 [ 3173.331652] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3173.337213] wiphy_register+0x1abd/0x2760 [ 3173.341385] ? wiphy_unregister+0x1340/0x1340 [ 3173.345910] ? rcu_read_lock_sched_held+0x110/0x130 [ 3173.350937] ? __kmalloc+0x5d5/0x740 [ 3173.354663] ? memset+0x32/0x40 [ 3173.357952] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3173.363502] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3173.368443] ieee80211_register_hw+0x15e2/0x3f30 [ 3173.368466] ? hrtimer_init_on_stack+0x1/0x40 [ 3173.368489] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3173.368508] ? kasan_check_write+0x14/0x20 [ 3173.368524] ? tasklet_hrtimer_init+0xfa/0x260 [ 3173.368541] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3173.368555] ? tasklet_kill+0xd0/0xd0 [ 3173.368584] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3173.368613] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3173.405116] ? kvasprintf+0x101/0x170 [ 3173.405131] ? bust_spinlocks+0xe0/0xe0 [ 3173.405156] ? kasprintf+0xbb/0xf0 [ 3173.422505] ? kvasprintf_const+0x190/0x190 [ 3173.426836] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3173.432045] ? validate_nla+0x28c/0x1580 [ 3173.436122] hwsim_new_radio_nl+0xca6/0x1430 [ 3173.440549] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3173.445763] genl_family_rcv_msg+0x80d/0x11a0 [ 3173.450273] ? genl_unregister_family+0x8a0/0x8a0 [ 3173.455130] ? radix_tree_insert+0x850/0x850 [ 3173.459540] ? netlink_deliver_tap+0x32b/0xf40 [ 3173.464160] genl_rcv_msg+0xca/0x16c [ 3173.467896] netlink_rcv_skb+0x17d/0x410 [ 3173.471969] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3173.476726] ? netlink_ack+0xba0/0xba0 [ 3173.480625] ? __down_interruptible+0x740/0x740 [ 3173.485306] genl_rcv+0x29/0x40 [ 3173.488587] netlink_unicast+0x574/0x770 [ 3173.492656] ? netlink_attachskb+0x980/0x980 [ 3173.497085] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3173.502621] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3173.507655] netlink_sendmsg+0xa05/0xf90 [ 3173.511724] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3173.517270] ? netlink_unicast+0x770/0x770 [ 3173.521540] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3173.526387] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3173.531146] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3173.536690] ? security_socket_sendmsg+0x93/0xc0 [ 3173.541445] ? netlink_unicast+0x770/0x770 [ 3173.545686] sock_sendmsg+0xdd/0x130 [ 3173.549410] ___sys_sendmsg+0x7ec/0x910 [ 3173.553408] ? copy_msghdr_from_user+0x570/0x570 [ 3173.558163] ? iterate_fd+0x4b0/0x4b0 [ 3173.561975] ? __might_fault+0x12b/0x1e0 [ 3173.566038] ? find_held_lock+0x35/0x120 [ 3173.570112] ? __might_fault+0x12b/0x1e0 [ 3173.574202] ? __fget_light+0x2db/0x420 [ 3173.578183] ? fget_raw+0x20/0x20 [ 3173.581637] ? lock_release+0xc40/0xc40 [ 3173.585628] ? trace_hardirqs_off_caller+0x300/0x300 [ 3173.590732] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3173.596279] ? __fdget+0x1b/0x20 [ 3173.599648] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3173.605188] ? sockfd_lookup_light+0xc2/0x160 [ 3173.609688] __sys_sendmsg+0x112/0x270 [ 3173.613595] ? __ia32_sys_shutdown+0x80/0x80 [ 3173.618039] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3173.623426] ? trace_hardirqs_off_caller+0x300/0x300 [ 3173.628553] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3173.633332] __x64_sys_sendmsg+0x78/0xb0 [ 3173.637426] do_syscall_64+0x1a3/0x800 [ 3173.641339] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3173.646283] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3173.651322] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3173.656178] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3173.661382] RIP: 0033:0x458089 [ 3173.664578] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3173.683483] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3173.691197] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3173.698472] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3173.705783] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3173.713051] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3173.720322] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3173.762996] ipvs_mt_check: 25 callbacks suppressed [ 3173.763005] xt_ipvs: protocol family 7 not supported 23:23:47 executing program 3: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f00000003c0)=[{{&(0x7f0000000140)=@xdp, 0x80, &(0x7f0000000280), 0x0, &(0x7f00000002c0)=""/204, 0xcc}}], 0x1500, 0x0, 0x0) ioctl(r0, 0x6, &(0x7f0000000000)="7ac730beeb65138848da96c3199d97603cb5a550c3dee48f5f860410f2795082bb75cf4a11999c569d542d756b5545756ab0c83a75b034b4b40c7820e1320c123a94e98561cb51c0a5db") r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") [ 3173.842455] xt_ipvs: protocol family 7 not supported 23:23:47 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1e380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3173.886009] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:47 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xff', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3173.929930] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3173.944873] xt_ipvs: protocol family 7 not supported 23:23:47 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000028000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3174.013179] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3174.019562] xt_ipvs: protocol family 7 not supported [ 3174.064309] CPU: 0 PID: 21300 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3174.066029] xt_ipvs: protocol family 7 not supported [ 3174.071549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3174.071557] Call Trace: [ 3174.071580] dump_stack+0x1db/0x2d0 [ 3174.071604] ? dump_stack_print_info.cold+0x20/0x20 [ 3174.071628] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3174.071670] sysfs_warn_dup.cold+0x1c/0x31 [ 3174.071689] sysfs_do_create_link_sd.isra.0+0x120/0x140 23:23:47 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) [ 3174.071709] sysfs_create_link+0x65/0xc0 [ 3174.071727] device_add+0x78e/0x1800 [ 3174.071744] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3174.071766] ? get_device_parent.isra.0+0x570/0x570 [ 3174.071784] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3174.071827] wiphy_register+0x1abd/0x2760 [ 3174.139968] ? wiphy_unregister+0x1340/0x1340 [ 3174.144477] ? rcu_read_lock_sched_held+0x110/0x130 [ 3174.149498] ? __kmalloc+0x5d5/0x740 [ 3174.153219] ? memset+0x32/0x40 [ 3174.156510] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3174.162057] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3174.162080] ieee80211_register_hw+0x15e2/0x3f30 [ 3174.162106] ? hrtimer_init_on_stack+0x1/0x40 [ 3174.176273] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3174.181043] ? kasan_check_write+0x14/0x20 [ 3174.181061] ? tasklet_hrtimer_init+0xfa/0x260 [ 3174.181078] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3174.181094] ? tasklet_kill+0xd0/0xd0 [ 3174.198584] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3174.203649] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3174.209711] ? kvasprintf+0x101/0x170 [ 3174.213519] ? bust_spinlocks+0xe0/0xe0 [ 3174.217515] ? kasprintf+0xbb/0xf0 [ 3174.221061] ? kvasprintf_const+0x190/0x190 [ 3174.225407] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3174.230613] ? validate_nla+0x28c/0x1580 [ 3174.234702] hwsim_new_radio_nl+0xca6/0x1430 [ 3174.239132] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3174.244351] genl_family_rcv_msg+0x80d/0x11a0 [ 3174.248882] ? genl_unregister_family+0x8a0/0x8a0 [ 3174.253743] ? radix_tree_insert+0x850/0x850 [ 3174.258158] ? netlink_deliver_tap+0x32b/0xf40 [ 3174.262785] genl_rcv_msg+0xca/0x16c [ 3174.266505] netlink_rcv_skb+0x17d/0x410 [ 3174.270566] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3174.275336] ? netlink_ack+0xba0/0xba0 [ 3174.279232] ? __down_interruptible+0x740/0x740 [ 3174.283961] genl_rcv+0x29/0x40 [ 3174.287243] netlink_unicast+0x574/0x770 [ 3174.291312] ? netlink_attachskb+0x980/0x980 [ 3174.295736] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3174.301280] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3174.306362] netlink_sendmsg+0xa05/0xf90 [ 3174.310417] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3174.315961] ? netlink_unicast+0x770/0x770 [ 3174.320199] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3174.325049] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3174.329835] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3174.335386] ? security_socket_sendmsg+0x93/0xc0 [ 3174.340160] ? netlink_unicast+0x770/0x770 [ 3174.344908] sock_sendmsg+0xdd/0x130 [ 3174.348639] ___sys_sendmsg+0x7ec/0x910 [ 3174.352625] ? copy_msghdr_from_user+0x570/0x570 [ 3174.357378] ? iterate_fd+0x4b0/0x4b0 [ 3174.361206] ? __might_fault+0x12b/0x1e0 [ 3174.365292] ? find_held_lock+0x35/0x120 [ 3174.369355] ? __might_fault+0x12b/0x1e0 [ 3174.373425] ? __fget_light+0x2db/0x420 [ 3174.377406] ? fget_raw+0x20/0x20 [ 3174.380876] ? lock_release+0xc40/0xc40 [ 3174.384868] ? trace_hardirqs_off_caller+0x300/0x300 [ 3174.389975] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3174.395524] ? __fdget+0x1b/0x20 [ 3174.398925] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3174.404476] ? sockfd_lookup_light+0xc2/0x160 [ 3174.408987] __sys_sendmsg+0x112/0x270 [ 3174.412908] ? __ia32_sys_shutdown+0x80/0x80 [ 3174.417334] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3174.422701] ? trace_hardirqs_off_caller+0x300/0x300 [ 3174.427810] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3174.432573] __x64_sys_sendmsg+0x78/0xb0 [ 3174.436639] do_syscall_64+0x1a3/0x800 [ 3174.440541] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3174.445476] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3174.450541] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3174.455396] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3174.460600] RIP: 0033:0x458089 [ 3174.463794] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3174.482941] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3174.490673] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3174.497962] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3174.505255] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 23:23:47 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00t\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3174.512534] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3174.519798] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:47 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00z\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3174.601232] xt_ipvs: protocol family 7 not supported [ 3174.621012] xt_ipvs: protocol family 7 not supported [ 3174.668551] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3174.695928] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:48 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1f000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:48 executing program 3: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r0, &(0x7f0000000080)={0x1f, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}}, 0x8) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='dctcp\x00', 0x6) r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r2, &(0x7f0000000040), 0x8) r3 = socket$inet6(0xa, 0x8000000000000802, 0x0) setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f00000000c0)=0xbbb, 0x3bc) sendmsg$inet_sctp(r3, &(0x7f0000000080)={&(0x7f0000000100)=@in6={0xa, 0x4e20, 0x0, @mcast2}, 0x1c}, 0x8000) setsockopt$inet6_udp_int(r3, 0x11, 0x1, &(0x7f00009f0ffc), 0x4) listen(r0, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000680)="0adc1f123c123f3188b070") listen(r2, 0x0) 23:23:48 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000048000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3174.764995] xt_ipvs: protocol family 7 not supported [ 3174.780592] xt_ipvs: protocol family 7 not supported [ 3174.849537] xt_ipvs: protocol family 7 not supported [ 3174.875598] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' 23:23:48 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\xa0\xff\xff', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:48 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:48 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3174.926972] CPU: 0 PID: 21335 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3174.934235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3174.943597] Call Trace: [ 3174.946220] dump_stack+0x1db/0x2d0 [ 3174.949914] ? dump_stack_print_info.cold+0x20/0x20 [ 3174.954959] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3174.960099] sysfs_warn_dup.cold+0x1c/0x31 [ 3174.964359] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3174.969752] sysfs_create_link+0x65/0xc0 [ 3174.973829] device_add+0x78e/0x1800 [ 3174.977572] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3174.982958] ? get_device_parent.isra.0+0x570/0x570 [ 3174.987997] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3174.993561] wiphy_register+0x1abd/0x2760 [ 3174.997737] ? wiphy_unregister+0x1340/0x1340 [ 3175.002250] ? rcu_read_lock_sched_held+0x110/0x130 [ 3175.007304] ? __kmalloc+0x5d5/0x740 [ 3175.007322] ? memset+0x32/0x40 [ 3175.007339] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3175.007358] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3175.007378] ieee80211_register_hw+0x15e2/0x3f30 [ 3175.007402] ? hrtimer_init_on_stack+0x1/0x40 [ 3175.007426] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3175.007446] ? kasan_check_write+0x14/0x20 [ 3175.007462] ? tasklet_hrtimer_init+0xfa/0x260 [ 3175.007478] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3175.007492] ? tasklet_kill+0xd0/0xd0 [ 3175.007520] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3175.007555] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3175.007569] ? kvasprintf+0x101/0x170 [ 3175.007584] ? bust_spinlocks+0xe0/0xe0 [ 3175.007614] ? kasprintf+0xbb/0xf0 [ 3175.007629] ? kvasprintf_const+0x190/0x190 [ 3175.007647] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3175.007665] ? validate_nla+0x28c/0x1580 [ 3175.007688] hwsim_new_radio_nl+0xca6/0x1430 [ 3175.014686] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3175.014727] genl_family_rcv_msg+0x80d/0x11a0 [ 3175.014752] ? genl_unregister_family+0x8a0/0x8a0 [ 3175.014778] ? radix_tree_insert+0x850/0x850 [ 3175.014796] ? netlink_deliver_tap+0x32b/0xf40 [ 3175.034536] genl_rcv_msg+0xca/0x16c [ 3175.034558] netlink_rcv_skb+0x17d/0x410 [ 3175.034575] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3175.034592] ? netlink_ack+0xba0/0xba0 [ 3175.034616] ? __down_interruptible+0x740/0x740 [ 3175.034640] genl_rcv+0x29/0x40 [ 3175.034654] netlink_unicast+0x574/0x770 [ 3175.034675] ? netlink_attachskb+0x980/0x980 [ 3175.034694] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3175.034708] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3175.034728] netlink_sendmsg+0xa05/0xf90 [ 3175.034742] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 23:23:48 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x01\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3175.034767] ? netlink_unicast+0x770/0x770 [ 3175.034784] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3175.034805] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3175.034820] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3175.034836] ? security_socket_sendmsg+0x93/0xc0 [ 3175.034850] ? netlink_unicast+0x770/0x770 [ 3175.034889] sock_sendmsg+0xdd/0x130 [ 3175.034909] ___sys_sendmsg+0x7ec/0x910 [ 3175.034932] ? copy_msghdr_from_user+0x570/0x570 [ 3175.034947] ? iterate_fd+0x4b0/0x4b0 [ 3175.034972] ? __might_fault+0x12b/0x1e0 [ 3175.034988] ? find_held_lock+0x35/0x120 [ 3175.035005] ? __might_fault+0x12b/0x1e0 [ 3175.035024] ? __fget_light+0x2db/0x420 [ 3175.035042] ? fget_raw+0x20/0x20 [ 3175.035057] ? lock_release+0xc40/0xc40 [ 3175.035074] ? trace_hardirqs_off_caller+0x300/0x300 [ 3175.035090] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3175.035117] ? __fdget+0x1b/0x20 [ 3175.035131] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3175.035148] ? sockfd_lookup_light+0xc2/0x160 [ 3175.035166] __sys_sendmsg+0x112/0x270 [ 3175.035183] ? __ia32_sys_shutdown+0x80/0x80 [ 3175.035215] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3175.035231] ? trace_hardirqs_off_caller+0x300/0x300 [ 3175.053633] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3175.053655] __x64_sys_sendmsg+0x78/0xb0 [ 3175.053675] do_syscall_64+0x1a3/0x800 [ 3175.053695] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3175.053714] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3175.053738] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3175.053763] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3175.053775] RIP: 0033:0x458089 [ 3175.053792] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3175.202635] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3175.202651] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3175.202660] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3175.202669] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3175.202678] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 23:23:48 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x02\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3175.202688] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3175.401883] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:48 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000007700)="0adc1f123c123f3188b070") socketpair$unix(0x1, 0x2000000009, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r3, 0x0, r1, 0x0, 0x400000a77, 0x0) write$binfmt_elf64(r4, &(0x7f00000000c0)=ANY=[@ANYRESHEX=0x0], 0xe681f134) poll(&(0x7f0000000000)=[{r2, 0xa640}, {r1}], 0x2, 0x0) write$binfmt_elf64(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0xb67) 23:23:48 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1f380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:48 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000004c000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:48 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:48 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:48 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x03\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3175.611214] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3175.688118] CPU: 0 PID: 21374 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3175.695376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3175.704760] Call Trace: [ 3175.707357] dump_stack+0x1db/0x2d0 [ 3175.711032] ? dump_stack_print_info.cold+0x20/0x20 [ 3175.716160] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3175.721285] sysfs_warn_dup.cold+0x1c/0x31 [ 3175.725536] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3175.730919] sysfs_create_link+0x65/0xc0 [ 3175.734999] device_add+0x78e/0x1800 [ 3175.738723] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3175.744106] ? get_device_parent.isra.0+0x570/0x570 [ 3175.749140] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3175.754708] wiphy_register+0x1abd/0x2760 [ 3175.758902] ? wiphy_unregister+0x1340/0x1340 [ 3175.763435] ? rcu_read_lock_sched_held+0x110/0x130 [ 3175.768471] ? __kmalloc+0x5d5/0x740 [ 3175.772212] ? memset+0x32/0x40 [ 3175.775503] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3175.781055] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3175.786006] ieee80211_register_hw+0x15e2/0x3f30 [ 3175.790782] ? hrtimer_init_on_stack+0x1/0x40 [ 3175.795299] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3175.800121] ? kasan_check_write+0x14/0x20 [ 3175.804381] ? tasklet_hrtimer_init+0xfa/0x260 [ 3175.808975] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3175.813826] ? tasklet_kill+0xd0/0xd0 [ 3175.817669] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3175.822715] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3175.828776] ? kvasprintf+0x101/0x170 [ 3175.832595] ? bust_spinlocks+0xe0/0xe0 [ 3175.836594] ? kasprintf+0xbb/0xf0 [ 3175.840145] ? kvasprintf_const+0x190/0x190 [ 3175.844484] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3175.849683] ? validate_nla+0x28c/0x1580 [ 3175.853769] hwsim_new_radio_nl+0xca6/0x1430 [ 3175.858199] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3175.863423] genl_family_rcv_msg+0x80d/0x11a0 [ 3175.867942] ? genl_unregister_family+0x8a0/0x8a0 [ 3175.872823] ? radix_tree_insert+0x850/0x850 [ 3175.877257] ? netlink_deliver_tap+0x32b/0xf40 [ 3175.881971] genl_rcv_msg+0xca/0x16c 23:23:49 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x04\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3175.885709] netlink_rcv_skb+0x17d/0x410 [ 3175.889767] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3175.894524] ? netlink_ack+0xba0/0xba0 [ 3175.898442] ? __down_interruptible+0x740/0x740 [ 3175.903153] genl_rcv+0x29/0x40 [ 3175.906488] netlink_unicast+0x574/0x770 [ 3175.910553] ? netlink_attachskb+0x980/0x980 [ 3175.914978] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3175.920531] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3175.925638] netlink_sendmsg+0xa05/0xf90 [ 3175.929703] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3175.935276] ? netlink_unicast+0x770/0x770 [ 3175.939523] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3175.944385] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3175.949157] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3175.954707] ? security_socket_sendmsg+0x93/0xc0 [ 3175.959487] ? netlink_unicast+0x770/0x770 [ 3175.963741] sock_sendmsg+0xdd/0x130 [ 3175.967474] ___sys_sendmsg+0x7ec/0x910 [ 3175.971468] ? copy_msghdr_from_user+0x570/0x570 [ 3175.976332] ? iterate_fd+0x4b0/0x4b0 [ 3175.980154] ? __might_fault+0x12b/0x1e0 [ 3175.984221] ? find_held_lock+0x35/0x120 [ 3175.988301] ? __might_fault+0x12b/0x1e0 [ 3175.992378] ? __fget_light+0x2db/0x420 [ 3175.996365] ? fget_raw+0x20/0x20 [ 3175.999845] ? lock_release+0xc40/0xc40 [ 3176.003894] ? trace_hardirqs_off_caller+0x300/0x300 [ 3176.008996] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3176.014549] ? __fdget+0x1b/0x20 [ 3176.017920] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3176.023472] ? sockfd_lookup_light+0xc2/0x160 [ 3176.027987] __sys_sendmsg+0x112/0x270 [ 3176.031897] ? __ia32_sys_shutdown+0x80/0x80 [ 3176.036321] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3176.041685] ? trace_hardirqs_off_caller+0x300/0x300 [ 3176.046921] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3176.051695] __x64_sys_sendmsg+0x78/0xb0 [ 3176.055787] do_syscall_64+0x1a3/0x800 [ 3176.059692] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3176.064650] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3176.069679] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3176.074526] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3176.079709] RIP: 0033:0x458089 23:23:49 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x05\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3176.082918] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3176.101827] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3176.109570] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3176.116838] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3176.124126] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3176.131402] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 23:23:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x20000000, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) [ 3176.138765] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3176.155006] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:49 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:49 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000060000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3176.263387] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3176.296462] CPU: 0 PID: 21411 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3176.303735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3176.313098] Call Trace: [ 3176.315703] dump_stack+0x1db/0x2d0 [ 3176.319357] ? dump_stack_print_info.cold+0x20/0x20 [ 3176.324395] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3176.329524] sysfs_warn_dup.cold+0x1c/0x31 [ 3176.333772] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3176.339144] sysfs_create_link+0x65/0xc0 [ 3176.339164] device_add+0x78e/0x1800 [ 3176.339181] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3176.339205] ? get_device_parent.isra.0+0x570/0x570 [ 3176.339223] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3176.339251] wiphy_register+0x1abd/0x2760 [ 3176.339279] ? wiphy_unregister+0x1340/0x1340 [ 3176.339300] ? rcu_read_lock_sched_held+0x110/0x130 [ 3176.339316] ? __kmalloc+0x5d5/0x740 [ 3176.339332] ? memset+0x32/0x40 [ 3176.339346] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3176.339366] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3176.394365] ieee80211_register_hw+0x15e2/0x3f30 [ 3176.399137] ? hrtimer_init_on_stack+0x1/0x40 [ 3176.403647] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3176.408432] ? kasan_check_write+0x14/0x20 [ 3176.412673] ? tasklet_hrtimer_init+0xfa/0x260 [ 3176.417441] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3176.422289] ? tasklet_kill+0xd0/0xd0 [ 3176.426105] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3176.431144] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3176.437203] ? kvasprintf+0x101/0x170 [ 3176.441005] ? bust_spinlocks+0xe0/0xe0 [ 3176.445005] ? kasprintf+0xbb/0xf0 [ 3176.448546] ? kvasprintf_const+0x190/0x190 [ 3176.452888] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3176.458085] ? validate_nla+0x28c/0x1580 [ 3176.462159] hwsim_new_radio_nl+0xca6/0x1430 [ 3176.466586] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3176.471806] genl_family_rcv_msg+0x80d/0x11a0 [ 3176.476493] ? genl_unregister_family+0x8a0/0x8a0 [ 3176.481359] ? radix_tree_insert+0x850/0x850 [ 3176.485773] ? netlink_deliver_tap+0x32b/0xf40 [ 3176.490385] genl_rcv_msg+0xca/0x16c [ 3176.494106] netlink_rcv_skb+0x17d/0x410 [ 3176.498173] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3176.502929] ? netlink_ack+0xba0/0xba0 [ 3176.506822] ? __down_interruptible+0x740/0x740 [ 3176.511513] genl_rcv+0x29/0x40 [ 3176.514793] netlink_unicast+0x574/0x770 [ 3176.518902] ? netlink_attachskb+0x980/0x980 [ 3176.523315] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3176.528870] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3176.533923] netlink_sendmsg+0xa05/0xf90 [ 3176.537995] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3176.543543] ? netlink_unicast+0x770/0x770 [ 3176.547792] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3176.552639] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3176.557412] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3176.562979] ? security_socket_sendmsg+0x93/0xc0 [ 3176.567750] ? netlink_unicast+0x770/0x770 [ 3176.571990] sock_sendmsg+0xdd/0x130 [ 3176.575710] ___sys_sendmsg+0x7ec/0x910 [ 3176.579696] ? copy_msghdr_from_user+0x570/0x570 [ 3176.584466] ? iterate_fd+0x4b0/0x4b0 [ 3176.588277] ? __might_fault+0x12b/0x1e0 [ 3176.592346] ? find_held_lock+0x35/0x120 [ 3176.596404] ? __might_fault+0x12b/0x1e0 [ 3176.600477] ? __fget_light+0x2db/0x420 [ 3176.604476] ? fget_raw+0x20/0x20 [ 3176.607935] ? lock_release+0xc40/0xc40 [ 3176.611911] ? trace_hardirqs_off_caller+0x300/0x300 [ 3176.617017] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3176.622566] ? __fdget+0x1b/0x20 [ 3176.625937] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3176.631487] ? sockfd_lookup_light+0xc2/0x160 [ 3176.635993] __sys_sendmsg+0x112/0x270 [ 3176.639898] ? __ia32_sys_shutdown+0x80/0x80 [ 3176.644326] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3176.649694] ? trace_hardirqs_off_caller+0x300/0x300 [ 3176.654803] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3176.659568] __x64_sys_sendmsg+0x78/0xb0 [ 3176.663634] do_syscall_64+0x1a3/0x800 [ 3176.667529] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3176.672477] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3176.677498] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3176.682352] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3176.687543] RIP: 0033:0x458089 [ 3176.690739] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3176.709648] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3176.717360] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3176.724630] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3176.731900] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3176.739167] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3176.746434] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:50 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\x06\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3176.802443] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:50 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000dddfc8)={0x0, 0x0, &(0x7f00008a7000)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c20000004080505ff020a0000000c0003002f006a007d0a00010c00ff00170022ff02f1000038a52b9e6383f19797b079206a927dd5e5cef3ff2807f13bc1c3a14dafae4babcc149d727e3c27253a02fe840e8d23f70f2e624604f8bd7fbabe4869b288d39f8dab0f2f3a3046caa00ec0e2757545efb9e2781789362eb7dcec8b8b9570b32d5b62ec7e5f0b6a9245fe3672f509f8bb5b0ca667a40464a64bdf73f835974a7382068f"], 0x2c}}, 0x0) 23:23:50 executing program 2: syz_genetlink_get_family_id$tipc(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3176.850462] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 3176.874370] CPU: 0 PID: 21411 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #37 [ 3176.881602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3176.890973] Call Trace: [ 3176.893576] dump_stack+0x1db/0x2d0 [ 3176.897227] ? dump_stack_print_info.cold+0x20/0x20 [ 3176.902273] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3176.907406] sysfs_warn_dup.cold+0x1c/0x31 [ 3176.911662] sysfs_do_create_link_sd.isra.0+0x120/0x140 [ 3176.917048] sysfs_create_link+0x65/0xc0 [ 3176.921130] device_add+0x78e/0x1800 [ 3176.924875] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3176.930260] ? get_device_parent.isra.0+0x570/0x570 [ 3176.935300] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3176.940872] wiphy_register+0x1abd/0x2760 [ 3176.945072] ? wiphy_unregister+0x1340/0x1340 23:23:50 executing program 3: r0 = socket$tipc(0x1e, 0x5, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x0, 0x0, 0x3}}, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000440)='TIPC\x00') setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000080)=@req3={0x400, 0x6, 0x0, 0x1, 0x8000, 0x20, 0x7115}, 0x1c) r3 = socket$bt_hidp(0x1f, 0x3, 0x6) ioctl(r3, 0x6, &(0x7f00000000c0)="52f52c60030417525d2efe223ce03b7166ac784ea221870156f032e5123d7cb51271d1753a0610999371b0b2f1894dec3f57f1ff1aad75828d48e8f2f8bdfbb2b189a47712eccd0c6ce0a750c5a65015b3504bfd42ede005fda048e5407d685d5407e6622cb3592920cafeac3d0f68a6b85840dd189652099f8011f6a1eb44de992219f162661c2e508aaed982e8182209b0d853e8d58d6bfd06cf4745b28f5759fc8246c4bdf7") sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)={0x30, r2, 0x805, 0x0, 0x0, {{}, 0x0, 0x6, 0x0, {0x14}}}, 0x30}}, 0x0) [ 3176.945097] ? rcu_read_lock_sched_held+0x110/0x130 [ 3176.954611] ? __kmalloc+0x5d5/0x740 [ 3176.958333] ? memset+0x32/0x40 [ 3176.961626] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3176.967173] ? ieee80211_cs_list_valid+0x1a1/0x280 [ 3176.967196] ieee80211_register_hw+0x15e2/0x3f30 [ 3176.967220] ? hrtimer_init_on_stack+0x1/0x40 [ 3176.967259] ? ieee80211_ifa_changed+0xf30/0xf30 [ 3176.967278] ? kasan_check_write+0x14/0x20 [ 3176.967293] ? tasklet_hrtimer_init+0xfa/0x260 [ 3176.967309] ? mac80211_hwsim_set_tsf+0x220/0x220 [ 3176.967323] ? tasklet_kill+0xd0/0xd0 [ 3176.967351] mac80211_hwsim_new_radio+0x1f8c/0x3610 [ 3176.995092] ? __rhashtable_insert_fast.constprop.0+0xec0/0xec0 [ 3176.995108] ? kvasprintf+0x101/0x170 [ 3176.995125] ? bust_spinlocks+0xe0/0xe0 [ 3176.995155] ? kasprintf+0xbb/0xf0 [ 3176.995173] ? kvasprintf_const+0x190/0x190 [ 3177.030494] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3177.035699] ? validate_nla+0x28c/0x1580 [ 3177.039793] hwsim_new_radio_nl+0xca6/0x1430 [ 3177.044225] ? mac80211_hwsim_new_radio+0x3610/0x3610 [ 3177.049447] genl_family_rcv_msg+0x80d/0x11a0 [ 3177.053961] ? genl_unregister_family+0x8a0/0x8a0 [ 3177.058828] ? radix_tree_insert+0x850/0x850 [ 3177.063284] ? netlink_deliver_tap+0x32b/0xf40 [ 3177.067948] genl_rcv_msg+0xca/0x16c [ 3177.071684] netlink_rcv_skb+0x17d/0x410 [ 3177.075757] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3177.080524] ? netlink_ack+0xba0/0xba0 [ 3177.084427] ? __down_interruptible+0x740/0x740 [ 3177.089127] genl_rcv+0x29/0x40 [ 3177.092418] netlink_unicast+0x574/0x770 [ 3177.096516] ? netlink_attachskb+0x980/0x980 23:23:50 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3177.100940] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3177.106481] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3177.111511] netlink_sendmsg+0xa05/0xf90 [ 3177.115588] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3177.121146] ? netlink_unicast+0x770/0x770 [ 3177.125390] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3177.125413] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3177.125428] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3177.125445] ? security_socket_sendmsg+0x93/0xc0 [ 3177.140562] ? netlink_unicast+0x770/0x770 [ 3177.140584] sock_sendmsg+0xdd/0x130 [ 3177.140605] ___sys_sendmsg+0x7ec/0x910 [ 3177.140629] ? copy_msghdr_from_user+0x570/0x570 [ 3177.140644] ? iterate_fd+0x4b0/0x4b0 [ 3177.140669] ? __might_fault+0x12b/0x1e0 [ 3177.140685] ? find_held_lock+0x35/0x120 [ 3177.140701] ? __might_fault+0x12b/0x1e0 [ 3177.140720] ? __fget_light+0x2db/0x420 [ 3177.140737] ? fget_raw+0x20/0x20 [ 3177.140752] ? lock_release+0xc40/0xc40 [ 3177.189529] ? trace_hardirqs_off_caller+0x300/0x300 [ 3177.194646] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3177.200206] ? __fdget+0x1b/0x20 [ 3177.203589] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3177.209163] ? sockfd_lookup_light+0xc2/0x160 [ 3177.213670] __sys_sendmsg+0x112/0x270 [ 3177.217615] ? __ia32_sys_shutdown+0x80/0x80 [ 3177.222053] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3177.227428] ? trace_hardirqs_off_caller+0x300/0x300 [ 3177.232544] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3177.237318] __x64_sys_sendmsg+0x78/0xb0 [ 3177.241398] do_syscall_64+0x1a3/0x800 [ 3177.245320] ? syscall_return_slowpath+0x5f0/0x5f0 23:23:50 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\xfe\xff\xff\a\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3177.250266] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3177.255316] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3177.260176] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3177.265378] RIP: 0033:0x458089 [ 3177.265395] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3177.287477] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3177.287492] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3177.287501] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 3177.287510] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3177.287519] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3177.287529] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff 23:23:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000068000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 23:23:50 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x20380800, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x10, 0x11, [@generic="e2abb4ec7645192056d52f"]}]}, 0x24}, 0x1, 0x300}, 0x0) 23:23:50 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x12c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:50 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00 \x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) 23:23:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c090000006c000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3177.559337] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:51 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000640)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x2000000000040, 0x0, "0d77bded7125338de47145b71f2226c0b6950feba57b7d52d9e6d13509bb602e4818224696dafe09c25ed1d5e1e8dd9525d4425e2c4707a00f8dd47a4c19b884282e4f743e00c7a3eff599b13d518d10"}, 0xd8) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000000)=0x248, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="2adc0d123c123f3188b070") setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) write$binfmt_elf32(r0, &(0x7f0000000740)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x1a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[], [], [], [], []]}, 0x558) 23:23:51 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0ac41f123c123f3188b070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="24000000220007031dfffd946f610500000000000500000000000000421ba3a20400ff7e280000001100ffffba16a0aa1c0900000074000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) [ 3177.688253] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 23:23:51 executing program 0: sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x4000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x1, 0x188, [0x20000580, 0x0, 0x0, 0x200005b0, 0x200005e0], 0x0, 0x0, &(0x7f0000000580)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00\x00\x00\x00\x00\x00?\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'vcan0\x00', 'irlan0\x00', 'bridge_slave_1\x00', 'ip6tnl0\x00', @empty, [], @link_local, [], 0xc0, 0xc0, 0xf8, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@loopback}}}]}}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x200) [ 3177.804626] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 3333.076853] INFO: task syz-executor2:21431 blocked for more than 140 seconds. [ 3333.084209] Not tainted 5.0.0-rc4+ #37 [ 3333.089106] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 3333.097603] syz-executor2 D25368 21431 7918 0x00000004 [ 3333.103257] Call Trace: [ 3333.105854] __schedule+0x897/0x1e60 [ 3333.115232] ? pci_mmcfg_check_reserved+0x170/0x170 [ 3333.120695] ? __mutex_lock+0xa36/0x1670 [ 3333.124772] ? find_held_lock+0x35/0x120 [ 3333.129245] schedule+0xfe/0x350 [ 3333.132629] ? __schedule+0x1e60/0x1e60 [ 3333.136607] ? __mutex_add_waiter+0x1e3/0x290 [ 3333.141535] ? do_raw_spin_trylock+0x270/0x270 [ 3333.146132] ? mutex_destroy+0x200/0x200 [ 3333.150572] schedule_preempt_disabled+0x13/0x20 [ 3333.155355] __mutex_lock+0xa3b/0x1670 [ 3333.159716] ? __request_module+0x11f/0xeea [ 3333.164055] ? ctrl_getfamily+0x30d/0x420 [ 3333.168549] ? mutex_trylock+0x2d0/0x2d0 [ 3333.172623] ? ctrl_getfamily+0x2d5/0x420 [ 3333.177207] ? find_held_lock+0x35/0x120 [ 3333.181292] ? lock_acquire+0x1db/0x570 [ 3333.185285] ? ctrl_getfamily+0x2ff/0x420 [ 3333.189766] ? ___might_sleep+0x1e7/0x310 [ 3333.193946] ? down_read+0x8d/0x120 [ 3333.197947] ? ctrl_getfamily+0x2ff/0x420 [ 3333.202132] ? __down_interruptible+0x740/0x740 [ 3333.207155] mutex_lock_nested+0x16/0x20 [ 3333.211227] ? mutex_lock_nested+0x16/0x20 [ 3333.215470] ctrl_getfamily+0x30d/0x420 [ 3333.219774] genl_family_rcv_msg+0x80d/0x11a0 [ 3333.224302] ? genl_unregister_family+0x8a0/0x8a0 [ 3333.229505] ? radix_tree_insert+0x850/0x850 [ 3333.233931] ? netlink_deliver_tap+0x32b/0xf40 [ 3333.238914] genl_rcv_msg+0xca/0x16c [ 3333.242660] netlink_rcv_skb+0x17d/0x410 [ 3333.247066] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3333.251835] ? netlink_ack+0xba0/0xba0 [ 3333.255743] ? __down_interruptible+0x740/0x740 [ 3333.260782] genl_rcv+0x29/0x40 [ 3333.264090] netlink_unicast+0x574/0x770 [ 3333.268543] ? netlink_attachskb+0x980/0x980 [ 3333.272993] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.278873] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3333.283908] netlink_sendmsg+0xa05/0xf90 [ 3333.288354] ? netlink_unicast+0x770/0x770 [ 3333.292605] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3333.297778] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3333.302549] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.308438] ? security_socket_sendmsg+0x93/0xc0 [ 3333.313219] ? netlink_unicast+0x770/0x770 [ 3333.318015] sock_sendmsg+0xdd/0x130 [ 3333.321751] ___sys_sendmsg+0x7ec/0x910 [ 3333.325740] ? copy_msghdr_from_user+0x570/0x570 [ 3333.330985] ? iterate_fd+0x4b0/0x4b0 [ 3333.334814] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.340703] ? lock_downgrade+0x910/0x910 [ 3333.344996] ? fget_raw+0x20/0x20 [ 3333.348874] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.354428] ? __fd_install+0x2e4/0x8c0 [ 3333.358745] ? __fdget+0x1b/0x20 [ 3333.362127] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3333.368032] ? sockfd_lookup_light+0xc2/0x160 [ 3333.372542] __sys_sendmsg+0x112/0x270 [ 3333.376438] ? __ia32_sys_shutdown+0x80/0x80 [ 3333.381203] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3333.386583] ? trace_hardirqs_off_caller+0x300/0x300 [ 3333.392045] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3333.397122] __x64_sys_sendmsg+0x78/0xb0 [ 3333.401201] do_syscall_64+0x1a3/0x800 [ 3333.405097] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3333.410512] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3333.415550] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3333.420729] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3333.425943] RIP: 0033:0x411f71 [ 3333.429510] Code: 03 50 1c 41 00 e9 fd fe ff ff bf cd 30 44 00 b9 0a 00 00 00 48 89 ee f3 a6 75 0c 48 c7 03 70 1c 41 00 e9 e0 fe ff ff be 2c 37 <44> 00 48 89 ef e8 55 94 ff ff 85 c0 75 0c 48 c7 03 80 1c 41 00 e9 [ 3333.448754] RSP: 002b:00007f122cb149c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e [ 3333.456479] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000411f71 [ 3333.464130] RDX: 0000000000000000 RSI: 00007f122cb14a00 RDI: 0000000000000004 [ 3333.471761] RBP: 0000000000000004 R08: 00007f122cb149d0 R09: 000000000073bf00 [ 3333.480752] R10: 00007f122cb159d0 R11: 0000000000000293 R12: 00007f122cb14a40 [ 3333.488410] R13: 00000000004cd8b0 R14: 00000000004dbaa0 R15: 00000000ffffffff [ 3333.495714] INFO: task syz-executor2:21436 blocked for more than 140 seconds. [ 3333.503333] Not tainted 5.0.0-rc4+ #37 [ 3333.508025] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 3333.516014] syz-executor2 D25256 21436 7918 0x00000004 [ 3333.521995] Call Trace: [ 3333.524621] __schedule+0x897/0x1e60 [ 3333.528656] ? pci_mmcfg_check_reserved+0x170/0x170 [ 3333.533687] ? __mutex_lock+0xa36/0x1670 [ 3333.542292] ? find_held_lock+0x35/0x120 [ 3333.546400] schedule+0xfe/0x350 [ 3333.552126] ? __schedule+0x1e60/0x1e60 [ 3333.556115] ? __mutex_add_waiter+0xba/0x290 [ 3333.564930] ? do_raw_spin_trylock+0x270/0x270 [ 3333.571806] ? mutex_destroy+0x200/0x200 [ 3333.575901] schedule_preempt_disabled+0x13/0x20 [ 3333.585162] __mutex_lock+0xa3b/0x1670 [ 3333.591293] ? genl_rcv_msg+0x13e/0x16c [ 3333.595291] ? mutex_trylock+0x2d0/0x2d0 [ 3333.603594] ? mark_held_locks+0x100/0x100 [ 3333.610928] ? add_lock_to_list.isra.0+0x450/0x450 [ 3333.615887] ? find_held_lock+0x35/0x120 [ 3333.624247] ? __radix_tree_lookup+0x3aa/0x4f0 [ 3333.631003] ? radix_tree_insert+0x850/0x850 [ 3333.635424] ? netlink_deliver_tap+0x32b/0xf40 [ 3333.644413] ? lock_downgrade+0x910/0x910 [ 3333.650694] ? kasan_check_read+0x11/0x20 [ 3333.654884] mutex_lock_nested+0x16/0x20 [ 3333.663257] ? mutex_lock_nested+0x16/0x20 [ 3333.669630] genl_rcv_msg+0x13e/0x16c [ 3333.673473] netlink_rcv_skb+0x17d/0x410 [ 3333.681618] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3333.686383] ? netlink_ack+0xba0/0xba0 [ 3333.692463] ? __down_interruptible+0x740/0x740 [ 3333.701300] genl_rcv+0x29/0x40 [ 3333.704588] netlink_unicast+0x574/0x770 [ 3333.710894] ? netlink_attachskb+0x980/0x980 [ 3333.715315] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.731326] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3333.736362] netlink_sendmsg+0xa05/0xf90 [ 3333.742467] ? netlink_unicast+0x770/0x770 [ 3333.752147] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3333.758243] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3333.763017] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.774194] ? security_socket_sendmsg+0x93/0xc0 [ 3333.780132] ? netlink_unicast+0x770/0x770 [ 3333.784388] sock_sendmsg+0xdd/0x130 [ 3333.793869] ___sys_sendmsg+0x7ec/0x910 [ 3333.799053] ? copy_msghdr_from_user+0x570/0x570 [ 3333.803844] ? iterate_fd+0x4b0/0x4b0 [ 3333.813055] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.819788] ? lock_downgrade+0x910/0x910 [ 3333.823989] ? fget_raw+0x20/0x20 [ 3333.832919] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.839620] ? __fd_install+0x2e4/0x8c0 [ 3333.843615] ? __fdget+0x1b/0x20 [ 3333.852308] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3333.858978] ? sockfd_lookup_light+0xc2/0x160 [ 3333.863489] __sys_sendmsg+0x112/0x270 [ 3333.873736] ? __ia32_sys_shutdown+0x80/0x80 [ 3333.879388] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3333.884762] ? trace_hardirqs_off_caller+0x300/0x300 [ 3333.895160] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3333.901341] __x64_sys_sendmsg+0x78/0xb0 [ 3333.905426] do_syscall_64+0x1a3/0x800 [ 3333.914675] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3333.921072] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3333.926111] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3333.936323] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3333.942645] RIP: 0033:0x411f71 [ 3333.945846] Code: a8 00 00 00 48 89 44 24 18 48 89 74 24 20 48 89 54 24 28 48 8b 84 24 c0 00 00 00 48 89 44 24 30 48 89 4c 24 38 e8 bf 10 ff ff <48> 8b 4c 24 40 e9 d0 fe ff ff 48 c7 84 24 c8 00 00 00 00 00 00 00 [ 3333.971727] RSP: 002b:00007f122caf39c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e [ 3333.980577] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000411f71 [ 3333.992811] RDX: 0000000000000000 RSI: 00007f122caf3a00 RDI: 0000000000000005 [ 3334.002243] RBP: 0000000000000005 R08: 00007f122caf39d0 R09: 000000000073bfa0 [ 3334.015031] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f122caf3a40 [ 3334.024064] R13: 00000000004cd8b0 R14: 00000000004dbaa0 R15: 00000000ffffffff [ 3334.037970] INFO: task syz-executor5:21463 blocked for more than 140 seconds. [ 3334.045258] Not tainted 5.0.0-rc4+ #37 [ 3334.053863] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 3334.063979] syz-executor5 D26904 21463 7931 0x00000004 [ 3334.074149] Call Trace: [ 3334.079125] __schedule+0x897/0x1e60 [ 3334.082879] ? pci_mmcfg_check_reserved+0x170/0x170 [ 3334.092125] ? __mutex_lock+0xa36/0x1670 [ 3334.096204] ? find_held_lock+0x35/0x120 [ 3334.102504] schedule+0xfe/0x350 [ 3334.105887] ? __schedule+0x1e60/0x1e60 [ 3334.114278] ? __mutex_add_waiter+0xba/0x290 [ 3334.120891] ? do_raw_spin_trylock+0x270/0x270 [ 3334.125489] ? mutex_destroy+0x200/0x200 [ 3334.134909] schedule_preempt_disabled+0x13/0x20 [ 3334.141826] __mutex_lock+0xa3b/0x1670 [ 3334.145730] ? genl_rcv_msg+0x13e/0x16c [ 3334.154212] ? mutex_trylock+0x2d0/0x2d0 [ 3334.160507] ? mark_held_locks+0x100/0x100 [ 3334.164758] ? add_lock_to_list.isra.0+0x450/0x450 [ 3334.174039] ? find_held_lock+0x35/0x120 [ 3334.180270] ? __radix_tree_lookup+0x3aa/0x4f0 [ 3334.184891] ? radix_tree_insert+0x850/0x850 [ 3334.193782] ? netlink_deliver_tap+0x32b/0xf40 [ 3334.204130] ? lock_downgrade+0x910/0x910 [ 3334.212371] ? kasan_check_read+0x11/0x20 [ 3334.216574] mutex_lock_nested+0x16/0x20 [ 3334.222929] ? mutex_lock_nested+0x16/0x20 [ 3334.231615] genl_rcv_msg+0x13e/0x16c [ 3334.235437] netlink_rcv_skb+0x17d/0x410 [ 3334.241701] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3334.246478] ? netlink_ack+0xba0/0xba0 [ 3334.254706] ? __down_interruptible+0x740/0x740 [ 3334.262507] genl_rcv+0x29/0x40 [ 3334.265798] netlink_unicast+0x574/0x770 [ 3334.274025] ? netlink_attachskb+0x980/0x980 [ 3334.281775] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3334.291552] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3334.296583] netlink_sendmsg+0xa05/0xf90 [ 3334.302833] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3334.312598] ? netlink_unicast+0x770/0x770 [ 3334.319037] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3334.323901] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3334.332923] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3334.340695] ? security_socket_sendmsg+0x93/0xc0 [ 3334.345464] ? netlink_unicast+0x770/0x770 [ 3334.353905] sock_sendmsg+0xdd/0x130 [ 3334.362139] ___sys_sendmsg+0x7ec/0x910 [ 3334.366139] ? copy_msghdr_from_user+0x570/0x570 [ 3334.375200] ? iterate_fd+0x4b0/0x4b0 [ 3334.381361] ? __might_fault+0x12b/0x1e0 [ 3334.385455] ? find_held_lock+0x35/0x120 [ 3334.394536] ? __might_fault+0x12b/0x1e0 [ 3334.400848] ? __fget_light+0x2db/0x420 [ 3334.404835] ? fget_raw+0x20/0x20 [ 3334.412752] ? lock_release+0xc40/0xc40 [ 3334.418998] ? trace_hardirqs_off_caller+0x300/0x300 [ 3334.424116] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3334.434287] ? __fdget+0x1b/0x20 [ 3334.439931] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3334.445521] ? sockfd_lookup_light+0xc2/0x160 [ 3334.454477] __sys_sendmsg+0x112/0x270 [ 3334.460620] ? __ia32_sys_shutdown+0x80/0x80 [ 3334.465064] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3334.474388] ? trace_hardirqs_off_caller+0x300/0x300 [ 3334.481693] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3334.486478] __x64_sys_sendmsg+0x78/0xb0 [ 3334.494936] do_syscall_64+0x1a3/0x800 [ 3334.501045] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3334.506003] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3334.515206] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3334.523251] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3334.532664] RIP: 0033:0x458089 [ 3334.535873] Code: 8b 4b 10 4c 8b 53 08 48 8b 1b 49 39 ca 0f 87 23 01 00 00 48 89 74 24 38 48 89 7c 24 30 4c 89 44 24 28 44 88 4c 24 27 48 89 54 <24> 50 48 89 44 24 40 48 c7 80 f8 00 00 00 00 00 00 00 4c 89 90 00 [ 3334.561176] RSP: 002b:00007f8208093c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3334.570023] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3334.583105] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 3334.591618] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3334.604304] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f82080946d4 [ 3334.612948] R13: 00000000004c563f R14: 00000000004d93a0 R15: 00000000ffffffff [ 3334.625761] [ 3334.625761] Showing all locks held in the system: [ 3334.633199] 1 lock held by khungtaskd/1041: [ 3334.642865] #0: 00000000a8c68658 (rcu_read_lock){....}, at: debug_show_all_locks+0xc6/0x41d [ 3334.653602] 1 lock held by rsyslogd/7789: [ 3334.663076] #0: 00000000592b9947 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x1b3/0x1f0 [ 3334.672197] 2 locks held by getty/7879: [ 3334.676182] #0: 0000000030ca5d7c (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3334.690889] #1: 000000004306e369 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3334.701122] 2 locks held by getty/7880: [ 3334.705100] #0: 00000000f59f7c57 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3334.719998] #1: 0000000077ca210e (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3334.731088] 2 locks held by getty/7881: [ 3334.735097] #0: 00000000ceab3913 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3334.749784] #1: 00000000973a57f7 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3334.762416] 2 locks held by getty/7882: [ 3334.766396] #0: 000000009725c184 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3334.781980] #1: 000000007f3add2d (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3334.792010] 2 locks held by getty/7883: [ 3334.795990] #0: 0000000012c2469e (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3334.810751] #1: 00000000a7ae44fe (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3334.821805] 2 locks held by getty/7884: [ 3334.825782] #0: 000000002a4b2d47 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3334.840704] #1: 00000000770463ce (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3334.851815] 2 locks held by getty/7885: [ 3334.855794] #0: 00000000f8d7316c (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3334.870638] #1: 0000000070e5b1d4 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3334.882151] 2 locks held by syz-executor2/21431: [ 3334.891204] #0: 000000007ba0a084 (cb_lock){++++}, at: ctrl_getfamily+0x2ff/0x420 [ 3334.901283] #1: 0000000084c079c6 (genl_mutex){+.+.}, at: ctrl_getfamily+0x30d/0x420 [ 3334.914603] 2 locks held by syz-executor2/21436: [ 3334.921534] #0: 000000007ba0a084 (cb_lock){++++}, at: genl_rcv+0x1a/0x40 [ 3334.932783] #1: 0000000084c079c6 (genl_mutex){+.+.}, at: genl_rcv_msg+0x13e/0x16c [ 3334.942976] 2 locks held by syz-executor3/21433: [ 3334.952016] 2 locks held by syz-executor5/21463: [ 3334.958919] #0: 000000007ba0a084 (cb_lock){++++}, at: genl_rcv+0x1a/0x40 [ 3334.965892] #1: 0000000084c079c6 (genl_mutex){+.+.}, at: genl_rcv_msg+0x13e/0x16c [ 3334.980149] [ 3334.981791] ============================================= [ 3334.981791] [ 3334.991056] NMI backtrace for cpu 0 [ 3334.994702] CPU: 0 PID: 1041 Comm: khungtaskd Not tainted 5.0.0-rc4+ #37 [ 3335.001539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3335.010905] Call Trace: [ 3335.013528] dump_stack+0x1db/0x2d0 [ 3335.017168] ? dump_stack_print_info.cold+0x20/0x20 [ 3335.022193] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3335.027762] nmi_cpu_backtrace.cold+0x63/0xa4 [ 3335.032375] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 3335.037321] nmi_trigger_cpumask_backtrace+0x1be/0x236 [ 3335.042613] arch_trigger_cpumask_backtrace+0x14/0x20 [ 3335.047812] watchdog+0xbbb/0x1170 [ 3335.051371] ? reset_hung_task_detector+0xd0/0xd0 [ 3335.056225] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3335.060820] ? trace_hardirqs_on+0xbd/0x310 [ 3335.065148] ? kasan_check_read+0x11/0x20 [ 3335.069312] ? __kthread_parkme+0xc3/0x1b0 [ 3335.073813] ? trace_hardirqs_off_caller+0x300/0x300 [ 3335.078960] ? do_raw_spin_trylock+0x270/0x270 [ 3335.083560] ? schedule+0x108/0x350 [ 3335.087196] ? do_raw_spin_trylock+0x270/0x270 [ 3335.091802] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3335.096917] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3335.102472] ? __kthread_parkme+0xfb/0x1b0 [ 3335.106722] kthread+0x357/0x430 [ 3335.110103] ? reset_hung_task_detector+0xd0/0xd0 [ 3335.114949] ? kthread_stop+0x920/0x920 [ 3335.118970] ret_from_fork+0x3a/0x50 [ 3335.122991] Sending NMI from CPU 0 to CPUs 1: [ 3335.129460] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.698 msecs [ 3335.129566] NMI backtrace for cpu 1 [ 3335.129573] CPU: 1 PID: 21433 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #37 [ 3335.129581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3335.129586] RIP: 0010:__lock_acquire+0x647/0x4a30 [ 3335.129599] Code: 00 48 8b 94 24 80 00 00 00 4d 89 2a 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e b7 2e 00 00 <41> 8b 84 24 78 08 00 00 85 c0 0f 85 4d 05 00 00 4c 89 ea 44 89 e8 [ 3335.129604] RSP: 0018:ffff8880965fe700 EFLAGS: 00000046 [ 3335.129613] RAX: 0000000000000000 RBX: 000000000000002b RCX: 1ffff1100c97e946 [ 3335.129620] RDX: 1ffff1100c97e937 RSI: 0000000000000000 RDI: ffffffff8b0abd30 [ 3335.129626] RBP: ffff8880965fe990 R08: 0000000000000002 R09: ffff888064bf4a30 [ 3335.129632] R10: ffff888064bf4a10 R11: 0000000000000000 R12: ffff888064bf4140 [ 3335.129639] R13: bea9bcdb9ceb993a R14: 0000000000000000 R15: 000000000000002b [ 3335.129646] FS: 00007fd74f871700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 3335.129651] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3335.129657] CR2: ffffffffff600400 CR3: 00000000907c3000 CR4: 00000000001406e0 [ 3335.129664] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3335.129670] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3335.129673] Call Trace: [ 3335.129678] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3335.129683] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3335.129687] ? trace_hardirqs_on+0xbd/0x310 [ 3335.129692] ? kasan_check_read+0x11/0x20 [ 3335.129697] ? rcu_preempt_deferred_qs_irqrestore+0x6ee/0xfd0 [ 3335.129701] ? mark_held_locks+0x100/0x100 [ 3335.129706] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3335.129712] ? rcu_preempt_deferred_qs_irqrestore+0x6ee/0xfd0 [ 3335.129716] ? __switch_to_asm+0x40/0x70 [ 3335.129720] ? __switch_to_asm+0x34/0x70 [ 3335.129725] ? __switch_to_asm+0x40/0x70 [ 3335.129729] ? rcu_gp_kthread+0xc10/0xc10 [ 3335.129733] ? trace_hardirqs_off+0xb8/0x310 [ 3335.129738] ? add_lock_to_list.isra.0+0x450/0x450 [ 3335.129743] ? trace_hardirqs_on_caller+0x310/0x310 [ 3335.129748] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3335.129752] ? retint_kernel+0x2d/0x2d [ 3335.129757] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3335.129761] ? print_usage_bug+0xd0/0xd0 [ 3335.129766] ? tipc_sk_lookup+0x819/0xf80 [ 3335.129770] ? find_held_lock+0x35/0x120 [ 3335.129774] lock_acquire+0x1db/0x570 [ 3335.129779] ? tipc_sk_lookup+0xd1/0xf80 [ 3335.129783] ? lock_release+0xc40/0xc40 [ 3335.129788] ? rcu_read_unlock_special+0x380/0x380 [ 3335.129792] tipc_sk_lookup+0x102/0xf80 [ 3335.129797] ? tipc_sk_lookup+0xd1/0xf80 [ 3335.129801] ? validate_nla+0x28c/0x1580 [ 3335.129806] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 3335.129810] ? validate_nla+0x28c/0x1580 [ 3335.129814] ? nla_memcpy+0xb0/0xb0 [ 3335.129820] ? __tipc_nl_add_sk+0x400/0x400 [ 3335.129825] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3335.129829] ? __nla_parse+0x12a/0x340 [ 3335.129833] ? nla_parse+0x45/0x60 [ 3335.129837] tipc_nl_publ_dump+0x209/0xf40 [ 3335.129842] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3335.129847] ? tipc_nl_sk_dump+0x30/0x30 [ 3335.129852] __tipc_nl_compat_dumpit.isra.0+0x261/0xa80 [ 3335.129857] ? __kmalloc_node_track_caller+0x4e/0x70 [ 3335.129862] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3335.129867] ? __tipc_add_link_prop.isra.0+0x2b0/0x2b0 [ 3335.129872] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3335.129877] ? __alloc_skb+0x491/0x730 [ 3335.129881] ? __nla_put+0x37/0x40 [ 3335.129885] ? nla_put+0x110/0x150 [ 3335.129890] tipc_nl_compat_sk_dump+0x6ac/0xd40 [ 3335.129895] ? __tipc_nl_compat_dumpit.isra.0+0xa80/0xa80 [ 3335.129899] ? nla_memcpy+0xb0/0xb0 [ 3335.129904] ? add_lock_to_list.isra.0+0x450/0x450 [ 3335.129908] ? tipc_nl_sk_dump+0x30/0x30 [ 3335.129913] ? tipc_tlv_sprintf+0x2f0/0x2f0 [ 3335.129918] ? rhashtable_walk_stop+0x1d5/0x4f0 [ 3335.129922] ? nla_parse+0x45/0x60 [ 3335.129927] ? __tipc_nl_compat_dumpit.isra.0+0xa80/0xa80 [ 3335.129932] __tipc_nl_compat_dumpit.isra.0+0x383/0xa80 [ 3335.129937] ? __tipc_add_link_prop.isra.0+0x2b0/0x2b0 [ 3335.129942] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3335.129947] ? __alloc_skb+0x491/0x730 [ 3335.129970] ? is_bpf_text_address+0xac/0x170 [ 3335.129976] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3335.129980] ? skb_put+0x177/0x1d0 [ 3335.129985] tipc_nl_compat_dumpit+0x1f4/0x440 [ 3335.129989] tipc_nl_compat_recv+0xec0/0x18b0 [ 3335.129994] ? tipc_nl_compat_doit+0x660/0x660 [ 3335.129998] ? genl_rcv_msg+0x13e/0x16c [ 3335.130003] ? tipc_dump_start+0x90/0x90 [ 3335.130008] ? __tipc_nl_compat_dumpit.isra.0+0xa80/0xa80 [ 3335.130012] ? __mutex_lock+0x622/0x1670 [ 3335.130017] ? genl_rcv_msg+0x13e/0x16c [ 3335.130022] genl_family_rcv_msg+0x80d/0x11a0 [ 3335.130030] ? genl_unregister_family+0x8a0/0x8a0 [ 3335.130035] ? radix_tree_insert+0x850/0x850 [ 3335.130039] ? netlink_deliver_tap+0x32b/0xf40 [ 3335.130043] genl_rcv_msg+0xca/0x16c [ 3335.130048] netlink_rcv_skb+0x17d/0x410 [ 3335.130053] ? genl_family_rcv_msg+0x11a0/0x11a0 [ 3335.130057] ? netlink_ack+0xba0/0xba0 [ 3335.130062] ? __down_interruptible+0x740/0x740 [ 3335.130065] genl_rcv+0x29/0x40 [ 3335.130070] netlink_unicast+0x574/0x770 [ 3335.130074] ? netlink_attachskb+0x980/0x980 [ 3335.130080] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3335.130085] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 3335.130089] netlink_sendmsg+0xa05/0xf90 [ 3335.130094] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3335.130099] ? netlink_unicast+0x770/0x770 [ 3335.130104] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 3335.130109] ? apparmor_socket_sendmsg+0x2a/0x30 [ 3335.130115] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3335.130119] ? security_socket_sendmsg+0x93/0xc0 [ 3335.130124] ? netlink_unicast+0x770/0x770 [ 3335.130128] sock_sendmsg+0xdd/0x130 [ 3335.130133] ___sys_sendmsg+0x7ec/0x910 [ 3335.130137] ? copy_msghdr_from_user+0x570/0x570 [ 3335.130142] ? iterate_fd+0x4b0/0x4b0 [ 3335.130146] ? __might_fault+0x12b/0x1e0 [ 3335.130150] ? find_held_lock+0x35/0x120 [ 3335.130155] ? __might_fault+0x12b/0x1e0 [ 3335.130159] ? __fget_light+0x2db/0x420 [ 3335.130163] ? fget_raw+0x20/0x20 [ 3335.130167] ? lock_release+0xc40/0xc40 [ 3335.130172] ? trace_hardirqs_off_caller+0x300/0x300 [ 3335.130176] ? __fdget+0x1b/0x20 [ 3335.130181] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3335.130186] ? sockfd_lookup_light+0xc2/0x160 [ 3335.130190] __sys_sendmsg+0x112/0x270 [ 3335.130195] ? __ia32_sys_shutdown+0x80/0x80 [ 3335.130200] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3335.130205] ? trace_hardirqs_off_caller+0x300/0x300 [ 3335.130210] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3335.130214] __x64_sys_sendmsg+0x78/0xb0 [ 3335.130219] do_syscall_64+0x1a3/0x800 [ 3335.130224] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3335.130228] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3335.130233] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3335.130238] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3335.130242] RIP: 0033:0x458089 [ 3335.130256] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3335.130260] RSP: 002b:00007fd74f870c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3335.130271] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 3335.130277] RDX: 0000000000000000 RSI: 0000000020000500 RDI: 0000000000000006 [ 3335.130284] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3335.130290] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd74f8716d4 [ 3335.130297] R13: 00000000004cbab0 R14: 00000000004d9088 R15: 00000000ffffffff [ 3335.137436] Kernel panic - not syncing: hung_task: blocked tasks [ 3335.859697] CPU: 0 PID: 1041 Comm: khungtaskd Not tainted 5.0.0-rc4+ #37 [ 3335.866545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3335.876168] Call Trace: [ 3335.878777] dump_stack+0x1db/0x2d0 [ 3335.882421] ? dump_stack_print_info.cold+0x20/0x20 [ 3335.887467] panic+0x2cb/0x65c [ 3335.890678] ? add_taint.cold+0x16/0x16 [ 3335.894667] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 3335.899630] ? ___preempt_schedule+0x16/0x18 [ 3335.904059] ? nmi_trigger_cpumask_backtrace+0x19e/0x236 [ 3335.909524] ? nmi_trigger_cpumask_backtrace+0x1fa/0x236 [ 3335.915004] ? nmi_trigger_cpumask_backtrace+0x204/0x236 [ 3335.920473] ? nmi_trigger_cpumask_backtrace+0x19e/0x236 [ 3335.925943] watchdog+0xbcc/0x1170 [ 3335.929537] ? reset_hung_task_detector+0xd0/0xd0 [ 3335.934394] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3335.939012] ? trace_hardirqs_on+0xbd/0x310 [ 3335.943346] ? kasan_check_read+0x11/0x20 [ 3335.947510] ? __kthread_parkme+0xc3/0x1b0 [ 3335.951758] ? trace_hardirqs_off_caller+0x300/0x300 [ 3335.956876] ? do_raw_spin_trylock+0x270/0x270 [ 3335.961468] ? schedule+0x108/0x350 [ 3335.965113] ? do_raw_spin_trylock+0x270/0x270 [ 3335.969717] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3335.974832] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3335.980382] ? __kthread_parkme+0xfb/0x1b0 [ 3335.984634] kthread+0x357/0x430 [ 3335.988022] ? reset_hung_task_detector+0xd0/0xd0 [ 3335.992875] ? kthread_stop+0x920/0x920 [ 3335.996869] ret_from_fork+0x3a/0x50 [ 3336.002260] Kernel Offset: disabled [ 3336.006048] Rebooting in 86400 seconds..